This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/28FC424AA93711EE91871F0AC4F9AE02.roa File: 28FC424AA93711EE91871F0AC4F9AE02.roa (raw, json) Hash identifier: h17F13GZBIK4FM47wPFrZdY+qaPJuMpd5+gqXSgpxek= Subject key identifier: B6:A1:BE:84:F9:60:9E:5A:54:F4:82:E0:9F:3E:66:89:D4:E4:70:7C Certificate issuer: /CN=A91BA1D4/serialNumber=2C2C5C9A785F2EA734079C140E3A4719B386D383 Certificate serial: 0173 Authority key identifier: 2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/28FC424AA93711EE91871F0AC4F9AE02.roa Signing time: Mon 01 Dec 2025 02:31:08 +0000 ROA not before: Mon 01 Dec 2025 02:31:08 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151983 IP address blocks: 103.253.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA1D4, serialNumber=2C2C5C9A785F2EA734079C140E3A4719B386D383 Validity Not Before: Dec 1 02:31:08 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692cfdec-22f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ff:b6:18:77:f3:59:60:bf:90:56:1a:05:6b: b6:42:9f:9f:a8:cb:12:d6:4a:21:23:19:7e:4e:a4: 0f:29:09:c1:1b:1b:44:1d:be:96:18:e2:ae:8a:7c: fc:0e:cc:61:68:33:27:1e:23:ed:3a:67:cb:55:d9: 28:2d:9d:ca:02:b3:c5:58:fb:0c:da:e8:19:c9:0d: 66:39:f6:50:e6:54:4a:7b:96:0f:c2:aa:eb:9e:0e: b6:08:3a:68:fe:c3:95:ca:b4:11:2a:92:d9:6c:ce: 98:0d:a5:d1:bc:f2:94:01:c1:30:0f:07:9e:fd:d7: 15:d8:92:8c:87:0e:12:7a:a7:6e:c0:f2:56:f5:34: 26:26:4c:02:d3:e6:80:02:aa:b9:3b:e4:4a:ac:d5: 24:cc:65:d7:44:70:a7:45:4b:a2:35:82:77:12:ff: 91:e0:c4:6a:27:d2:da:7e:72:90:fa:1f:5b:4f:8a: 64:91:4b:8b:cf:39:fd:1c:79:81:fb:37:4f:b3:b9: a3:af:b7:85:08:9b:8d:cf:30:ba:e1:e0:56:01:b8: e7:fa:82:6c:8f:f1:17:73:f9:79:5e:ee:df:3b:68: b4:67:09:10:15:9d:50:1c:90:07:d0:af:04:ff:7f: 40:b3:84:da:af:1b:29:27:04:3e:82:93:78:5a:04: 92:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A1:BE:84:F9:60:9E:5A:54:F4:82:E0:9F:3E:66:89:D4:E4:70:7C X509v3 Authority Key Identifier: keyid:2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/28FC424AA93711EE91871F0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.18.0/23 Signature Algorithm: sha256WithRSAEncryption 15:fa:c2:b7:89:ba:31:dc:07:60:36:d1:22:0a:5c:b1:a6:24: fa:85:df:fc:b7:0d:c1:cb:43:d5:c6:3a:fe:e5:85:8f:78:8a: 6c:e7:ac:b3:b8:0a:93:a8:b1:3c:1b:c9:5f:65:a4:9b:9b:31: bc:63:07:50:e5:6f:cb:e1:2f:7f:fe:cf:63:77:4f:b5:a7:7d: 87:a0:f5:4d:59:db:d5:c0:25:a0:f8:44:e4:62:e3:ff:26:8a: e1:1c:af:43:d4:6f:b0:85:9a:cd:d4:ed:fc:c0:98:f3:d0:80: ed:e3:e9:54:12:6c:c1:a0:90:95:19:5a:1e:9c:c2:fa:b3:4a: 81:92:c9:4c:06:07:a1:29:8a:74:70:e3:94:70:d6:de:0a:ee: 25:b4:1e:d8:26:6d:be:5c:06:45:18:e2:42:3c:16:d8:b3:11: 6a:9d:1d:ad:f5:92:2d:14:95:e5:61:a1:66:e0:7a:c7:17:ed: 7f:b0:d6:34:a8:e3:78:a2:17:07:f2:0c:ac:80:5e:d7:a2:a0: 4d:8f:c3:e2:47:10:a1:04:24:75:aa:5f:eb:11:ef:53:d0:d7: 9c:5a:9f:ea:d3:c2:da:83:73:4f:da:4e:1d:1d:b0:dc:a9:ac: 05:83:a8:26:e9:74:f3:0e:5d:97:39:cf:19:aa:44:13:14:41: a3:81:7d:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkExRDQxMTAvBgNVBAUTKDJDMkM1QzlBNzg1RjJFQTczNDA3OUMxNDBFM0E0NzE5 QjM4NkQzODMwHhcNMjUxMjAxMDIzMTA4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJjZmRlYy0yMmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf+2GHfzWWC/kFYaBWu2Qp+fqMsS1kohIxl+TqQPKQnBGxtEHb6WGOKuinz8 DsxhaDMnHiPtOmfLVdkoLZ3KArPFWPsM2ugZyQ1mOfZQ5lRKe5YPwqrrng62CDpo /sOVyrQRKpLZbM6YDaXRvPKUAcEwDwee/dcV2JKMhw4SeqduwPJW9TQmJkwC0+aA Aqq5O+RKrNUkzGXXRHCnRUuiNYJ3Ev+R4MRqJ9LafnKQ+h9bT4pkkUuLzzn9HHmB +zdPs7mjr7eFCJuNzzC64eBWAbjn+oJsj/EXc/l5Xu7fO2i0ZwkQFZ1QHJAH0K8E /39As4TarxspJwQ+gpN4WgSS2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLahvoT5 YJ5aVPSC4J8+ZonU5HB8MB8GA1UdIwQYMBaAFCwsXJp4Xy6nNAecFA46RxmzhtOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTFENC81NTQ1RTIxQ0E5 MzYxMUVFODg0QUIxNTlDNEY5QUUwMi9MQ3hjbW5oZkxxYzBCNXdVRGpwSEdiT0cw NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xDeGNtbmhmTHFjMEI1d1VEanBIR2JPRzA0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkExRDQvNTU0NUUyMUNBOTM2MTFFRTg4NEFCMTU5QzRGOUFFMDIvMjhGQzQyNEFB OTM3MTFFRTkxODcxRjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/RIwDQYJKoZIhvcNAQELBQADggEBABX6wreJujHcB2A2 0SIKXLGmJPqF3/y3DcHLQ9XGOv7lhY94imznrLO4CpOosTwbyV9lpJubMbxjB1Dl b8vhL3/+z2N3T7WnfYeg9U1Z29XAJaD4RORi4/8miuEcr0PUb7CFms3U7fzAmPPQ gO3j6VQSbMGgkJUZWh6cwvqzSoGSyUwGB6EpinRw45Rw1t4K7iW0Htgmbb5cBkUY 4kI8FtizEWqdHa31ki0UleVhoWbgescX7X+w1jSo43iiFwfyDKyAXteioE2Pw+JH EKEEJHWqX+sR71PQ15xan+rTwtqDc0/aTh0dsNyprAWDqCbpdPMOXZc5zxmqRBMU QaOBfXQ= -----END CERTIFICATE-----Generated at Sat Dec 6 23:24:49 2025 by rpki-client