This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/534DAC6AC0B811F099CB7061C4F9AE02.roa File: 534DAC6AC0B811F099CB7061C4F9AE02.roa (raw, json) Hash identifier: YEhOF4SYFPQCGhzAw4OsVUzu5vAW32dSw+OwYHcqvMo= Subject key identifier: 12:66:1B:A9:66:75:07:30:3F:A8:D6:E1:4A:CC:8E:D4:46:87:B0:6C Certificate issuer: /CN=A91BBD7E/serialNumber=653F2C6B7956BB614509B8F15C1F1DC3398218BD Certificate serial: 01D5 Authority key identifier: 65:3F:2C:6B:79:56:BB:61:45:09:B8:F1:5C:1F:1D:C3:39:82:18:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/534DAC6AC0B811F099CB7061C4F9AE02.roa Signing time: Thu 13 Nov 2025 17:43:55 +0000 ROA not before: Thu 13 Nov 2025 17:43:55 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132169 IP address blocks: 103.219.225.0/24 maxlen: 24 2401:a20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.crl rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD7E, serialNumber=653F2C6B7956BB614509B8F15C1F1DC3398218BD Validity Not Before: Nov 13 17:43:55 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=691618db-bd19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ff:d7:56:98:3d:35:f3:1d:d9:4a:bf:e3:d7: fb:cb:cd:a4:3b:84:02:8d:5d:f7:83:ae:34:de:fe: ad:3c:81:24:24:7c:f8:df:47:21:a1:30:a6:4c:0b: 7f:83:e7:54:cc:fc:f1:47:6b:4e:e4:b9:0b:b6:e3: d9:da:e8:71:95:71:4b:4b:33:f2:9e:59:90:02:1b: 92:d8:d4:44:73:2a:ac:e5:bf:5b:90:2c:22:99:0b: 02:41:7d:a2:63:52:2c:dc:1e:59:e9:30:1c:80:fa: 0e:10:b0:42:73:0b:4d:54:13:89:d1:0d:9b:51:7e: 5e:ee:0b:66:9b:55:a4:b5:e9:8d:28:e0:c9:7e:2b: e3:d6:f7:d5:67:9e:a9:3e:5e:fb:8a:ad:fd:d5:01: 40:9a:4a:09:85:e5:c4:fe:94:ad:f0:c2:9b:6b:6a: ec:8a:af:75:d1:5a:8d:f8:d1:b8:ca:c0:a9:b8:11: e5:61:cc:02:65:f1:7e:54:a8:b6:e3:fa:01:c9:f5: ae:04:24:1e:53:a6:d7:f5:a1:03:5b:ca:80:b0:5d: e0:a8:1b:d7:06:92:48:75:0f:47:31:95:22:7a:c9: ed:6d:3b:b5:f0:43:f6:76:9e:1c:76:db:cb:e6:aa: 6b:75:1f:1e:90:23:bc:cf:99:41:85:de:18:8d:aa: fe:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:66:1B:A9:66:75:07:30:3F:A8:D6:E1:4A:CC:8E:D4:46:87:B0:6C X509v3 Authority Key Identifier: keyid:65:3F:2C:6B:79:56:BB:61:45:09:B8:F1:5C:1F:1D:C3:39:82:18:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/534DAC6AC0B811F099CB7061C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.225.0/24 IPv6: 2401:a20::/32 Signature Algorithm: sha256WithRSAEncryption 28:99:1b:24:a4:6c:97:7f:f1:dd:93:fa:f7:eb:a4:59:09:ac: