This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa File: B3B5B50E117711EEA0E5E040C4F9AE02.roa (raw, json) Hash identifier: I5t/9d1FpDA1nSsUY9DqmVb9YbxmBSs4f9ZYU3gw97M= Subject key identifier: 4B:D9:FC:CD:F6:33:27:B2:FF:BC:EF:91:D6:EC:DE:E1:55:DD:AB:92 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 3579 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa Signing time: Wed 17 Dec 2025 06:27:45 +0000 ROA not before: Wed 17 Dec 2025 06:27:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 10030 IP address blocks: 103.3.20.0/22 maxlen: 22 183.171.0.0/16 maxlen: 16 183.171.7.0/24 maxlen: 24 183.171.16.0/24 maxlen: 24 183.171.17.0/24 maxlen: 24 183.171.18.0/24 maxlen: 24 183.171.19.0/24 maxlen: 24 183.171.20.0/24 maxlen: 24 183.171.21.0/24 maxlen: 24 183.171.22.0/24 maxlen: 24 183.171.23.0/24 maxlen: 24 183.171.24.0/24 maxlen: 24 183.171.25.0/24 maxlen: 24 183.171.26.0/24 maxlen: 24 183.171.27.0/24 maxlen: 24 183.171.28.0/24 maxlen: 24 183.171.29.0/24 maxlen: 24 183.171.30.0/24 maxlen: 24 183.171.31.0/24 maxlen: 24 183.171.40.0/24 maxlen: 24 183.171.41.0/24 maxlen: 24 183.171.42.0/24 maxlen: 24 183.171.49.0/24 maxlen: 24 183.171.50.0/24 maxlen: 24 183.171.51.0/24 maxlen: 24 183.171.52.0/24 maxlen: 24 183.171.53.0/24 maxlen: 24 183.171.54.0/24 maxlen: 24 183.171.55.0/24 maxlen: 24 183.171.56.0/24 maxlen: 24 183.171.57.0/24 maxlen: 24 183.171.64.0/24 maxlen: 24 183.171.65.0/24 maxlen: 24 183.171.66.0/24 maxlen: 24 183.171.67.0/24 maxlen: 24 183.171.68.0/24 maxlen: 24 183.171.69.0/24 maxlen: 24 183.171.70.0/24 maxlen: 24 183.171.71.0/24 maxlen: 24 183.171.72.0/24 maxlen: 24 183.171.73.0/24 maxlen: 24 183.171.74.0/24 maxlen: 24 183.171.75.0/24 maxlen: 24 183.171.76.0/24 maxlen: 24 183.171.77.0/24 maxlen: 24 183.171.78.0/24 maxlen: 24 183.171.79.0/24 maxlen: 24 183.171.80.0/24 maxlen: 24 183.171.81.0/24 maxlen: 24 183.171.82.0/24 maxlen: 24 183.171.83.0/24 maxlen: 24 183.171.84.0/24 maxlen: 24 183.171.85.0/24 maxlen: 24 183.171.86.0/24 maxlen: 24 183.171.87.0/24 maxlen: 24 183.171.88.0/24 maxlen: 24 183.171.89.0/24 maxlen: 24 183.171.90.0/24 maxlen: 24 183.171.91.0/24 maxlen: 24 183.171.92.0/24 maxlen: 24 183.171.93.0/24 maxlen: 24 183.171.94.0/24 maxlen: 24 183.171.95.0/24 maxlen: 24 183.171.96.0/24 maxlen: 24 183.171.97.0/24 maxlen: 24 183.171.98.0/24 maxlen: 24 183.171.99.0/24 maxlen: 24 183.171.100.0/24 maxlen: 24 