This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa File: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (raw, json) Hash identifier: SaWX6hkIcJ4pgsrGygV8fgQyGHt1YhbbUvZTPYJ4JwU= Subject key identifier: 67:C4:80:30:CF:90:67:AA:72:F2:90:A3:2F:22:D2:5C:DB:E6:EA:FA Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 046F Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa Signing time: Thu 04 Dec 2025 23:35:39 +0000 ROA not before: Thu 04 Dec 2025 23:35:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137427 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/23 maxlen: 23 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Dec 4 23:35:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69321acb-2cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7e:d3:a5:e1:54:d9:54:0d:ed:29:eb:b0:d2: 70:51:33:2a:d4:6f:37:98:11:2b:29:81:1e:a0:fd: 70:e5:67:12:06:23:f1:8e:f7:13:7a:b1:8e:40:75: 22:50:fe:4c:8f:01:08:b7:e3:f0:a1:44:b2:40:31: a6:b1:7a:bd:84:a2:8a:a5:d6:66:ae:c0:01:ec:f8: f3:93:e5:37:25:55:2b:d6:0f:de:12:20:54:3d:b1: 6b:92:9e:65:7c:ec:60:63:8e:ab:a7:89:e0:eb:a7: f1:03:db:f5:45:3c:80:b0:a5:a4:62:99:0d:34:08: a9:0d:de:87:b1:8f:55:71:71:5a:fc:cd:70:b8:76: 32:90:0c:2f:56:14:3c:be:b0:a4:2b:c1:00:f4:04: 1e:9a:61:62:1c:bf:44:aa:d9:fa:a7:79:fa:0e:8c: 69:3e:88:08:b6:8a:ef:c4:af:91:27:b5:b5:36:78: e4:3b:43:d2:98:51:2c:62:fe:ad:71:86:f1:a6:9c: 5c:1a:d6:a3:d2:36:42:a6:24:4d:5a:82:6e:81:3e: ca:e1:e4:bb:aa:3f:74:9a:f3:5a:4b:22:39:0c:1b: e7:7d:1b:e8:af:5f:08:43:75:60:db:92:5d:c1:cd: 41:90:a6:de:88:7a:43:b2:f9:e5:a8:5a:90:cd:0f: 67:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C4:80:30:CF:90:67:AA:72:F2:90:A3:2F:22:D2:5C:DB:E6:EA:FA X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption b3:a0:d5:4a:58:4d:49:9b:d7:e5:2f:4f:a5:6a:c8:3b:e6:9f: 4f:a9:da:06:0a:04:74:52:3f:2c:6b:73:8a:62:a5:8e:49:18: 14:3b:93:f8:97:b5:26:cd:b6:dd:7d:1e:e9:2f:71:c0:e0:01: 23:56:42:5b:3a:14:13:be:16:05:c9:0d:ad:62:29:8d:a2:6a: 90:c4:e9:f3:2e:c1:4a:11:3e:1e:b5:39:34:d5:b2:c1:1f:a8: b9:c0:f1:1a:4c:7e:a8:a7:4d:de:ea:fa:d5:74:c3:1a:8c:7e: c9:bd:c3:56:99:1a:d2:4a:41:d8:72:a7:7c:b2:52:4e:35:d2: 4b:b8:0f:ef:c1:17:5b:9f:93:75:b5:f7:da:ab:8b:31:66:e1: bc:24:40:a9:a7:d9:7a:14:c1:07:ea:b5:11:db:34:51:ea:7f: e4:b7:79:c6:15:46:54:bf:00:41:11:18:b0:8f:e6:41:89:e7: 8f:49:bb:87:f5:8b:62:55:82:15:2d:4c:b1:8f:41:4f:01:ba: 3c:cc:5c:f7:df:0c:1d:5d:5e:35:34:cb:fc:e9:24:6c:7c:61: 05:da:08:8f:a7:99:75:d0:0f:71:d4:5e:a3:57:24:4b:9c:97: 15:d7:42:27:22:ff:d9:84:bd:b7:e0:d4:73:3d:f1:63:79:a5: e5:a3:cd:c1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUxMjA0MjMzNTM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyMWFjYi0yY2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzH7TpeFU2VQN7SnrsNJwUTMq1G83mBErKYEeoP1w5WcSBiPxjvcTerGOQHUi UP5MjwEIt+PwoUSyQDGmsXq9hKKKpdZmrsAB7Pjzk+U3JVUr1g/eEiBUPbFrkp5l fOxgY46rp4ng66fxA9v1RTyAsKWkYpkNNAipDd6HsY9VcXFa/M1wuHYykAwvVhQ8 vrCkK8EA9AQemmFiHL9Eqtn6p3n6DoxpPogItorvxK+RJ7W1NnjkO0PSmFEsYv6t cYbxppxcGtaj0jZCpiRNWoJugT7K4eS7qj90mvNaSyI5DBvnfRvor18IQ3Vg25Jd wc1BkKbeiHpDsvnlqFqQzQ9nFQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFGfEgDDP kGeqcvKQoy8i0lzb5ur6MB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOEE0QzY2MkFF QUI1MTFFQ0JCREUzQzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnW9kwDAMEBGdj0AMEAGdj0jANBgkqhkiG9w0BAQsFAAOC AQEAs6DVSlhNSZvX5S9PpWrIO+afT6naBgoEdFI/LGtzimKljkkYFDuT+Je1Js22 3X0e6S9xwOABI1ZCWzoUE74WBckNrWIpjaJqkMTp8y7BShE+HrU5NNWywR+oucDx Gkx+qKdN3ur61XTDGox+yb3DVpka0kpB2HKnfLJSTjXSS7gP78EXW5+TdbX32quL MWbhvCRAqafZehTBB+q1Eds0Uep/5Ld5xhVGVL8AQREYsI/mQYnnj0m7h/WLYlWC FS1MsY9BTwG6PMxc998MHV1eNTTL/OkkbHxhBdoIj6eZddAPcdReo1ckS5yXFddC JyL/2YS9t+DUcz3xY3ml5aPNwQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:28:38 2025 by rpki-client