bb:59:33:06:b4:73:36:39:62:12:d4:bc:91:3e:ce:0f:f0:de: f3:15:0e:aa:bf:00:4b:b4:65:2a:00:77:8b:6a:e8:82:ee:be: c0:89:50:cf:80:b1:0f:b9:4f:18:71:23:eb:55:68:60:f2:3a: 5a:87:96:95:08:ec:bd:1b:46:3e:77:20:1a:9e:69:a1:ac:23: bd:dd:6f:c0:68:eb:90:ee:13:db:35:39:b2:44:07:23:cb:a0: c0:d8:30:62:15:16:c9:c2:08:98:b2:05:9e:51:a5:62:ab:a2: d4:9a:a9:73:33:51:38:f4:cb:99:fd:3e:5e:8b:08:56:68:bf: 1c:40:9a:5d:6e:f8:7a:89:13:fb:0b:58:e4:ab:b3:27:60:d4: ea:f4:6e:ef:41:b0:c4:b6:35:2b:31:53:e8:31:b2:97:79:0c: c1:ba:46:c7:1a:fb:d1:57:03:d9:b8:8e:8b:55:9b:8a:24:86: 63:1b:31:7a:14:23:e1:c7:aa:f8:a4:2f:6a:c3:67:c9:34:c2: 5d:9d:97:08:6f:d6:d4:3f:f7:95:e9:1e:79:0c:af:31:d5:6f: 09:a1:c9:35:5b:59:3d:90:e3:f1:84:e8:69:95:20:8b:56:3e: 19:bb:d7:89 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJEN0UxMTAvBgNVBAUTKDY1M0YyQzZCNzk1NkJCNjE0NTA5QjhGMTVDMUYxREMz Mzk4MjE4QkQwHhcNMjUxMTEzMTc0MzU1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTE2MThkYi1iZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtP/XVpg9NfMd2Uq/49f7y82kO4QCjV33g6403v6tPIEkJHz430choTCmTAt/ g+dUzPzxR2tO5LkLtuPZ2uhxlXFLSzPynlmQAhuS2NREcyqs5b9bkCwimQsCQX2i Y1Is3B5Z6TAcgPoOELBCcwtNVBOJ0Q2bUX5e7gtmm1WktemNKODJfivj1vfVZ56p Pl77iq391QFAmkoJheXE/pSt8MKba2rsiq910VqN+NG4ysCpuBHlYcwCZfF+VKi2 4/oByfWuBCQeU6bX9aEDW8qAsF3gqBvXBpJIdQ9HMZUiesntbTu18EP2dp4cdtvL 5qprdR8ekCO8z5lBhd4Yjar+gQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBJmG6lm dQcwP6jW4UrMjtRGh7BsMB8GA1UdIwQYMBaAFGU/LGt5VrthRQm48VwfHcM5ghi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ3RS8xQUVEMDlDNDBB OEExMUVFOTNFMUE3NzBDNEY5QUUwMi9aVDhzYTNsV3UyRkZDYmp4WEI4ZHd6bUNH TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pUOHNhM2xXdTJGRkNianhYQjhkd3ptQ0dMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJEN0UvMUFFRDA5QzQwQThBMTFFRTkzRTFBNzcwQzRGOUFFMDIvNTM0REFDNkFD MEI4MTFGMDk5Q0I3MDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABn2+EwDQQCAAIwBwMFACQBCiAwDQYJKoZIhvcNAQELBQAD ggEBACiZGySkbJd/8d2T+vfrpFkJrLtZMwa0czY5YhLUvJE+zg/w3vMVDqq/AEu0 ZSoAd4tq6ILuvsCJUM+AsQ+5TxhxI+tVaGDyOlqHlpUI7L0bRj53IBqeaaGsI73d b8Bo65DuE9s1ObJEByPLoMDYMGIVFsnCCJiyBZ5RpWKrotSaqXMzUTj0y5n9Pl6L CFZovxxAml1u+HqJE/sLWOSrsydg1Or0bu9BsMS2NSsxU+gxspd5DMG6Rsca+9FX A9m4jotVm4okhmMbMXoUI+HHqvikL2rDZ8k0wl2dlwhv1tQ/95XpHnkMrzHVbwmh yTVbWT2Q4/GE6GmVIItWPhm714k= -----END CERTIFICATE-----Generated at Sat Dec 6 17:17:42 2025 by rpki-client