This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/952F87FAEBDA11F082D0705C6C6F56BC.roa File: 952F87FAEBDA11F082D0705C6C6F56BC.roa (raw, json) Hash identifier: io0ecjEN2RzxSv5iuJw4fnOPjwrnvut5d2KzE1GcZUc= Subject key identifier: 99:45:81:15:6A:14:04:04:52:F7:3E:1D:24:06:C8:26:D7:D8:30:6E Certificate issuer: /CN=A917E951/serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Certificate serial: 0206 Authority key identifier: 1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/952F87FAEBDA11F082D0705C6C6F56BC.roa Signing time: Wed 07 Jan 2026 15:07:29 +0000 ROA not before: Wed 07 Jan 2026 15:07:29 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153038 IP address blocks: 103.131.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E951, serialNumber=1A0F786F11B8E17D45DE1EDCE61E1600DD4930A4 Validity Not Before: Jan 7 15:07:29 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=695e76b0-1028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:53:16:ee:71:93:35:07:76:e5:6d:31:35:3f: 96:b5:5d:38:e6:a7:0d:f6:01:61:99:a3:0f:c2:d0: c2:cb:9b:34:22:a4:1b:89:76:a4:b3:e9:25:c1:52: 45:a4:33:19:71:60:85:53:6b:8f:01:c4:56:56:92: 6e:06:37:ca:34:c3:0a:5c:90:c7:64:82:09:c8:9a: 97:50:d4:c2:7c:8b:3f:8a:9d:a7:fd:2d:ec:0c:4d: 82:bd:09:28:49:7a:84:27:8d:a2:90:21:74:4a:a3: f7:75:62:3e:5c:24:ab:4f:94:13:57:ef:e3:87:7d: 32:95:fd:2a:cc:5c:47:81:58:ea:d6:d6:36:a9:3d: 17:b4:a8:55:6a:03:bd:33:0a:f4:33:7f:c8:98:fc: 6e:93:dc:50:21:d9:61:87:81:da:2b:5f:35:c9:97: 38:fe:66:e1:ef:bb:0e:ec:ca:33:9b:c4:f8:85:51: c5:66:de:08:29:a0:d5:ac:db:54:1c:3f:dc:7f:e7: 95:63:40:67:78:1f:09:38:9a:e2:c6:fe:54:f8:8e: 34:3a:20:79:3b:ad:70:8e:df:23:e7:12:10:a8:ed: 6b:d9:5c:63:5a:c0:06:92:0f:19:93:09:ac:99:e4: c5:28:83:bc:67:76:f2:1c:3b:a0:58:f9:4c:15:24: ff:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:45:81:15:6A:14:04:04:52:F7:3E:1D:24:06:C8:26:D7:D8:30:6E X509v3 Authority Key Identifier: keyid:1A:0F:78:6F:11:B8:E1:7D:45:DE:1E:DC:E6:1E:16:00:DD:49:30:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/Gg94bxG44X1F3h7c5h4WAN1JMKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg94bxG44X1F3h7c5h4WAN1JMKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E951/6F49B992DB7111ED9503D85DC4F9AE02/952F87FAEBDA11F082D0705C6C6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.102.0/24 Signature Algorithm: sha256WithRSAEncryption a0:49:9a:c1:06:d9:62:a0:44:fd:f4:f1:03:fe:b9:d0:db:b6: 8c:86:10:28:1e:95:47:b3:55:27:22:5d:f4:62:8d:b1:c5:f9: b7:6a:26:4e:b7:35:bb:9b:05:fd:b0:57:30:c6:6b:81:93:54: 97:1c:48:7f:d3:2e:a5:45:da:7f:6c:47:73:7e:cb:dd:05:76: d1:c8:58:70:24:34:dd:9a:d3:bb:97:46:f8:98:55:56:cf:48: 2e:72:59:db:2c:da:f4:64:9a:84:4c:eb:d2:0d:d7:be:5e:8e: 87:c8:46:3b:af:e7:d6:34:15:a0:db:55:b8:d5:10:e7:f0:b0: af:ea:54:8d:dd:26:e4:75:6d:d8:b2:28:05:d9:97:63:80:37: 47:1c:5d:6e:54:0e:ce:15:f9:1b:48:3d:48:89:16:4f:10:11: 20:f5:b8:45:4a:14:7e:85:32:6c:aa:30:1c:d0:49:1b:13:95: 7e:f0:a0:4c:9b:4c:bd:77:6f:3c:2c:68:6d:04:ef:23:c7:13: 95:51:aa:9f:d6:8e:77:7b:eb:59:f6:8a:05:29:af:d9:97:55: 66:8e:fb:e4:34:4d:e3:51:49:5e:9f:a8:6a:56:35:54:72:24: 41:7c:b9:57:14:37:44:1d:8a:d5:06:f8:ab:7f:38:de:cc:c3: 38:3e:da:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U5NTExMTAvBgNVBAUTKDFBMEY3ODZGMTFCOEUxN0Q0NURFMUVEQ0U2MUUxNjAw REQ0OTMwQTQwHhcNMjYwMTA3MTUwNzI5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVlNzZiMC0xMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVMW7nGTNQd25W0xNT+WtV045qcN9gFhmaMPwtDCy5s0IqQbiXaks+klwVJF pDMZcWCFU2uPAcRWVpJuBjfKNMMKXJDHZIIJyJqXUNTCfIs/ip2n/S3sDE2CvQko SXqEJ42ikCF0SqP3dWI+XCSrT5QTV+/jh30ylf0qzFxHgVjq1tY2qT0XtKhVagO9 Mwr0M3/ImPxuk9xQIdlhh4HaK181yZc4/mbh77sO7Mozm8T4hVHFZt4IKaDVrNtU HD/cf+eVY0BneB8JOJrixv5U+I40OiB5O61wjt8j5xIQqO1r2VxjWsAGkg8Zkwms meTFKIO8Z3byHDugWPlMFST/sQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJlFgRVq FAQEUvc+HSQGyCbX2DBuMB8GA1UdIwQYMBaAFBoPeG8RuOF9Rd4e3OYeFgDdSTCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTk1MS82RjQ5Qjk5MkRC NzExMUVEOTUwM0Q4NURDNEY5QUUwMi9HZzk0YnhHNDRYMUYzaDdjNWg0V0FOMUpN S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnOTRieEc0NFgxRjNoN2M1aDRXQU4xSk1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U5NTEvNkY0OUI5OTJEQjcxMTFFRDk1MDNEODVEQzRGOUFFMDIvOTUyRjg3RkFF QkRBMTFGMDgyRDA3MDVDNkM2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABng2YwDQYJKoZIhvcNAQELBQADggEBAKBJmsEG2WKgRP30 8QP+udDbtoyGECgelUezVSciXfRijbHF+bdqJk63NbubBf2wVzDGa4GTVJccSH/T LqVF2n9sR3N+y90FdtHIWHAkNN2a07uXRviYVVbPSC5yWdss2vRkmoRM69IN175e jofIRjuv59Y0FaDbVbjVEOfwsK/qVI3dJuR1bdiyKAXZl2OAN0ccXW5UDs4V+RtI PUiJFk8QESD1uEVKFH6FMmyqMBzQSRsTlX7woEybTL13bzwsaG0E7yPHE5VRqp/W jnd761n2igUpr9mXVWaO++Q0TeNRSV6fqGpWNVRyJEF8uVcUN0QditUG+Kt/ON7M wzg+2j4= -----END CERTIFICATE-----Generated at Mon Jan 12 17:31:43 2026 by rpki-client