This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa File: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (raw, json) Hash identifier: TaTTQc4nWO7SbQiY1TzciA986qQtAe9dKiOICLaP5yg= Subject key identifier: AD:1B:BE:5B:FD:9C:4F:F6:B2:2E:8D:AC:95:0D:CC:DA:5C:1B:50:7E Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 7A Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa Signing time: Sun 21 Dec 2025 06:25:44 +0000 ROA not before: Sun 21 Dec 2025 06:25:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140883 IP address blocks: 103.143.120.0/24 maxlen: 24 103.143.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Dec 21 06:25:44 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=694792e8-d248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:30:4b:98:77:6b:a5:87:e7:64:93:c7:e5:43: 01:34:7a:54:8b:d9:5a:4f:76:44:46:78:37:3b:00: b6:8e:53:29:11:55:0b:9d:15:40:d3:21:f0:30:f7: 9d:88:cf:03:3d:5a:36:64:e4:b6:62:42:7a:df:01: c9:57:ea:f4:e3:4e:24:54:6a:af:98:37:34:6f:64: b4:3f:7f:73:4a:23:da:49:a7:59:f7:63:c2:1b:c4: 0c:d3:85:c5:ff:bb:9f:5f:9d:30:47:d7:1b:88:e0: cc:7b:d1:12:90:81:15:b7:4d:b3:0a:b2:b0:c5:71: 51:77:76:f5:1f:1d:e7:69:aa:97:9f:b5:5c:2d:01: ff:08:4a:0f:a7:d8:19:7a:82:c1:59:ec:42:6c:38: 7a:be:e4:05:9a:9a:a3:05:4d:60:93:11:40:47:0e: 0d:0e:ec:0e:62:0e:f1:4a:ba:df:7e:05:72:d1:b2: ac:95:95:44:3a:77:37:41:4d:f4:f4:94:40:4e:ef: 30:9b:3c:2d:48:42:ea:a5:5d:5b:97:53:32:6e:23: e7:f3:e2:9e:5a:9f:d8:1a:0f:d6:d7:e9:82:8a:e9: fd:66:2d:d9:b4:da:fd:0d:e0:67:ca:da:b8:50:6b: e4:29:c3:d6:12:33:14:9f:f4:50:cc:95:42:52:1d: 81:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:1B:BE:5B:FD:9C:4F:F6:B2:2E:8D:AC:95:0D:CC:DA:5C:1B:50:7E X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.120.0/23 Signature Algorithm: sha256WithRSAEncryption b7:e3:e3:ea:9e:99:a8:72:e2:8d:e6:e5:5b:7e:94:7c:b8:6a: c8:b3:71:84:e0:ab:4c:40:4b:15:fc:23:e1:6e:56:ba:63:83: fa:6c:f6:9f:47:cd:41:d1:22:5d:69:8d:a8:99:c0:63:3e:c5: b4:ce:30:41:ee:64:fd:08:99:2d:fc:a9:46:08:76:28:53:34: aa:90:02:4a:dc:4e:c6:3f:2d:65:b1:92:8b:fa:4f:b8:05:6a: 62:f2:e1:b9:dc:2d:0d:2e:97:91:ab:95:11:72:7f:32:12:5d: 92:5b:94:76:63:a2:c0:b6:e4:95:93:90:94:31:b3:aa:91:72: e8:b5:e9:79:6c:e9:6b:96:91:30:b6:f2:f7:0b:7b:e7:2e:1c: 51:e7:5f:63:25:9c:c4:a6:51:ae:96:de:81:e3:39:3c:3e:82: bd:2e:aa:15:d8:6a:2e:91:9e:5f:30:0b:20:45:4b:44:80:09: 05:5e:ca:e7:53:ad:93:03:df:b1:28:6b:b7:b3:d2:7e:05:29: db:79:30:6e:fc:2d:91:30:2a:36:c6:cb:ec:fd:13:b2:2b:b4: 12:1a:d8:3b:1d:07:80:48:41:f9:00:97:57:9c:36:b3:86:bf: c5:c8:25:62:41:16:ba:e5:3f:ae:77:df:ea:4f:ee:fb:bf:23: bc:71:be:8f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTEyMjEwNjI1NDRaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NDc5MmU4LWQyNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjMEuYd2ulh+dkk8flQwE0elSL2VpPdkRGeDc7ALaOUykRVQudFUDTIfAw952I zwM9WjZk5LZiQnrfAclX6vTjTiRUaq+YNzRvZLQ/f3NKI9pJp1n3Y8IbxAzThcX/ u59fnTBH1xuI4Mx70RKQgRW3TbMKsrDFcVF3dvUfHedpqpeftVwtAf8ISg+n2Bl6 gsFZ7EJsOHq+5AWamqMFTWCTEUBHDg0O7A5iDvFKut9+BXLRsqyVlUQ6dzdBTfT0 lEBO7zCbPC1IQuqlXVuXUzJuI+fz4p5an9gaD9bX6YKK6f1mLdm02v0N4GfK2rhQ a+Qpw9YSMxSf9FDMlUJSHYEPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrRu+W/2c T/ayLo2slQ3M2lwbUH4wHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUEyNC8xNzM5QzM1QTJCQzkxMUYwQjhCRTNGM0JDNEY5QUUwMi8yOEMyRDYwMDJC Q0IxMUYwQTk5QzFFNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWePeDANBgkqhkiG9w0BAQsFAAOCAQEAt+Pj6p6ZqHLijebl W36UfLhqyLNxhOCrTEBLFfwj4W5WumOD+mz2n0fNQdEiXWmNqJnAYz7FtM4wQe5k /QiZLfypRgh2KFM0qpACStxOxj8tZbGSi/pPuAVqYvLhudwtDS6XkauVEXJ/MhJd kluUdmOiwLbklZOQlDGzqpFy6LXpeWzpa5aRMLby9wt75y4cUedfYyWcxKZRrpbe geM5PD6CvS6qFdhqLpGeXzALIEVLRIAJBV7K51OtkwPfsShrt7PSfgUp23kwbvwt kTAqNsbL7P0Tsiu0EhrYOx0HgEhB+QCXV5w2s4a/xcglYkEWuuU/rnff6k/u+78j vHG+jw== -----END CERTIFICATE-----Generated at Sun Jan 25 15:23:50 2026 by rpki-client