This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/950A55CCC3C711ED8419AA64C4F9AE02.roa File: 950A55CCC3C711ED8419AA64C4F9AE02.roa (raw, json) Hash identifier: 3TGDY4CM2CMzOV1+RJNcrteh6hh5/ooeIXNp6ZAdAUE= Subject key identifier: EA:28:34:81:F6:A7:AD:40:A2:8E:DF:CA:EC:74:A8:8A:EF:D2:1B:1C Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 0212 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/950A55CCC3C711ED8419AA64C4F9AE02.roa Signing time: Mon 29 Dec 2025 02:21:36 +0000 ROA not before: Mon 29 Dec 2025 02:21:36 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135518 IP address blocks: 103.73.216.0/23 maxlen: 23 2001:df2:e640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Dec 29 02:21:36 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6951e5b0-56ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ad:10:b5:2a:15:6d:6e:a6:73:fe:e0:b4:ba: 4e:68:cc:46:2c:de:0f:8c:f2:0a:9c:73:ff:8a:59: 72:6e:8f:05:dd:f9:d0:53:a9:b2:9a:8a:30:d1:92: 20:a1:16:bf:cd:d4:d8:6e:ca:e4:dd:cb:78:9b:a4: 71:be:dc:3f:73:ef:a1:4b:f2:04:7a:c4:03:e1:ad: d1:15:2d:f4:20:fe:50:05:10:17:7d:10:62:ac:d1: 04:d9:63:f6:c0:92:14:9e:ae:a3:ea:d6:9a:28:26: f6:09:8b:0e:c2:6b:43:9f:48:d8:06:ea:c3:be:ce: ac:37:02:c4:65:58:91:64:e4:4d:02:d7:a6:69:6c: b8:f5:d4:64:f1:7f:7e:73:17:1c:14:56:d0:c0:67: 82:ba:c1:ea:50:3d:fe:51:4e:83:30:6b:df:11:f4: ac:65:e4:de:05:e4:19:af:5b:91:86:04:3e:b9:59: dd:cd:6a:00:88:75:87:e6:f3:59:9d:86:a5:9a:30: 10:20:eb:5b:94:28:3c:0b:82:50:2a:ba:1f:d3:a3: fa:6a:b5:d0:d1:b1:5f:e5:5a:45:37:37:44:0f:aa: c7:c4:11:df:16:71:e7:a8:52:74:cc:9e:c7:72:42: 14:30:6a:c8:cd:b6:ce:4e:3c:83:db:b1:83:50:06: ca:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:28:34:81:F6:A7:AD:40:A2:8E:DF:CA:EC:74:A8:8A:EF:D2:1B:1C X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/950A55CCC3C711ED8419AA64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.216.0/23 IPv6: 2001:df2:e640::/48 Signature Algorithm: sha256WithRSAEncryption 2c:92:f6:fd:71:d7:24:f6:81:85:72:ea:05:23:9d:a2:3a:4d: 62:c3:b6:fa:64:3d:75:f8:10:94:c6:08:e8:eb:7b:69:d6:fa: 25:25:e7:84:d6:b8:a6:5e:82:92:fd:ce:d7:af:68:a0:cb:5f: 93:9d:ac:03:c3:de:f9:72:2d:17:fe:64:da:c4:48:f0:a8:5c: 4c:be:f0:86:01:ef:f3:09:fe:0b:20:13:6c:1b:10:33:36:2f: 3b:b8:b7:43:85:10:11:81:df:cf:fa:1c:e3:7e:ac:4b:2f:3c: 7e:26:cb:13:b6:9c:12:f1:20:0f:c9:22:cd:7d:5c:71:b1:c8: e6:17:19:86:d5:0d:16:27:34:00:19:ba:49:e2:c2:42:12:0d: a0:52:f2:fc:99:4e:32:33:a1:bd:75:0a:d1:c6:2a:a2:83:a3: 5c:64:da:e8:a1:4b:ea:68:10:17:35:2a:a0:dc:b3:bc:f5:36: 15:8b:cc:a2:c9:f5:7f:62:0a:3d:d1:59:b2:94:f6:92:e2:57: 40:73:f6:66:cd:86:32:b6:4d:c6:92:b9:cf:44:14:0b:84:5d: ab:5f:83:fb:57:a2:73:f0:92:83:33:73:89:7f:4a:08:45:74: cc:b6:b4:bb:db:4a:b5:1b:15:49:6d:33:b9:27:ea:70:f3:a5: c3:b0:e1:fc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUxMjI5MDIyMTM2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUxZTViMC01NmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2q0QtSoVbW6mc/7gtLpOaMxGLN4PjPIKnHP/illybo8F3fnQU6mymoow0ZIg oRa/zdTYbsrk3ct4m6Rxvtw/c++hS/IEesQD4a3RFS30IP5QBRAXfRBirNEE2WP2 wJIUnq6j6taaKCb2CYsOwmtDn0jYBurDvs6sNwLEZViRZORNAtemaWy49dRk8X9+ cxccFFbQwGeCusHqUD3+UU6DMGvfEfSsZeTeBeQZr1uRhgQ+uVndzWoAiHWH5vNZ nYalmjAQIOtblCg8C4JQKrof06P6arXQ0bFf5VpFNzdED6rHxBHfFnHnqFJ0zJ7H ckIUMGrIzbbOTjyD27GDUAbK0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOooNIH2 p61Aoo7fyux0qIrv0hscMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI0QTYvMThFNUQ0ODRDM0MzMTFFREFBNUFDQjQ3QzRGOUFFMDIvOTUwQTU1Q0ND M0M3MTFFRDg0MTlBQTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSdgwDwQCAAIwCQMHACABDfLmQDANBgkqhkiG9w0BAQsF AAOCAQEALJL2/XHXJPaBhXLqBSOdojpNYsO2+mQ9dfgQlMYI6Ot7adb6JSXnhNa4 pl6Ckv3O169ooMtfk52sA8Pe+XItF/5k2sRI8KhcTL7whgHv8wn+CyATbBsQMzYv O7i3Q4UQEYHfz/oc436sSy88fibLE7acEvEgD8kizX1ccbHI5hcZhtUNFic0ABm6 SeLCQhINoFLy/JlOMjOhvXUK0cYqooOjXGTa6KFL6mgQFzUqoNyzvPU2FYvMosn1 f2IKPdFZspT2kuJXQHP2Zs2GMrZNxpK5z0QUC4Rdq1+D+1eic/CSgzNziX9KCEV0 zLa0u9tKtRsVSW0zuSfqcPOlw7Dh/A== -----END CERTIFICATE-----Generated at Sun Jan 25 06:17:09 2026 by rpki-client