This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/4BBDE05299B011F0B174EC14C4F9AE02.roa File: 4BBDE05299B011F0B174EC14C4F9AE02.roa (raw, json) Hash identifier: 1EYGqr5gDaw2Win7ebKI+MEi4liXZPWIq3RFA0qRbSg= Subject key identifier: 4E:5F:B7:EF:49:AE:12:3C:68:3D:5B:B0:A3:4C:2C:77:33:4B:47:E5 Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0372 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/4BBDE05299B011F0B174EC14C4F9AE02.roa Signing time: Mon 17 Nov 2025 00:35:03 +0000 ROA not before: Mon 17 Nov 2025 00:35:03 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 59322 IP address blocks: 43.247.16.0/22 maxlen: 22 43.247.16.0/24 maxlen: 24 43.247.17.0/24 maxlen: 24 43.247.18.0/24 maxlen: 24 43.247.19.0/24 maxlen: 24 103.225.36.0/22 maxlen: 22 103.225.36.0/24 maxlen: 24 103.225.37.0/24 maxlen: 24 103.225.38.0/24 maxlen: 24 103.225.39.0/24 maxlen: 24 110.36.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 882 (0x372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Nov 17 00:35:03 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=691a6db7-c45e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6a:90:b7:57:20:ec:40:14:90:02:d3:71:ee: f0:ea:d6:f4:41:09:b2:25:e2:d6:18:67:ce:a1:2b: fb:e8:84:c3:ce:a9:39:04:99:bc:ee:f5:a0:d0:cd: 25:62:c4:3f:6a:70:60:bf:f1:81:2d:19:5a:1e:fe: be:37:58:13:3f:ec:eb:a9:1e:46:4c:29:3d:67:36: a8:ee:af:30:bc:5b:29:d9:67:8f:28:bf:a0:bd:c9: 75:a4:67:e9:53:e5:6c:77:1e:3b:49:5f:5b:db:a1: 0a:ef:08:23:7d:25:67:e7:5c:8e:8c:eb:7c:38:6d: 7d:0d:2e:e1:08:16:e4:99:94:3e:7c:d8:fd:b4:27: 27:90:68:df:fc:46:20:19:0d:48:76:84:2a:eb:a1: 7a:56:a5:94:68:c1:78:dd:ed:a6:26:98:b6:4e:be: d4:4e:3c:65:02:0a:b5:ef:bd:95:f5:aa:5b:bf:f9: 27:ac:fc:29:b1:b7:a7:75:16:90:73:4a:01:aa:b8: 3b:28:21:31:4e:4d:f3:41:c7:2a:09:2f:de:0a:c9: 94:04:1f:ab:c6:41:19:c5:ff:08:56:c2:14:88:d2: 92:2d:43:1e:c0:d0:a1:e7:8b:e4:1f:ff:9d:19:71: 59:a2:52:70:48:b1:41:af:3a:81:05:06:e2:da:c3: 4a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5F:B7:EF:49:AE:12:3C:68:3D:5B:B0:A3:4C:2C:77:33:4B:47:E5 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/4BBDE05299B011F0B174EC14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.16.0/22 103.225.36.0/22 110.36.58.0/23 Signature Algorithm: sha256WithRSAEncryption ae:d6:30:50:fc:f2:03:04:34:98:d9:e1:35:94:1a:74:d6:99: 7a:15:68:73:52:81:5a:2b:5d:ad:06:58:f9:d0:8a:58:93:d8: 42:5c:6d:b4:98:04:e8:73:b3:02:fc:4a:0e:9e:ec:71:ce:3f: 47:06:b0:ff:67:32:cf:a1:29:80:99:a2:48:e2:3f:84:3c:4a: de:9d:50:d6:87:d4:bc:0d:62:f7:59:2b:9a:ea:b5:81:54:7c: a6:13:0c:13:fb:bb:73:59:4b:bc:09:c8:fd:13:8b:34:ab:a5: ab:c0:5b:a7:42:3d:df:51:b8:15:8b:c2:3d:6b:54:9c:db:2f: f9:03:00:8d:96:b4:89:d3:36:22:cc:0a:8b:0a:88:14:ef:a4: 78:71:e8:d3:6f:cf:b9:1e:b2:2a:59:5e:f5:f0:19:b8:72:83: 87:b2:e5:a9:29:b4:76:8e:d8:60:ff:22:e3:74:81:66:2a:b3: fc:e0:dc:b8:ba:f7:99:27:3e:10:f7:4a:98:f2:79:f0:c0:39: 62:a0:cd:85:46:46:bd:e3:56:99:ab:12:af:2d:eb:c3:71:53: 07:51:80:e3:ed:ba:fb:c0:e1:d8:89:a1:9b:cc:db:91:b2:80: 7f:32:ff:de:9c:4d:bb:ae:86:86:3e:ee:76:1c:38:59:f4:21: 02:58:3d:32 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUxMTE3MDAzNTAzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFhNmRiNy1jNDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGqQt1cg7EAUkALTce7w6tb0QQmyJeLWGGfOoSv76ITDzqk5BJm87vWg0M0l YsQ/anBgv/GBLRlaHv6+N1gTP+zrqR5GTCk9Zzao7q8wvFsp2WePKL+gvcl1pGfp U+Vsdx47SV9b26EK7wgjfSVn51yOjOt8OG19DS7hCBbkmZQ+fNj9tCcnkGjf/EYg GQ1IdoQq66F6VqWUaMF43e2mJpi2Tr7UTjxlAgq1772V9apbv/knrPwpsbendRaQ c0oBqrg7KCExTk3zQccqCS/eCsmUBB+rxkEZxf8IVsIUiNKSLUMewNCh54vkH/+d GXFZolJwSLFBrzqBBQbi2sNKcQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE5ft+9J rhI8aD1bsKNMLHczS0flMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJEQTIvNzBFNjlDMThEMEVFMTFFQ0JDNUM0OTczQzRGOUFFMDIvNEJCREUwNTI5 OUIwMTFGMEIxNzRFQzE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr9xADBAJn4SQDBAFuJDowDQYJKoZIhvcNAQELBQADggEB AK7WMFD88gMENJjZ4TWUGnTWmXoVaHNSgVorXa0GWPnQiliT2EJcbbSYBOhzswL8 Sg6e7HHOP0cGsP9nMs+hKYCZokjiP4Q8St6dUNaH1LwNYvdZK5rqtYFUfKYTDBP7 u3NZS7wJyP0TizSrpavAW6dCPd9RuBWLwj1rVJzbL/kDAI2WtInTNiLMCosKiBTv pHhx6NNvz7kesipZXvXwGbhyg4ey5akptHaO2GD/IuN0gWYqs/zg3Li695knPhD3 SpjyefDAOWKgzYVGRr3jVpmrEq8t68NxUwdRgOPtuvvA4diJoZvM25GygH8y/96c TbuuhoY+7nYcOFn0IQJYPTI= -----END CERTIFICATE-----Generated at Tue Dec 23 05:32:45 2025 by rpki-client