This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/C1B929B4682B11E9AE87C117C4F9AE02.roa File: C1B929B4682B11E9AE87C117C4F9AE02.roa (raw, json) Hash identifier: Bji1Z+wCskup8d3EVsxZzlDVl29YQYSE+IGwR4pohHI= Subject key identifier: EA:A1:AA:6A:2B:B9:F3:7D:AC:59:12:09:66:50:2C:AE:86:B8:C8:83 Certificate issuer: /CN=A91302B0/serialNumber=C08EC70A5B79742FC55F910536CA065C6CFB7CB5 Certificate serial: 268D Authority key identifier: C0:8E:C7:0A:5B:79:74:2F:C5:5F:91:05:36:CA:06:5C:6C:FB:7C:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wI7HClt5dC_FX5EFNsoGXGz7fLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/C1B929B4682B11E9AE87C117C4F9AE02.roa Signing time: Wed 26 Nov 2025 04:30:20 +0000 ROA not before: Wed 26 Nov 2025 04:30:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 23688 IP address blocks: 27.147.128.0/17 maxlen: 24 103.197.152.0/22 maxlen: 24 103.232.100.0/22 maxlen: 24 123.200.0.0/19 maxlen: 24 163.47.32.0/22 maxlen: 24 203.76.96.0/19 maxlen: 24 2400:ca00::/28 maxlen: 36 2400:ca00::/40 maxlen: 48 2400:ca00:100::/48 maxlen: 48 2400:ca00:1f1::/48 maxlen: 48 2400:ca00:1f2::/48 maxlen: 48 2400:ca00:1f3::/48 maxlen: 48 2400:ca00:1f3:2::/64 maxlen: 64 2400:ca00:1fa::/48 maxlen: 48 2400:ca00:1fb::/48 maxlen: 48 2400:ca00:1fb:fb01::/64 maxlen: 64 2400:ca00:1fb:fc01::/64 maxlen: 64 2400:ca00:1fb:fd01::/64 maxlen: 64 2400:ca00:1fb:fe01::/64 maxlen: 64 2400:ca00:1fb:ff01::/64 maxlen: 64 2400:ca00:1fc::/48 maxlen: 48 2400:ca00:1fd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/wI7HClt5dC_FX5EFNsoGXGz7fLU.crl rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/wI7HClt5dC_FX5EFNsoGXGz7fLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wI7HClt5dC_FX5EFNsoGXGz7fLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9869 (0x268d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91302B0, serialNumber=C08EC70A5B79742FC55F910536CA065C6CFB7CB5 Validity Not Before: Nov 26 04:30:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6926825c-696f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8e:44:7a:7b:42:d2:38:21:09:61:6c:7a:17: c9:b0:e7:00:66:b7:4a:33:9d:b3:6e:dd:3a:c6:3a: d3:f6:05:95:3d:74:e6:52:c8:73:28:84:8d:ac:07: f6:4b:91:96:e7:fb:7f:1b:50:32:c1:54:f0:83:c1: 33:ea:bd:39:ee:2d:ab:0d:ad:23:62:4c:02:26:ec: 01:d6:8d:1a:cb:d1:9b:82:3e:cf:27:79:6d:ac:5d: be:03:42:d9:d2:08:08:05:74:a7:6b:46:d9:e5:6d: d7:49:9d:09:d7:14:da:9a:78:b6:30:d4:0c:99:22: 73:cf:ef:0d:13:7b:76:fe:f2:e0:90:e5:a5:e7:a8: 0e:f2:6d:63:7d:5a:5f:b1:90:68:fa:2d:0b:1f:88: 83:cf:93:26:27:65:e0:66:3a:dd:69:73:34:1b:30: d1:e4:7d:62:e6:4a:a6:27:ef:28:29:53:bd:17:13: 8f:58:02:a9:9e:d7:64:f9:fe:66:dc:9b:0b:11:5d: df:2b:b1:d2:cb:34:70:fd:b5:15:a5:42:0c:00:5a: 9f:7e:0a:8a:7b:84:cf:9b:e2:f6:61:4d:79:ee:de: 43:96:53:13:91:31:19:28:87:dc:c8:71:dd:42:ba: 8c:45:72:83:86:4b:bc:79:38:48:88:34:e2:2f:24: 96:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A1:AA:6A:2B:B9:F3:7D:AC:59:12:09:66:50:2C:AE:86:B8:C8:83 X509v3 Authority Key Identifier: keyid:C0:8E:C7:0A:5B:79:74:2F:C5:5F:91:05:36:CA:06:5C:6C:FB:7C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/wI7HClt5dC_FX5EFNsoGXGz7fLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wI7HClt5dC_FX5EFNsoGXGz7fLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91302B0/6572BE94FF9411E4876B945DC4F9AE02/C1B929B4682B11E9AE87C117C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.147.128.0/17 103.197.152.0/22 103.232.100.0/22 123.200.0.0/19 163.47.32.0/22 203.76.96.0/19 IPv6: 2400:ca00::/28 Signature Algorithm: sha256WithRSAEncryption 3e:fc:c8:4e:a4:d3:9e:bc:03:3a:a5:7a:52:65:ab:4a:fe:fa: 93:06:5e:ee:e1:9d:a9:3c:98:37:a7:d2:f3:0f:f7:73:90:10: 02:4f:b9:c0:a6:34:56:97:9a:88:4f:9e:15:f3:cb:b8:6f:1f: d0:2a:d4:29:5b:be:b4:69:80:86:f6:ec:d5:6c:00:ab:3a:f8: 7c:ef:14:2a:80:23:ae:1f:b8:80:54:f3:c4:bf:fb:c5:fc:05: f6:97:1e:be:6d:30:97:45:19:96:f3:24:53:6a:cc:93:18:63: 40:55:51:07:b5:cd:78:90:1a:3c:63:27:cd:28:e7:96:33:66: a1:da:61:7f:66:d1:e3:2f:9c:58:40:39:0d:12:8c:b3:13:36: 9d:88:4f:63:74:78:cb:ab:65:67:d7:e3:c7:3e:6c:d8:4e:53: 7a:36:79:9e:e4:c1:82:4d:39:84:fd:98:1e:6a:6a:99:19:cb: 4b:04:51:f3:ec:14:ec:ce:01:97:a6:0c:ed:96:f0:a7:78:25: 6d:b1:5a:32:14:9a:fa:9e:df:c1:7d:2c:2d:65:07:ec:e4:62: 0f:b2:1c:d4:71:61:b2:e8:30:46:15:b6:89:0b:fd:b6:8b:d5: fa:ec:cb:4a:d1:bc:4c:9a:68:89:03:3a:66:64:a3:65:b9:30: e8:d2:79:88 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICJo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyQjAxMTAvBgNVBAUTKEMwOEVDNzBBNUI3OTc0MkZDNTVGOTEwNTM2Q0EwNjVD NkNGQjdDQjUwHhcNMjUxMTI2MDQzMDIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI2ODI1Yy02OTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx45EentC0jghCWFsehfJsOcAZrdKM52zbt06xjrT9gWVPXTmUshzKISNrAf2 S5GW5/t/G1AywVTwg8Ez6r057i2rDa0jYkwCJuwB1o0ay9Gbgj7PJ3ltrF2+A0LZ 0ggIBXSna0bZ5W3XSZ0J1xTamni2MNQMmSJzz+8NE3t2/vLgkOWl56gO8m1jfVpf sZBo+i0LH4iDz5MmJ2XgZjrdaXM0GzDR5H1i5kqmJ+8oKVO9FxOPWAKpntdk+f5m 3JsLEV3fK7HSyzRw/bUVpUIMAFqffgqKe4TPm+L2YU157t5DllMTkTEZKIfcyHHd QrqMRXKDhku8eThIiDTiLySWXwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFOqhqmor ufN9rFkSCWZQLK6GuMiDMB8GA1UdIwQYMBaAFMCOxwpbeXQvxV+RBTbKBlxs+3y1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDJCMC82NTcyQkU5NEZG OTQxMUU0ODc2Qjk0NURDNEY5QUUwMi93STdIQ2x0NWRDX0ZYNUVGTnNvR1hHejdm TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dJN0hDbHQ1ZENfRlg1RUZOc29HWEd6N2ZMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAyQjAvNjU3MkJFOTRGRjk0MTFFNDg3NkI5NDVEQzRGOUFFMDIvQzFCOTI5QjQ2 ODJCMTFFOUFFODdDMTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAcbk4ADBAJnxZgDBAJn6GQDBAV7yAADBAKjLyADBAXLTGAw DQQCAAIwBwMFBCQAygAwDQYJKoZIhvcNAQELBQADggEBAD78yE6k0568AzqlelJl q0r++pMGXu7hnak8mDen0vMP93OQEAJPucCmNFaXmohPnhXzy7hvH9Aq1ClbvrRp gIb27NVsAKs6+HzvFCqAI64fuIBU88S/+8X8BfaXHr5tMJdFGZbzJFNqzJMYY0BV UQe1zXiQGjxjJ80o55YzZqHaYX9m0eMvnFhAOQ0SjLMTNp2IT2N0eMurZWfX48c+ bNhOU3o2eZ7kwYJNOYT9mB5qapkZy0sEUfPsFOzOAZemDO2W8Kd4JW2xWjIUmvqe 38F9LC1lB+zkYg+yHNRxYbLoMEYVtokL/baL1frsy0rRvEyaaIkDOmZko2W5MOjS eYg= -----END CERTIFICATE-----Generated at Sun Dec 7 02:35:51 2025 by rpki-client