This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/96E3EB58B2B711EEAE882255C4F9AE02.roa File: 96E3EB58B2B711EEAE882255C4F9AE02.roa (raw, json) Hash identifier: S2W7v0bn+KzEsrg9+xUhdsA4Af0rmjBxd69De9ontzM= Subject key identifier: E0:E0:12:59:AF:EB:D1:DF:F4:D4:29:DB:88:E0:C4:F7:34:CB:24:C4 Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 0660 Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/96E3EB58B2B711EEAE882255C4F9AE02.roa Signing time: Mon 15 Dec 2025 06:26:58 +0000 ROA not before: Mon 15 Dec 2025 06:26:58 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139922 IP address blocks: 103.147.62.0/23 maxlen: 24 2405:acc0::/32 maxlen: 32 2405:acc0::/48 maxlen: 48 2405:acc0:1::/48 maxlen: 48 2405:acc0:4::/48 maxlen: 48 2405:acc0:6::/48 maxlen: 48 2405:acc0:8::/48 maxlen: 48 2405:acc0:9::/48 maxlen: 48 2405:acc0:a::/48 maxlen: 48 2405:acc0:169::/48 maxlen: 48 2405:acc0:1000::/40 maxlen: 40 2405:acc0:1100::/40 maxlen: 40 2405:acc0:1200::/48 maxlen: 48 2405:acc0:1204::/48 maxlen: 48 2405:acc0:1205::/48 maxlen: 48 2405:acc0:1206::/48 maxlen: 48 2405:acc0:1207::/48 maxlen: 48 2405:acc0:1210::/48 maxlen: 48 2405:acc0:1300::/48 maxlen: 48 2405:acc0:1304::/48 maxlen: 48 2405:acc0:1305::/48 maxlen: 48 2405:acc0:1306::/48 maxlen: 48 2405:acc0:1307::/48 maxlen: 48 2405:acc0:1310::/48 maxlen: 48 2405:acc0:1400::/48 maxlen: 48 2405:acc0:1410::/48 maxlen: 48 2405:acc0:1504::/48 maxlen: 48 2405:acc0:1505::/48 maxlen: 48 2405:acc0:1510::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Dec 15 06:26:58 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=693faa32-7407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5f:67:d0:6e:c3:b6:19:a1:39:c9:88:ab:e4: 12:92:b7:b5:69:f8:0f:eb:89:96:6f:9d:dc:ff:64: 9c:49:64:15:0e:79:d1:74:6c:1a:26:40:4b:e4:d4: 50:4a:02:ba:6a:28:a6:cf:56:0b:b4:dc:77:4e:d3: fa:09:c7:01:0c:21:86:5d:20:d6:46:5e:f4:c7:65: 49:85:f1:24:8e:51:68:ad:d8:bd:bc:4a:e3:a6:dd: 6e:72:2a:26:15:5d:83:cf:0f:59:49:94:3d:83:0e: db:3b:20:36:4f:05:d4:65:33:9a:e2:59:4d:41:04: 52:56:00:38:f7:2b:54:39:e3:ef:3f:8c:fa:14:91: aa:0d:3f:d5:4b:f3:79:66:bc:50:fe:b9:56:93:67: cf:6c:75:8a:12:90:fa:5f:40:41:7a:96:fd:90:2f: 2e:2f:99:06:c1:ef:05:57:73:c5:28:ea:8f:2b:2d: a9:f6:5b:96:12:13:b7:dd:9b:09:45:28:1f:1b:18: a3:8b:76:5e:d4:e0:2b:e8:aa:cf:2c:ed:6f:a9:f8: ad:7e:e2:4d:b3:0a:1d:bb:d0:14:63:68:4a:e2:66: d7:71:b9:7a:23:14:1d:ab:2a:f3:a4:7d:93:4f:c4: fb:72:d5:90:49:b6:66:fd:ef:7d:ad:f9:4a:35:48: 