This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa File: 4EE9B36406C711EA84978821C4F9AE02.roa (raw, json) Hash identifier: yj5GZHfCoa9gYgxaYtgYH1txrxbVJtKRREh8ZNMjOEU= Subject key identifier: 2B:FA:54:B1:49:D9:E6:B5:49:AA:0A:D1:08:DE:28:11:5B:B7:AD:71 Certificate issuer: /CN=A914CB9F/serialNumber=5D62DF1921DE1B598BAFB857D49D236D2E15F2B6 Certificate serial: 0CB1 Authority key identifier: 5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa Signing time: Wed 31 Dec 2025 18:15:51 +0000 ROA not before: Wed 31 Dec 2025 18:15:51 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139757 IP address blocks: 103.144.198.0/23 maxlen: 23 103.144.198.0/24 maxlen: 24 103.144.199.0/24 maxlen: 24 2001:df1:d980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 17:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3249 (0xcb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB9F, serialNumber=5D62DF1921DE1B598BAFB857D49D236D2E15F2B6 Validity Not Before: Dec 31 18:15:51 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69556857-d10f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:72:e3:d0:37:89:79:69:26:84:3c:52:4e:e1: 18:7f:b0:9c:dc:0e:d4:67:35:a8:fe:b4:a1:06:8d: 68:ea:7c:72:16:82:3d:53:48:1d:b4:93:11:d2:ec: 69:ca:43:e3:d9:fe:d3:6d:a0:57:48:e9:63:d0:3f: 9e:27:73:0f:96:87:7b:70:5c:8f:fa:e3:66:d8:68: 7a:73:f7:8f:47:13:2a:1c:7a:9b:c8:de:02:af:2b: 3f:a0:1c:68:35:1d:41:c7:e2:81:ac:72:7a:d7:33: 4c:46:a7:f4:0a:91:5a:f7:14:48:91:27:71:50:0a: 67:31:b3:07:6a:b2:8f:c4:7e:9c:b5:1d:a6:b1:16: bc:88:b6:b5:d6:fe:ef:4d:f7:eb:7f:a8:7b:8b:0b: 84:f4:01:83:dc:54:ba:10:c8:69:f6:2e:23:82:5c: ce:7f:94:93:26:a8:3b:b5:76:cd:7b:3c:3d:48:8d: e9:bd:fe:34:6f:ee:b0:a6:ff:87:66:2b:50:95:e0: b2:99:f0:7f:df:5f:5e:ab:4d:38:79:a1:f8:41:35: 1f:3d:4f:4e:11:41:ca:fa:06:76:b1:7b:ce:96:dc: b4:27:ce:d2:6a:56:89:29:83:a4:e0:79:12:d2:69: 2c:8c:fd:c4:f7:19:a2:21:82:7d:b1:a1:a3:a9:77: 9a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FA:54:B1:49:D9:E6:B5:49:AA:0A:D1:08:DE:28:11:5B:B7:AD:71 X509v3 Authority Key Identifier: keyid:5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.198.0/23 IPv6: 2001:df1:d980::/48 Signature Algorithm: sha256WithRSAEncryption d1:78:a4:e2:7b:e5:38:c7:33:b1:89:78:72:96:92:dc:67:36: 34:03:11:57:22:6c:1d:86:5a:1c:68:76:a9:2f:78:77:77:0d: ce:b8:c6:b4:89:b8:b9:9c:32:9c:39:c5:bf:83:5e:3f:b5:bc: 5c:71:be:27:cb:e5:d4:7e:73:7c:99:a7:f6:f6:6f:ea:d3:5f: ae:d9:77:58:30:db:1e:3b:5f:35:b6:e3:fe:ff:6b:07:cd:15: aa:03:2d:ff:2c:4f:de:d0:52:cc:fb:4c:49:ef:3d:5c:01:46: d0:4b:78:50:6b:2a:86:84:c0:e3:c1:ec:31:08:be:e3:77:f0: 7f:3a:05:18:be:1f:9b:f2:dc:76:ee:d8:95:4f:18:d9:b9:c1: a2:f5:ff:69:84:1f:68:a6:70:d0:5d:51:38:30:6e:d3:bb:60: de:c7:c6:f0:55:14:4f:88:c7:dd:8d:d7:53:8a:86:bd:2c:7a: d0:91:c2:6a:12:78:1c:18:ad:22:c6:f7:b9:df:47:5c:aa:b3: dc:ba:d3:52:a4:e3:39:73:3c:eb:51:89:cc:9f:01:bd:98:ef: b3:6c:81:54:aa:e7:5a:b8:b7:43:b9:7b:65:95:eb:aa:95:e7: cd:59:60:a2:d4:ca:fb:c9:89:6e:1d:76:d1:1a:d8:e9:15:b2: 52:c1:32:60 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NENCOUYxMTAvBgNVBAUTKDVENjJERjE5MjFERTFCNTk4QkFGQjg1N0Q0OUQyMzZE MkUxNUYyQjYwHhcNMjUxMjMxMTgxNTUxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1Njg1Ny1kMTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHLj0DeJeWkmhDxSTuEYf7Cc3A7UZzWo/rShBo1o6nxyFoI9U0gdtJMR0uxp ykPj2f7TbaBXSOlj0D+eJ3MPlod7cFyP+uNm2Gh6c/ePRxMqHHqbyN4Crys/oBxo NR1Bx+KBrHJ61zNMRqf0CpFa9xRIkSdxUApnMbMHarKPxH6ctR2msRa8iLa11v7v Tffrf6h7iwuE9AGD3FS6EMhp9i4jglzOf5STJqg7tXbNezw9SI3pvf40b+6wpv+H ZitQleCymfB/319eq004eaH4QTUfPU9OEUHK+gZ2sXvOlty0J87SalaJKYOk4HkS 0mksjP3E9xmiIYJ9saGjqXeaWQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCv6VLFJ 2ea1SaoK0QjeKBFbt61xMB8GA1UdIwQYMBaAFF1i3xkh3htZi6+4V9SdI20uFfK2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0I5Ri8xMTU3MzlGQTA2 QzYxMUVBQUQyRDYwMUNDNEY5QUUwMi9YV0xmR1NIZUcxbUxyN2hYMUowamJTNFY4 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hXTGZHU0hlRzFtTHI3aFgxSjBqYlM0VjhyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCOUYvMTE1NzM5RkEwNkM2MTFFQUFEMkQ2MDFDQzRGOUFFMDIvNEVFOUIzNjQw NkM3MTFFQTg0OTc4ODIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkMYwDwQCAAIwCQMHACABDfHZgDANBgkqhkiG9w0BAQsF AAOCAQEA0Xik4nvlOMczsYl4cpaS3Gc2NAMRVyJsHYZaHGh2qS94d3cNzrjGtIm4 uZwynDnFv4NeP7W8XHG+J8vl1H5zfJmn9vZv6tNfrtl3WDDbHjtfNbbj/v9rB80V qgMt/yxP3tBSzPtMSe89XAFG0Et4UGsqhoTA48HsMQi+43fwfzoFGL4fm/Lcdu7Y lU8Y2bnBovX/aYQfaKZw0F1RODBu07tg3sfG8FUUT4jH3Y3XU4qGvSx60JHCahJ4 HBitIsb3ud9HXKqz3LrTUqTjOXM861GJzJ8BvZjvs2yBVKrnWri3Q7l7ZZXrqpXn zVlgotTK+8mJbh120RrY6RWyUsEyYA== -----END CERTIFICATE-----Generated at Mon Jan 5 03:04:21 2026 by rpki-client