This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/4AC75BA8FFE311EBB4FA4965C4F9AE02.roa File: 4AC75BA8FFE311EBB4FA4965C4F9AE02.roa (raw, json) Hash identifier: DDS9dZq1rjloyc3jsLCKyVS21s+/yTPTpsQnEoKDOQc= Subject key identifier: CA:C8:02:12:9D:8D:A7:2B:7D:E6:C1:A8:D6:60:42:F6:50:16:2C:B7 Certificate issuer: /CN=A9191436/serialNumber=2DA251C11AC68814F527F22E55DE9AC8C57FD66C Certificate serial: 13B9 Authority key identifier: 2D:A2:51:C1:1A:C6:88:14:F5:27:F2:2E:55:DE:9A:C8:C5:7F:D6:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LaJRwRrGiBT1J_IuVd6ayMV_1mw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/4AC75BA8FFE311EBB4FA4965C4F9AE02.roa Signing time: Fri 19 Dec 2025 03:11:54 +0000 ROA not before: Fri 19 Dec 2025 03:11:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133200 IP address blocks: 103.23.136.0/24 maxlen: 24 103.23.138.0/24 maxlen: 24 103.23.139.0/24 maxlen: 24 103.25.92.0/24 maxlen: 24 103.25.94.0/24 maxlen: 24 103.244.251.0/24 maxlen: 24 110.235.223.0/24 maxlen: 24 123.108.252.0/24 maxlen: 24 124.199.112.0/24 maxlen: 24 124.199.113.0/24 maxlen: 24 124.199.115.0/24 maxlen: 24 124.199.116.0/24 maxlen: 24 124.199.120.0/24 maxlen: 24 124.199.121.0/24 maxlen: 24 124.199.122.0/24 maxlen: 24 124.199.123.0/24 maxlen: 24 124.199.124.0/24 maxlen: 24 163.53.196.0/24 maxlen: 24 163.53.198.0/24 maxlen: 24 163.53.199.0/24 maxlen: 24 202.124.32.0/24 maxlen: 24 202.124.33.0/24 maxlen: 24 202.124.36.0/24 maxlen: 24 202.124.37.0/24 maxlen: 24 202.124.38.0/24 maxlen: 24 202.124.44.0/24 maxlen: 24 203.80.160.0/24 maxlen: 24 203.80.162.0/24 maxlen: 24 203.80.163.0/24 maxlen: 24 203.80.164.0/24 maxlen: 24 203.80.165.0/24 maxlen: 24 203.80.166.0/24 maxlen: 24 203.80.167.0/24 maxlen: 24 203.167.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/LaJRwRrGiBT1J_IuVd6ayMV_1mw.crl rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/LaJRwRrGiBT1J_IuVd6ayMV_1mw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LaJRwRrGiBT1J_IuVd6ayMV_1mw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5049 (0x13b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436, serialNumber=2DA251C11AC68814F527F22E55DE9AC8C57FD66C Validity Not Before: Dec 19 03:11:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6944c279-f9ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:48:41:62:af:e2:2f:d0:4b:02:cf:50:a0:2e: 32:11:08:c8:10:df:a9:33:03:28:8c:4c:bf:0f:47: de:97:99:68:17:5f:78:41:a2:d1:5c:92:f9:2f:27: 50:dc:cb:62:82:3a:b7:86:ba:b4:35:35:ee:ef:91: 1a:bf:93:5a:fe:f5:2d:f1:9d:70:80:06:0b:2a:28: 5f:b3:78:1a:8e:ad:13:b7:da:61:88:e2:33:20:6e: f5:d2:bd:35:6a:ce:7e:9e:a5:5f:07:21:8f:f4:e9: d9:91:ab:d8:5b:b5:d8:eb:3d:a6:05:92:83:4d:e6: bd:67:d9:44:d5:85:ab:17:88:89:fe:45:9c:4c:4c: 59:80:a6:39:0c:16:e8:09:86:8f:5c:6f:54:33:c1: 05:11:19:71:a9:55:d9:37:d7:66:86:22:ae:88:cc: 9e:52:3e:2d:87:43:bf:72:b8:79:70:74:c0:51:99: e7:e2:8e:40:dd:f2:64:78:23:b6:17:1b:cc:bb:38: 67:b8:c3:9a:31:71:8f:51:f3:60:f9:ef:3e:8f:14: 50:f4:3c:6b:ed:36:87:b5:9c:ec:38:25:27:b4:15: 9a:b0:fa:05:ec:23:8e:03:1b:35:1c:48:bf:85:38: ec:81:19:2b:6b:8c:07:0e:ee:59:ac:24:4b:e2:8c: bb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C8:02:12:9D:8D:A7:2B:7D:E6:C1:A8:D6:60:42:F6:50:16:2C:B7 X509v3 Authority Key Identifier: