This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa File: 60820A4271AC11EDAA89DE61C4F9AE02.roa (raw, json) Hash identifier: RTJgvsbwzmrs85A6QasoAHRw5V84DsstoScVFoVQEIM= Subject key identifier: 17:F3:84:46:E6:11:43:B5:54:A1:81:31:EA:4E:A0:44:59:A7:0F:A6 Certificate issuer: /CN=A91886E3/serialNumber=BBABD3F16E100FD9C95D474884E4DA9CB6FA768D Certificate serial: 0235 Authority key identifier: BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa Signing time: Thu 13 Nov 2025 00:47:20 +0000 ROA not before: Thu 13 Nov 2025 00:47:20 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133752 IP address blocks: 103.21.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.crl rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886E3, serialNumber=BBABD3F16E100FD9C95D474884E4DA9CB6FA768D Validity Not Before: Nov 13 00:47:20 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69152a98-96fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c4:e9:86:12:c0:be:61:c3:f1:e1:9d:62:a8: 37:76:3e:b5:81:bd:2d:da:27:c0:17:c0:2b:0e:0a: 2f:e2:29:b4:2d:0c:b7:f9:db:9d:6d:16:a7:1d:94: 1a:d5:a6:a9:ee:0d:9b:e2:23:94:8e:8a:77:a1:33: bb:24:18:a5:82:eb:f4:08:c1:45:17:c3:2e:16:d2: 23:67:cf:7b:d2:6a:cd:40:e9:82:a8:71:8d:e3:8c: 90:bf:a6:10:72:08:10:5d:88:ab:26:be:8c:67:8a: 30:05:f1:d3:1c:12:a8:b4:bd:26:60:ae:7b:37:7e: 36:3e:40:5b:44:d6:ee:c8:dc:f6:46:75:d3:44:4a: 81:e0:58:f6:6e:bd:b8:bf:cd:62:63:2b:cf:ba:8b: 83:b0:5a:01:1f:e4:91:74:23:40:5f:b5:e1:47:a4: 19:49:39:c5:cb:3a:a0:a3:e5:92:f6:24:f9:c9:87: 98:64:90:91:5d:84:f9:55:f5:e4:3a:95:71:07:53: 87:cf:e2:f1:17:9d:4e:b5:db:d3:a5:a4:eb:97:57: c0:73:ea:d7:05:5e:4f:36:e7:10:52:a6:59:c2:04: 4e:73:63:27:48:22:45:22:96:18:08:09:fe:81:be: 4b:1a:cd:3d:e6:58:5d:5f:8a:77:07:42:3a:fc:6e: 6b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F3:84:46:E6:11:43:B5:54:A1:81:31:EA:4E:A0:44:59:A7:0F:A6 X509v3 Authority Key Identifier: keyid:BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.220.0/24 Signature Algorithm: sha256WithRSAEncryption a3:b9:74:09:7d:6a:16:be:69:4c:bd:17:f2:15:e8:f5:8a:1a: bb:12:44:bb:c5:7d:5d:c0:e6:05:98:9e:5f:08:84:9f:e3:1c: f6:66:90:88:32:96:22:4c:5b:07:5e:3c:40:a4:02:30:99:32: 87:21:de:c0:47:dd:b0:e9:7a:56:b5:b0:57:b5:3a:61:9b:bb: 31:8d:c2:dd:b6:a3:25:73:2e:1b:d4:e0:f1:73:0f:17:b4:a7: 4b:f6:93:a5:64:c3:ff:df:9b:a4:7b:54:8d:40:2c:9d:3b:bf: 3f:da:20:c6:d5:8d:08:26:bf:51:38:25:88:b0:1a:51:91:53: fa:35:2f:05:c6:7f:33:7c:99:d5:84:ea:03:2b:73:7f:e9:b1: f1:6e:92:49:01:c6:ef:39:5a:86:94:bf:25:7f:8a:e4:3b:c2: f0:7f:96:66:ce:06:51:2f:20:5d:4e:c9:35:26:99:eb:d6:e6: 41:0d:fb:f2:96:60:30:d2:8e:48:dc:78:17:86:7b:dd:fd:58: 93:2a:33:dd:cf:11:52:ef:e9:c1:37:25:11:a7:a0:ca:8e:e2: 8a:df:76:e1:c7:e8:1e:85:df:65:c0:7e:4a:b7:0a:20:f4:43: cf:07:30:ae:ec:13:b8:21:24:6f:21:a1:4a:fe:df:6b:5e:3a: a6:55:34:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2RTMxMTAvBgNVBAUTKEJCQUJEM0YxNkUxMDBGRDlDOTVENDc0ODg0RTREQTlD QjZGQTc2OEQwHhcNMjUxMTEzMDA0NzIwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE1MmE5OC05NmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sTphhLAvmHD8eGdYqg3dj61gb0t2ifAF8ArDgov4im0LQy3+dudbRanHZQa 1aap7g2b4iOUjop3oTO7JBilguv0CMFFF8MuFtIjZ8970mrNQOmCqHGN44yQv6YQ cggQXYirJr6MZ4owBfHTHBKotL0mYK57N342PkBbRNbuyNz2RnXTREqB4Fj2br24 v81iYyvPuouDsFoBH+SRdCNAX7XhR6QZSTnFyzqgo+WS9iT5yYeYZJCRXYT5VfXk OpVxB1OHz+LxF51OtdvTpaTrl1fAc+rXBV5PNucQUqZZwgROc2MnSCJFIpYYCAn+ gb5LGs095lhdX4p3B0I6/G5rmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBfzhEbm EUO1VKGBMepOoERZpw+mMB8GA1UdIwQYMBaAFLur0/FuEA/ZyV1HSITk2py2+naN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZFMy8xMjQ3Qjg2MDY2 OTIxMUVEODJCRTcxMzNDNEY5QUUwMi91NnZUOFc0UUQ5bkpYVWRJaE9UYW5MYjZk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U2dlQ4VzRRRDluSlhVZEloT1RhbkxiNmRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2RTMvMTI0N0I4NjA2NjkyMTFFRDgyQkU3MTMzQzRGOUFFMDIvNjA4MjBBNDI3 MUFDMTFFREFBODlERTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFdwwDQYJKoZIhvcNAQELBQADggEBAKO5dAl9aha+aUy9 F/IV6PWKGrsSRLvFfV3A5gWYnl8IhJ/jHPZmkIgyliJMWwdePECkAjCZMoch3sBH 3bDpela1sFe1OmGbuzGNwt22oyVzLhvU4PFzDxe0p0v2k6Vkw//fm6R7VI1ALJ07 vz/aIMbVjQgmv1E4JYiwGlGRU/o1LwXGfzN8mdWE6gMrc3/psfFukkkBxu85WoaU vyV/iuQ7wvB/lmbOBlEvIF1OyTUmmevW5kEN+/KWYDDSjkjceBeGe939WJMqM93P EVLv6cE3JRGnoMqO4orfduHH6B6F32XAfkq3CiD0Q88HMK7sE7ghJG8hoUr+32te OqZVNPg= -----END CERTIFICATE-----Generated at Sun Dec 7 04:47:09 2025 by rpki-client