This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/0897E314434811EF8E76757AC4F9AE02.roa File: 0897E314434811EF8E76757AC4F9AE02.roa (raw, json) Hash identifier: xZv4JvM9/5O4QAK6f9ql/QNO43kIj5mFCJkX2eaTwtQ= Subject key identifier: 96:AE:5D:8C:19:7E:25:02:26:37:14:A8:9C:45:C2:26:81:BD:B5:B1 Certificate issuer: /CN=A9144F59/serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Certificate serial: 1748 Authority key identifier: C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/0897E314434811EF8E76757AC4F9AE02.roa Signing time: Mon 08 Dec 2025 16:25:34 +0000 ROA not before: Mon 08 Dec 2025 16:25:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152891 IP address blocks: 110.235.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5960 (0x1748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Validity Not Before: Dec 8 16:25:34 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6936fbfe-cccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dc:a4:ab:30:e8:c1:10:58:ed:ba:cb:a5:4d: 0b:c2:b5:c6:4f:7a:7b:9b:3b:41:53:db:c2:ce:56: c4:29:65:d4:c1:33:d1:17:a7:0a:5c:3f:d9:83:c7: 96:6b:93:7a:e0:06:43:51:09:5f:56:6c:a7:cf:2f: 51:dc:20:96:ba:7f:e6:23:b3:a1:6b:d2:9f:56:54: 6f:5f:d3:d2:40:04:2e:f2:2a:78:ff:07:23:1b:b1: b7:4b:c7:92:a7:c4:b3:de:38:15:10:6b:01:26:61: bc:cd:b8:b4:44:d8:62:11:2c:49:5b:78:04:93:41: 47:90:e2:23:fd:c3:6b:24:a1:9f:ea:28:3f:1b:c9: 92:4d:8a:94:cd:3b:7d:57:ba:68:62:37:bb:8e:e2: b6:29:76:f4:a8:5a:ea:78:21:25:0c:b6:73:43:6f: db:33:21:9d:54:87:fb:02:7d:f3:30:37:12:80:c7: 52:cf:f8:be:52:e0:95:b3:1c:1f:4f:15:7d:45:eb: 81:1f:e6:9b:39:bf:a7:3d:72:64:ee:5e:b0:9d:da: 35:17:ca:f9:03:d5:9b:fc:4a:d4:e1:21:83:57:53: a2:7c:2e:33:4e:ab:d0:39:96:47:d8:4f:2b:b7:a7: 8a:36:16:8c:88:6f:08:78:7e:ec:5c:55:87:f3:6d: dc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AE:5D:8C:19:7E:25:02:26:37:14:A8:9C:45:C2:26:81:BD:B5:B1 X509v3 Authority Key Identifier: keyid:C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/0897E314434811EF8E76757AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.235.157.0/24 Signature Algorithm: sha256WithRSAEncryption aa:b4:a0:2d:f3:46:c1:dd:5f:52:7a:91:5b:93:ba:91:ab:6e: 43:ec:bd:37:78:3d:9b:3d:65:bc:ef:28:09:f3:68:16:88:43: 58:8e:4a:0f:a2:99:10:0c:c9:aa:02:b8:25:28:63:c2:e0:20: 78:be:a0:6e:2d:1d:21:d3:ac:1b:7c:1f:68:e4:c2:a8:ab:6d: a8:1f:1e:8f:c5:21:09:5f:a9:d0:38:98:94:42:9e:15:1a:fa: 21:67:af:3e:0c:50:93:91:17:ca:b6:3b:19:ac:8f:27:99:6a: 49:e7:b5:80:78:47:fb:95:ec:4d:87:58:b7:cc:56:d1:63:d9: ec:87:08:4c:55:4c:5d:1b:8d:ca:c3:28:73:22:b6:5b:ab:d7: 25:70:c0:d1:87:c2:8a:eb:0f:e7:ca:85:73:72:c3:98:dd:5a: ae:03:af:9c:28:79:4e:41:de:36:55:40:99:69:f4:5c:8a:ea: fb:9e:54:90:c9:2a:8c:a8:d5:73:a7:c6:11:87:8a:d9:df:04: d5:d0:7d:46:7d:5d:45:63:9f:6d:d4:a5:9d:a8:de:64:72:0c: a1:1a:37:d4:a4:08:f3:8c:72:01:0c:11:5d:47:1b:93:45:98: c4:83:ab:06:b6:e6:96:60:04:eb:3e:b2:ee:f0:28:bd:c2:65: 8d:ce:ab:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKEM3QjI2NDczNTAzODBBNkEzNEUzNEUzMkNFRkUzNTE5 OTM3RTk3QzgwHhcNMjUxMjA4MTYyNTM0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM2ZmJmZS1jY2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NykqzDowRBY7brLpU0LwrXGT3p7mztBU9vCzlbEKWXUwTPRF6cKXD/Zg8eW a5N64AZDUQlfVmynzy9R3CCWun/mI7Oha9KfVlRvX9PSQAQu8ip4/wcjG7G3S8eS p8Sz3jgVEGsBJmG8zbi0RNhiESxJW3gEk0FHkOIj/cNrJKGf6ig/G8mSTYqUzTt9 V7poYje7juK2KXb0qFrqeCElDLZzQ2/bMyGdVIf7An3zMDcSgMdSz/i+UuCVsxwf TxV9ReuBH+abOb+nPXJk7l6wndo1F8r5A9Wb/ErU4SGDV1OifC4zTqvQOZZH2E8r t6eKNhaMiG8IeH7sXFWH823czQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJauXYwZ fiUCJjcUqJxFwiaBvbWxMB8GA1UdIwQYMBaAFMeyZHNQOApqNONOMs7+NRmTfpfI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80Qjk1OEJDRTAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENtbzA0MDR5enY0MUdaTi1s OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3SmtjMUE0Q21vMDQwNHl6djQxR1pOLWw4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGNTkvNEI5NThCQ0UwMENCMTFFOEJFQjFFRjEwQzRGOUFFMDIvMDg5N0UzMTQ0 MzQ4MTFFRjhFNzY3NTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABu650wDQYJKoZIhvcNAQELBQADggEBAKq0oC3zRsHdX1J6 kVuTupGrbkPsvTd4PZs9ZbzvKAnzaBaIQ1iOSg+imRAMyaoCuCUoY8LgIHi+oG4t HSHTrBt8H2jkwqirbagfHo/FIQlfqdA4mJRCnhUa+iFnrz4MUJORF8q2OxmsjyeZ aknntYB4R/uV7E2HWLfMVtFj2eyHCExVTF0bjcrDKHMitlur1yVwwNGHworrD+fK hXNyw5jdWq4Dr5woeU5B3jZVQJlp9FyK6vueVJDJKoyo1XOnxhGHitnfBNXQfUZ9 XUVjn23UpZ2o3mRyDKEaN9SkCPOMcgEMEV1HG5NFmMSDqwa25pZgBOs+su7wKL3C ZY3Oqyo= -----END CERTIFICATE-----Generated at Sun Dec 21 14:14:51 2025 by rpki-client