This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa File: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (raw, json) Hash identifier: nulXjcOrSFFLkbb+9xp8u7rKBr37IkDLnEDnosvhdVs= Subject key identifier: B9:F3:48:35:77:D6:C7:DA:B1:5D:D9:F8:73:86:25:86:1A:E3:76:F6 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 02F7 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa Signing time: Fri 09 Jan 2026 01:20:25 +0000 ROA not before: Fri 09 Jan 2026 01:20:25 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133189 IP address blocks: 103.87.218.0/23 maxlen: 23 103.226.8.0/23 maxlen: 23 2401:3ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7, serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Jan 9 01:20:25 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696057d9-af64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:2a:a0:42:4c:ce:01:6c:e1:10:0b:a7:34:4d: c9:5d:84:7e:eb:12:a3:3c:45:93:59:3a:82:d0:44: b1:a3:34:b6:d2:64:b0:3d:e1:f9:bb:db:bc:1e:19: ce:e4:45:b5:db:1b:f6:bf:52:e2:e0:8a:70:2f:fb: ac:bd:1e:df:48:50:6c:d1:b5:3c:07:08:47:e4:41: 8f:03:79:74:76:8e:7d:54:55:ad:f2:c9:0f:b5:b0: 3c:93:fa:b9:92:60:59:98:6e:08:3a:51:c9:8a:51: 44:21:7e:c2:7f:5e:e8:ac:fe:58:35:3d:bb:83:81: 04:83:e4:7c:2f:80:b2:9d:d9:88:87:14:00:c1:a2: 75:0b:56:5c:f4:de:52:c0:e1:57:ef:34:ac:9d:eb: e0:d0:3e:7a:e0:4d:7e:e6:11:b8:ab:cc:41:86:3d: 37:47:d8:26:90:89:26:44:d1:43:a1:5a:e8:31:68: f0:99:07:3c:29:b3:aa:6c:9f:7f:1d:e1:cd:b3:0c: ce:19:4f:1d:34:f9:c1:12:3a:93:94:51:6a:e5:90: ca:df:fb:0e:93:dc:17:5c:65:c1:9e:98:a5:47:7a: cb:71:5c:09:b6:ae:4e:95:81:cd:3e:b9:50:eb:76: 94:dd:68:91:1d:bc:a6:27:60:ef:2b:9d:03:cf:d2: 12:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F3:48:35:77:D6:C7:DA:B1:5D:D9:F8:73:86:25:86:1A:E3:76:F6 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.218.0/23 103.226.8.0/23 IPv6: 2401:3ac0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:cf:0a:81:d6:26:d3:77:62:c9:32:4a:81:f9:98:b8:7e:fd: 99:55:40:62:76:cf:00:c4:97:19:ce:04:52:ac:32:7a:09:47: 35:80:4e:da:b1:ff:e8:38:a0:99:a6:cf:31:45:6e:86:58:44: e1:51:57:09:46:32:7b:a2:c1:b6:01:3b:04:2c:c1:e4:01:cf: dc:58:91:96:54:ac:4e:b1:16:5f:2c:63:6a:9b:5f:ad:ad:09: 82:c5:62:b1:e9:f6:d4:f9:da:3e:83:c1:63:18:ea:08:10:98: e3:4c:c4:36:4a:62:1a:6a:44:8d:90:29:93:fa:6e:2d:7e:7c: ef:d3:67:61:5c:9c:6a:01:99:b4:87:0b:c9:13:24:bb:fa:86: 83:5e:1f:74:54:e8:63:2d:86:d2:a7:15:6d:2f:a5:e3:ff:3f: bb:94:13:b6:cf:2f:95:94:5f:12:4e:e5:fe:bb:41:5a:ab:c9: 81:4a:cc:c0:35:6c:2c:3d:1a:37:2f:e5:f6:65:38:f4:7d:0a: 48:53:ed:fc:6b:0b:57:a2:3c:bb:de:86:ab:d2:b1:b0:ac:16: fb:d1:2c:c0:38:c1:93:1d:cf:5a:b4:6d:1c:d0:a8:c0:3d:a2: b2:46:81:1a:21:bd:df:a5:d2:b9:6e:2c:02:e9:63:37:fa:d5: d0:d4:07:2b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjYwMTA5MDEyMDI1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTYwNTdkOS1hZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjyqgQkzOAWzhEAunNE3JXYR+6xKjPEWTWTqC0ESxozS20mSwPeH5u9u8HhnO 5EW12xv2v1Li4IpwL/usvR7fSFBs0bU8BwhH5EGPA3l0do59VFWt8skPtbA8k/q5 kmBZmG4IOlHJilFEIX7Cf17orP5YNT27g4EEg+R8L4CyndmIhxQAwaJ1C1Zc9N5S wOFX7zSsnevg0D564E1+5hG4q8xBhj03R9gmkIkmRNFDoVroMWjwmQc8KbOqbJ9/ HeHNswzOGU8dNPnBEjqTlFFq5ZDK3/sOk9wXXGXBnpilR3rLcVwJtq5OlYHNPrlQ 63aU3WiRHbymJ2DvK50Dz9ISXwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLnzSDV3 1sfasV3Z+HOGJYYa43b2MB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcwQjcvQTUyNjRFRTAwQkREMTFFRDlBQjlFQzJCQzRGOUFFMDIvMjg0MUEwQ0Uw QkUxMTFFRDlFM0FBMTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnV9oDBAFn4ggwDQQCAAIwBwMFACQBOsAwDQYJKoZIhvcN AQELBQADggEBAH/PCoHWJtN3YskySoH5mLh+/ZlVQGJ2zwDElxnOBFKsMnoJRzWA Ttqx/+g4oJmmzzFFboZYROFRVwlGMnuiwbYBOwQsweQBz9xYkZZUrE6xFl8sY2qb X62tCYLFYrHp9tT52j6DwWMY6ggQmONMxDZKYhpqRI2QKZP6bi1+fO/TZ2FcnGoB mbSHC8kTJLv6hoNeH3RU6GMthtKnFW0vpeP/P7uUE7bPL5WUXxJO5f67QVqryYFK zMA1bCw9Gjcv5fZlOPR9CkhT7fxrC1eiPLvehqvSsbCsFvvRLMA4wZMdz1q0bRzQ qMA9orJGgRohvd+l0rluLALpYzf61dDUBys= -----END CERTIFICATE-----Generated at Sun Jan 25 18:29:22 2026 by rpki-client