This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/375E8232C13411F0A297231CC4F9AE02.roa File: 375E8232C13411F0A297231CC4F9AE02.roa (raw, json) Hash identifier: AwII9RDgUNte9KKbs2S59qK6HMN8L+pjlEIiZqATsVs= Subject key identifier: 1E:F6:D2:F2:96:D0:92:E6:B5:2F:6A:A0:8A:11:CC:0E:54:32:3A:B9 Certificate issuer: /CN=A9161857/serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Certificate serial: 83 Authority key identifier: DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/375E8232C13411F0A297231CC4F9AE02.roa Signing time: Thu 08 Jan 2026 11:45:15 +0000 ROA not before: Thu 08 Jan 2026 11:45:15 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153913 IP address blocks: 124.198.240.0/24 maxlen: 24 124.198.241.0/24 maxlen: 24 124.198.242.0/24 maxlen: 24 124.198.243.0/24 maxlen: 24 203.169.6.0/24 maxlen: 24 203.169.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 11:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161857, serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Validity Not Before: Jan 8 11:45:15 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=695f98cb-5b13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:44:fc:97:35:9e:53:1e:56:20:f2:c7:09:99: 79:24:e1:56:87:24:a5:13:a8:f6:e6:61:36:28:37: 63:c6:4e:1e:df:86:b5:53:a6:1a:d5:c3:dd:bd:44: 51:f3:68:d4:d2:23:db:90:07:9b:30:f3:f6:a0:18: 81:5a:c3:59:8f:85:8a:82:09:a8:ac:3a:09:e7:05: 29:bb:c2:fd:7b:28:25:db:79:a4:34:30:58:c9:65: c1:5f:0e:43:af:fc:84:74:d2:d2:11:76:15:a5:b8: 50:72:a5:fb:ab:de:78:6f:91:c0:6c:81:9e:cc:9c: f3:67:cb:b7:b4:d7:81:81:36:1a:c1:03:63:9b:1f: 65:51:ee:30:b4:3b:af:90:5f:3f:63:dc:9e:c2:53: 59:f3:4f:09:dd:28:21:b6:a9:ca:2a:16:4d:91:4c: 86:40:38:bd:69:b9:6d:ba:ed:53:cd:03:70:88:47: ce:f4:a6:a9:45:b1:cb:e2:c7:d5:26:6e:5a:e2:ca: e0:39:b5:28:37:5d:aa:07:9b:28:a2:fe:df:2e:b2: a3:b8:40:6e:48:ee:f9:27:8b:ce:a2:f6:65:2f:06: 9a:e0:d1:ea:a4:7e:59:90:aa:c5:e9:d0:28:f9:af: de:bc:86:24:42:00:02:16:c1:5a:36:1e:0f:c8:a7: 25:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F6:D2:F2:96:D0:92:E6:B5:2F:6A:A0:8A:11:CC:0E:54:32:3A:B9 X509v3 Authority Key Identifier: keyid:DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/375E8232C13411F0A297231CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.198.240.0/22 203.169.6.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:11:3b:2d:34:4e:f3:c1:7a:fa:89:b3:c8:13:49:c1:56:47: 95:5f:80:53:a7:bf:57:4f:cf:49:22:58:62:2e:29:6b:24:14: 73:6e:cd:4c:2b:44:3e:c7:3d:ec:a9:83:41:27:64:ea:29:12: ec:fa:10:ba:72:df:66:16:2e:57:c3:06:36:93:88:55:04:81: 53:66:c5:6a:13:32:20:e3:e2:ad:83:6d:ef:a3:db:b9:ae:38: 7e:56:a9:f1:47:db:df:d5:71:e4:c7:bc:c2:7b:a6:d0:ca:d1: 53:71:bb:f8:55:82:20:24:02:db:52:ef:01:70:b5:b0:c3:47: 5f:6a:7e:29:d5:e9:2c:cf:fe:70:20:0d:6f:3c:87:2c:e6:7b: 10:8c:56:36:97:4c:d7:6c:a7:df:fe:5d:ba:5e:5a:31:aa:b3: 10:70:46:59:eb:91:2a:90:5b:93:31:a5:37:b9:d0:40:13:1c: 11:54:eb:7f:b7:3b:c5:5f:1c:76:cf:aa:d4:7b:08:b0:aa:37: d1:20:5a:99:35:f5:9c:56:86:78:12:12:42:dc:0d:28:2e:8e: 3c:b9:59:c7:51:a0:f2:fd:50:db:82:e2:97:7e:1d:69:be:03: 63:47:2e:98:d7:ff:f9:10:01:75:0e:1e:95:de:a3:67:03:ed: 46:cd:80:9d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjE4NTcxMTAvBgNVBAUTKERFQTYzRTMxMDFCRjE1OTkwMjBBNDA4M0ZBMUMzRDk2 NEIyMTMwQzAwHhcNMjYwMTA4MTE0NTE1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmOThjYi01YjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kT8lzWeUx5WIPLHCZl5JOFWhySlE6j25mE2KDdjxk4e34a1U6Ya1cPdvURR 82jU0iPbkAebMPP2oBiBWsNZj4WKggmorDoJ5wUpu8L9eygl23mkNDBYyWXBXw5D r/yEdNLSEXYVpbhQcqX7q954b5HAbIGezJzzZ8u3tNeBgTYawQNjmx9lUe4wtDuv kF8/Y9yewlNZ808J3SghtqnKKhZNkUyGQDi9abltuu1TzQNwiEfO9KapRbHL4sfV Jm5a4srgObUoN12qB5soov7fLrKjuEBuSO75J4vOovZlLwaa4NHqpH5ZkKrF6dAo +a/evIYkQgACFsFaNh4PyKclJwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB720vKW 0JLmtS9qoIoRzA5UMjq5MB8GA1UdIwQYMBaAFN6mPjEBvxWZAgpAg/ocPZZLITDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTg1Ny9DQjE0QkYyNjND OTgxMUYwQUYxMjRCMzhDNEY5QUUwMi8zcVktTVFHX0Zaa0NDa0NELWh3OWxrc2hN TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxWS1NUUdfRlprQ0NrQ0QtaHc5bGtzaE1NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4NTcvQ0IxNEJGMjYzQzk4MTFGMEFGMTI0QjM4QzRGOUFFMDIvMzc1RTgyMzJD MTM0MTFGMEEyOTcyMzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJ8xvADBAHLqQYwDQYJKoZIhvcNAQELBQADggEBAI0ROy00 TvPBevqJs8gTScFWR5VfgFOnv1dPz0kiWGIuKWskFHNuzUwrRD7HPeypg0EnZOop Euz6ELpy32YWLlfDBjaTiFUEgVNmxWoTMiDj4q2Dbe+j27muOH5WqfFH29/VceTH vMJ7ptDK0VNxu/hVgiAkAttS7wFwtbDDR19qfinV6SzP/nAgDW88hyzmexCMVjaX TNdsp9/+XbpeWjGqsxBwRlnrkSqQW5MxpTe50EATHBFU63+3O8VfHHbPqtR7CLCq N9EgWpk19ZxWhngSEkLcDSgujjy5WcdRoPL9UNuC4pd+HWm+A2NHLpjX//kQAXUO HpXeo2cD7UbNgJ0= -----END CERTIFICATE-----Generated at Thu Jan 8 13:45:28 2026 by rpki-client