This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa File: 4CC86698C4FA11EE86A51C0EC4F9AE02.roa (raw, json) Hash identifier: KF7ZSTRzk7H7eSuSlkMbC7mPu67a1YIUs7/7FFX+ckI= Subject key identifier: 4F:A7:8B:E2:69:C7:99:57:8E:46:A6:09:D1:59:53:EE:D1:88:17:F1 Certificate issuer: /CN=A919C19A/serialNumber=D89CFF6D7D9551AE704D93E97553616C8DB13F5E Certificate serial: 04D6 Authority key identifier: D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa Signing time: Fri 12 Dec 2025 23:19:51 +0000 ROA not before: Fri 12 Dec 2025 23:19:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141731 IP address blocks: 103.159.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C19A, serialNumber=D89CFF6D7D9551AE704D93E97553616C8DB13F5E Validity Not Before: Dec 12 23:19:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693ca317-ac7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:e0:2a:51:bd:b0:a2:8e:14:06:ea:d2:f2: 81:72:a5:7d:c8:85:4b:ef:c8:64:2a:14:5c:51:61: 38:77:47:cb:74:be:55:aa:ac:ac:2b:7d:1c:39:84: 3a:7a:15:3f:a3:f0:1d:53:eb:26:1d:e5:da:7a:99: c5:cb:51:da:22:93:da:88:f8:1f:dd:35:ac:ca:de: 7e:5f:60:09:2b:5c:66:22:cb:b8:25:9c:b8:2c:c3: fe:bb:21:2e:1a:59:5b:3d:de:cb:1c:f9:a4:ca:e5: 05:e1:68:a6:4a:c9:91:1e:77:79:0a:4c:c8:f5:82: 6c:ed:f0:f5:95:af:bc:a1:18:c1:6c:43:60:af:a0: 84:82:cc:47:d3:68:bf:4a:77:2d:73:59:d7:89:7a: e2:1a:e4:8b:aa:4c:bd:f3:66:d4:48:c1:30:08:68: e6:fe:45:62:7f:bd:4a:b4:80:dc:8b:80:8e:4c:dd: e3:5d:94:66:a4:4a:98:75:7f:02:12:55:9c:28:e8: d3:5c:72:7d:a6:a4:f7:57:67:56:ab:f4:90:f5:20: 57:c9:79:fa:9e:98:0f:1f:d5:a0:bb:ca:60:52:6b: 12:79:7c:ae:93:df:0c:1c:99:4d:79:c2:81:fb:36: 35:0d:c4:1e:c5:4d:de:34:a8:6f:50:2e:eb:66:81: 8c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A7:8B:E2:69:C7:99:57:8E:46:A6:09:D1:59:53:EE:D1:88:17:F1 X509v3 Authority Key Identifier: keyid:D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/4CC86698C4FA11EE86A51C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.126.0/24 Signature Algorithm: sha256WithRSAEncryption 58:b9:32:d8:96:9d:d4:ec:47:ba:2e:50:50:cb:7b:be:eb:da: 56:64:b0:14:94:5a:0b:83:65:45:2f:f7:c1:f3:5c:63:8a:2d: 93:17:55:03:a2:0f:5b:f5:58:cf:96:8c:53:45:6c:5d:7d:e7: fc:b2:73:d3:42:18:d5:30:82:99:bf:a5:6e:87:18:c3:7d:7d: 22:26:85:ae:7b:2b:44:57:83:b9:2e:fe:cd:19:f0:31:d9:3d: 98:c9:a4:b3:b5:a3:51:e0:f7:ca:1f:13:10:b4:47:3a:e9:bc: 15:09:de:d1:93:d1:a4:5f:ad:2a:63:37:fc:db:a7:cb:39:67: a5:67:b4:54:84:36:7e:7b:cc:65:59:76:f5:4b:01:8a:4c:c0: 07:40:45:28:71:9d:4c:1a:3a:63:d4:a5:8f:8b:30:f1:0f:9a: 6d:dc:09:01:9d:fc:22:4d:e5:5b:81:35:43:be:6e:ed:79:e7: 03:de:24:cd:cd:cc:fb:b0:62:75:7f:70:ff:f3:76:97:72:a4: 8b:f2:54:f2:d6:f8:c0:d5:98:2e:2e:7e:5b:e0:61:b8:3d:b6: fa:f6:06:34:fc:6e:a9:81:6f:e4:fe:74:a5:e0:25:34:48:db: 06:e0:40:ea:08:1a:e3:5b:a9:e9:72:02:b0:18:de:66:9d:bf: 75:32:c5:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMxOUExMTAvBgNVBAUTKEQ4OUNGRjZEN0Q5NTUxQUU3MDREOTNFOTc1NTM2MTZD OERCMTNGNUUwHhcNMjUxMjEyMjMxOTUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjYTMxNy1hYzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtevgKlG9sKKOFAbq0vKBcqV9yIVL78hkKhRcUWE4d0fLdL5VqqysK30cOYQ6 ehU/o/AdU+smHeXaepnFy1HaIpPaiPgf3TWsyt5+X2AJK1xmIsu4JZy4LMP+uyEu GllbPd7LHPmkyuUF4WimSsmRHnd5CkzI9YJs7fD1la+8oRjBbENgr6CEgsxH02i/ Snctc1nXiXriGuSLqky982bUSMEwCGjm/kVif71KtIDci4COTN3jXZRmpEqYdX8C ElWcKOjTXHJ9pqT3V2dWq/SQ9SBXyXn6npgPH9Wgu8pgUmsSeXyuk98MHJlNecKB +zY1DcQexU3eNKhvUC7rZoGMAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE+ni+Jp x5lXjkamCdFZU+7RiBfxMB8GA1UdIwQYMBaAFNic/219lVGucE2T6XVTYWyNsT9e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzE5QS8yNEFCMkMzRTRG OEQxMUVDODE1NzEyNUZDNEY5QUUwMi8ySnpfYlgyVlVhNXdUWlBwZFZOaGJJMnhQ MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJKel9iWDJWVWE1d1RaUHBkVk5oYkkyeFAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMxOUEvMjRBQjJDM0U0RjhEMTFFQzgxNTcxMjVGQzRGOUFFMDIvNENDODY2OThD NEZBMTFFRTg2QTUxQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn34wDQYJKoZIhvcNAQELBQADggEBAFi5MtiWndTsR7ou UFDLe77r2lZksBSUWguDZUUv98HzXGOKLZMXVQOiD1v1WM+WjFNFbF195/yyc9NC GNUwgpm/pW6HGMN9fSImha57K0RXg7ku/s0Z8DHZPZjJpLO1o1Hg98ofExC0Rzrp vBUJ3tGT0aRfrSpjN/zbp8s5Z6VntFSENn57zGVZdvVLAYpMwAdARShxnUwaOmPU pY+LMPEPmm3cCQGd/CJN5VuBNUO+bu155wPeJM3NzPuwYnV/cP/zdpdypIvyVPLW +MDVmC4uflvgYbg9tvr2BjT8bqmBb+T+dKXgJTRI2wbgQOoIGuNbqelyArAY3mad v3UyxbE= -----END CERTIFICATE-----Generated at Sun Dec 21 16:15:33 2025 by rpki-client