This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa File: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (raw, json) Hash identifier: 9fyJQPuQiZFhFR8voAxZ+5tLkOfoUmhI0rtIPoaKy8o= Subject key identifier: FF:DF:3A:B5:87:13:40:90:1F:74:EB:EC:DE:CC:4A:E1:46:03:7F:DE Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 6D Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa Signing time: Mon 01 Dec 2025 05:33:23 +0000 ROA not before: Mon 01 Dec 2025 05:33:23 +0000 ROA not after: Mon 30 Mar 2026 00:00:00 +0000 asID: 140883 IP address blocks: 103.143.120.0/24 maxlen: 24 103.143.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Dec 1 05:33:23 2025 GMT Not After : Mar 30 00:00:00 2026 GMT Subject: CN=692d28a3-34c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:af:18:5d:dd:8c:17:cc:7b:49:6e:9d:45: cb:65:83:96:61:7a:82:9c:dc:32:d4:b3:bf:30:1d: ac:b7:a2:ce:19:58:c5:b3:c0:ef:47:de:c1:cc:0b: de:e1:eb:87:ed:49:ba:da:f3:45:73:e2:56:0d:a8: 06:8f:06:96:d6:06:dc:3c:a3:61:2e:d9:63:38:83: 1c:e6:6e:55:ab:3b:15:ce:08:58:20:4c:0a:3c:02: d9:6e:78:4b:e8:ba:6c:95:6e:b1:04:a0:d6:8b:65: 24:34:8a:29:f5:47:76:f5:e4:47:44:11:c0:65:68: 11:7a:93:35:e4:c8:d0:50:c8:61:47:de:48:f3:70: d2:78:13:da:7a:4e:e9:50:96:95:b0:db:24:83:82: 3d:a4:03:9a:d7:b0:5c:f5:fe:22:c9:b4:2a:04:29: c8:9a:a0:6d:25:c5:12:1f:01:8b:30:16:0b:00:00: 7e:dc:10:1e:83:fa:d0:39:ee:1b:d3:bf:eb:f1:0f: d3:1b:a6:ea:f8:cb:08:3a:e0:65:f2:c9:c6:2c:25: d4:24:27:86:78:78:94:cb:6b:6a:7f:b7:8a:ca:ba: 5c:bc:0a:c5:09:f5:bf:b0:15:dd:36:42:af:53:ae: df:b4:bf:81:79:67:c2:f7:0e:4a:e3:0e:dd:db:d7: 0d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DF:3A:B5:87:13:40:90:1F:74:EB:EC:DE:CC:4A:E1:46:03:7F:DE X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.120.0/23 Signature Algorithm: sha256WithRSAEncryption 67:1e:fe:97:66:5f:89:5e:52:17:eb:8c:50:27:37:e1:aa:46: 63:14:27:f3:27:af:c2:cd:33:2a:b9:30:c1:e2:af:56:ab:d2: 1b:a0:23:c9:5f:5c:a3:d8:7d:50:59:f4:16:e8:10:0c:1b:15: e7:96:de:f9:c4:2d:68:7c:3a:48:d1:08:90:2a:d9:f2:39:2f: e4:c2:87:5a:f7:4f:81:59:55:1f:a2:7b:a0:f7:d8:b7:00:40: ef:5d:47:ed:9b:4c:3d:9f:9d:06:71:a9:02:4b:a5:4e:69:46: cf:ba:23:90:06:ca:d0:1d:cd:06:a9:76:89:ec:92:95:1f:c9: e5:1b:74:be:6c:b3:25:07:8c:c6:73:77:d7:a3:25:ea:39:fa: 66:5b:4b:3e:03:0f:0b:ca:7f:84:30:50:21:73:14:4d:9c:15: 71:4b:08:21:91:85:98:1c:af:3d:58:a2:81:f2:3d:03:eb:d0: 93:04:9e:91:af:13:de:71:4c:67:3e:9c:fe:53:a5:a7:f3:11: 57:42:a5:28:d2:e2:0c:62:9b:39:a5:7b:67:88:ee:58:01:6e: ac:bb:c5:e2:8e:a4:e1:b0:d6:f5:b4:3f:3b:a7:84:3b:1a:10: e2:81:1f:c6:43:88:84:a2:27:b3:1e:bd:be:f0:9a:5d:7c:dc: 3f:db:f9:ac -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTEyMDEwNTMzMjNaFw0yNjAzMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MmQyOGEzLTM0YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzra8YXd2MF8x7SW6dRctlg5ZheoKc3DLUs78wHay3os4ZWMWzwO9H3sHMC97h 64ftSbra80Vz4lYNqAaPBpbWBtw8o2Eu2WM4gxzmblWrOxXOCFggTAo8AtlueEvo umyVbrEEoNaLZSQ0iin1R3b15EdEEcBlaBF6kzXkyNBQyGFH3kjzcNJ4E9p6TulQ lpWw2ySDgj2kA5rXsFz1/iLJtCoEKciaoG0lxRIfAYswFgsAAH7cEB6D+tA57hvT v+vxD9Mbpur4ywg64GXyycYsJdQkJ4Z4eJTLa2p/t4rKuly8CsUJ9b+wFd02Qq9T rt+0v4F5Z8L3DkrjDt3b1w3jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/986tYcT QJAfdOvs3sxK4UYDf94wHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUEyNC8xNzM5QzM1QTJCQzkxMUYwQjhCRTNGM0JDNEY5QUUwMi8yOEMyRDYwMDJC Q0IxMUYwQTk5QzFFNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWePeDANBgkqhkiG9w0BAQsFAAOCAQEAZx7+l2ZfiV5SF+uM UCc34apGYxQn8yevws0zKrkwweKvVqvSG6AjyV9co9h9UFn0FugQDBsV55be+cQt aHw6SNEIkCrZ8jkv5MKHWvdPgVlVH6J7oPfYtwBA711H7ZtMPZ+dBnGpAkulTmlG z7ojkAbK0B3NBql2ieySlR/J5Rt0vmyzJQeMxnN316Ml6jn6ZltLPgMPC8p/hDBQ IXMUTZwVcUsIIZGFmByvPViigfI9A+vQkwSeka8T3nFMZz6c/lOlp/MRV0KlKNLi DGKbOaV7Z4juWAFurLvF4o6k4bDW9bQ/O6eEOxoQ4oEfxkOIhKInsx69vvCaXXzc P9v5rA== -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:49 2025 by rpki-client