This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa File: 46C5452E0DD711EF85707821C4F9AE02.roa (raw, json) Hash identifier: vHCE8Xl5BDP1uHkO7u1AQeNIYeGBlOPuRbaiEEaJ7/8= Subject key identifier: 36:AA:CC:01:CD:52:8A:3A:9E:25:00:71:85:A2:DC:3F:EE:31:82:D2 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0C63 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa Signing time: Mon 29 Dec 2025 02:32:50 +0000 ROA not before: Mon 29 Dec 2025 02:32:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 58504 IP address blocks: 103.28.84.0/22 maxlen: 22 103.28.84.0/24 maxlen: 24 103.28.85.0/24 maxlen: 24 103.28.86.0/24 maxlen: 24 103.28.87.0/24 maxlen: 24 150.107.204.0/22 maxlen: 22 150.107.204.0/24 maxlen: 24 150.107.205.0/24 maxlen: 24 150.107.206.0/24 maxlen: 24 150.107.207.0/24 maxlen: 24 2406:b700::/32 maxlen: 32 2406:b700::/48 maxlen: 48 2406:b700:2::/48 maxlen: 48 2406:b700:3::/48 maxlen: 48 2406:b700:4::/48 maxlen: 48 2406:b700:5::/48 maxlen: 48 2406:b700:6::/48 maxlen: 48 2406:b700:7::/48 maxlen: 48 2406:b700:8::/48 maxlen: 48 2406:b700:a::/48 maxlen: 48 2406:b700:b::/48 maxlen: 48 2406:b700:c::/48 maxlen: 48 2406:b700:d::/48 maxlen: 48 2406:b700:e::/48 maxlen: 48 2406:b700:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 18:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Dec 29 02:32:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6951e851-011c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c1:44:42:c7:8f:88:2f:c5:29:e1:8c:2d:8c: 4b:03:c0:2f:3b:cf:e6:7e:df:c7:91:6d:37:2b:9b: eb:78:a1:fb:9a:ce:f3:4e:11:81:c7:c3:19:f0:f3: 02:9f:43:aa:1e:7f:a7:3e:38:78:0c:31:17:26:9e: 1d:e8:f0:bf:08:b7:6f:8e:ff:58:8e:32:5b:90:3e: 7c:bb:e3:18:74:e8:49:63:7a:9c:0c:cf:89:46:ef: 45:72:7b:a4:01:8c:ee:51:6f:a9:84:16:3e:81:07: de:80:db:73:5a:c2:e7:e2:16:2b:16:a6:0a:61:dc: 79:80:aa:a2:5f:64:6a:ea:63:5f:43:c8:36:29:68: 43:f0:de:92:03:89:83:56:cf:dd:21:aa:84:f7:66: 1d:cf:ea:a3:c9:41:88:fe:20:60:ef:03:2b:23:2f: 88:b2:81:bb:7a:1f:a7:c3:f4:98:30:02:3e:e6:51: 04:85:65:9a:62:c6:45:f2:1d:e9:a2:f4:1a:8a:95: 30:f3:99:d5:51:ce:03:fa:fd:9a:9e:ef:2a:1f:46: 91:87:40:46:a9:6f:50:31:2a:f9:31:22:71:09:b0: b1:9f:87:29:05:b5:67:b6:87:82:98:84:45:88:d8: 66:6e:a6:c2:d9:7b:df:b8:3d:d3:dc:f6:2b:c2:24: 4c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:AA:CC:01:CD:52:8A:3A:9E:25:00:71:85:A2:DC:3F:EE:31:82:D2 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/46C5452E0DD711EF85707821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.84.0/22 150.107.204.0/22 IPv6: 2406:b700::/32 Signature Algorithm: sha256WithRSAEncryption ab:bc:49:61:b3:f1:39:04:6d:77:a9:e7:87:27:87:62:f1:51: 5e:ac:9e:8f:6f:1a:49:fd:8a:ba:85:6e:af:ec:b0:ef:7c:b7: 4e:c8:4f:99:52:3b:99:0c:e0:a3:b7:22:cc:35:9e:ef:f5:cd: a8:26:48:06:c0:a5:13:44:a2:ac:dd:01:44:37:dd:0e:90:e1: 2e:34:fd:45:b3:30:16:1f:1a:d2:35:a3:3b:87:b1:9a:20:68: df:1e:53:79:85:69:49:d8:ba:de:2b:3f:8b:d6:69:4e:db:59: 81:ac:e0:10:c3:3c:fd:0b:38:be:f4:60:16:c8:8e:91:bb:cf: f0:2d:2c:0c:80:c1:00:bf:ab:f9:76:a3:fa:15:ae:4b:7a:fb: 63:c0:4b:41:28:13:5b:33:f1:58:ef:cb:1f:f4:f5:01:e6:6a: c9:a0:bd:34:a6:7c:61:39:cc:42:d9:ff:79:2a:ef:34:29:2c: 9e:bf:a3:c6:e3:90:e4:9c:de:8f:51:57:a7:de:6e:0d:77:9e: f1:91:81:2c:08:69:f1:7c:c7:94:bc:00:92:0c:f2:1d:03:8f: dd:6b:c8:23:42:2b:88:c9:6b:90:c4:75:4c:3e:28:16:8f:e5: a9:16:6b:83:93:01:20:e8:6a:b4:28:5e:fe:57:dc:e3:f1:bb: 34:15:b9:12 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUxMjI5MDIzMjUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUxZTg1MS0wMTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cFEQsePiC/FKeGMLYxLA8AvO8/mft/HkW03K5vreKH7ms7zThGBx8MZ8PMC n0OqHn+nPjh4DDEXJp4d6PC/CLdvjv9YjjJbkD58u+MYdOhJY3qcDM+JRu9Fcnuk AYzuUW+phBY+gQfegNtzWsLn4hYrFqYKYdx5gKqiX2Rq6mNfQ8g2KWhD8N6SA4mD Vs/dIaqE92Ydz+qjyUGI/iBg7wMrIy+IsoG7eh+nw/SYMAI+5lEEhWWaYsZF8h3p ovQaipUw85nVUc4D+v2anu8qH0aRh0BGqW9QMSr5MSJxCbCxn4cpBbVntoeCmIRF iNhmbqbC2XvfuD3T3PYrwiRMBQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDaqzAHN Uoo6niUAcYWi3D/uMYLSMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwMUUvNzg1RDdFRDIxQzA4MTFFQTg1NzZCMTUxQzRGOUFFMDIvNDZDNTQ1MkUw REQ3MTFFRjg1NzA3ODIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnHFQDBAKWa8wwDQQCAAIwBwMFACQGtwAwDQYJKoZIhvcN AQELBQADggEBAKu8SWGz8TkEbXep54cnh2LxUV6sno9vGkn9irqFbq/ssO98t07I T5lSO5kM4KO3Isw1nu/1zagmSAbApRNEoqzdAUQ33Q6Q4S40/UWzMBYfGtI1ozuH sZogaN8eU3mFaUnYut4rP4vWaU7bWYGs4BDDPP0LOL70YBbIjpG7z/AtLAyAwQC/ q/l2o/oVrkt6+2PAS0EoE1sz8Vjvyx/09QHmasmgvTSmfGE5zELZ/3kq7zQpLJ6/ o8bjkOSc3o9RV6febg13nvGRgSwIafF8x5S8AJIM8h0Dj91ryCNCK4jJa5DEdUw+ KBaP5akWa4OTASDoarQoXv5X3OPxuzQVuRI= -----END CERTIFICATE-----Generated at Mon Jan 12 07:38:22 2026 by rpki-client