This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/242CDDFC920011F08F0B626AC4F9AE02.roa File: 242CDDFC920011F08F0B626AC4F9AE02.roa (raw, json) Hash identifier: 3AFUQz8+2YnuETjAN+UuG+dE4sclqa91cTqt5H6j+sg= Subject key identifier: 66:97:F6:A5:F1:E5:E5:CB:A4:C9:9A:AD:E8:96:99:04:C8:FD:C3:9E Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 01D3 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/242CDDFC920011F08F0B626AC4F9AE02.roa Signing time: Wed 31 Dec 2025 04:24:47 +0000 ROA not before: Wed 31 Dec 2025 04:24:47 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4621 IP address blocks: 103.1.160.0/22 maxlen: 22 202.28.2.0/24 maxlen: 24 202.28.3.0/24 maxlen: 24 202.28.20.0/24 maxlen: 24 202.28.21.0/24 maxlen: 24 202.28.22.0/24 maxlen: 24 202.28.36.0/24 maxlen: 24 202.28.37.0/24 maxlen: 24 202.28.38.0/24 maxlen: 24 202.28.39.0/24 maxlen: 24 202.28.52.0/24 maxlen: 24 202.28.56.0/24 maxlen: 24 202.28.63.0/24 maxlen: 24 202.28.82.0/24 maxlen: 24 202.28.83.0/24 maxlen: 24 202.28.84.0/24 maxlen: 24 202.28.86.0/24 maxlen: 24 202.28.108.0/24 maxlen: 24 202.28.120.0/24 maxlen: 24 202.28.194.0/24 maxlen: 24 202.28.198.0/24 maxlen: 24 202.28.253.0/24 maxlen: 24 202.29.3.0/24 maxlen: 24 202.29.5.0/24 maxlen: 24 202.29.7.0/24 maxlen: 24 202.29.13.0/24 maxlen: 24 202.29.14.0/24 maxlen: 24 202.29.15.0/24 maxlen: 24 202.29.34.0/24 maxlen: 24 202.29.38.0/24 maxlen: 24 202.29.48.0/24 maxlen: 24 202.29.50.0/24 maxlen: 24 202.29.51.0/24 maxlen: 24 202.29.54.0/24 maxlen: 24 202.29.55.0/24 maxlen: 24 202.29.56.0/24 maxlen: 24 202.29.62.0/24 maxlen: 24 202.29.68.0/24 maxlen: 24 202.29.75.0/24 maxlen: 24 202.29.76.0/24 maxlen: 24 202.29.79.0/24 maxlen: 24 202.29.90.0/24 maxlen: 24 202.29.92.0/24 maxlen: 24 202.29.129.0/24 maxlen: 24 202.29.153.0/24 maxlen: 24 202.44.138.0/24 maxlen: 24 202.44.139.0/24 maxlen: 24 203.159.128.0/17 maxlen: 17 203.159.129.0/24 maxlen: 24 203.159.134.0/24 maxlen: 24 203.159.135.0/24 maxlen: 24 203.159.142.0/24 maxlen: 24 203.159.144.0/24 maxlen: 24 203.159.147.0/24 maxlen: 24 203.159.148.0/24 maxlen: 24 203.159.149.0/24 maxlen: 24 203.159.150.0/24 maxlen: 24 203.159.151.0/24 maxlen: 24 203.159.153.0/24 maxlen: 24 203.159.155.0/24 maxlen: 24 203.159.156.0/24 maxlen: 24 203.159.158.0/24 maxlen: 24 203.159.159.0/24 maxlen: 24 203.159.161.0/24 maxlen: 24 203.159.163.0/24 maxlen: 24 203.159.165.0/24 maxlen: 24 203.159.166.0/24 maxlen: 24 203.159.167.0/24 maxlen: 24 203.159.168.0/24 maxlen: 24 203.159.169.0/24 maxlen: 24 203.159.170.0/24 maxlen: 24 203.159.172.0/24 maxlen: 24 203.159.173.0/24 maxlen: 24 203.159.176.0/24 maxlen: 24 203.159.177.0/24 maxlen: 24 203.159.180.0/24 maxlen: 24 203.159.182.0/24 maxlen: 24 203.159.185.0/24 