This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/93713A1442F311EDA8889068C4F9AE02.roa File: 93713A1442F311EDA8889068C4F9AE02.roa (raw, json) Hash identifier: yLA3AY7PCBiFOzXWOJZSGl/Jgl2cFpcBD+WvyQatx1o= Subject key identifier: 45:A6:61:81:93:6D:3A:FE:18:86:9C:91:6C:3E:72:D6:94:FA:B4:4B Certificate issuer: /CN=A91551D7/serialNumber=113618B0D410682AC06A901D65BB9AC955ED89E0 Certificate serial: 0EF9 Authority key identifier: 11:36:18:B0:D4:10:68:2A:C0:6A:90:1D:65:BB:9A:C9:55:ED:89:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ETYYsNQQaCrAapAdZbuayVXtieA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/93713A1442F311EDA8889068C4F9AE02.roa Signing time: Wed 14 Jan 2026 18:14:33 +0000 ROA not before: Wed 14 Jan 2026 18:14:32 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134809 IP address blocks: 43.230.96.0/22 maxlen: 22 103.13.74.0/24 maxlen: 24 120.138.80.0/20 maxlen: 20 163.47.88.0/22 maxlen: 22 221.133.32.0/21 maxlen: 21 221.133.40.0/21 maxlen: 21 223.27.128.0/20 maxlen: 20 2001:df7:6400::/48 maxlen: 48 2402:9a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/ETYYsNQQaCrAapAdZbuayVXtieA.crl rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/ETYYsNQQaCrAapAdZbuayVXtieA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ETYYsNQQaCrAapAdZbuayVXtieA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3833 (0xef9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91551D7, serialNumber=113618B0D410682AC06A901D65BB9AC955ED89E0 Validity Not Before: Jan 14 18:14:32 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6967dd08-86e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0f:50:d6:20:51:ab:58:8a:b2:23:db:4c:a9: 37:43:4e:c0:44:ef:bb:8b:e7:f3:bf:38:76:31:a1: 9a:86:6c:ff:24:ce:78:aa:8b:99:d9:f8:f4:92:b4: 1d:9b:4e:dd:92:ad:72:56:86:fb:cd:d2:93:e6:ba: 96:c1:82:bf:b1:2d:b2:29:79:ac:3b:dd:d1:a7:32: 59:3f:d4:95:63:de:b0:7e:1a:3e:9f:79:a1:92:82: ff:89:5c:ee:4b:86:f8:7f:fc:33:36:d7:9e:72:a4: c7:5a:aa:04:cd:1f:5d:f9:6b:d8:fb:1a:9f:5e:19: 8d:88:d5:0c:49:34:2d:76:19:4d:5b:f1:ef:48:3b: 8c:c5:f0:cf:fc:cd:97:aa:f2:5a:79:dc:38:50:9f: 63:c7:77:a5:52:92:71:0b:b7:dd:e6:9c:8a:25:6e: fc:3c:10:3f:1d:13:b0:56:e1:09:6e:ce:6c:b1:c4: 5d:3d:ed:61:3a:6b:38:5b:65:98:55:e7:86:c6:cc: 70:15:5e:1d:06:90:d3:7a:5c:3b:5e:13:ea:4d:32: 86:42:66:33:fb:65:1b:04:7b:60:e3:c5:41:01:d8: a9:be:6c:37:a2:0a:76:1f:74:9d:c4:71:f3:f1:1e: 5b:ca:25:1d:07:30:15:34:59:5f:cb:17:e9:4d:c6: 88:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A6:61:81:93:6D:3A:FE:18:86:9C:91:6C:3E:72:D6:94:FA:B4:4B X509v3 Authority Key Identifier: keyid:11:36:18:B0:D4:10:68:2A:C0:6A:90:1D:65:BB:9A:C9:55:ED:89:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/ETYYsNQQaCrAapAdZbuayVXtieA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ETYYsNQQaCrAapAdZbuayVXtieA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91551D7/68F092929E2F11E9B2E5280AC4F9AE02/93713A1442F311EDA8889068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.96.0/22 