This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/3A883F284B3E11F0817E3C31C4F9AE02.roa File: 3A883F284B3E11F0817E3C31C4F9AE02.roa (raw, json) Hash identifier: SaJUddGbAv5Sn4bW+aHi5y2oDKGBfQEN3lYseeC4yPw= Subject key identifier: 2E:87:28:74:21:F5:A5:C5:09:B5:11:1D:10:73:9A:58:5B:91:14:66 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0BD8 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/3A883F284B3E11F0817E3C31C4F9AE02.roa Signing time: Tue 02 Dec 2025 18:50:34 +0000 ROA not before: Tue 02 Dec 2025 18:50:34 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 213607 IP address blocks: 103.23.128.0/24 maxlen: 24 103.23.129.0/24 maxlen: 24 103.23.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3032 (0xbd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Dec 2 18:50:34 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692f34fa-a8be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:00:2a:a5:b3:85:93:06:de:ca:d1:4b:5f:72: 34:20:2d:8c:bb:ba:1b:79:86:a9:c5:aa:b0:9c:29: d0:b1:10:af:4c:fe:88:46:fb:bd:af:8e:33:ad:3d: da:a9:6a:25:c8:f0:b2:9b:eb:8f:f5:09:77:4a:07: 76:67:8c:7f:f5:08:ab:f8:5c:11:14:55:0e:77:9b: 06:98:41:6d:09:d9:f8:7c:87:f5:44:7d:df:a5:62: 2a:42:ce:5a:55:a5:f6:34:e1:9e:a1:77:f8:40:2d: 5c:50:e6:f8:db:a7:e2:c2:75:92:e2:ae:c4:ee:47: 0b:a3:fb:4c:6b:1d:03:e4:31:13:33:3a:1f:93:db: b3:46:ad:82:c4:97:97:79:35:c4:84:6d:93:16:36: 05:c5:20:53:42:fb:be:43:99:c4:5b:ad:6f:e0:f9: 6f:96:c9:0e:8d:c6:1a:38:47:44:9b:ea:79:e6:9d: 78:ce:5f:59:7e:4c:1c:34:61:65:3f:d3:9f:84:2e: a4:38:71:a2:ad:ec:f8:43:fa:8c:03:ba:ba:f1:d8: 57:30:45:39:11:72:7f:d5:04:c3:a5:be:af:3f:25: 47:3e:f5:97:9b:87:3b:c4:2f:e8:a6:72:f9:26:05: 01:f7:4e:73:9c:9c:57:5b:a2:9e:64:78:b0:c9:eb: 21:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:87:28:74:21:F5:A5:C5:09:B5:11:1D:10:73:9A:58:5B:91:14:66 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/3A883F284B3E11F0817E3C31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.128.0-103.23.130.255 Signature Algorithm: sha256WithRSAEncryption 9d:45:78:38:f4:51:36:3a:eb:37:f1:4f:45:bc:6b:18:64:7e: 62:26:2b:95:fc:f1:d1:1d:19:aa:77:40:f7:ed:96:94:3c:10: ac:09:3e:90:74:77:97:ce:fc:7f:54:e0:d7:9d:f9:f9:91:a2: 6d:1c:8b:41:12:d9:95:04:89:a2:ba:b4:79:ba:32:28:c5:ef: f2:38:86:59:ce:90:9e:3c:3c:b4:bc:34:cc:8a:4a:c6:c3:48: 66:e7:66:ac:92:d2:08:33:96:83:8d:2f:ad:a2:10:b7:4b:3a: 4a:3e:64:8b:65:c9:ed:44:07:57:7d:e0:d6:01:7f:d2:e9:71: ca:ab:ef:d5:33:c9:80:5e:21:3a:fc:4a:4e:bb:ea:dd:04:4a: a6:70:94:5f:44:1b:36:9c:43:4e:d7:5d:6f:06:49:1e:81:1b: 7c:27:0b:68:0e:3f:ba:59:7a:98:45:a0:56:ca:6d:7c:cd:b9: dc:f2:a0:e3:89:3a:72:70:f7:aa:6e:98:11:12:cf:70:ba:1c: eb:0f:37:8c:52:46:0f:de:85:49:1a:aa:7f:5c:f1:b4:da:e6: ac:9d:78:b3:d0:8f:a2:fd:92:24:21:cc:d1:ca:50:3a:d3:eb: 03:96:90:6c:ee:4d:96:cf:bd:07:83:ae:e2:ba:40:bf:1f:4b: 75:e5:35:bd -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICC9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUxMjAyMTg1MDM0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmMzRmYS1hOGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygAqpbOFkwbeytFLX3I0IC2Mu7obeYapxaqwnCnQsRCvTP6IRvu9r44zrT3a qWolyPCym+uP9Ql3Sgd2Z4x/9Qir+FwRFFUOd5sGmEFtCdn4fIf1RH3fpWIqQs5a VaX2NOGeoXf4QC1cUOb426fiwnWS4q7E7kcLo/tMax0D5DETMzofk9uzRq2CxJeX eTXEhG2TFjYFxSBTQvu+Q5nEW61v4PlvlskOjcYaOEdEm+p55p14zl9ZfkwcNGFl P9OfhC6kOHGirez4Q/qMA7q68dhXMEU5EXJ/1QTDpb6vPyVHPvWXm4c7xC/opnL5 JgUB905znJxXW6KeZHiwyeshdQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFC6HKHQh 9aXFCbURHRBzmlhbkRRmMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvM0E4ODNGMjg0 QjNFMTFGMDgxN0UzQzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEB2cXgAMEAGcXgjANBgkqhkiG9w0BAQsFAAOCAQEAnUV4 OPRRNjrrN/FPRbxrGGR+YiYrlfzx0R0ZqndA9+2WlDwQrAk+kHR3l878f1Tg1535 +ZGibRyLQRLZlQSJorq0eboyKMXv8jiGWc6Qnjw8tLw0zIpKxsNIZudmrJLSCDOW g40vraIQt0s6Sj5ki2XJ7UQHV33g1gF/0ulxyqvv1TPJgF4hOvxKTrvq3QRKpnCU X0QbNpxDTtddbwZJHoEbfCcLaA4/ull6mEWgVsptfM253PKg44k6cnD3qm6YERLP cLoc6w83jFJGD96FSRqqf1zxtNrmrJ14s9CPov2SJCHM0cpQOtPrA5aQbO5Nls+9 B4Ou4rpAvx9LdeU1vQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:42:23 2025 by rpki-client