This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa File: F6722FA6822411F088762570C4F9AE02.roa (raw, json) Hash identifier: cwTG6WRxgwpGC7D9q0wUaTi/+YK1I9muXfDzRXXW1lg= Subject key identifier: B9:ED:42:FD:A5:68:D3:D8:ED:CA:C4:87:81:1B:12:FE:4B:E5:27:4E Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0BD7 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa Signing time: Tue 02 Dec 2025 18:50:33 +0000 ROA not before: Tue 02 Dec 2025 18:50:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 202736 IP address blocks: 45.124.204.0/24 maxlen: 24 45.124.205.0/24 maxlen: 24 45.124.206.0/24 maxlen: 24 45.124.207.0/24 maxlen: 24 103.25.100.0/24 maxlen: 24 103.25.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3031 (0xbd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Dec 2 18:50:33 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692f34f9-7e2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c7:32:f8:fd:b1:0e:e8:a6:63:17:4d:0e:a2: 0c:85:97:b1:e1:f6:84:5f:45:3e:59:8d:72:d6:26: 32:74:6e:aa:2f:cc:fe:eb:d5:01:46:c3:91:95:c1: 7e:dc:e3:38:09:2d:c2:c4:6a:e7:7f:08:e0:4f:8e: 6a:62:d3:01:eb:e5:6c:9f:a9:3f:6e:c5:c9:b0:91: b4:d5:21:eb:21:fb:65:40:f5:3b:d7:83:c6:ab:72: ab:79:b5:3e:77:59:13:72:37:47:bf:d1:4c:cb:57: 83:24:71:98:0f:ad:3c:65:f4:49:69:d3:52:cc:b0: 14:87:4a:76:94:c3:24:80:91:a6:a8:f2:5c:05:0a: bc:8f:b5:1e:09:4b:83:15:a9:d5:2c:4d:90:7d:9f: 14:0c:0a:87:b9:00:b4:6e:e3:07:9a:fe:88:ef:6a: 5c:fc:bc:85:6d:2e:d1:2d:83:cd:2b:10:96:a2:60: 10:2d:12:a7:b9:0b:d3:a2:05:4e:5e:19:f3:e5:47: ad:40:c7:09:7d:f4:7c:05:b5:ab:03:b7:25:64:c7: 8e:16:f1:f9:46:a4:4a:6d:7f:dd:1e:9b:c6:ab:fa: 76:83:0b:07:02:5e:cb:13:f8:ce:07:ff:f9:44:b2: 67:45:26:7d:e1:db:12:8e:50:41:55:5b:26:e1:ea: ba:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:ED:42:FD:A5:68:D3:D8:ED:CA:C4:87:81:1B:12:FE:4B:E5:27:4E X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.204.0/22 103.25.100.0/23 Signature Algorithm: sha256WithRSAEncryption 82:3d:a0:5b:d7:c6:21:e1:da:b1:bc:77:94:23:41:d2:3c:38: ef:26:09:24:2b:e7:b5:c0:28:a3:ef:c2:75:de:50:08:a1:01: 3d:96:0f:19:3b:67:c1:db:37:2d:42:58:63:43:c9:b2:a5:e5: f0:41:46:3f:4c:33:0d:41:83:db:dd:29:f6:0f:5c:ff:9d:89: ef:e0:1d:8d:43:46:2f:90:c3:54:1a:f9:87:f6:4c:03:9f:9a: 05:3d:2e:30:71:77:a6:eb:0a:0d:e8:ea:4c:50:77:91:e2:6c: 69:f4:42:48:94:b3:2f:9c:d9:9b:0d:8f:46:ee:4b:f6:73:3d: ad:4c:b1:b2:00:df:18:74:99:ae:95:54:f0:21:35:e8:d4:e4: c0:b6:6d:68:fd:04:da:ea:97:7d:3b:e3:c2:22:9f:fe:2b:a8: 08:d8:36:97:b8:cf:6f:53:7a:83:90:61:e6:62:a5:c4:64:8f: a1:d7:c8:8f:75:81:a7:e9:13:03:36:17:32:0d:4b:fd:74:be: 87:7f:17:ae:df:e5:93:ba:e4:db:aa:7b:86:65:27:5e:03:09: fb:c3:9c:1d:d3:1e:4f:3b:fa:d7:d1:cd:59:2c:7f:fc:bd:05: fa:54:9d:c7:52:ab:a2:ff:46:2e:8b:64:0c:76:cf:28:4d:99: 1a:47:ce:96 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUxMjAyMTg1MDMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmMzRmOS03ZTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApscy+P2xDuimYxdNDqIMhZex4faEX0U+WY1y1iYydG6qL8z+69UBRsORlcF+ 3OM4CS3CxGrnfwjgT45qYtMB6+Vsn6k/bsXJsJG01SHrIftlQPU714PGq3KrebU+ d1kTcjdHv9FMy1eDJHGYD608ZfRJadNSzLAUh0p2lMMkgJGmqPJcBQq8j7UeCUuD FanVLE2QfZ8UDAqHuQC0buMHmv6I72pc/LyFbS7RLYPNKxCWomAQLRKnuQvTogVO Xhnz5UetQMcJffR8BbWrA7clZMeOFvH5RqRKbX/dHpvGq/p2gwsHAl7LE/jOB//5 RLJnRSZ94dsSjlBBVVsm4eq6WwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLntQv2l aNPY7crEh4EbEv5L5SdOMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvRjY3MjJGQTY4 MjI0MTFGMDg4NzYyNTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfMwDBAFnGWQwDQYJKoZIhvcNAQELBQADggEBAII9oFvX xiHh2rG8d5QjQdI8OO8mCSQr57XAKKPvwnXeUAihAT2WDxk7Z8HbNy1CWGNDybKl 5fBBRj9MMw1Bg9vdKfYPXP+die/gHY1DRi+Qw1Qa+Yf2TAOfmgU9LjBxd6brCg3o 6kxQd5HibGn0QkiUsy+c2ZsNj0buS/ZzPa1MsbIA3xh0ma6VVPAhNejU5MC2bWj9 BNrql30748Iin/4rqAjYNpe4z29TeoOQYeZipcRkj6HXyI91gafpEwM2FzINS/10 vod/F67f5ZO65Nuqe4ZlJ14DCfvDnB3THk87+tfRzVksf/y9BfpUncdSq6L/Ri6L ZAx2zyhNmRpHzpY= -----END CERTIFICATE-----Generated at Sat Dec 6 13:33:10 2025 by rpki-client