This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/BA3E92207D2311EEA3696814C4F9AE02.roa File: BA3E92207D2311EEA3696814C4F9AE02.roa (raw, json) Hash identifier: 0zk70ij/4hc+RQU97A0NsYTnIo4u8ElR/zwNhC6BFYg= Subject key identifier: 8E:34:E2:C4:CA:9E:69:5C:F0:4D:14:6C:9E:63:42:B7:57:EB:03:81 Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 019F Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/BA3E92207D2311EEA3696814C4F9AE02.roa Signing time: Fri 09 Jan 2026 03:22:50 +0000 ROA not before: Fri 09 Jan 2026 03:22:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 152104 IP address blocks: 180.131.132.0/23 maxlen: 23 180.131.132.0/24 maxlen: 24 180.131.133.0/24 maxlen: 24 2001:df3:1dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 02:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Jan 9 03:22:50 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6960748a-d5f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:9f:12:5f:0a:09:42:1d:34:c7:b6:aa:9a: f8:49:73:0b:92:2a:7e:60:e6:d0:b0:c3:65:73:13: 25:b0:73:b8:5a:9a:57:8a:94:1b:ca:cb:34:77:77: 76:51:45:0c:2b:b1:6b:52:46:4f:e7:28:5b:35:eb: a0:35:e8:bf:ae:cc:b1:6c:06:01:99:ad:49:5c:f9: ff:7e:c4:24:47:7a:88:12:7c:46:e1:6c:53:86:c6: 45:45:7b:52:8f:55:3d:6c:1b:ed:89:67:da:3e:ca: 51:b8:ec:3d:45:39:af:c9:88:10:48:6f:a5:ff:77: 45:c3:c0:7c:63:49:33:b0:15:69:b2:7f:12:ea:54: 4d:d6:a0:e4:8f:32:67:43:0a:20:6b:ba:2c:19:16: 37:7e:13:76:33:35:a8:76:9c:49:53:11:d1:3f:f5: 0d:aa:ab:d7:17:14:ba:15:9c:23:c7:a7:de:59:b7: d4:73:5e:1c:6c:b0:66:27:08:1a:69:73:5a:fb:24: 02:eb:76:01:44:c5:bf:a6:31:f9:c9:86:ac:63:a6: 6e:e2:cf:b6:f8:e9:48:ee:7d:02:59:6b:a6:3e:df: 21:90:9e:25:cd:eb:d2:2a:a6:b4:46:e9:e2:47:76: 56:37:2f:22:19:f1:dd:11:e9:e6:9e:10:84:da:dd: fc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:34:E2:C4:CA:9E:69:5C:F0:4D:14:6C:9E:63:42:B7:57:EB:03:81 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/BA3E92207D2311EEA3696814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.131.132.0/23 IPv6: 2001:df3:1dc0::/48 Signature Algorithm: sha256WithRSAEncryption 3e:2e:e5:71:4d:98:8c:65:1c:6a:e9:e1:17:84:ce:da:ab:4d: 4b:db:f5:0f:68:e7:68:93:02:a7:dc:9f:e6:c0:f8:2d:63:da: 06:77:fe:40:fa:51:41:1a:aa:0f:74:35:00:65:3a:49:11:27: 4a:eb:b1:6b:04:47:d7:3d:85:a3:59:ae:cb:5b:e9:93:8e:d9: 7f:63:ae:26:61:3c:a1:5d:8e:49:69:b6:2b:da:27:5a:b9:79: 1a:18:a3:4a:aa:4c:69:3a:7a:e4:e8:0e:17:20:b5:d1:e2:f8: 20:89:62:de:53:fe:3a:a1:fb:d1:f9:6b:c5:d6:0a:84:3f:d0: fb:9b:4f:8d:f3:f5:47:ea:ce:7c:ef:fa:0b:55:9d:ed:92:76: 94:c4:5d:b2:cd:0e:9c:2f:46:57:17:15:87:c8:aa:61:a5:75: e5:aa:9a:b8:7e:58:2e:31:4e:84:32:33:be:8e:57:59:0a:aa: f1:4b:84:c9:9b:5e:a4:5c:48:6f:41:b4:b5:22:0e:de:b1:dd: 26:ae:31:12:30:7c:bc:72:88:27:fb:bc:26:80:b5:a4:81:6e: 9a:58:86:b2:b4:3d:ab:7b:fc:8f:a0:4e:63:43:db:a6:d9:91: 22:53:40:2b:81:ff:86:6f:69:e5:5b:57:2c:59:ed:f2:86:c8: de:4e:3a:2f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjYwMTA5MDMyMjUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTYwNzQ4YS1kNWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ6fEl8KCUIdNMe2qpr4SXMLkip+YObQsMNlcxMlsHO4WppXipQbyss0d3d2 UUUMK7FrUkZP5yhbNeugNei/rsyxbAYBma1JXPn/fsQkR3qIEnxG4WxThsZFRXtS j1U9bBvtiWfaPspRuOw9RTmvyYgQSG+l/3dFw8B8Y0kzsBVpsn8S6lRN1qDkjzJn Qwoga7osGRY3fhN2MzWodpxJUxHRP/UNqqvXFxS6FZwjx6feWbfUc14cbLBmJwga aXNa+yQC63YBRMW/pjH5yYasY6Zu4s+2+OlI7n0CWWumPt8hkJ4lzevSKqa0Runi R3ZWNy8iGfHdEenmnhCE2t385QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI404sTK nmlc8E0UbJ5jQrdX6wOBMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVFMUIvNzQ5NTI1MTQ3RDIyMTFFRUE3QjA3NDYwQzRGOUFFMDIvQkEzRTkyMjA3 RDIzMTFFRUEzNjk2ODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAG0g4QwDwQCAAIwCQMHACABDfMdwDANBgkqhkiG9w0BAQsF AAOCAQEAPi7lcU2YjGUcaunhF4TO2qtNS9v1D2jnaJMCp9yf5sD4LWPaBnf+QPpR QRqqD3Q1AGU6SREnSuuxawRH1z2Fo1muy1vpk47Zf2OuJmE8oV2OSWm2K9onWrl5 GhijSqpMaTp65OgOFyC10eL4IIli3lP+OqH70flrxdYKhD/Q+5tPjfP1R+rOfO/6 C1Wd7ZJ2lMRdss0OnC9GVxcVh8iqYaV15aqauH5YLjFOhDIzvo5XWQqq8UuEyZte pFxIb0G0tSIO3rHdJq4xEjB8vHKIJ/u8JoC1pIFumliGsrQ9q3v8j6BOY0PbptmR IlNAK4H/hm9p5VtXLFnt8obI3k46Lw== -----END CERTIFICATE-----Generated at Mon Jan 12 09:58:35 2026 by rpki-client