This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa File: F2CD19D6E96011EF8940367DC4F9AE02.roa (raw, json) Hash identifier: ++9L+NGOaw5DrKySyO8La0vQc8M3tYnN6EhjONDGSUQ= Subject key identifier: 5A:90:42:F7:6F:F5:4C:EF:90:8A:F8:EA:B4:28:55:10:BA:B9:40:E3 Certificate issuer: /CN=A91A6F68/serialNumber=620D39B3A1837973BD13269F2B06AC9B2738820D Certificate serial: A2 Authority key identifier: 62:0D:39:B3:A1:83:79:73:BD:13:26:9F:2B:06:AC:9B:27:38:82:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa Signing time: Wed 05 Nov 2025 06:51:02 +0000 ROA not before: Wed 05 Nov 2025 06:51:02 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 50049 IP address blocks: 43.250.52.0/22 maxlen: 22 43.250.52.0/24 maxlen: 24 43.250.53.0/24 maxlen: 24 43.250.54.0/24 maxlen: 24 43.250.55.0/24 maxlen: 24 103.41.176.0/22 maxlen: 22 103.41.176.0/24 maxlen: 24 103.41.177.0/24 maxlen: 24 103.41.178.0/24 maxlen: 24 103.41.179.0/24 maxlen: 24 103.147.152.0/24 maxlen: 24 2406:4fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.crl rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=620D39B3A1837973BD13269F2B06AC9B2738820D Validity Not Before: Nov 5 06:51:02 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690af3d6-7477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a9:df:d4:9b:a8:e1:c0:59:0f:4e:40:dd:aa: 8d:2e:be:af:fa:3e:d2:70:1b:b2:2e:9f:86:a7:54: 5b:a2:84:66:8f:c4:c7:5b:4b:6d:6e:ee:1f:ad:c7: e2:28:01:6e:be:7c:05:68:21:a7:d5:4a:8f:69:7f: cb:53:f1:bd:2a:43:b9:59:35:ba:54:62:f3:b9:ec: 8e:ea:da:2d:41:0c:7d:c9:bd:7d:44:2c:87:b8:4f: 28:ad:c2:9a:50:ec:2b:f4:88:46:2f:7c:12:12:01: 70:40:f5:43:64:b1:2c:67:1a:c0:cb:f1:d2:5e:82: 24:19:5d:14:96:eb:7d:5c:41:f2:56:b3:75:47:41: df:e2:07:71:c4:38:4c:b9:a3:a4:1b:e1:2d:db:14: 69:9a:54:ee:7f:fc:2b:d8:d9:d5:03:c5:0d:5c:53: 58:99:55:24:bd:ec:dd:63:d1:14:ca:0a:64:39:f4: 65:f2:7f:39:60:7c:e8:42:7e:e9:16:cd:ea:13:48: d6:7a:99:60:3f:e4:c3:3e:95:11:8e:aa:87:66:70: 5e:d2:6a:bf:3a:45:b2:b6:c4:20:59:9a:de:ce:0b: 4a:d8:f6:fb:6c:d0:65:15:cc:4a:68:07:fe:e1:c7: 3a:77:1c:7d:4a:55:90:23:e3:33:3b:8b:5e:45:9b: 7f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:90:42:F7:6F:F5:4C:EF:90:8A:F8:EA:B4:28:55:10:BA:B9:40:E3 X509v3 Authority Key Identifier: keyid:62:0D:39:B3:A1:83:79:73:BD:13:26:9F:2B:06:AC:9B:27:38:82:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/Yg05s6GDeXO9EyafKwasmyc4gg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yg05s6GDeXO9EyafKwasmyc4gg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/92E25962DF2111EF833F4F2CC4F9AE02/F2CD19D6E96011EF8940367DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.52.0/22 