This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F583B02BDCF11EA8755D90DC4F9AE02.roa File: 5F583B02BDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: Pdx6EBo+PmK95pTVWwdoKsqWBUqzjZ8rct326FNadF8= Subject key identifier: 6C:0C:C0:1F:9B:40:62:B9:EE:1B:74:B3:C6:54:E4:EB:24:E0:3E:C2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CB5A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F583B02BDCF11EA8755D90DC4F9AE02.roa Signing time: Sat 13 Dec 2025 11:42:29 +0000 ROA not before: Sat 13 Dec 2025 11:42:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138752 IP address blocks: 103.138.0.0/23 maxlen: 24 2402:11e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52058 (0xcb5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Dec 13 11:42:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=693d5124-bb5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:13:1d:c6:9e:97:09:d1:57:4f:d1:ca:68:6a: c0:e5:bc:1a:78:57:6f:42:98:0f:ea:d4:b9:35:df: 82:f3:dd:5f:2a:f3:ea:d6:2a:04:20:8b:1e:13:19: dd:bb:99:e5:52:5b:45:6a:5b:f9:b3:21:66:c7:b6: 4f:f3:52:86:a2:2b:21:2f:65:29:fe:3e:a1:ab:44: 0c:32:e5:5e:e9:dc:8f:7e:0e:b8:ae:29:25:88:59: 0a:99:e3:b4:a8:90:bf:ef:d0:5a:b1:25:c2:e0:4a: 70:4b:19:34:3d:26:db:59:e6:e3:ed:40:d2:49:c1: 58:71:dd:25:38:f8:c6:b6:06:d9:56:3a:d7:60:e0: d2:b8:2f:51:e2:f1:5b:26:84:34:9e:5c:4e:58:b0: be:95:2c:85:a5:34:1e:ad:d3:06:54:07:9e:99:3a: 84:b8:eb:c4:19:81:69:2e:61:30:83:85:62:ab:dd: b7:94:e4:23:84:fe:aa:4c:a6:57:a4:b3:ab:1f:ff: 07:fb:94:91:3a:0a:68:26:cb:08:1e:e0:a7:97:3e: ce:a7:f9:8d:63:1e:05:80:12:e6:73:a7:67:5e:fe: 00:7a:aa:cf:39:86:1f:20:ad:b3:4d:d7:a2:d0:74: ec:f7:3a:2a:8b:ec:25:04:36:4f:c4:40:fb:ff:61: f2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:0C:C0:1F:9B:40:62:B9:EE:1B:74:B3:C6:54:E4:EB:24:E0:3E:C2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F583B02BDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.0.0/23 IPv6: 2402:11e0::/32 Signature Algorithm: sha256WithRSAEncryption 85:1d:05:32:2a:7e:a5:a7:05:38:47:72:46:1e:53:5e:f4:b1: 02:9a:93:38:02:83:93:b1:6c:cf:8e:c5:1b:b6:40:58:1c:a3: cc:78:b7:1c:0b:a3:7b:b1:90:bc:f2:c7:e0:b9:25:bb:cb:6d: 22:a0:d2:c7:87:4a:52:d9:6b:0f:93:58:52:0f:01:93:d3:e4: 4d:5b:00:27:93:65:e7:7f:a4:a7:50:22:80:5a:03:f8:b4:b4: 16:e1:6a:69:34:f6:7a:5f:1b:79:e7:43:66:ed:2a:71:ec:43: f4:dc:3b:f5:51:17:2f:85:ab:72:b6:23:69:d6:af:aa:5a:7a: 88:f4:9a:f7:a1:4e:94:fa:94:39:cc:65:0e:f8:3b:b1:2b:c0: 05:46:99:a7:9c:af:c0:65:a0:0a:15:04:fc:42:32:84:d2:3b: 94:4a:53:12:88:dc:0e:c5:49:af:e3:f1:f6:83:c8:0f:1c:98: f1:f0:65:e3:25:97:5d:47:52:dd:7b:8b:ff:14:94:04:6a:42: e0:72:66:13:fc:d3:93:56:f2:39:9f:a6:96:f2:12:30:bc:7e: 0d:59:a0:b7:a0:cb:1c:8f:57:cf:79:63:d3:0e:6e:93:20:25: 2d:79:4d:3c:41:40:2e:dc:1b:3b:23:38:af:e8:e7:52:71:cc: 56:f6:50:ec -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDAMtaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTIxMzExNDIyOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjkzZDUxMjQtYmI1ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPITHcaelwnRV0/RymhqwOW8GnhXb0KYD+rUuTXfgvPdXyrz6tYqBCCLHhMZ 3buZ5VJbRWpb+bMhZse2T/NShqIrIS9lKf4+oatEDDLlXuncj34OuK4pJYhZCpnj tKiQv+/QWrElwuBKcEsZND0m21nm4+1A0knBWHHdJTj4xrYG2VY612Dg0rgvUeLx WyaENJ5cTliwvpUshaU0Hq3TBlQHnpk6hLjrxBmBaS5hMIOFYqvdt5TkI4T+qkym V6Szqx//B/uUkToKaCbLCB7gp5c+zqf5jWMeBYAS5nOnZ17+AHqqzzmGHyCts03X otB07Pc6KovsJQQ2T8RA+/9h8q0CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBRsDMAf m0Biue4bdLPGVOTrJOA+wjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVGNTgzQjAy QkRDRjExRUE4NzU1RDkwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQBZ4oAMA0EAgACMAcDBQAkAhHgMA0GCSqGSIb3DQEBCwUA A4IBAQCFHQUyKn6lpwU4R3JGHlNe9LECmpM4AoOTsWzPjsUbtkBYHKPMeLccC6N7 sZC88sfguSW7y20ioNLHh0pS2WsPk1hSDwGT0+RNWwAnk2Xnf6SnUCKAWgP4tLQW 4WppNPZ6Xxt550Nm7Spx7EP03Dv1URcvhatytiNp1q+qWnqI9Jr3oU6U+pQ5zGUO +DuxK8AFRpmnnK/AZaAKFQT8QjKE0juUSlMSiNwOxUmv4/H2g8gPHJjx8GXjJZdd R1Lde4v/FJQEakLgcmYT/NOTVvI5n6aW8hIwvH4NWaC3oMscj1fPeWPTDm6TICUt eU08QUAu3Bs7Iziv6OdSccxW9lDs -----END CERTIFICATE-----Generated at Sat Dec 20 21:56:38 2025 by rpki-client