maxlen: 24 203.159.186.0/24 maxlen: 24 203.159.187.0/24 maxlen: 24 203.159.188.0/24 maxlen: 24 203.159.189.0/24 maxlen: 24 203.159.190.0/24 maxlen: 24 203.159.194.0/24 maxlen: 24 203.159.195.0/24 maxlen: 24 203.159.197.0/24 maxlen: 24 203.159.198.0/24 maxlen: 24 203.159.199.0/24 maxlen: 24 203.159.200.0/24 maxlen: 24 203.159.201.0/24 maxlen: 24 203.159.202.0/24 maxlen: 24 203.159.203.0/24 maxlen: 24 203.159.204.0/24 maxlen: 24 203.159.209.0/24 maxlen: 24 203.159.210.0/24 maxlen: 24 203.159.212.0/24 maxlen: 24 203.159.213.0/24 maxlen: 24 203.159.214.0/24 maxlen: 24 203.159.216.0/24 maxlen: 24 203.159.218.0/24 maxlen: 24 203.159.219.0/24 maxlen: 24 203.159.221.0/24 maxlen: 24 203.159.222.0/24 maxlen: 24 203.159.224.0/24 maxlen: 24 203.159.225.0/24 maxlen: 24 203.159.226.0/24 maxlen: 24 203.159.227.0/24 maxlen: 24 203.159.228.0/24 maxlen: 24 203.159.230.0/24 maxlen: 24 203.159.231.0/24 maxlen: 24 203.159.238.0/24 maxlen: 24 203.159.239.0/24 maxlen: 24 203.159.240.0/24 maxlen: 24 203.159.241.0/24 maxlen: 24 203.159.242.0/24 maxlen: 24 203.159.243.0/24 maxlen: 24 203.159.244.0/24 maxlen: 24 203.159.245.0/24 maxlen: 24 203.159.246.0/24 maxlen: 24 203.159.247.0/24 maxlen: 24 203.159.248.0/21 maxlen: 21 2001:3c8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:47 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6954a58e-5a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:e0:1b:8c:47:f4:f3:7f:23:7f:82:ac:65: 4d:77:e8:c9:c3:cf:8d:82:f9:b2:61:e0:9a:df:e0: c3:ba:d6:2f:94:44:57:8a:52:e6:40:05:d0:00:6d: 80:f1:08:42:29:5c:b5:03:52:bd:f5:b0:ee:1f:c3: 3c:cd:2e:57:5b:fe:e7:f0:c9:00:5a:0e:2b:da:76: 1f:b8:30:2b:ba:3d:0f:47:89:5e:e9:eb:f0:13:9a: 9e:37:5c:c5:e9:83:e2:f5:44:71:8c:5f:c5:31:0e: d0:b7:f4:64:69:c4:0d:2e:01:0b:b4:43:ad:c0:2c: f6:94:66:68:d6:a3:a8:38:ef:90:ed:07:31:3a:87: e6:41:a6:dd:ad:9a:b4:eb:21:7a:63:a7:b9:1c:8b: 8d:b0:ac:8c:f3:33:bb:b7:65:f4:58:9a:52:9d:bb: 67:f3:e0:a2:12:45:7d:56:bd:f8:30:d5:59:98:48: ec:49:36:4a:bc:7e:11:86:0e:f5:5f:34:2e:b1:4a: 42:65:69:d8:13:a1:50:e6:ee:e5:42:b0:d7:57:54: 8e:42:0a:c4:54:e7:d7:76:d7:f5:e4:21:b2:ae:10: 7b:94:23:36:df:b2:b7:e2:5e:28:4a:93:11:02:e3: ec:ac:e1:91:1f:68:3c:4a:6d:95:8f:9f:8c:70:ee: bb:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:97:F6:A5:F1:E5:E5:CB:A4:C9:9A:AD:E8:96:99:04:C8:FD:C3:9E X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/242CDDFC920011F08F0B626AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.160.0/22 202.28.2.0/23 202.28.20.0-202.28.22.255 202.28.36.0/22 202.28.52.0/24 202.28.56.0/24 202.28.63.0/24 202.28.82.0-202.28.84.255 202.28.86.0/24 202.28.108.0/24 202.28.120.0/24 202.28.194.0/24 202.28.198.0/24 202.28.253.0/24 202.29.3.0/24 202.29.5.0/24 202.29.7.0/24 