103.41.176.0/22 103.147.152.0/24 IPv6: 2406:4fc0::/32 Signature Algorithm: sha256WithRSAEncryption 82:c5:c1:10:a3:39:5b:87:49:f8:82:26:57:75:41:54:a7:99: bd:f8:95:b7:33:13:a0:0f:10:52:55:80:20:d2:71:0f:a3:ad: 5b:27:20:3a:ed:23:52:ba:a0:7b:ef:17:46:30:02:ec:6a:91: 01:74:e4:08:a3:5b:91:3d:da:ad:ea:cb:4f:aa:7e:88:c1:51: 61:42:a9:ea:42:60:79:6a:65:96:d8:e5:ee:f2:79:91:aa:d6: f7:99:3d:23:e3:3b:85:47:a6:13:8c:1c:f3:8e:62:01:ea:50: 92:c8:e2:b1:2c:0e:f2:a8:d0:31:e6:01:a2:33:87:27:c6:d0: 97:3c:66:1b:e9:80:77:f4:ca:6b:6c:27:28:d9:cb:df:c9:86: dc:3b:73:ed:1b:6d:57:63:81:6d:77:b6:40:bc:a7:0b:84:ad: 54:ab:45:8c:9b:30:43:d0:68:e6:fd:80:a9:dc:86:33:07:63: 9c:45:87:fe:80:37:28:6e:ef:d7:1c:86:cb:24:9b:e9:30:2d: 6c:29:47:95:42:77:27:bc:16:d7:98:d3:0d:01:60:75:16:74: e7:ed:7a:cd:a5:c0:3d:6a:45:10:8e:c8:cb:3f:4d:0b:aa:cb: be:73:db:f3:ed:66:aa:30:c1:f2:ef:ad:fc:ab:e2:97:5c:d7: ff:4f:a2:ae -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDYyMEQzOUIzQTE4Mzc5NzNCRDEzMjY5RjJCMDZBQzlC MjczODgyMEQwHhcNMjUxMTA1MDY1MTAyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhZjNkNi03NDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqnf1Juo4cBZD05A3aqNLr6v+j7ScBuyLp+Gp1RbooRmj8THW0ttbu4frcfi KAFuvnwFaCGn1UqPaX/LU/G9KkO5WTW6VGLzueyO6totQQx9yb19RCyHuE8orcKa UOwr9IhGL3wSEgFwQPVDZLEsZxrAy/HSXoIkGV0Ulut9XEHyVrN1R0Hf4gdxxDhM uaOkG+Et2xRpmlTuf/wr2NnVA8UNXFNYmVUkvezdY9EUygpkOfRl8n85YHzoQn7p Fs3qE0jWeplgP+TDPpURjqqHZnBe0mq/OkWytsQgWZrezgtK2Pb7bNBlFcxKaAf+ 4cc6dxx9SlWQI+MzO4teRZt/swIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFFqQQvdv 9UzvkIr46rQoVRC6uUDjMB8GA1UdIwQYMBaAFGINObOhg3lzvRMmnysGrJsnOIIN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC85MkUyNTk2MkRG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9ZZzA1czZHRGVYTzlFeWFmS3dhc215YzRn ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnMDVzNkdEZVhPOUV5YWZLd2FzbXljNGdnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZGNjgvOTJFMjU5NjJERjIxMTFFRjgzM0Y0RjJDQzRGOUFFMDIvRjJDRDE5RDZF OTYwMTFFRjg5NDAzNjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr+jQDBAJnKbADBABnk5gwDQQCAAIwBwMFACQGT8AwDQYJ KoZIhvcNAQELBQADggEBAILFwRCjOVuHSfiCJld1QVSnmb34lbczE6APEFJVgCDS cQ+jrVsnIDrtI1K6oHvvF0YwAuxqkQF05AijW5E92q3qy0+qfojBUWFCqepCYHlq ZZbY5e7yeZGq1veZPSPjO4VHphOMHPOOYgHqUJLI4rEsDvKo0DHmAaIzhyfG0Jc8 ZhvpgHf0ymtsJyjZy9/Jhtw7c+0bbVdjgW13tkC8pwuErVSrRYybMEPQaOb9gKnc hjMHY5xFh/6ANyhu79cchsskm+kwLWwpR5VCdye8FteY0w0BYHUWdOftes2lwD1q RRCOyMs/TQuqy75z2/PtZqowwfLvrfyr4pdc1/9Poq4= -----END CERTIFICATE-----Generated at Sat Dec 6 22:11:43 2025 by rpki-client