This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/A65587CEDC8E11F084B8ABC03D6F56BC.roa File: A65587CEDC8E11F084B8ABC03D6F56BC.roa (raw, json) Hash identifier: JT6R5UcPylnieSp1rzG2Ha5fD/GJZdOtx+Vs3dIZPEY= Subject key identifier: 67:E0:30:AE:F8:05:C8:CE:D5:28:D0:B6:F6:B1:01:A6:CE:E5:F2:38 Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 1398 Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/A65587CEDC8E11F084B8ABC03D6F56BC.roa Signing time: Fri 19 Dec 2025 04:04:43 +0000 ROA not before: Fri 19 Dec 2025 04:04:43 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4632 IP address blocks: 203.50.251.0/24 maxlen: 24 203.50.252.0/24 maxlen: 24 203.50.253.0/24 maxlen: 24 203.50.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5016 (0x1398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Dec 19 04:04:43 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6944ceda-49a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7b:d3:fa:ee:1d:19:3a:db:70:f7:97:f9:5e: 13:5f:f2:21:b8:b8:76:72:a1:b8:13:97:51:05:ab: 77:72:55:f7:45:68:0d:ea:14:89:8a:f7:5d:8c:3c: 6c:bf:f4:15:3f:d5:b4:24:ff:42:13:35:a4:8b:37: 12:01:e4:bc:ee:9d:21:ac:99:32:0d:ef:53:4f:0a: aa:f7:04:ac:8f:f2:bc:d3:09:70:0d:20:fb:7a:34: 22:49:76:b1:71:ba:81:86:1e:14:00:d4:f5:b6:ee: 88:ce:4d:b3:6b:10:26:02:0f:07:58:6e:7c:b2:e2: fd:ee:31:13:01:59:c2:68:e8:26:11:7c:29:1f:ff: 2a:15:e4:b0:dd:37:49:d6:59:65:30:63:37:37:f8: fe:32:61:f3:f3:63:e5:c3:96:56:e3:88:62:cb:c1: 95:f7:ee:d3:a2:30:79:70:6c:e3:32:9a:39:a2:f6: 7e:c1:14:2c:20:c3:d1:d6:86:1d:95:69:db:ab:40: 42:80:80:73:2b:8a:a0:d9:62:f9:7a:a1:79:26:30: 5b:4c:62:79:1e:0b:c7:ab:36:85:fe:af:98:e4:b5: fb:8a:0a:ff:3e:ef:a6:c0:5d:a9:51:2d:21:d5:a6: 78:74:20:77:75:99:70:e4:cb:24:09:5b:97:d7:a1: 84:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E0:30:AE:F8:05:C8:CE:D5:28:D0:B6:F6:B1:01:A6:CE:E5:F2:38 X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/A65587CEDC8E11F084B8ABC03D6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.50.251.0-203.50.254.255 Signature Algorithm: sha256WithRSAEncryption 7d:a9:a9:30:c4:ef:20:45:4b:ab:55:a0:75:bf:27:a8:24:2f: f7:09:1c:38:d1:78:f6:41:66:0f:a2:e4:8f:b1:3a:ee:88:2c: 44:0a:8f:d9:f9:1d:0e:4b:c4:70:f8:7b:91:0d:97:4f:78:e4: f1:ec:2d:75:7d:3b:5e:c0:1c:ba:bc:ee:a6:41:93:a7:a3:3f: c1:40:d2:e6:0a:f5:71:e4:7a:a4:48:b8:6c:07:29:09:4b:3c: 59:a4:ea:9e:b6:91:66:1e:14:87:5e:d7:aa:02:ae:70:36:c6: e3:71:f6:95:7c:62:d9:18:0b:cf:80:dd:bd:55:d0:ad:b0:f7: 28:3e:1e:65:68:3e:7c:56:15:48:f2:5b:50:65:df:2b:e5:11: 96:4e:fa:93:29:7b:a2:c4:72:80:5b:d4:cd:4e:fe:a6:f4:9b: 5e:af:f3:9d:63:2d:d9:4d:01:19:93:a8:ad:78:f0:49:19:1b: 6a:f1:fa:72:9e:8e:fc:d0:dd:42:aa:be:e6:3c:0f:88:76:b9: 7f:d1:05:c6:29:1c:13:2c:78:52:eb:54:5f:56:f6:d0:17:83: a4:6a:c8:c5:d5:0a:c3:70:c8:d5:45:71:12:37:6a:01:d5:15: e2:c1:e5:67:45:bc:ec:c1:bb:b4:cb:f4:8d:b1:cc:43:42:0b: f4:f6:f1:30 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICE5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjUxMjE5MDQwNDQzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0Y2VkYS00OWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHvT+u4dGTrbcPeX+V4TX/IhuLh2cqG4E5dRBat3clX3RWgN6hSJivddjDxs v/QVP9W0JP9CEzWkizcSAeS87p0hrJkyDe9TTwqq9wSsj/K80wlwDSD7ejQiSXax cbqBhh4UANT1tu6Izk2zaxAmAg8HWG58suL97jETAVnCaOgmEXwpH/8qFeSw3TdJ 1lllMGM3N/j+MmHz82Plw5ZW44hiy8GV9+7TojB5cGzjMpo5ovZ+wRQsIMPR1oYd lWnbq0BCgIBzK4qg2WL5eqF5JjBbTGJ5HgvHqzaF/q+Y5LX7igr/Pu+mwF2pUS0h 1aZ4dCB3dZlw5MskCVuX16GE3wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFGfgMK74 BcjO1SjQtvaxAabO5fI4MB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMTY3MzBEMjBDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvQTY1NTg3Q0VE QzhFMTFGMDg0QjhBQkMwM0Q2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMsy+wMEAMsy/jANBgkqhkiG9w0BAQsFAAOCAQEAfamp MMTvIEVLq1Wgdb8nqCQv9wkcONF49kFmD6Lkj7E67ogsRAqP2fkdDkvEcPh7kQ2X T3jk8ewtdX07XsAcurzupkGTp6M/wUDS5gr1ceR6pEi4bAcpCUs8WaTqnraRZh4U h17XqgKucDbG43H2lXxi2RgLz4DdvVXQrbD3KD4eZWg+fFYVSPJbUGXfK+URlk76 kyl7osRygFvUzU7+pvSbXq/znWMt2U0BGZOorXjwSRkbavH6cp6O/NDdQqq+5jwP iHa5f9EFxikcEyx4UutUX1b20BeDpGrIxdUKw3DI1UVxEjdqAdUV4sHlZ0W87MG7 tMv0jbHMQ0IL9PbxMA== -----END CERTIFICATE-----Generated at Sat Dec 20 05:01:17 2025 by rpki-client