This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa File: D8F27C903AD811EF960D9329C4F9AE02.roa (raw, json) Hash identifier: HU04MFLwZHlSFOHomT27YUePoykXA2jVW+dbycpzRP4= Subject key identifier: 26:71:24:F6:FC:74:3A:C9:69:8D:96:02:0B:74:D7:AC:31:B1:24:D4 Certificate issuer: /CN=A91215B3/serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE Certificate serial: 01FE Authority key identifier: 91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa Signing time: Wed 31 Dec 2025 02:21:37 +0000 ROA not before: Wed 31 Dec 2025 02:21:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133551 IP address blocks: 103.48.0.0/24 maxlen: 24 103.48.1.0/24 maxlen: 24 2001:df1:a040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91215B3, serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE Validity Not Before: Dec 31 02:21:37 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695488b1-b8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d5:62:60:49:c0:59:c8:dc:f3:89:4b:81:16: 30:88:36:08:83:00:f6:8e:50:c6:81:91:56:81:d6: 9e:f8:5c:97:09:ad:b2:9f:c6:c8:e9:7d:46:ed:2e: 5d:4e:87:b6:48:68:a4:15:40:30:1f:b4:3a:6f:13: 95:7d:cd:2a:e8:ff:59:4c:5f:ee:d2:99:bc:d0:49: 6d:b1:5f:b5:25:a9:03:ef:cc:7e:f1:a3:73:f7:46: 19:ad:4f:0b:ed:ec:d6:37:fe:f8:a6:3c:dd:f5:9d: 75:70:7d:b5:a0:85:25:73:57:22:09:9e:a0:a3:db: 13:a4:44:27:e9:78:b6:41:83:40:c0:8f:f0:c8:54: 0e:37:c9:4c:91:62:c5:92:86:42:53:7d:a1:39:fc: d2:8b:94:9c:dd:ed:62:13:77:09:a9:20:71:a6:e3: b1:84:39:e6:d9:bd:5b:3b:01:fb:75:82:33:e5:b3: 9e:cd:9a:69:ae:b6:61:2b:58:50:bd:cb:90:b1:6f: 9a:3d:3d:6e:08:91:ac:6d:df:ea:b3:fe:cd:f0:69: 9c:dc:ba:af:9a:c2:5d:c4:11:57:84:90:6c:2f:7b: 12:b6:23:c8:d5:0c:f2:45:dc:53:fc:c0:d5:47:e1: 65:a3:43:8b:90:aa:88:b6:bd:3d:5b:2a:e0:ff:1d: 0d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:71:24:F6:FC:74:3A:C9:69:8D:96:02:0B:74:D7:AC:31:B1:24:D4 X509v3 Authority Key Identifier: keyid:91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.0.0/23 IPv6: 2001:df1:a040::/48 Signature Algorithm: sha256WithRSAEncryption 23:ce:d3:a4:1e:b3:7d:11:67:9f:df:99:57:0a:20:4a:f2:f3: a8:b5:51:de:01:68:72:ff:f0:a8:ca:ee:d6:34:08:ba:7b:19: 60:96:68:00:4e:2b:96:b9:2e:c8:7f:98:ff:09:41:17:65:0c: b2:50:04:03:1e:4d:d5:bf:ff:e7:c3:5e:91:69:31:05:5f:2a: 6e:64:62:4f:b8:2e:5f:5e:cc:ca:8f:7a:cb:8d:6e:a4:d5:1b: 71:6c:58:07:ca:36:83:16:5a:46:cb:13:47:45:fc:ad:9a:92: 14:c9:20:4d:1f:02:2e:6f:17:a8:77:45:49:33:07:d0:3d:0c: f3:90:98:c0:06:37:f3:7c:0e:91:03:12:68:06:48:37:ef:2c: 23:09:92:38:ad:af:c3:6b:0b:ea:20:16:b4:8f:78:76:26:48: 43:9f:77:b4:3f:cf:c4:3c:4f:30:88:da:e7:52:4a:9f:5e:4c: d6:6a:77:f8:b5:bc:84:0b:50:1a:d9:fa:bc:df:ad:68:68:e3: 70:05:b7:1d:c3:24:33:b4:fe:b8:e3:26:0c:43:79:e5:98:21: 98:bb:9c:ca:43:c8:07:78:11:c2:8a:0c:4e:01:d9:70:9e:59: 4b:83:98:f5:20:b1:74:07:2b:91:cb:de:a4:2a:80:1c:9f:89: b3:5a:a9:f5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MjE1QjMxMTAvBgNVBAUTKDkxNDg1MEM0QjhBNTEzQjJGOEU0RURDNEI1NTc4NzA3 Nzc2MzcyQUUwHhcNMjUxMjMxMDIyMTM3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0ODhiMS1iOGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmdViYEnAWcjc84lLgRYwiDYIgwD2jlDGgZFWgdae+FyXCa2yn8bI6X1G7S5d Toe2SGikFUAwH7Q6bxOVfc0q6P9ZTF/u0pm80EltsV+1JakD78x+8aNz90YZrU8L 7ezWN/74pjzd9Z11cH21oIUlc1ciCZ6go9sTpEQn6Xi2QYNAwI/wyFQON8lMkWLF koZCU32hOfzSi5Sc3e1iE3cJqSBxpuOxhDnm2b1bOwH7dYIz5bOezZpprrZhK1hQ vcuQsW+aPT1uCJGsbd/qs/7N8Gmc3LqvmsJdxBFXhJBsL3sStiPI1QzyRdxT/MDV R+Flo0OLkKqItr09Wyrg/x0N2QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCZxJPb8 dDrJaY2WAgt016wxsSTUMB8GA1UdIwQYMBaAFJFIUMS4pROy+OTtxLVXhwd3Y3Ku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTVCMy9FNkY2OEYwNjBC NEIxMUVFQUI5QUFENzlDNEY5QUUwMi9rVWhReExpbEU3TDQ1TzNFdFZlSEIzZGpj cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tVaFF4TGlsRTdMNDVPM0V0VmVIQjNkamNxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE1QjMvRTZGNjhGMDYwQjRCMTFFRUFCOUFBRDc5QzRGOUFFMDIvRDhGMjdDOTAz QUQ4MTFFRjk2MEQ5MzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnMAAwDwQCAAIwCQMHACABDfGgQDANBgkqhkiG9w0BAQsF AAOCAQEAI87TpB6zfRFnn9+ZVwogSvLzqLVR3gFocv/wqMru1jQIunsZYJZoAE4r lrkuyH+Y/wlBF2UMslAEAx5N1b//58NekWkxBV8qbmRiT7guX17Myo96y41upNUb cWxYB8o2gxZaRssTR0X8rZqSFMkgTR8CLm8XqHdFSTMH0D0M85CYwAY383wOkQMS aAZIN+8sIwmSOK2vw2sL6iAWtI94diZIQ593tD/PxDxPMIja51JKn15M1mp3+LW8 hAtQGtn6vN+taGjjcAW3HcMkM7T+uOMmDEN55ZghmLucykPIB3gRwooMTgHZcJ5Z S4OY9SCxdAcrkcvepCqAHJ+Js1qp9Q== -----END CERTIFICATE-----Generated at Sun Jan 25 17:01:24 2026 by rpki-client