183.171.101.0/24 maxlen: 24 183.171.102.0/24 maxlen: 24 183.171.103.0/24 maxlen: 24 183.171.104.0/24 maxlen: 24 183.171.105.0/24 maxlen: 24 183.171.106.0/24 maxlen: 24 183.171.107.0/24 maxlen: 24 183.171.108.0/24 maxlen: 24 183.171.109.0/24 maxlen: 24 183.171.110.0/24 maxlen: 24 183.171.111.0/24 maxlen: 24 183.171.112.0/24 maxlen: 24 183.171.113.0/24 maxlen: 24 183.171.114.0/24 maxlen: 24 183.171.115.0/24 maxlen: 24 183.171.116.0/24 maxlen: 24 183.171.117.0/24 maxlen: 24 183.171.118.0/24 maxlen: 24 183.171.119.0/24 maxlen: 24 183.171.120.0/24 maxlen: 24 183.171.121.0/24 maxlen: 24 183.171.122.0/24 maxlen: 24 183.171.123.0/24 maxlen: 24 183.171.124.0/24 maxlen: 24 183.171.125.0/24 maxlen: 24 183.171.126.0/24 maxlen: 24 183.171.127.0/24 maxlen: 24 183.171.128.0/24 maxlen: 24 183.171.129.0/24 maxlen: 24 183.171.130.0/24 maxlen: 24 183.171.131.0/24 maxlen: 24 183.171.132.0/24 maxlen: 24 183.171.133.0/24 maxlen: 24 183.171.134.0/24 maxlen: 24 183.171.135.0/24 maxlen: 24 183.171.136.0/24 maxlen: 24 183.171.137.0/24 maxlen: 24 183.171.138.0/24 maxlen: 24 183.171.139.0/24 maxlen: 24 183.171.140.0/24 maxlen: 24 183.171.141.0/24 maxlen: 24 183.171.142.0/24 maxlen: 24 183.171.143.0/24 maxlen: 24 183.171.156.0/24 maxlen: 24 183.171.158.0/24 maxlen: 24 183.171.160.0/24 maxlen: 24 183.171.161.0/24 maxlen: 24 183.171.162.0/24 maxlen: 24 183.171.163.0/24 maxlen: 24 183.171.164.0/24 maxlen: 24 183.171.165.0/24 maxlen: 24 183.171.166.0/24 maxlen: 24 183.171.167.0/24 maxlen: 24 183.171.168.0/24 maxlen: 24 183.171.169.0/24 maxlen: 24 183.171.170.0/24 maxlen: 24 183.171.171.0/24 maxlen: 24 183.171.172.0/24 maxlen: 24 183.171.173.0/24 maxlen: 24 183.171.174.0/24 maxlen: 24 183.171.175.0/24 maxlen: 24 183.171.176.0/24 maxlen: 24 183.171.177.0/24 maxlen: 24 183.171.183.0/24 maxlen: 24 183.171.184.0/24 maxlen: 24 183.171.186.0/24 maxlen: 24 183.171.187.0/24 maxlen: 24 183.171.188.0/23 maxlen: 23 183.171.190.0/24 maxlen: 24 183.171.191.0/24 maxlen: 24 183.171.192.0/24 maxlen: 24 183.171.193.0/24 maxlen: 24 183.171.194.0/24 maxlen: 24 183.171.195.0/24 maxlen: 24 183.171.196.0/24 maxlen: 24 183.171.197.0/24 maxlen: 24 183.171.198.0/24 maxlen: 24 183.171.199.0/24 maxlen: 24 183.171.200.0/24 maxlen: 24 183.171.201.0/24 maxlen: 24 183.171.202.0/24 maxlen: 24 183.171.204.0/24 maxlen: 24 183.171.205.0/24 maxlen: 24 183.171.207.0/24 maxlen: 24 183.171.208.0/21 maxlen: 21 