This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa File: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (raw, json) Hash identifier: X9cvrVuJPpabRIeX9DHncrs9qYYqY20P3gqoMKcfrPs= Subject key identifier: 1D:06:16:BB:11:C9:EB:08:C6:EE:7D:B2:13:BC:39:58:BD:B8:88:50 Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 0693 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa Signing time: Tue 18 Nov 2025 21:42:37 +0000 ROA not before: Tue 18 Nov 2025 21:42:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 44356 IP address blocks: 103.229.96.0/24 maxlen: 24 180.178.72.0/22 maxlen: 22 180.178.72.0/24 maxlen: 24 180.178.73.0/24 maxlen: 24 180.178.74.0/24 maxlen: 24 180.178.75.0/24 maxlen: 24 180.178.76.0/24 maxlen: 24 180.178.77.0/24 maxlen: 24 180.178.78.0/23 maxlen: 24 2402:4400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Nov 18 21:42:37 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=691ce84c-a975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:99:60:18:58:1b:3f:5a:7b:00:3e:f7:20:01: b7:6b:fa:21:76:92:6a:9d:1c:bb:92:0a:2b:d7:2b: 7c:2f:26:e2:61:08:7b:54:35:4e:27:fa:d2:59:22: 0b:f8:48:ae:f1:70:34:d6:57:75:78:f7:3e:6c:6a: a7:f3:18:13:64:0b:f7:2e:40:27:8b:80:dd:c1:fc: 30:5e:f0:66:44:b0:29:cc:0e:a1:e7:35:b5:31:74: 90:4b:cf:40:43:be:8f:a5:c0:31:b0:cd:35:2e:60: 2e:1d:64:ef:c1:55:49:0d:54:01:83:00:48:20:1b: 5b:f7:99:fc:28:05:21:98:16:09:c0:10:16:85:68: df:07:a7:70:80:61:f7:3f:4e:b9:79:a8:dd:18:dd: 6e:2d:8c:eb:77:ec:09:4d:1a:0f:da:95:4d:6a:26: b0:a8:99:0a:00:cb:b1:a2:4e:7e:be:70:4e:a9:fa: ec:b8:24:e4:41:bb:e5:9d:51:ed:90:e8:f5:19:0a: d8:d6:84:72:37:1f:58:37:2f:16:9a:b7:ae:ec:68: 1c:32:ff:41:bf:7b:43:87:62:20:7e:ce:21:89:f8: 27:91:bd:9a:7b:4a:17:65:81:35:71:72:3e:28:62: 34:3a:ce:ff:b7:32:ad:a2:08:c5:04:3a:19:84:77: 86:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:06:16:BB:11:C9:EB:08:C6:EE:7D:B2:13:BC:39:58:BD:B8:88:50 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.96.0/24 180.178.72.0/21 IPv6: 2402:4400::/32 Signature Algorithm: sha256WithRSAEncryption 96:ae:21:d1:51:e9:45:d7:c2:c1:95:97:b8:4e:f5:22:36:00: 01:f5:99:e1:50:fa:8d:b5:5c:47:57:af:e8:6f:d0:40:0e:17: 71:8b:1a:59:44:e0:0b:28:7d:19:e5:21:7d:bd:23:56:af:62: a0:8b:e8:41:b5:bf:28:84:ec:e9:69:04:0f:7b:e1:62:30:72: 12:af:1a:43:49:e7:39:ff:56:34:2f:41:d8:7b:ba:fa:c2:08: d5:5b:ab:51:59:4f:1d:9b:3c:67:23:75:7d:4e:bf:dd:59:93: 47:83:a2:eb:0f:39:42:ca:20:0b:f8:43:6a:f2:d4:0f:b5:c8: 87:c5:49:ea:58:35:1c:50:45:48:52:da:e5:d2:14:35:13:2c: 0c:ca:d1:da:3f:c2:cb:f7:c0:59:22:38:66:e2:3f:73:ab:e6: 03:db:20:c8:f6:2e:68:85:8d:a7:7c:bc:49:4e:1b:c1:c1:22: 9d:d2:20:d7:2e:7a:8a:cf:15:a7:c1:53:0a:86:96:61:e4:9f: 1a:d5:17:64:f5:f9:7a:a0:16:e8:26:f3:bd:2d:79:e6:49:2d: da:65:4c:42:3b:01:5e:3e:cc:ef:00:0e:d8:7b:73:bc:bc:85: 46:b2:26:d7:18:04:c9:ce:ce:bd:a7:f7:22:da:2a:9b:a1:f4: 05:3a:a2:0f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjUxMTE4MjE0MjM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFjZTg0Yy1hOTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyplgGFgbP1p7AD73IAG3a/ohdpJqnRy7kgor1yt8LybiYQh7VDVOJ/rSWSIL +Eiu8XA01ld1ePc+bGqn8xgTZAv3LkAni4DdwfwwXvBmRLApzA6h5zW1MXSQS89A Q76PpcAxsM01LmAuHWTvwVVJDVQBgwBIIBtb95n8KAUhmBYJwBAWhWjfB6dwgGH3 P065eajdGN1uLYzrd+wJTRoP2pVNaiawqJkKAMuxok5+vnBOqfrsuCTkQbvlnVHt kOj1GQrY1oRyNx9YNy8Wmreu7GgcMv9Bv3tDh2Igfs4hifgnkb2ae0oXZYE1cXI+ KGI0Os7/tzKtogjFBDoZhHeGQQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFB0GFrsR yesIxu59shO8OVi9uIhQMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJDODgvMjQyOTlEQ0E5NzhFMTFFQkJEODFCMDU1QzRGOUFFMDIvM0M1RTU1RjA0 MUE0MTFFQ0E3M0M4QzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABn5WADBAO0skgwDQQCAAIwBwMFACQCRAAwDQYJKoZIhvcN AQELBQADggEBAJauIdFR6UXXwsGVl7hO9SI2AAH1meFQ+o21XEdXr+hv0EAOF3GL GllE4AsofRnlIX29I1avYqCL6EG1vyiE7OlpBA974WIwchKvGkNJ5zn/VjQvQdh7 uvrCCNVbq1FZTx2bPGcjdX1Ov91Zk0eDousPOULKIAv4Q2ry1A+1yIfFSepYNRxQ RUhS2uXSFDUTLAzK0do/wsv3wFkiOGbiP3Or5gPbIMj2LmiFjad8vElOG8HBIp3S INcueorPFafBUwqGlmHknxrVF2T1+XqgFugm870teeZJLdplTEI7AV4+zO8ADth7 c7y8hUayJtcYBMnOzr2n9yLaKpuh9AU6og8= -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:02 2025 by rpki-client