This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa File: A41A01F2812311ED9367FC43C4F9AE02.roa (raw, json) Hash identifier: mkp0usPjHeL3yppERl+f9rCMjE5Z7lmDf0UQPBQGrbc= Subject key identifier: 40:B1:30:AD:99:29:00:22:F1:C2:06:1F:2E:6D:E3:7F:F2:F7:47:3F Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A34 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa Signing time: Thu 08 Jan 2026 17:13:59 +0000 ROA not before: Thu 08 Jan 2026 17:13:59 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63949 IP address blocks: 45.118.132.0/22 maxlen: 24 103.3.60.0/22 maxlen: 24 103.29.68.0/22 maxlen: 24 2400:8900::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 16:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6708 (0x1a34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:59 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695fe5d7-ca57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:01:a1:72:a8:bf:f5:ff:c3:bb:a7:77:41:d4: d5:ee:b9:7b:06:92:9c:a4:00:25:14:bf:85:5e:c4: 56:b4:7d:74:99:59:3f:33:8e:aa:70:b0:6a:9e:0c: 1a:5b:3e:88:3d:ac:6c:29:a4:c8:c3:99:4d:96:55: 47:24:6d:10:7b:4a:02:6e:bf:d1:86:e2:d5:f3:40: 66:2c:6c:d6:32:b9:54:cb:15:2a:c1:a8:ec:d3:71: 03:a3:f0:6c:91:0c:a2:1c:c1:dc:2b:7c:15:4b:97: d1:9f:5c:0d:22:a9:33:68:3c:95:07:3a:d2:46:09: d6:e0:49:1d:56:01:6e:67:4b:b4:36:ce:a1:3f:dc: ff:84:43:d1:d1:96:54:6a:10:59:e8:5a:a2:56:70: 87:7d:d4:b9:a6:0e:ab:86:6c:3e:6f:e0:4b:0b:4f: bc:10:3c:74:36:d7:20:9d:1f:1b:f0:02:f4:4a:4b: 56:30:78:50:eb:4b:b1:3d:bf:00:1f:96:04:d5:95: d1:3a:49:df:61:2c:2e:41:dc:c6:37:e2:93:d0:8e: ed:6e:90:8d:c3:9c:bf:15:10:c8:47:2a:1e:99:26: 4b:4e:19:9c:f0:60:ba:0e:48:19:b6:b3:ff:67:2c: 24:2f:1d:d7:f5:49:cf:10:a3:5c:c7:19:44:9b:f7: d0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B1:30:AD:99:29:00:22:F1:C2:06:1F:2E:6D:E3:7F:F2:F7:47:3F X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.132.0/22 103.3.60.0/22 103.29.68.0/22 IPv6: 2400:8900::/29 Signature Algorithm: sha256WithRSAEncryption 03:f4:84:87:3e:e4:11:23:17:d7:c1:3c:88:47:7d:34:c0:e8: a5:47:03:16:04:23:e1:af:6f:8e:77:c2:17:98:15:44:ad:2b: df:7d:2e:be:3b:32:91:80:de:27:45:14:cb:06:3e:23:b6:e9: c5:e3:bb:49:c1:86:02:7f:a6:d0:01:e4:2a:6c:91:cf:9a:c9: b1:85:4e:ab:33:90:8f:ee:b7:65:61:34:2c:90:41:7f:61:ca: eb:47:c3:eb:06:9f:8c:9c:77:e6:a3:75:6e:11:f1:bc:21:b6: 97:95:d0:8e:f7:b6:04:ae:b1:75:16:e7:f1:03:6b:be:95:a9: af:63:ec:e8:0f:e2:1e:44:77:9a:08:cb:0c:21:72:9b:b2:77: 9f:2d:a5:f5:c9:64:a3:dc:97:35:b1:50:af:cc:83:98:35:59: 45:de:81:29:3c:d1:d1:5e:68:41:b7:ff:fc:5a:64:02:83:49: 3e:e0:f2:91:b8:42:90:26:bc:ba:55:09:c4:2b:b2:67:28:84: d3:e5:cd:25:cb:0d:e1:a2:03:03:e1:37:0b:83:c5:06:9f:4c: 08:83:28:25:23:2c:48:12:56:6d:9b:22:dd:93:fc:9a:55:2a: 94:12:17:f1:b4:de:5e:4c:91:c1:6d:02:07:7f:d0:ab:ae:1c: 34:18:50:4b -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICGjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzU5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmZTVkNy1jYTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAGhcqi/9f/Du6d3QdTV7rl7BpKcpAAlFL+FXsRWtH10mVk/M46qcLBqngwa Wz6IPaxsKaTIw5lNllVHJG0Qe0oCbr/RhuLV80BmLGzWMrlUyxUqwajs03EDo/Bs kQyiHMHcK3wVS5fRn1wNIqkzaDyVBzrSRgnW4EkdVgFuZ0u0Ns6hP9z/hEPR0ZZU ahBZ6FqiVnCHfdS5pg6rhmw+b+BLC0+8EDx0NtcgnR8b8AL0SktWMHhQ60uxPb8A H5YE1ZXROknfYSwuQdzGN+KT0I7tbpCNw5y/FRDIRyoemSZLThmc8GC6DkgZtrP/ ZywkLx3X9UnPEKNcxxlEm/fQxwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFECxMK2Z KQAi8cIGHy5t43/y90c/MB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQTQxQTAxRjI4 MTIzMTFFRDkzNjdGQzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItdoQDBAJnAzwDBAJnHUQwDQQCAAIwBwMFAyQAiQAwDQYJ KoZIhvcNAQELBQADggEBAAP0hIc+5BEjF9fBPIhHfTTA6KVHAxYEI+Gvb453wheY FUStK999Lr47MpGA3idFFMsGPiO26cXju0nBhgJ/ptAB5Cpskc+aybGFTqszkI/u t2VhNCyQQX9hyutHw+sGn4ycd+ajdW4R8bwhtpeV0I73tgSusXUW5/EDa76Vqa9j 7OgP4h5Ed5oIywwhcpuyd58tpfXJZKPclzWxUK/Mg5g1WUXegSk80dFeaEG3//xa ZAKDST7g8pG4QpAmvLpVCcQrsmcohNPlzSXLDeGiAwPhNwuDxQafTAiDKCUjLEgS Vm2bIt2T/JpVKpQSF/G03l5MkcFtAgd/0KuuHDQYUEs= -----END CERTIFICATE-----Generated at Mon Jan 12 07:58:04 2026 by rpki-client