This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/5C7731E64B7111EC8E9FCB48C4F9AE02.roa File: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (raw, json) Hash identifier: IrP7jrHdQVwCdKqpccuips54ATRwjRPu8lk/ibgnCpk= Subject key identifier: 58:6A:06:FC:1B:3E:BA:8D:C7:DE:8F:68:DF:56:C5:0D:91:82:A4:A9 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 04D9 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/5C7731E64B7111EC8E9FCB48C4F9AE02.roa Signing time: Sat 20 Dec 2025 23:20:33 +0000 ROA not before: Sat 20 Dec 2025 23:20:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140883 IP address blocks: 103.145.114.0/24 maxlen: 24 103.145.115.0/24 maxlen: 24 2405:d1c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 22:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1241 (0x4d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Dec 20 23:20:33 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69472f41-4024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:20:2d:77:d0:12:92:f7:20:b0:c1:aa:b7:1f: b3:97:85:c4:2b:22:ba:c4:97:c6:7b:3b:a3:a6:20: 21:3e:77:c4:60:69:19:0d:6b:ea:2e:3a:64:55:dd: d8:f0:2f:2f:c7:2c:7c:b9:30:e7:71:9c:36:f1:de: 22:6d:27:4e:e1:05:d2:7b:38:5c:15:bc:2d:70:7d: 0f:52:31:bf:74:75:70:c1:06:c5:b5:80:02:92:38: 20:1b:9f:de:ae:63:91:55:17:2d:67:b7:ec:74:f9: 72:05:ce:80:51:54:ab:37:57:52:59:2d:ad:d2:f8: 7d:e5:90:86:71:68:d5:ac:e2:43:5b:67:cd:48:52: a8:1f:43:b5:3e:68:11:21:57:8e:17:02:ef:65:3f: c3:68:03:8a:b9:5c:0d:e6:7a:55:55:dd:44:92:0e: 39:5a:cf:6f:dc:02:75:6c:1a:9a:c7:93:5a:db:e4: cb:c1:31:53:55:c8:f8:d2:f7:bd:17:dd:f2:5d:ef: 46:91:ce:ef:d5:0d:37:f5:9c:1c:24:5d:c3:8d:ff: 29:5d:ac:01:cd:9e:81:40:f1:06:b3:39:25:b6:3f: 52:b4:04:d3:2b:22:96:fc:03:81:97:87:47:03:2b: c2:33:a7:e8:5d:47:3f:1f:68:fe:ca:49:90:90:dc: 0f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:6A:06:FC:1B:3E:BA:8D:C7:DE:8F:68:DF:56:C5:0D:91:82:A4:A9 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/5C7731E64B7111EC8E9FCB48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.114.0/23 IPv6: 2405:d1c0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:2f:c4:df:a5:b8:39:3a:a0:6f:be:94:b7:e7:5d:54:98:3b: 6a:c6:24:e1:7d:59:ca:8d:d0:0c:62:de:b3:97:5d:04:58:37: 5c:8c:e0:ae:94:d1:5a:5a:6d:c6:0d:3b:68:a1:e8:98:04:aa: 8c:89:c0:33:7d:04:8a:e5:de:64:d6:5d:84:b4:c1:9d:78:79: c7:37:b9:aa:d9:61:19:95:51:7d:3e:9e:9d:36:4b:3e:1c:79: 69:fd:1c:c4:7a:7f:92:c7:16:38:06:85:bf:e9:42:3f:d9:76: e6:14:76:68:6b:f9:f5:e9:3c:34:7c:4d:3d:e1:ca:98:5b:3b: 7c:dc:9d:0b:7b:6c:13:f4:25:6d:44:ea:73:2f:d4:fb:dc:13: 78:d9:32:87:b7:ce:47:9c:03:b5:1f:d0:5b:57:6a:a9:ab:13: 2f:aa:b2:fc:0d:93:89:c5:fb:1d:1d:23:c0:f3:99:d7:99:c2: 06:1a:f0:20:a9:c5:aa:d1:f8:a5:9c:5e:eb:2d:73:22:5d:29: 20:ce:4b:fb:20:a7:1a:d7:1b:68:b3:58:d8:80:f5:e9:51:7b: 26:13:6c:59:be:86:9b:c9:95:95:4d:2a:d2:1f:44:1f:ca:b0: 2d:bd:cd:06:4c:00:40:93:c3:5d:a1:79:95:73:1e:e3:1c:bd: 86:88:9b:78 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUxMjIwMjMyMDMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ3MmY0MS00MDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8SAtd9ASkvcgsMGqtx+zl4XEKyK6xJfGezujpiAhPnfEYGkZDWvqLjpkVd3Y 8C8vxyx8uTDncZw28d4ibSdO4QXSezhcFbwtcH0PUjG/dHVwwQbFtYACkjggG5/e rmORVRctZ7fsdPlyBc6AUVSrN1dSWS2t0vh95ZCGcWjVrOJDW2fNSFKoH0O1PmgR IVeOFwLvZT/DaAOKuVwN5npVVd1Ekg45Ws9v3AJ1bBqax5Na2+TLwTFTVcj40ve9 F93yXe9Gkc7v1Q039ZwcJF3Djf8pXawBzZ6BQPEGszkltj9StATTKyKW/AOBl4dH AyvCM6foXUc/H2j+ykmQkNwPswIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFhqBvwb PrqNx96PaN9WxQ2RgqSpMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJCNDEvMTZDMEE3MTY0QjZFMTFFQzgxREQ5QjNBQzRGOUFFMDIvNUM3NzMxRTY0 QjcxMTFFQzhFOUZDQjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkXIwDQQCAAIwBwMFACQF0cAwDQYJKoZIhvcNAQELBQAD ggEBAFwvxN+luDk6oG++lLfnXVSYO2rGJOF9WcqN0Axi3rOXXQRYN1yM4K6U0Vpa bcYNO2ih6JgEqoyJwDN9BIrl3mTWXYS0wZ14ecc3uarZYRmVUX0+np02Sz4ceWn9 HMR6f5LHFjgGhb/pQj/ZduYUdmhr+fXpPDR8TT3hyphbO3zcnQt7bBP0JW1E6nMv 1PvcE3jZMoe3zkecA7Uf0FtXaqmrEy+qsvwNk4nF+x0dI8DzmdeZwgYa8CCpxarR +KWcXustcyJdKSDOS/sgpxrXG2izWNiA9elReyYTbFm+hpvJlZVNKtIfRB/KsC29 zQZMAECTw12heZVzHuMcvYaIm3g= -----END CERTIFICATE-----Generated at Fri Dec 26 02:04:27 2025 by rpki-client