5c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E0:12:59:AF:EB:D1:DF:F4:D4:29:DB:88:E0:C4:F7:34:CB:24:C4 X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/96E3EB58B2B711EEAE882255C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.62.0/23 IPv6: 2405:acc0::/32 Signature Algorithm: sha256WithRSAEncryption b1:96:32:c7:91:fd:35:47:8f:5e:6a:12:0b:c2:45:70:71:4a: ee:45:42:7e:f1:49:99:56:b7:ed:8a:43:49:1d:b2:0a:b9:cf: 42:13:04:12:2b:d1:c2:63:7d:9c:c7:cf:ac:b0:2c:65:a5:b0: dd:4c:40:70:f7:e8:1b:f0:91:8b:e8:d5:2f:ef:1f:ce:f5:1d: 94:5c:c2:5a:07:aa:c1:60:f0:e2:e9:ff:5b:aa:78:1b:94:ee: 01:01:05:96:81:72:11:0e:92:d3:cf:ff:15:2a:53:b9:99:48: 0a:b8:29:bd:f2:ec:8b:cb:16:c8:d5:47:3b:60:41:5a:3f:76: a0:b9:ae:d1:be:38:6d:1d:f0:5d:2a:3a:a7:33:8e:e6:3c:73: a5:ea:79:d9:23:3b:d2:1c:e1:88:d0:48:14:b0:e9:ac:09:f1: 97:6d:a1:ca:42:26:da:14:8e:58:f5:17:12:28:35:2c:69:38: 57:09:e7:5f:7a:3b:89:45:52:de:31:ae:55:69:1a:8f:05:78: 7f:db:b5:0e:9b:ce:b2:78:0d:0c:e4:0d:21:b4:1e:d7:39:df: d0:80:b6:3f:ea:7c:e9:90:7b:de:d6:56:82:7b:f3:90:b2:24: 89:3d:a9:9c:86:61:1f:c0:7e:ee:22:0c:0e:9e:41:31:b1:ef: 86:52:f9:17 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUxMjE1MDYyNjU4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNmYWEzMi03NDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArF9n0G7DthmhOcmIq+QSkre1afgP64mWb53c/2ScSWQVDnnRdGwaJkBL5NRQ SgK6aiimz1YLtNx3TtP6CccBDCGGXSDWRl70x2VJhfEkjlFordi9vErjpt1uciom FV2Dzw9ZSZQ9gw7bOyA2TwXUZTOa4llNQQRSVgA49ytUOePvP4z6FJGqDT/VS/N5 ZrxQ/rlWk2fPbHWKEpD6X0BBepb9kC8uL5kGwe8FV3PFKOqPKy2p9luWEhO33ZsJ RSgfGxiji3Ze1OAr6KrPLO1vqfitfuJNswodu9AUY2hK4mbXcbl6IxQdqyrzpH2T T8T7ctWQSbZm/e99rflKNUhciQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFODgElmv 69Hf9NQp24jgxPc0yyTEMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENDRDEvQUQ3RjQ1QTRDREM0MTFFQkI1RjQ4MzU1QzRGOUFFMDIvOTZFM0VCNThC MkI3MTFFRUFFODgyMjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkz4wDQQCAAIwBwMFACQFrMAwDQYJKoZIhvcNAQELBQAD ggEBALGWMseR/TVHj15qEgvCRXBxSu5FQn7xSZlWt+2KQ0kdsgq5z0ITBBIr0cJj fZzHz6ywLGWlsN1MQHD36BvwkYvo1S/vH871HZRcwloHqsFg8OLp/1uqeBuU7gEB BZaBchEOktPP/xUqU7mZSAq4Kb3y7IvLFsjVRztgQVo/dqC5rtG+OG0d8F0qOqcz juY8c6XqedkjO9Ic4YjQSBSw6awJ8ZdtocpCJtoUjlj1FxIoNSxpOFcJ5196O4lF Ut4xrlVpGo8FeH/btQ6bzrJ4DQzkDSG0Htc539CAtj/qfOmQe97WVoJ785CyJIk9 qZyGYR/Afu4iDA6eQTGx74ZS+Rc= -----END CERTIFICATE-----Generated at Sat Dec 20 01:34:30 2025 by rpki-client