103.13.74.0/24 120.138.80.0/20 163.47.88.0/22 221.133.32.0/20 223.27.128.0/20 IPv6: 2001:df7:6400::/48 2402:9a00::/32 Signature Algorithm: sha256WithRSAEncryption 6a:7f:8e:47:a7:15:4e:29:91:5d:1f:0b:2b:9c:1d:f3:d0:62: 68:06:7e:d5:85:b1:9b:4b:be:83:a8:a9:e3:e7:e7:92:a2:b2: f3:f5:2d:47:d2:96:69:d8:06:93:4c:10:19:58:1c:2d:48:e0: 73:e5:4d:b8:1c:db:19:5b:d6:84:a7:04:27:d4:c3:4d:e6:5e: f8:c2:67:e2:b5:02:3d:10:f2:da:58:c1:b6:6a:7a:37:1c:fb: 6a:78:b3:e1:7d:45:92:9f:f2:99:3f:e8:94:0d:d6:a9:26:c0: 18:df:1e:d3:53:e6:be:de:e5:16:82:e6:a5:d8:6e:42:87:a6: aa:c9:30:ac:21:46:cf:69:25:dc:96:42:c9:b2:c4:73:1c:27: 92:85:c0:b9:6c:92:17:59:99:05:c9:b9:42:4d:30:cc:eb:65: 75:3a:a6:29:2b:71:42:08:86:2d:ec:8d:8f:ce:3c:38:e6:d0: e6:f7:1c:68:28:f3:2f:ed:31:32:50:83:3f:39:28:08:31:1b: 6b:a5:41:cd:8c:d6:fc:d4:97:22:a4:10:84:76:e5:02:6c:bc: 33:b9:f3:2f:24:0d:86:7d:7d:c3:c7:24:98:7f:13:33:3e:2e: 56:2d:ca:d8:7c:39:da:12:30:d3:1c:02:1e:50:fa:48:b3:43: bb:79:c1:32 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICDvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTUxRDcxMTAvBgNVBAUTKDExMzYxOEIwRDQxMDY4MkFDMDZBOTAxRDY1QkI5QUM5 NTVFRDg5RTAwHhcNMjYwMTE0MTgxNDMyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQwOC04NmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqw9Q1iBRq1iKsiPbTKk3Q07ARO+7i+fzvzh2MaGahmz/JM54qouZ2fj0krQd m07dkq1yVob7zdKT5rqWwYK/sS2yKXmsO93RpzJZP9SVY96wfho+n3mhkoL/iVzu S4b4f/wzNteecqTHWqoEzR9d+WvY+xqfXhmNiNUMSTQtdhlNW/HvSDuMxfDP/M2X qvJaedw4UJ9jx3elUpJxC7fd5pyKJW78PBA/HROwVuEJbs5sscRdPe1hOms4W2WY VeeGxsxwFV4dBpDTelw7XhPqTTKGQmYz+2UbBHtg48VBAdipvmw3ogp2H3SdxHHz 8R5byiUdBzAVNFlfyxfpTcaImQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFEWmYYGT bTr+GIackWw+ctaU+rRLMB8GA1UdIwQYMBaAFBE2GLDUEGgqwGqQHWW7mslV7Yng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTFENy82OEYwOTI5MjlF MkYxMUU5QjJFNTI4MEFDNEY5QUUwMi9FVFlZc05RUWFDckFhcEFkWmJ1YXlWWHRp ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VUWVlzTlFRYUNyQWFwQWRaYnVheVZYdGllQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUxRDcvNjhGMDkyOTI5RTJGMTFFOUIyRTUyODBBQzRGOUFFMDIvOTM3MTNBMTQ0 MkYzMTFFREE4ODg5MDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMCoEAgABMCQDBAIr5mADBABnDUoDBAR4ilADBAKjL1gDBATdhSADBATfG4Aw FgQCAAIwEAMHACABDfdkAAMFACQCmgAwDQYJKoZIhvcNAQELBQADggEBAGp/jken FU4pkV0fCyucHfPQYmgGftWFsZtLvoOoqePn55KisvP1LUfSlmnYBpNMEBlYHC1I 4HPlTbgc2xlb1oSnBCfUw03mXvjCZ+K1Aj0Q8tpYwbZqejcc+2p4s+F9RZKf8pk/ 6JQN1qkmwBjfHtNT5r7e5RaC5qXYbkKHpqrJMKwhRs9pJdyWQsmyxHMcJ5KFwLls khdZmQXJuUJNMMzrZXU6pikrcUIIhi3sjY/OPDjm0Ob3HGgo8y/tMTJQgz85KAgx G2ulQc2M1vzUlyKkEIR25QJsvDO58y8kDYZ9fcPHJJh/EzM+LlYtyth8OdoSMNMc Ah5Q+kizQ7t5wTI= -----END CERTIFICATE-----Generated at Sun Jan 25 18:34:57 2026 by rpki-client