This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa File: 743770A0C06011EE882BC34AC4F9AE02.roa (raw, json) Hash identifier: QZH91q9FfvxDPaTkst1o+01IgGsC4352n7x2X0r1Yd4= Subject key identifier: 5E:57:11:05:2B:FE:7E:F7:18:A3:3B:33:5C:F0:F7:B3:99:2B:29:16 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 158D Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa Signing time: Fri 02 Jan 2026 17:14:07 +0000 ROA not before: Fri 02 Jan 2026 17:14:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9541 IP address blocks: 103.209.125.0/24 maxlen: 24 103.209.126.0/24 maxlen: 24 103.209.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:34:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5517 (0x158d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Jan 2 17:14:07 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6957fcde-b55a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9a:c5:2c:1d:98:ab:c2:25:4a:a8:89:1e:64: 35:df:98:46:01:47:02:6b:ef:48:6e:f3:81:62:64: ca:2e:c6:2f:60:38:ef:84:f0:ba:c6:29:a6:ae:dc: 61:e2:ac:fe:80:cd:b7:da:4d:5a:ca:41:1e:b4:40: 02:f2:ec:7b:05:5e:bd:74:00:0d:1f:56:19:bf:36: fa:32:6c:92:d5:a0:66:c2:02:00:5a:c7:a1:44:4f: 3b:8d:5e:f4:db:6d:d2:b8:fb:26:36:44:5e:95:1a: d7:8c:7b:dc:62:ac:c0:0e:cb:18:d1:6f:be:45:4e: 1a:0a:fa:58:e7:24:a5:4a:26:70:5f:d3:2d:9b:a6: 34:d9:4b:30:65:f5:10:95:07:94:65:40:79:8f:d6: bc:3c:4b:25:08:87:2b:58:d2:6d:29:85:25:cd:7a: a2:12:db:91:de:93:8f:45:c1:52:6d:9b:33:4c:11: 26:7b:9d:68:91:4e:ee:2c:29:76:29:87:28:e6:f6: 1d:7a:55:fe:ec:44:5e:a0:ae:bc:e6:da:21:c9:c6: 9f:0f:98:a3:2f:b5:b3:15:d1:60:f1:5c:f7:17:a6: f1:a1:cc:dd:e2:5f:f0:1e:88:aa:0b:3f:07:cb:6f: 5d:0f:59:6c:21:04:b1:f0:1f:e9:1a:b9:ba:01:00: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:57:11:05:2B:FE:7E:F7:18:A3:3B:33:5C:F0:F7:B3:99:2B:29:16 X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.125.0-103.209.127.255 Signature Algorithm: sha256WithRSAEncryption 88:7b:5c:03:43:2b:c5:5c:cc:3e:e9:cc:4b:74:ce:ac:e5:c2: 5f:22:12:4c:30:a6:33:7a:10:43:d6:0d:cb:e6:87:81:08:ad: 6b:0b:69:e2:da:06:84:f7:36:f5:00:9a:9e:21:53:ad:e9:23: be:71:f2:61:09:ed:ed:2a:ee:44:b6:69:7f:66:4b:9d:de:0c: dc:8b:0a:d7:95:e5:ee:05:97:96:3e:bb:bb:9c:01:11:3a:55: ff:6c:67:62:65:7f:ba:a4:ab:0f:04:8b:32:c7:63:e1:b3:8d: 1d:3b:bf:2d:61:cc:56:d6:34:05:3e:4e:07:11:d3:66:35:92: fc:4e:03:b7:33:8d:a8:e9:72:dd:65:f4:94:23:0b:31:39:76: 48:fc:69:f3:d7:3d:23:ea:9b:4a:61:cd:a5:a1:d6:cf:45:c6: 11:cf:87:fc:09:ef:cf:24:07:80:ea:f6:5f:a9:45:72:aa:b4: b8:8b:43:bf:41:85:68:48:a7:df:69:aa:50:f8:ff:c0:2d:fb: 92:77:2e:f7:6e:38:0d:9a:59:52:f0:1c:c6:f8:26:43:b5:d9: 04:54:1b:68:11:5e:56:10:bc:2f:a1:81:13:43:b5:3a:24:a3: b4:9d:7d:a3:ca:4a:8d:40:a7:75:1f:e0:2f:a7:6b:b4:64:d1: 4f:67:3e:64 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICFY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjYwMTAyMTcxNDA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTU3ZmNkZS1iNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkZrFLB2Yq8IlSqiJHmQ135hGAUcCa+9IbvOBYmTKLsYvYDjvhPC6ximmrtxh 4qz+gM232k1aykEetEAC8ux7BV69dAANH1YZvzb6MmyS1aBmwgIAWsehRE87jV70 223SuPsmNkRelRrXjHvcYqzADssY0W++RU4aCvpY5ySlSiZwX9Mtm6Y02UswZfUQ lQeUZUB5j9a8PEslCIcrWNJtKYUlzXqiEtuR3pOPRcFSbZszTBEme51okU7uLCl2 KYco5vYdelX+7EReoK685tohycafD5ijL7WzFdFg8Vz3F6bxoczd4l/wHoiqCz8H y29dD1lsIQSx8B/pGrm6AQDyJQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFF5XEQUr /n73GKM7M1zw97OZKykWMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAxRDUvRDRCRTAwRDQ2M0U1MTFFOEI1Q0ZFNDFBQzRGOUFFMDIvNzQzNzcwQTBD MDYwMTFFRTg4MkJDMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfRfQMEB2fRADANBgkqhkiG9w0BAQsFAAOCAQEAiHtc A0MrxVzMPunMS3TOrOXCXyISTDCmM3oQQ9YNy+aHgQitawtp4toGhPc29QCaniFT rekjvnHyYQnt7SruRLZpf2ZLnd4M3IsK15Xl7gWXlj67u5wBETpV/2xnYmV/uqSr DwSLMsdj4bONHTu/LWHMVtY0BT5OBxHTZjWS/E4DtzONqOly3WX0lCMLMTl2SPxp 89c9I+qbSmHNpaHWz0XGEc+H/AnvzyQHgOr2X6lFcqq0uItDv0GFaEin32mqUPj/ wC37kncu9244DZpZUvAcxvgmQ7XZBFQbaBFeVhC8L6GBE0O1OiSjtJ19o8pKjUCn dR/gL6drtGTRT2c+ZA== -----END CERTIFICATE-----Generated at Sun Jan 25 09:24:00 2026 by rpki-client