This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/C6BCEF8ECF2311F09BE9DF62C4F9AE02.roa File: C6BCEF8ECF2311F09BE9DF62C4F9AE02.roa (raw, json) Hash identifier: v6QDKHGNgQsriG4lPK9GtQgpf0BZUi9e8DtrdXFAk8A= Subject key identifier: B3:96:71:24:1A:D6:1C:4D:3B:92:C5:3B:37:9E:C4:19:9E:F9:D4:0E Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 3512 Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/C6BCEF8ECF2311F09BE9DF62C4F9AE02.roa Signing time: Tue 02 Dec 2025 02:08:22 +0000 ROA not before: Tue 02 Dec 2025 02:08:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133159 IP address blocks: 43.224.180.0/22 maxlen: 22 45.124.52.0/22 maxlen: 22 103.1.184.0/22 maxlen: 22 103.16.128.0/22 maxlen: 22 103.17.56.0/24 maxlen: 24 103.17.57.0/24 maxlen: 24 103.100.36.0/22 maxlen: 23 103.249.236.0/22 maxlen: 22 110.232.112.0/22 maxlen: 22 112.213.32.0/21 maxlen: 21 112.213.36.0/24 maxlen: 24 119.42.52.0/23 maxlen: 23 119.42.54.0/23 maxlen: 23 150.107.72.0/22 maxlen: 22 150.107.75.0/24 maxlen: 24 175.45.180.0/22 maxlen: 23 175.45.182.0/23 maxlen: 24 203.18.30.0/24 maxlen: 24 203.29.240.0/22 maxlen: 22 203.57.50.0/23 maxlen: 24 203.57.114.0/23 maxlen: 23 2404:9400::/48 maxlen: 48 2404:9400:1::/48 maxlen: 48 2404:9400:2::/48 maxlen: 48 2404:9400:3::/48 maxlen: 48 2404:9400:4::/48 maxlen: 48 2404:9400:5::/48 maxlen: 48 2404:9400:e::/48 maxlen: 48 2404:9400:f::/48 maxlen: 48 2404:9400:1000::/36 maxlen: 36 2404:9400:2000::/36 maxlen: 36 2404:9400:3000::/36 maxlen: 36 2404:9400:4000::/36 maxlen: 36 2404:9400:5000::/36 maxlen: 36 2404:9400:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13586 (0x3512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: Dec 2 02:08:22 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=692e4a15-9d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:fa:db:7d:e7:4f:43:3b:bf:63:7c:3a:71:00: ae:4d:9f:79:d8:b6:4b:f4:51:33:ad:47:45:46:e2: f3:05:1b:ac:b4:2a:4f:89:11:35:4d:9a:41:7d:bd: 61:37:a8:99:61:51:21:66:33:ca:23:97:de:b1:09: a8:b9:fe:0a:00:5a:71:02:7d:31:4f:fa:36:e1:31: 43:c1:24:ff:a0:58:85:30:6e:1f:a8:ef:66:0c:29: e1:d9:7f:cf:7d:0c:a0:82:f3:56:49:88:3c:84:d0: 5d:35:43:99:44:59:36:33:ca:0d:47:af:57:f1:ff: 4a:fc:82:b6:bc:eb:15:a3:97:1e:da:3c:a3:4d:b9: 76:a6:52:0b:8d:1a:a7:40:04:4d:13:08:32:57:5f: 90:70:de:f4:a6:1c:18:7b:40:f1:a4:1d:52:46:e0: b6:52:86:0c:ae:05:de:ad:04:8b:ef:8d:d2:c7:f8: 31:9d:14:37:a0:72:cd:38:f0:f5:de:6f:c5:07:ed: 81:bc:74:37:c3:d5:41:b4:52:8e:02:b1:b5:1e:55: 24:55:f5:09:f5:53:22:fa:23:ea:11:41:59:8c:80: 7d:09:d0:f7:9f:ff:5f:8a:5c:a6:c1:dc:0a:ff:fe: ce:25:2e:c8:bb:a4:f0:13:3a:bc:74:8d:42:bd:0a: e5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:96:71:24:1A:D6:1C:4D:3B:92:C5:3B:37:9E:C4:19:9E:F9:D4:0E X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/C6BCEF8ECF2311F09BE9DF62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.180.0/22 