202.29.13.0-202.29.15.255 202.29.34.0/24 202.29.38.0/24 202.29.48.0/24 202.29.50.0/23 202.29.54.0-202.29.56.255 202.29.62.0/24 202.29.68.0/24 202.29.75.0-202.29.76.255 202.29.79.0/24 202.29.90.0/24 202.29.92.0/24 202.29.129.0/24 202.29.153.0/24 202.44.138.0/23 203.159.128.0/17 IPv6: 2001:3c8::/32 Signature Algorithm: sha256WithRSAEncryption 26:44:7f:4d:14:60:df:06:91:00:60:3c:ae:8b:0c:ae:8e:f4: 2f:46:0e:43:7c:22:83:fb:4e:03:23:69:ca:88:95:f9:80:a0: 7b:3a:bf:82:ff:b8:62:3e:b2:85:6b:d9:c6:b9:6c:34:bf:eb: fb:3e:54:61:45:e2:18:c7:c1:47:c7:76:80:5b:3d:fd:c7:d1: 29:72:3f:e5:58:54:24:12:2c:fc:d7:a2:82:a6:01:b9:03:6c: 7f:90:e3:8f:20:5d:f8:64:ca:48:42:03:c3:c3:d7:c1:50:7d: 2c:04:fa:c3:c9:5e:f0:25:39:0e:ac:c2:4a:c4:1f:35:75:1c: 6c:97:4c:c5:ac:3e:32:3c:df:7a:ab:47:60:df:34:d7:d4:cd: f0:03:69:f4:19:6a:63:24:22:6c:25:d3:2f:b2:f2:47:3e:d3: 72:d0:7d:77:7a:de:46:f6:65:37:2a:98:8a:e9:bb:f7:83:87: 46:c5:01:7a:73:e8:c7:ea:fc:ca:33:de:3c:af:c1:19:0a:65: 70:26:b1:95:5b:9a:f2:8f:1e:f6:15:bb:a1:12:b2:ed:7b:cb: 28:bd:2a:a3:22:f4:2b:a0:25:14:00:ae:90:cb:c8:58:a2:af: 3b:43:66:05:6b:56:ca:13:9a:8d:1f:83:ad:dc:b6:a1:56:e1: 4c:b5:63:4b -----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDQ3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0YTU4ZS01YTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0PgG4xH9PN/I3+CrGVNd+jJw8+NgvmyYeCa3+DDutYvlERXilLmQAXQAG2A 8QhCKVy1A1K99bDuH8M8zS5XW/7n8MkAWg4r2nYfuDAruj0PR4le6evwE5qeN1zF 6YPi9URxjF/FMQ7Qt/RkacQNLgELtEOtwCz2lGZo1qOoOO+Q7QcxOofmQabdrZq0 6yF6Y6e5HIuNsKyM8zO7t2X0WJpSnbtn8+CiEkV9Vr34MNVZmEjsSTZKvH4Rhg71 XzQusUpCZWnYE6FQ5u7lQrDXV1SOQgrEVOfXdtf15CGyrhB7lCM237K34l4oSpMR AuPsrOGRH2g8Sm2Vj5+McO67HwIDAQABo4IDlDCCA5AwHQYDVR0OBBYEFGaX9qXx 5eXLpMmareiWmQTI/cOeMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvMjQyQ0RERkM5 MjAwMTFGMDhGMEI2MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggEcBggrBgEFBQcBBwEB /wSCAQswggEHMIH1BAIAATCB7gMEAmcBoAMEAcocAjAMAwQCyhwUAwQAyhwWAwQC yhwkAwQAyhw0AwQAyhw4AwQAyhw/MAwDBAHKHFIDBADKHFQDBADKHFYDBADKHGwD BADKHHgDBADKHMIDBADKHMYDBADKHP0DBADKHQMDBADKHQUDBADKHQcwDAMEAMod DQMEBModAAMEAModIgMEAModJgMEAModMAMEAcodMjAMAwQByh02AwQAyh04AwQA yh0+AwQAyh1EMAwDBADKHUsDBADKHUwDBADKHU8DBADKHVoDBADKHVwDBADKHYED BADKHZkDBAHKLIoDBAfLn4AwDQQCAAIwBwMFACABA8gwDQYJKoZIhvcNAQELBQAD ggEBACZEf00UYN8GkQBgPK6LDK6O9C9GDkN8IoP7TgMjacqIlfmAoHs6v4L/uGI+ soVr2ca5bDS/6/s+VGFF4hjHwUfHdoBbPf3H0SlyP+VYVCQSLPzXooKmAbkDbH+Q 448gXfhkykhCA8PD18FQfSwE+sPJXvAlOQ6swkrEHzV1HGyXTMWsPjI833qrR2Df NNfUzfADafQZamMkImwl0y+y8kc+03LQfXd63kb2ZTcqmIrpu/eDh0bFAXpz6Mfq /Moz3jyvwRkKZXAmsZVbmvKPHvYVu6ESsu17yyi9KqMi9CugJRQArpDLyFiirztD ZgVrVsoTmo0fg63ctqFW4Uy1Y0s= -----END CERTIFICATE-----Generated at Sun Jan 25 17:05:08 2026 by rpki-client