This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/DAC133B0C8EC11F08ED15548C4F9AE02.roa File: DAC133B0C8EC11F08ED15548C4F9AE02.roa (raw, json) Hash identifier: PjuAZHymRLgjyU1+dD4M+di6u+meaNL5ZJGfrmfJ0m8= Subject key identifier: D1:B0:EB:B6:66:D5:33:0D:A3:47:A3:F4:90:13:8F:0F:D7:FC:F5:5A Certificate issuer: /CN=A91331AA/serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Certificate serial: 03 Authority key identifier: DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/DAC133B0C8EC11F08ED15548C4F9AE02.roa Signing time: Mon 24 Nov 2025 04:20:06 +0000 ROA not before: Mon 24 Nov 2025 04:20:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 2764 IP address blocks: 203.12.115.0/24 maxlen: 24 203.34.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91331AA, serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Validity Not Before: Nov 24 04:20:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6923dcf5-5ef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:47:28:e1:e5:13:49:6e:eb:c2:43:c5:b4:51: bb:ec:7a:93:e9:df:f6:aa:98:c0:a5:fb:31:82:bf: 55:84:86:01:cd:64:16:c9:e2:f3:3d:b4:34:cf:e2: 77:75:95:82:89:7c:4c:e4:da:9c:b4:bf:df:e0:8f: 87:26:43:b4:58:97:e1:cc:5b:c4:64:a0:c3:4f:11: b7:27:88:31:0a:bf:cc:44:00:21:d7:e0:bb:68:8d: 5b:de:cb:b8:f4:b3:1b:3a:00:a5:37:61:99:56:9a: 63:7e:e8:ad:47:ac:38:b9:4a:a3:1e:97:f5:1e:c3: 87:c6:8e:36:3f:30:aa:3b:28:fe:51:f3:0d:65:1f: f8:f7:b5:f4:79:c9:02:a4:51:37:5a:28:5c:d6:b8: 7d:9d:c9:cd:62:53:ee:4c:9d:69:ad:e6:28:7c:0c: 7b:ec:b7:2b:05:18:d8:43:f1:02:41:12:b3:10:12: 85:3a:9f:b0:a5:d1:69:98:5c:c7:35:4f:47:ef:18: 0f:08:0b:e7:39:99:28:aa:6e:93:b1:a7:8a:c1:78: 2f:d6:4c:44:c2:1a:1f:02:50:d6:5a:1b:1c:9f:a5: a3:d4:f4:c8:6a:25:74:0d:05:c0:e7:c5:b9:2f:85: dc:ee:5c:8a:73:07:f3:ed:9f:b8:80:a2:29:96:e4: 3d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B0:EB:B6:66:D5:33:0D:A3:47:A3:F4:90:13:8F:0F:D7:FC:F5:5A X509v3 Authority Key Identifier: keyid:DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/DAC133B0C8EC11F08ED15548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.115.0/24 203.34.104.0/24 Signature Algorithm: sha256WithRSAEncryption 11:02:cf:67:84:29:18:b4:a0:91:fb:fd:de:a0:bf:dd:01:6b: f4:b0:c3:04:dc:4f:0d:bb:95:b3:b0:34:37:89:86:c9:f3:e8: 81:47:91:9d:a2:fd:e2:21:98:41:ec:e5:90:07:48:5b:7e:3e: 53:e7:a0:a2:13:92:6c:d8:81:b0:70:0d:08:d4:10:8e:fb:3f: b2:53:df:e3:94:d9:24:d6:77:5a:6e:a1:5e:75:60:9d:31:8a: 63:65:bf:7c:34:77:61:65:a6:bd:7a:c3:f2:ee:65:2d:e0:cd: 0e:74:af:06:ea:73:e3:7f:16:0e:5f:3c:47:08:8c:29:8c:cf: a5:4c:45:21:82:d7:2b:2e:8b:ee:7b:3a:c7:bc:ab:a9:7d:8c: 54:26:7b:9b:ba:01:94:22:6b:50:7b:ef:81:ae:42:0f:61:16: 11:f4:87:5d:3f:3a:ce:45:69:e8:e0:05:55:f2:ab:c2:16:ac: e8:b2:7f:72:69:37:81:4b:61:a6:81:c3:c2:56:bc:46:e0:f4: 44:39:d9:a3:a2:55:2f:6e:05:e5:95:6a:74:41:5d:27:bd:91: 2c:36:97:0c:2b:31:79:77:ad:3f:59:98:ff:5a:2d:70:af:82: 49:d0:35:82:9f:c3:db:9f:88:c7:ee:91:5d:4a:9a:98:46:81: bb:cd:98:31 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzFBQTExMC8GA1UEBRMoREQ0ODVGOUEyMzExNkQ0MTEwQzA3QkQzODcxRUY0QTYx NEVDNEQyQzAeFw0yNTExMjQwNDIwMDZaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjNkY2Y1LTVlZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaRyjh5RNJbuvCQ8W0UbvsepPp3/aqmMCl+zGCv1WEhgHNZBbJ4vM9tDTP4nd1 lYKJfEzk2py0v9/gj4cmQ7RYl+HMW8RkoMNPEbcniDEKv8xEACHX4LtojVvey7j0 sxs6AKU3YZlWmmN+6K1HrDi5SqMel/Uew4fGjjY/MKo7KP5R8w1lH/j3tfR5yQKk UTdaKFzWuH2dyc1iU+5MnWmt5ih8DHvstysFGNhD8QJBErMQEoU6n7Cl0WmYXMc1 T0fvGA8IC+c5mSiqbpOxp4rBeC/WTETCGh8CUNZaGxyfpaPU9MhqJXQNBcDnxbkv hdzuXIpzB/Ptn7iAoimW5D1vAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU0bDrtmbV Mw2jR6P0kBOPD9f89VowHwYDVR0jBBgwFoAU3UhfmiMRbUEQwHvThx70phTsTSww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzMUFBLzhBRkJEQjYwQzhF QjExRjA4NjE4N0I4MEM0RjlBRTAyLzNVaGZtaU1SYlVFUXdIdlRoeDcwcGhUc1RT dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1VoZm1pTVJiVUVRd0h2VGh4NzBwaFRzVFN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzFBQS84QUZCREI2MEM4RUIxMUYwODYxODdCODBDNEY5QUUwMi9EQUMxMzNCMEM4 RUMxMUYwOEVEMTU1NDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAMsMcwMEAMsiaDANBgkqhkiG9w0BAQsFAAOCAQEAEQLPZ4Qp GLSgkfv93qC/3QFr9LDDBNxPDbuVs7A0N4mGyfPogUeRnaL94iGYQezlkAdIW34+ U+egohOSbNiBsHANCNQQjvs/slPf45TZJNZ3Wm6hXnVgnTGKY2W/fDR3YWWmvXrD 8u5lLeDNDnSvBupz438WDl88RwiMKYzPpUxFIYLXKy6L7ns6x7yrqX2MVCZ7m7oB lCJrUHvvga5CD2EWEfSHXT86zkVp6OAFVfKrwhas6LJ/cmk3gUthpoHDwla8RuD0 RDnZo6JVL24F5ZVqdEFdJ72RLDaXDCsxeXetP1mY/1otcK+CSdA1gp/D25+Ix+6R XUqamEaBu82YMQ== -----END CERTIFICATE-----Generated at Sun Dec 7 02:05:18 2025 by rpki-client