183.171.223.0/24 maxlen: 24 183.171.224.0/24 maxlen: 24 183.171.225.0/24 maxlen: 24 183.171.226.0/24 maxlen: 24 183.171.227.0/24 maxlen: 24 183.171.228.0/24 maxlen: 24 183.171.229.0/24 maxlen: 24 183.171.232.0/21 maxlen: 21 183.171.233.0/24 maxlen: 24 183.171.234.0/24 maxlen: 24 183.171.235.0/24 maxlen: 24 183.171.236.0/24 maxlen: 24 183.171.240.0/20 maxlen: 20 183.171.240.0/24 maxlen: 24 183.171.241.0/24 maxlen: 24 183.171.242.0/24 maxlen: 24 183.171.243.0/24 maxlen: 24 183.171.244.0/23 maxlen: 23 183.171.248.0/24 maxlen: 24 183.171.249.0/24 maxlen: 24 183.171.250.0/24 maxlen: 24 183.171.251.0/24 maxlen: 24 183.171.252.0/24 maxlen: 24 183.171.253.0/24 maxlen: 24 183.171.255.0/24 maxlen: 24 203.82.64.0/19 maxlen: 19 203.82.66.0/24 maxlen: 24 203.82.67.0/24 maxlen: 24 203.82.70.0/23 maxlen: 23 203.82.70.0/24 maxlen: 24 203.82.71.0/24 maxlen: 24 203.82.75.0/24 maxlen: 24 203.82.76.0/24 maxlen: 24 203.82.77.0/24 maxlen: 24 203.82.82.0/24 maxlen: 24 203.82.86.0/24 maxlen: 24 203.82.91.0/24 maxlen: 24 203.82.93.0/24 maxlen: 24 203.82.94.0/24 maxlen: 24 203.82.95.0/24 maxlen: 24 2404:160::/32 maxlen: 32 2404:160:8000::/44 maxlen: 44 2404:160:8010::/44 maxlen: 44 2404:160:8020::/44 maxlen: 44 2404:160:8030::/44 maxlen: 44 2404:160:8040::/42 maxlen: 42 2404:160:8100::/42 maxlen: 42 2404:160:8140::/42 maxlen: 42 2404:160:a000::/42 maxlen: 42 2404:160:a400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13689 (0x3579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Dec 17 06:27:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69424d61-0c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:95:9e:62:72:4a:d1:3a:26:b4:22:d2:6c:2b: 5b:9c:4d:f0:13:f2:b0:f2:32:b3:7f:25:c8:59:13: a6:aa:e8:0b:67:f5:51:31:df:69:6b:6e:d6:53:f3: 27:1a:65:11:60:21:c2:7a:45:3c:36:c4:e5:b7:ba: 94:6f:94:2e:d4:98:7e:11:c3:54:ae:db:8e:69:37: 70:67:53:ff:95:00:a1:17:58:c3:07:c4:83:16:3b: af:5e:c3:f7:65:ab:0e:d8:28:d6:42:6e:da:33:76: 6b:b5:83:73:fa:5f:e4:25:69:07:63:02:1f:fb:f5: ff:d2:19:cf:39:ec:16:64:a7:bc:2d:35:ae:8a:a8: 67:72:07:1c:40:5a:cc:0b:e1:1f:f5:fe:9b:4d:83: 30:2b:5f:83:c0:fa:4b:b9:68:95:ff:97:ca:d8:03: e7:ec:51:da:34:ed:93:bf:dd:1c:94:4e:86:dd:dc: 0a:bd:3d:1c:fe:da:21:ea:ed:f4:35:75:8f:32:2a: 0e:92:46:06:b6:88:a7:c2:70:80:28:14:1a:af:c0: 7c:e9:78:cb:31:1b:4d:15:af:90:24:a6:cc:ae:e4: 49:8e:58:22:84:4d:d8:c8:2b:41:65:e1:1b:3b:b4: 47:9b:17:4d:71:d8:b6:7b:28:d4:21:59:8b:95:59: 84:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D9:FC:CD:F6:33:27:B2:FF:BC:EF:91:D6:EC:DE:E1:55:DD:AB:92 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.3.20.0/22 183.171.0.0/16 203.82.64.0/19 IPv6: 2404:160::/32 Signature Algorithm: sha256WithRSAEncryption 22:23:f7:a6:1b:4d:98:33:cb:ef:6e:03:94:4e:76:7b:50:d9: 73:55:3c:49:a4:b6:c4:8a:ea:51:77:1d:4c:82:2a:c5:14:6c: b7:cd:11:e6:6c:e4:92:ad:59:38:85:7f:10:b7:16:ab:fe:40: 11:37:fe:5f:17:cd:c4:ed:b2:a9:57:e9:cd:d1:fc:d8:ee:af: a8:86:19:5c:ff:39:99:6c:87:ee:2d:aa:b8:68:a1:cb:c7:43: 69:bc:54:5f:96:8e:b4:3e:04:57:cf:91:08:9c:9e:54:9e:5b: 8e:56:e0:fa:ab:11:46:1f:9f:c2:29:e7:17:7a:66:32:10:f4: 18:d8:30:0c:0c:6c:85:7b:30:db:60:6c:68:40:01:03:1a:62: 1d:d0:42:f4:1c:0f:37:da:df:93:94:62:f5:d6:52:23:3d:3b: c8:57:f2:33:bb:f3:39:5b:3f:c6:78:1d:fd:e4:03:63:43:1f: b0:28:55:9c:a8:ca:6f:7f:b1:94:b2:f7:68:34:1b:27:c2:3e: aa:ac:9a:51:d6:55:47:bb:25:8c:b5:a3:9b:60:1d:4d:94:f1: c9:b3:1d:3d:fc:68:b0:41:6d:36:68:d1:33:5c:04:a2:f0:0b: 25:6f:fc:fa:db:72:44:51:83:b8:80:41:ca:ec:65:ff:be:4d: 72:d5:d7:37 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUxMjE3MDYyNzQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyNGQ2MS0wYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pWeYnJK0TomtCLSbCtbnE3wE/Kw8jKzfyXIWROmqugLZ/VRMd9pa27WU/Mn GmURYCHCekU8NsTlt7qUb5Qu1Jh+EcNUrtuOaTdwZ1P/lQChF1jDB8SDFjuvXsP3 ZasO2CjWQm7aM3ZrtYNz+l/kJWkHYwIf+/X/0hnPOewWZKe8LTWuiqhncgccQFrM C+Ef9f6bTYMwK1+DwPpLuWiV/5fK2APn7FHaNO2Tv90clE6G3dwKvT0c/toh6u30 NXWPMioOkkYGtoinwnCAKBQar8B86XjLMRtNFa+QJKbMruRJjlgihE3YyCtBZeEb O7RHmxdNcdi2eyjUIVmLlVmEyQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFEvZ/M32 Myey/7zvkdbs3uFV3auSMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0QzQTEvNjA3QUU5NTQxRDg2MTFFMjk5QkE5NEREMDhCMDJDRDIvQjNCNUI1MEUx MTc3MTFFRUEwRTVFMDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMBcEAgABMBEDBAJnAxQDAwC3qwMEBctSQDANBAIAAjAHAwUAJAQBYDANBgkq hkiG9w0BAQsFAAOCAQEAIiP3phtNmDPL724DlE52e1DZc1U8SaS2xIrqUXcdTIIq xRRst80R5mzkkq1ZOIV/ELcWq/5AETf+XxfNxO2yqVfpzdH82O6vqIYZXP85mWyH 7i2quGihy8dDabxUX5aOtD4EV8+RCJyeVJ5bjlbg+qsRRh+fwinnF3pmMhD0GNgw DAxshXsw22BsaEABAxpiHdBC9BwPN9rfk5Ri9dZSIz07yFfyM7vzOVs/xngd/eQD Y0MfsChVnKjKb3+xlLL3aDQbJ8I+qqyaUdZVR7sljLWjm2AdTZTxybMdPfxosEFt NmjRM1wEovALJW/8+ttyRFGDuIBByuxl/75NctXXNw== -----END CERTIFICATE-----Generated at Fri Dec 19 23:49:50 2025 by rpki-client