45.124.52.0/22 103.1.184.0/22 103.16.128.0/22 103.17.56.0/23 103.100.36.0/22 103.249.236.0/22 110.232.112.0/22 112.213.32.0/21 119.42.52.0/22 150.107.72.0/22 175.45.180.0/22 203.18.30.0/24 203.29.240.0/22 203.57.50.0/23 203.57.114.0/23 IPv6: 2404:9400::-2404:9400:5:ffff:ffff:ffff:ffff:ffff 2404:9400:e::/47 2404:9400:1000::-2404:9400:5fff:ffff:ffff:ffff:ffff:ffff 2404:9400:e000::/36 Signature Algorithm: sha256WithRSAEncryption a8:af:e0:18:95:df:d1:63:ea:4d:62:a8:6a:3e:69:5a:cf:87: 5d:78:39:98:6a:c1:74:7d:ff:f5:42:ad:f4:5f:8a:b2:dd:a1: 1b:86:ed:48:6e:d6:58:9e:2c:a0:18:38:00:10:26:5c:2a:1d: 20:07:7c:a3:19:c8:dd:26:8f:9e:7e:e1:bb:63:05:05:5e:26: 6d:19:af:b4:64:48:3c:56:4a:90:6e:34:3d:22:54:41:7c:23: 68:33:17:9d:b0:54:5f:13:cd:c3:5e:3d:04:0d:fd:63:9c:68: 6a:d1:0a:87:ef:26:58:a1:3c:0c:71:2a:24:2b:37:ff:d5:bc: cc:d7:6e:68:bd:f7:64:e2:0b:9e:44:c8:e9:30:21:a1:6e:d7: 62:81:56:b7:c9:0b:e3:0b:53:2c:0d:b9:c5:af:0f:6f:35:dd: b1:58:12:8d:e1:6c:36:27:52:44:3c:f0:d1:d5:ca:c2:e6:88: 7f:92:25:e8:80:65:f9:ff:4e:4b:05:de:3b:9b:48:3f:39:7f: ce:3c:e7:b9:bf:90:70:7e:78:d7:64:b5:c5:7c:e2:72:9a:b1: 55:77:3d:10:7a:0c:3e:87:1a:5c:67:e6:14:85:a3:68:00:d2: f5:f6:19:74:bb:d6:8a:eb:60:9f:f9:78:80:aa:c1:d5:fb:08: 20:cf:1e:b0 -----BEGIN CERTIFICATE----- MIIGCjCCBPKgAwIBAgICNRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjUxMjAyMDIwODIyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJlNGExNS05ZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PrbfedPQzu/Y3w6cQCuTZ952LZL9FEzrUdFRuLzBRustCpPiRE1TZpBfb1h N6iZYVEhZjPKI5fesQmouf4KAFpxAn0xT/o24TFDwST/oFiFMG4fqO9mDCnh2X/P fQyggvNWSYg8hNBdNUOZRFk2M8oNR69X8f9K/IK2vOsVo5ce2jyjTbl2plILjRqn QARNEwgyV1+QcN70phwYe0DxpB1SRuC2UoYMrgXerQSL743Sx/gxnRQ3oHLNOPD1 3m/FB+2BvHQ3w9VBtFKOArG1HlUkVfUJ9VMi+iPqEUFZjIB9CdD3n/9filymwdwK //7OJS7Iu6TwEzq8dI1CvQrlGQIDAQABo4IDLjCCAyowHQYDVR0OBBYEFLOWcSQa 1hxNO5LFOzeexBme+dQOMB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCOUQvOTVBRDAzODgxRDlFMTFFMjg4MEU4NjhFMDhCMDJDRDIvQzZCQ0VGOEVD RjIzMTFGMDlCRTlERjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgbcGCCsGAQUFBwEHAQH/ BIGnMIGkMGYEAgABMGADBAIr4LQDBAItfDQDBAJnAbgDBAJnEIADBAFnETgDBAJn ZCQDBAJn+ewDBAJu6HADBANw1SADBAJ3KjQDBAKWa0gDBAKvLbQDBADLEh4DBALL HfADBAHLOTIDBAHLOXIwOgQCAAIwNDAPAwQCJASUAwcBJASUAAAEAwcBJASUAAAO MBADBgQkBJQAEAMGBSQElABAAwYEJASUAOAwDQYJKoZIhvcNAQELBQADggEBAKiv 4BiV39Fj6k1iqGo+aVrPh114OZhqwXR9//VCrfRfirLdoRuG7Uhu1lieLKAYOAAQ JlwqHSAHfKMZyN0mj55+4btjBQVeJm0Zr7RkSDxWSpBuND0iVEF8I2gzF52wVF8T zcNePQQN/WOcaGrRCofvJlihPAxxKiQrN//VvMzXbmi992TiC55EyOkwIaFu12KB VrfJC+MLUywNucWvD2813bFYEo3hbDYnUkQ88NHVysLmiH+SJeiAZfn/TksF3jub SD85f84857m/kHB+eNdktcV84nKasVV3PRB6DD6HGlxn5hSFo2gA0vX2GXS71orr YJ/5eICqwdX7CCDPHrA= -----END CERTIFICATE-----Generated at Sat Dec 6 21:32:12 2025 by rpki-client