keyid:2D:A2:51:C1:1A:C6:88:14:F5:27:F2:2E:55:DE:9A:C8:C5:7F:D6:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/LaJRwRrGiBT1J_IuVd6ayMV_1mw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LaJRwRrGiBT1J_IuVd6ayMV_1mw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/AAB802E8C78C11E8A76CD914C4F9AE02/4AC75BA8FFE311EBB4FA4965C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.136.0/24 103.23.138.0/23 103.25.92.0/24 103.25.94.0/24 103.244.251.0/24 110.235.223.0/24 123.108.252.0/24 124.199.112.0/23 124.199.115.0-124.199.116.255 124.199.120.0-124.199.124.255 163.53.196.0/24 163.53.198.0/23 202.124.32.0/23 202.124.36.0-202.124.38.255 202.124.44.0/24 203.80.160.0/24 203.80.162.0-203.80.167.255 203.167.18.0/24 Signature Algorithm: sha256WithRSAEncryption 36:f8:da:ca:b7:a1:1b:15:24:91:6a:3f:13:38:0f:52:0c:c9: 0d:e6:82:3b:36:3e:f8:2d:af:8f:2b:1f:3d:30:28:14:4c:95: 1b:41:1d:76:76:94:a4:c1:b1:4c:23:02:ff:7f:7a:d4:3d:f4: 7f:a4:f6:01:73:0c:16:00:44:4d:9f:bd:1e:e4:a0:02:bf:e4: e4:e6:4f:64:ce:9f:cb:e9:95:ff:c3:e7:51:fd:b9:67:1a:af: 8f:cc:ab:cc:af:b7:f8:37:96:d5:ec:0b:af:a8:85:35:eb:c6: 50:fa:31:fc:b6:ab:b5:62:c1:9c:e1:1f:60:d0:18:a3:00:d3: 68:fe:08:bb:e1:90:30:42:a6:d6:59:c0:35:40:1b:4e:77:32: 57:10:63:e1:07:2d:14:f7:5f:32:cd:52:52:92:00:e3:a6:ae: 54:81:fe:3e:26:bc:f7:d2:86:fb:f5:9f:77:73:6a:94:40:17: 02:8e:bd:70:30:02:28:7b:1b:ff:39:97:6f:66:01:ff:38:9e: b8:05:dd:98:ef:82:b6:77:5d:c5:50:af:3b:09:89:7f:09:93: 6a:3f:f1:69:e0:8d:12:1c:38:61:08:89:59:32:10:ea:75:e3: 5a:16:46:a7:f1:08:b0:a5:c2:03:3e:37:40:05:20:5e:08:ba: 09:df:9e:90 -----BEGIN CERTIFICATE----- MIIF/DCCBOSgAwIBAgICE7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKDJEQTI1MUMxMUFDNjg4MTRGNTI3RjIyRTU1REU5QUM4 QzU3RkQ2NkMwHhcNMjUxMjE5MDMxMTU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0YzI3OS1mOWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0hBYq/iL9BLAs9QoC4yEQjIEN+pMwMojEy/D0fel5loF194QaLRXJL5LydQ 3Mtigjq3hrq0NTXu75Eav5Na/vUt8Z1wgAYLKihfs3gajq0Tt9phiOIzIG710r01 as5+nqVfByGP9OnZkavYW7XY6z2mBZKDTea9Z9lE1YWrF4iJ/kWcTExZgKY5DBbo CYaPXG9UM8EFERlxqVXZN9dmhiKuiMyeUj4th0O/crh5cHTAUZnn4o5A3fJkeCO2 FxvMuzhnuMOaMXGPUfNg+e8+jxRQ9Dxr7TaHtZzsOCUntBWasPoF7COOAxs1HEi/ hTjsgRkra4wHDu5ZrCRL4oy7ZQIDAQABo4IDIDCCAxwwHQYDVR0OBBYEFMrIAhKd jacrfebBqNZgQvZQFiy3MB8GA1UdIwQYMBaAFC2iUcEaxogU9SfyLlXemsjFf9Zs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BQUI4MDJFOEM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9MYUpSd1JyR2lCVDFKX0l1VmQ2YXlNVl8x bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xhSlJ3UnJHaUJUMUpfSXVWZDZheU1WXzFtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE0MzYvQUFCODAyRThDNzhDMTFFOEE3NkNEOTE0QzRGOUFFMDIvNEFDNzVCQThG RkUzMTFFQkI0RkE0OTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgakGCCsGAQUFBwEHAQH/ BIGZMIGWMIGTBAIAATCBjAMEAGcXiAMEAWcXigMEAGcZXAMEAGcZXgMEAGf0+wME AG7r3wMEAHts/AMEAXzHcDAMAwQAfMdzAwQAfMd0MAwDBAN8x3gDBAB8x3wDBACj NcQDBAGjNcYDBAHKfCAwDAMEAsp8JAMEAMp8JgMEAMp8LAMEAMtQoDAMAwQBy1Ci AwQDy1CgAwQAy6cSMA0GCSqGSIb3DQEBCwUAA4IBAQA2+NrKt6EbFSSRaj8TOA9S DMkN5oI7Nj74La+PKx89MCgUTJUbQR12dpSkwbFMIwL/f3rUPfR/pPYBcwwWAERN n70e5KACv+Tk5k9kzp/L6ZX/w+dR/blnGq+PzKvMr7f4N5bV7AuvqIU168ZQ+jH8 tqu1YsGc4R9g0BijANNo/gi74ZAwQqbWWcA1QBtOdzJXEGPhBy0U918yzVJSkgDj pq5Ugf4+Jrz30ob79Z93c2qUQBcCjr1wMAIoexv/OZdvZgH/OJ64Bd2Y74K2d13F UK87CYl/CZNqP/Fp4I0SHDhhCIlZMhDqdeNaFkan8QiwpcIDPjdABSBeCLoJ356Q -----END CERTIFICATE-----Generated at Sat Dec 20 21:58:08 2025 by rpki-client