This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/7DD0E8845A3211EDB637E665C4F9AE02.roa File: 7DD0E8845A3211EDB637E665C4F9AE02.roa (raw, json) Hash identifier: SZ6kzINKdgGfoDPlHAn87OJmgfXdX29J/2qyR/Wg9Eg= Subject key identifier: 6E:40:FB:02:5D:59:0F:4D:17:F2:0F:73:1A:A5:5C:17:68:C6:12:20 Certificate issuer: /CN=A91314BC/serialNumber=168415C0C13401C0D771571DF86F8CD5F8503B14 Certificate serial: 024F Authority key identifier: 16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/7DD0E8845A3211EDB637E665C4F9AE02.roa Signing time: Wed 19 Nov 2025 00:18:02 +0000 ROA not before: Wed 19 Nov 2025 00:18:02 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150377 IP address blocks: 103.23.252.0/23 maxlen: 23 103.23.252.0/24 maxlen: 24 103.23.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91314BC, serialNumber=168415C0C13401C0D771571DF86F8CD5F8503B14 Validity Not Before: Nov 19 00:18:02 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691d0cba-c0c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:74:f8:27:8c:fc:b4:e1:1f:41:36:4e:36:7e: 27:75:fc:f5:00:c8:53:2b:fc:fb:21:2a:43:7c:3a: 3d:ba:52:33:e8:77:4f:fa:11:7c:1d:df:55:34:2e: 9f:ad:f9:32:9e:5a:8a:b8:05:86:c5:9a:83:86:39: 47:23:1f:f5:1c:02:1d:aa:b9:86:d2:07:7b:37:8b: 2f:8e:45:1a:57:0d:35:44:8c:2a:44:e5:7f:e0:9c: 31:e7:ef:9a:00:13:d7:62:c7:4e:46:27:0d:1a:27: ef:e5:6f:e2:54:f1:ad:69:39:d5:69:23:e0:7f:62: dd:3e:ff:ef:25:ac:1c:be:49:90:fa:dd:83:e9:30: d7:d7:ef:97:54:d5:f4:18:26:7a:9c:be:97:b5:e2: 71:79:b5:cc:9c:2b:78:7a:7a:90:52:b6:e3:d8:0d: 56:f8:8a:e8:c0:50:3d:b3:ee:78:62:99:19:d5:0e: 02:26:20:0d:6f:94:ac:a3:9b:7b:c3:d6:e7:47:b5: 35:ab:5d:2c:dd:0b:fd:eb:13:7c:33:2b:a2:5d:2a: cb:17:51:64:6e:1b:55:fe:38:77:79:25:8f:10:79: 1d:54:b8:d0:95:53:45:d7:b4:94:05:41:44:09:49: 47:22:52:5e:4c:86:6c:d2:10:b9:2b:81:bd:3a:65: a9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:40:FB:02:5D:59:0F:4D:17:F2:0F:73:1A:A5:5C:17:68:C6:12:20 X509v3 Authority Key Identifier: keyid:16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/7DD0E8845A3211EDB637E665C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.252.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:8d:84:89:69:28:e7:a1:f2:f1:db:08:7c:73:1e:58:9d:b4: a0:3e:ee:2e:ec:5a:44:21:da:3c:9d:5d:af:2f:d3:77:c3:d1: 61:87:14:b6:d9:de:f6:1d:76:36:71:83:46:63:c7:07:cb:14: b8:94:ca:f7:70:c6:5a:81:c9:6e:1b:a8:e3:ef:cd:c0:ea:2b: 92:84:53:53:97:c1:fd:56:95:1e:63:2d:6d:b8:99:84:80:12: 37:4f:38:04:e7:f3:03:e7:6a:9c:1e:7b:fc:4a:aa:4e:95:38: 41:01:95:47:04:95:fd:aa:96:5d:d5:c5:d7:32:b5:66:6a:1e: be:c7:71:0a:a0:58:0e:56:2e:d1:1b:3e:2c:bb:36:3b:fc:21: 1d:0c:53:95:e9:ad:bd:ee:ed:10:b0:35:61:88:23:bb:6d:86: c8:84:09:e2:01:13:df:99:ea:81:df:8a:f5:fb:bb:39:a8:94: 3b:eb:9e:fd:6c:d1:eb:ce:ab:49:21:ee:6d:48:48:73:d1:aa: dd:ab:31:39:f1:42:60:81:2b:45:1f:87:fd:1b:b6:de:80:af: 59:73:24:b5:e9:ed:20:62:74:e5:f0:1f:78:5a:9a:09:28:a6: 4f:59:de:7c:2f:f5:d7:2c:13:0a:07:27:67:ff:19:4d:fa:8f: b9:1b:1c:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0QkMxMTAvBgNVBAUTKDE2ODQxNUMwQzEzNDAxQzBENzcxNTcxREY4NkY4Q0Q1 Rjg1MDNCMTQwHhcNMjUxMTE5MDAxODAyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFkMGNiYS1jMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4nT4J4z8tOEfQTZONn4ndfz1AMhTK/z7ISpDfDo9ulIz6HdP+hF8Hd9VNC6f rfkynlqKuAWGxZqDhjlHIx/1HAIdqrmG0gd7N4svjkUaVw01RIwqROV/4Jwx5++a ABPXYsdORicNGifv5W/iVPGtaTnVaSPgf2LdPv/vJawcvkmQ+t2D6TDX1++XVNX0 GCZ6nL6XteJxebXMnCt4enqQUrbj2A1W+IrowFA9s+54YpkZ1Q4CJiANb5Sso5t7 w9bnR7U1q10s3Qv96xN8MyuiXSrLF1FkbhtV/jh3eSWPEHkdVLjQlVNF17SUBUFE CUlHIlJeTIZs0hC5K4G9OmWpLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG5A+wJd WQ9NF/IPcxqlXBdoxhIgMB8GA1UdIwQYMBaAFBaEFcDBNAHA13FXHfhvjNX4UDsU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTRCQy83RkQwMTY2QzVB MkYxMUVEQTE5RTVFNjFDNEY5QUUwMi9Gb1FWd01FMEFjRFhjVmNkLUctTTFmaFFP eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZvUVZ3TUUwQWNEWGNWY2QtRy1NMWZoUU94US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE0QkMvN0ZEMDE2NkM1QTJGMTFFREExOUU1RTYxQzRGOUFFMDIvN0REMEU4ODQ1 QTMyMTFFREI2MzdFNjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnF/wwDQYJKoZIhvcNAQELBQADggEBAFyNhIlpKOeh8vHb CHxzHlidtKA+7i7sWkQh2jydXa8v03fD0WGHFLbZ3vYddjZxg0ZjxwfLFLiUyvdw xlqByW4bqOPvzcDqK5KEU1OXwf1WlR5jLW24mYSAEjdPOATn8wPnapwee/xKqk6V OEEBlUcElf2qll3VxdcytWZqHr7HcQqgWA5WLtEbPiy7Njv8IR0MU5Xprb3u7RCw NWGII7tthsiECeIBE9+Z6oHfivX7uzmolDvrnv1s0evOq0kh7m1ISHPRqt2rMTnx QmCBK0Ufh/0btt6Ar1lzJLXp7SBidOXwH3hamgkopk9Z3nwv9dcsEwoHJ2f/GU36 j7kbHNE= -----END CERTIFICATE-----Generated at Sun Dec 7 07:24:37 2025 by rpki-client