This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/AFF4E1F89EB711EC8210607DC4F9AE02.roa File: AFF4E1F89EB711EC8210607DC4F9AE02.roa (raw, json) Hash identifier: +r7YhLJJlScIggKwXtneBk7o6LpJoWXkYcjOQ/aNmpo= Subject key identifier: 90:9A:16:87:2E:F8:07:16:88:49:64:A7:9E:33:CB:5C:6E:36:F8:4B Certificate issuer: /CN=A91365B9/serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Certificate serial: 03F5 Authority key identifier: C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/AFF4E1F89EB711EC8210607DC4F9AE02.roa Signing time: Tue 02 Dec 2025 23:28:53 +0000 ROA not before: Tue 02 Dec 2025 23:28:52 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138678 IP address blocks: 103.144.0.0/24 maxlen: 24 103.144.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91365B9, serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Validity Not Before: Dec 2 23:28:52 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f7634-e1cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:8c:4f:2a:af:09:2e:d0:ca:10:15:46:20:33: c8:82:43:c5:c1:dd:99:d7:12:31:89:13:dc:24:0b: f0:33:b2:c8:e9:2e:e1:03:27:13:5c:6b:73:21:a0: 31:dc:1a:f2:97:a9:b0:22:54:a5:af:62:fa:57:cd: ea:32:23:16:1f:93:0d:e0:b8:a6:a6:af:e9:68:04: 15:1f:fc:d5:c2:fd:eb:f0:1b:53:56:6f:c5:7d:7c: 6d:5a:30:8b:77:c4:d4:a6:16:97:2b:6d:9a:f5:08: 7b:2f:2d:65:98:c3:0c:d4:ba:1e:80:40:41:11:a8: 1c:fc:4f:57:0b:ec:05:32:a6:86:54:85:a3:f4:e5: 07:3f:cc:4c:1a:7b:ec:34:12:4b:f0:fa:1c:93:77: c4:b3:25:70:96:a3:b3:d7:d5:2e:fb:b7:a6:2c:f9: 04:96:1e:10:af:b8:ae:f9:24:a3:72:c1:2e:be:2c: 44:64:b8:df:f1:0e:a6:8f:29:e2:77:d3:49:77:7f: 50:a2:89:70:cf:cc:49:95:73:06:73:ca:fb:7a:f1: 02:bf:b5:23:78:4d:b4:35:5a:b9:43:9c:44:a0:f8: a2:96:1d:a8:25:00:4a:57:ed:e6:7c:43:d1:ff:a5: eb:f4:c3:bd:0e:7a:0e:d4:9b:a8:b3:f0:49:73:95: 58:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9A:16:87:2E:F8:07:16:88:49:64:A7:9E:33:CB:5C:6E:36:F8:4B X509v3 Authority Key Identifier: keyid:C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/AFF4E1F89EB711EC8210607DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.0.0/23 Signature Algorithm: sha256WithRSAEncryption 82:0b:8b:d9:2a:83:1f:dc:d4:07:fa:d8:af:bc:76:ad:5b:4e: 18:63:b5:48:4b:fb:c7:82:bb:3e:50:7f:05:86:69:dc:ad:84: 35:ef:f5:e9:95:94:d0:98:87:fd:8a:62:23:fc:a4:fb:0c:4f: e5:0a:17:40:70:8b:55:c6:8c:f4:e1:02:c9:a0:f4:97:20:68: 96:78:bf:c5:b8:d3:c4:f9:2b:4d:77:db:2e:a9:8d:8a:0b:24: 60:cd:74:18:b7:58:e9:a9:d7:a1:d5:fe:bc:4f:f5:7e:6a:f3: e2:72:d8:1c:fa:78:3f:fd:f0:ff:2e:15:42:bf:8e:6a:3b:24: 4b:85:1c:6d:59:f0:c2:48:c1:3d:a0:84:21:03:80:74:c8:09: 7f:e2:77:ea:22:48:fc:20:41:61:20:64:02:16:92:cb:58:3d: 74:a3:f7:5b:be:7b:26:5c:ec:08:b4:53:d2:fc:80:8b:90:c1: 44:14:04:aa:98:f9:c4:64:9b:ed:d6:57:9d:29:5d:0a:19:4f: 96:d7:bd:66:07:6a:ae:90:7a:e5:81:8b:69:29:92:2d:81:31: 07:fb:00:d8:52:8f:4c:9f:73:3e:7f:66:15:e3:c2:57:5f:6c: f8:29:7c:b0:65:cb:4f:7c:35:66:b8:7f:2d:b3:f4:fe:ca:d1: a7:58:a2:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY1QjkxMTAvBgNVBAUTKEMyQTJFQjRDRjkxMDI3NzhBNDJFMTVDQ0QyMEE1ODRF RENFREMyNzIwHhcNMjUxMjAyMjMyODUyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmNzYzNC1lMWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+YxPKq8JLtDKEBVGIDPIgkPFwd2Z1xIxiRPcJAvwM7LI6S7hAycTXGtzIaAx 3Bryl6mwIlSlr2L6V83qMiMWH5MN4Limpq/paAQVH/zVwv3r8BtTVm/FfXxtWjCL d8TUphaXK22a9Qh7Ly1lmMMM1LoegEBBEagc/E9XC+wFMqaGVIWj9OUHP8xMGnvs NBJL8Pock3fEsyVwlqOz19Uu+7emLPkElh4Qr7iu+SSjcsEuvixEZLjf8Q6mjyni d9NJd39Qoolwz8xJlXMGc8r7evECv7UjeE20NVq5Q5xEoPiilh2oJQBKV+3mfEPR /6Xr9MO9DnoO1Juos/BJc5VY5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJCaFocu +AcWiElkp54zy1xuNvhLMB8GA1UdIwQYMBaAFMKi60z5ECd4pC4VzNIKWE7c7cJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjVCOS83NDVENzcwMjlF QjQxMUVDQkYwRTE0NzdDNEY5QUUwMi93cUxyVFBrUUozaWtMaFhNMGdwWVR0enR3 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dxTHJUUGtRSjNpa0xoWE0wZ3BZVHR6dHduSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY1QjkvNzQ1RDc3MDI5RUI0MTFFQ0JGMEUxNDc3QzRGOUFFMDIvQUZGNEUxRjg5 RUI3MTFFQzgyMTA2MDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkAAwDQYJKoZIhvcNAQELBQADggEBAIILi9kqgx/c1Af6 2K+8dq1bThhjtUhL+8eCuz5QfwWGadythDXv9emVlNCYh/2KYiP8pPsMT+UKF0Bw i1XGjPThAsmg9JcgaJZ4v8W408T5K0132y6pjYoLJGDNdBi3WOmp16HV/rxP9X5q 8+Jy2Bz6eD/98P8uFUK/jmo7JEuFHG1Z8MJIwT2ghCEDgHTICX/id+oiSPwgQWEg ZAIWkstYPXSj91u+eyZc7Ai0U9L8gIuQwUQUBKqY+cRkm+3WV50pXQoZT5bXvWYH aq6QeuWBi2kpki2BMQf7ANhSj0yfcz5/ZhXjwldfbPgpfLBly098NWa4fy2z9P7K 0adYouY= -----END CERTIFICATE-----Generated at Sat Dec 6 17:45:12 2025 by rpki-client