This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55EC/DF65DE92578111ECB6487C54C4F9AE02/8E15FBF25CFF11ECB5477E0BC4F9AE02.roa File: 8E15FBF25CFF11ECB5477E0BC4F9AE02.roa (raw, json) Hash identifier: c5NMAe1CqQurJqS1H1w7Md/EROAKq1xZbqnKJkldnUI= Subject key identifier: D0:84:47:43:FB:05:8D:C4:BD:FA:D8:3A:AA:A1:77:E0:2A:AB:8D:14 Certificate issuer: /CN=A91A55EC/serialNumber=7DDD8DDCF156E7A181A1B7397B24D42096353DD8 Certificate serial: 04A7 Authority key identifier: 7D:DD:8D:DC:F1:56:E7:A1:81:A1:B7:39:7B:24:D4:20:96:35:3D:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd2N3PFW56GBobc5eyTUIJY1Pdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55EC/DF65DE92578111ECB6487C54C4F9AE02/8E15FBF25CFF11ECB5477E0BC4F9AE02.roa Signing time: Mon 10 Nov 2025 09:52:41 +0000 ROA not before: Mon 10 Nov 2025 09:52:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140287 IP address blocks: 103.149.146.0/23 maxlen: 23 103.149.146.0/24 maxlen: 24 103.149.147.0/24 maxlen: 24 2001:df3:2b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55EC/DF65DE92578111ECB6487C54C4F9AE02/fd2N3PFW56GBobc5eyTUIJY1Pdg.crl rsync://rpki.apnic.net/member_repository/A91A55EC/DF65DE92578111ECB6487C54C4F9AE02/fd2N3PFW56GBobc5eyTUIJY1Pdg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd2N3PFW56GBobc5eyTUIJY1Pdg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55EC, serialNumber=7DDD8DDCF156E7A181A1B7397B24D42096353DD8 Validity Not Before: Nov 10 09:52:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6911b5e9-33b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0f:c8:ce:77:63:6d:1e:3d:43:9e:d4:9d:07: d3:f7:58:4b:bd:98:95:1d:5b:28:64:09:c9:1e:c8: 6f:c0:dc:b8:7a:76:20:26:5e:dc:77:ef:f8:42:74: 3b:8f:95:9c:e0:ea:66:86:88:6e:d7:52:3d:c1:db: 06:a0:0a:1b:a3:23:3b:84:2c:50:35:94:ca:e2:20: 85:21:2d:6b:a3:81:56:ad:41:f2:0e:54:f2:5b:ba: 3e:e8:12:9a:dd:11:f3:02:bc:4e:3d:ed:1b:9b:7c: a3:0e:4c:77:4f:ec:7b:c5:21:e4:bc:5d:02:c1:63: 36:20:18:e5:57:95:8d:a9:a2:8e:11:6d:89:ef:88: 06:30:30:9b:38:57:e6:e6:b7:49:0f:25:7d:f1:50: 3e:9c:b4:a1:5e:09:50:20:56:ec:a5:60:17:6e:a3: c6:9f:b8:db:f7:81:73:97:23:4c:50:db:4c:2d:e1: 83:6e:ec:85:3c:74:54:b7:f6:32:26:5f:ac:5b:0d: 2c:80:ea:48:d5:f8:68:12:71:24:50:75:8c:63:8f: 25:1e:c5:b5:b2:15:ac:4f:54:51:ae:32:95:8d:4b: 42:ae:1e:b7:52:a4:b9:f3:d0:09:4e:04:97:ca:0c: 7b:44:f4:89:d1:ec:83:e7:06:ed:4d:1f:4f:fa:b3: 00:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:84:47:43:FB:05:8D:C4:BD:FA:D8:3A:AA:A1:77:E0:2A:AB:8D:14 X509v3 Authority Key Identifier: keyid:7D:DD:8D:DC:F1:56:E7:A1:81:A1:B7:39:7B:24:D4:20:96:35:3D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55EC/DF65DE92578111ECB6487C54C4F9AE02/fd2N3PFW56GBobc5eyTUIJY1Pdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd2N3PFW56GBobc5eyTUIJY1Pdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55EC/DF65DE92578111ECB6487C54C4F9AE02/8E15FBF25CFF11ECB5477E0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.146.0/23 IPv6: 2001:df3:2b80::/48 Signature Algorithm: sha256WithRSAEncryption 5f:bd:58:6d:e7:3a:17:19:c3:f1:85:17:48:a6:e4:95:63:29: 54:72:63:9a:c8:45:4b:0c:18:9f:c9:7a:1b:0b:95:87:d2:c7: 19:13:f7:a9:06:62:26:27:5e:6a:37:cf:9d:64:26:3a:f0:61: 41:d0:bd:9a:a2:5d:8d:b5:20:0f:04:13:c7:31:3e:66:0b:bf: 5c:26:71:5b:3e:25:27:d2:24:42:1d:9b:30:e4:99:26:e0:48: 3d:44:35:a9:a9:c0:09:d2:d8:42:4f:18:28:06:b2:77:ad:65: ad:8d:49:95:49:50:39:4f:b1:c1:c9:18:03:71:95:8b:b7:af: 24:a1:0c:5a:8b:2a:66:47:5d:29:e2:75:5f:f3:03:56:04:4f: 5a:7a:ca:59:2a:a4:c9:1d:39:c0:f8:76:92:9c:d5:7d:fe:d4: 67:f5:8c:ff:b2:ce:ad:2e:3c:ee:56:a7:4a:b4:47:fc:3f:8f: 40:b1:db:b0:69:2e:08:0c:fe:f9:47:9a:a3:7f:d7:fc:22:b7: d9:40:b7:d4:91:52:6d:bc:62:06:03:ce:c8:ef:6a:39:60:7b: 5c:9b:b3:d7:67:56:87:c9:12:09:40:ad:a7:95:fa:08:c8:54: e4:be:64:86:59:6a:a9:53:93:ea:36:ec:0a:41:eb:9b:c9:c6: 75:9d:5e:da -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1RUMxMTAvBgNVBAUTKDdEREQ4RERDRjE1NkU3QTE4MUExQjczOTdCMjRENDIw OTYzNTNERDgwHhcNMjUxMTEwMDk1MjQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTExYjVlOS0zM2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2A/IzndjbR49Q57UnQfT91hLvZiVHVsoZAnJHshvwNy4enYgJl7cd+/4QnQ7 j5Wc4Opmhohu11I9wdsGoAoboyM7hCxQNZTK4iCFIS1ro4FWrUHyDlTyW7o+6BKa 3RHzArxOPe0bm3yjDkx3T+x7xSHkvF0CwWM2IBjlV5WNqaKOEW2J74gGMDCbOFfm 5rdJDyV98VA+nLShXglQIFbspWAXbqPGn7jb94FzlyNMUNtMLeGDbuyFPHRUt/Yy Jl+sWw0sgOpI1fhoEnEkUHWMY48lHsW1shWsT1RRrjKVjUtCrh63UqS589AJTgSX ygx7RPSJ0eyD5wbtTR9P+rMAawIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNCER0P7 BY3EvfrYOqqhd+Aqq40UMB8GA1UdIwQYMBaAFH3djdzxVuehgaG3OXsk1CCWNT3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVFQy9ERjY1REU5MjU3 ODExMUVDQjY0ODdDNTRDNEY5QUUwMi9mZDJOM1BGVzU2R0JvYmM1ZXlUVUlKWTFQ ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkMk4zUEZXNTZHQm9iYzVleVRVSUpZMVBkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1RUMvREY2NURFOTI1NzgxMTFFQ0I2NDg3QzU0QzRGOUFFMDIvOEUxNUZCRjI1 Q0ZGMTFFQ0I1NDc3RTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlZIwDwQCAAIwCQMHACABDfMrgDANBgkqhkiG9w0BAQsF AAOCAQEAX71Ybec6FxnD8YUXSKbklWMpVHJjmshFSwwYn8l6GwuVh9LHGRP3qQZi JideajfPnWQmOvBhQdC9mqJdjbUgDwQTxzE+Zgu/XCZxWz4lJ9IkQh2bMOSZJuBI PUQ1qanACdLYQk8YKAayd61lrY1JlUlQOU+xwckYA3GVi7evJKEMWosqZkddKeJ1 X/MDVgRPWnrKWSqkyR05wPh2kpzVff7UZ/WM/7LOrS487lanSrRH/D+PQLHbsGku CAz++Ueao3/X/CK32UC31JFSbbxiBgPOyO9qOWB7XJuz12dWh8kSCUCtp5X6CMhU 5L5khllqqVOT6jbsCkHrm8nGdZ1e2g== -----END CERTIFICATE-----Generated at Sat Dec 6 18:53:13 2025 by rpki-client