This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCFC5/999F0248C5AB11F08A20354DC4F9AE02/7407D8E2C5AC11F0AF286222C4F9AE02.roa File: 7407D8E2C5AC11F0AF286222C4F9AE02.roa (raw, json) Hash identifier: MtBnAhHAehfnWMn1/brAT1P+0TueglRR7dDcPrFP/rM= Subject key identifier: 31:AA:4C:E1:BE:D4:C0:E2:4C:20:3E:40:20:11:4B:C6:72:17:A4:7D Certificate issuer: /CN=A91BCFC5/serialNumber=5CCA98F878C92402E2F104E2B8BDAB8190B1FAA2 Certificate serial: 02 Authority key identifier: 5C:CA:98:F8:78:C9:24:02:E2:F1:04:E2:B8:BD:AB:81:90:B1:FA:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XMqY-HjJJALi8QTiuL2rgZCx-qI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCFC5/999F0248C5AB11F08A20354DC4F9AE02/7407D8E2C5AC11F0AF286222C4F9AE02.roa Signing time: Thu 20 Nov 2025 01:01:32 +0000 ROA not before: Thu 20 Nov 2025 01:01:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58613 IP address blocks: 103.12.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCFC5/999F0248C5AB11F08A20354DC4F9AE02/XMqY-HjJJALi8QTiuL2rgZCx-qI.crl rsync://rpki.apnic.net/member_repository/A91BCFC5/999F0248C5AB11F08A20354DC4F9AE02/XMqY-HjJJALi8QTiuL2rgZCx-qI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XMqY-HjJJALi8QTiuL2rgZCx-qI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCFC5, serialNumber=5CCA98F878C92402E2F104E2B8BDAB8190B1FAA2 Validity Not Before: Nov 20 01:01:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=691e686c-ee2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:90:21:f2:b5:c0:ea:fe:27:4f:b1:24:ed:2c: 24:a6:da:fb:71:fd:80:a4:07:a1:f8:85:17:91:a2: 06:e3:f2:69:85:45:8c:df:fd:fc:09:9c:17:d8:d7: 56:c7:52:a6:bc:a2:ad:37:dc:c7:9b:47:74:b3:41: 7a:53:ec:fa:a7:59:3b:b6:09:76:00:8b:0b:61:66: 98:73:37:1c:2a:7b:ef:96:68:91:64:3f:38:52:20: 3d:5d:eb:4a:62:04:77:7f:b5:6a:b0:c9:2e:5c:85: 20:74:b0:20:c3:f5:2a:ce:99:fd:0d:2c:1d:84:a8: 6b:28:2b:fc:67:d8:a4:45:70:b6:2f:33:08:76:5e: f6:3e:b5:a2:84:7e:e5:5a:16:c5:c7:a0:90:cc:ed: 35:80:ae:48:48:9c:57:65:f2:61:04:11:3b:23:8d: c1:9f:c8:2e:e7:4f:30:b7:4e:82:bd:ba:93:23:ab: 67:8e:2d:04:35:ec:97:8b:0c:ba:9f:fb:d6:e1:79: 2b:1b:61:fc:c7:0b:d6:99:bc:68:1a:df:96:15:13: 23:fa:7b:2e:33:59:73:f1:41:04:69:9a:07:4a:d6: 4f:9c:2d:dd:f0:f4:30:6a:95:ed:7e:0d:96:2c:44: e6:f5:da:b5:f0:37:53:8d:4e:65:b6:3d:d0:da:5e: f0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AA:4C:E1:BE:D4:C0:E2:4C:20:3E:40:20:11:4B:C6:72:17:A4:7D X509v3 Authority Key Identifier: keyid:5C:CA:98:F8:78:C9:24:02:E2:F1:04:E2:B8:BD:AB:81:90:B1:FA:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCFC5/999F0248C5AB11F08A20354DC4F9AE02/XMqY-HjJJALi8QTiuL2rgZCx-qI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XMqY-HjJJALi8QTiuL2rgZCx-qI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCFC5/999F0248C5AB11F08A20354DC4F9AE02/7407D8E2C5AC11F0AF286222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.11.0/24 Signature Algorithm: sha256WithRSAEncryption bb:f6:4b:7f:8b:16:b8:49:74:98:98:31:5c:88:62:67:0f:ec: 61:e9:67:a0:4c:c7:ef:4c:e7:41:0a:57:69:3c:45:f1:74:16: 91:4e:0b:c1:f6:12:80:06:17:11:d0:1c:6d:27:01:de:79:f5: c1:df:3e:b2:28:03:dc:9c:74:b7:59:a5:f5:5a:35:7c:76:98: 83:2b:c6:13:02:bb:f4:da:d6:aa:be:f0:59:81:ff:f1:bc:ef: 83:2f:4d:ed:10:7c:a5:1d:35:5e:67:88:dc:6c:ff:7f:dc:dc: ff:2a:ee:76:fa:8a:9e:2f:76:21:13:48:b0:69:aa:93:12:de: da:77:ba:53:18:6b:6c:5b:44:17:83:a2:c7:6c:4e:a6:07:e2: 3e:98:30:4d:be:09:3b:38:2f:cb:1a:7d:8b:a1:70:83:53:d0: ae:d4:c8:a9:83:9e:4e:fa:e3:f1:a8:af:ab:57:68:a6:74:7e: d1:eb:7e:ca:1b:65:29:4e:3f:b4:ee:31:b6:2b:d8:e0:af:9b: 0e:5f:ba:73:e8:ba:6e:64:35:55:9f:53:60:dd:54:c8:50:59: 7d:e3:49:e7:ba:48:b2:b8:a2:d5:b1:be:3f:e0:7c:0c:7d:03: 7a:22:c1:a6:30:0c:e7:d6:c0:cd:ca:39:0a:6c:6b:57:e2:d4: 59:6d:f3:e9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0ZDNTExMC8GA1UEBRMoNUNDQTk4Rjg3OEM5MjQwMkUyRjEwNEUyQjhCREFCODE5 MEIxRkFBMjAeFw0yNTExMjAwMTAxMzJaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MWU2ODZjLWVlMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqkCHytcDq/idPsSTtLCSm2vtx/YCkB6H4hReRogbj8mmFRYzf/fwJnBfY11bH Uqa8oq033MebR3SzQXpT7PqnWTu2CXYAiwthZphzNxwqe++WaJFkPzhSID1d60pi BHd/tWqwyS5chSB0sCDD9SrOmf0NLB2EqGsoK/xn2KRFcLYvMwh2XvY+taKEfuVa FsXHoJDM7TWArkhInFdl8mEEETsjjcGfyC7nTzC3ToK9upMjq2eOLQQ17JeLDLqf +9bheSsbYfzHC9aZvGga35YVEyP6ey4zWXPxQQRpmgdK1k+cLd3w9DBqle1+DZYs ROb12rXwN1ONTmW2PdDaXvATAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMapM4b7U wOJMID5AIBFLxnIXpH0wHwYDVR0jBBgwFoAUXMqY+HjJJALi8QTiuL2rgZCx+qIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDRkM1Lzk5OUYwMjQ4QzVB QjExRjA4QTIwMzU0REM0RjlBRTAyL1hNcVktSGpKSkFMaThRVGl1TDJyZ1pDeC1x SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWE1xWS1IakpKQUxpOFFUaXVMMnJnWkN4LXFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0ZDNS85OTlGMDI0OEM1QUIxMUYwOEEyMDM1NERDNEY5QUUwMi83NDA3RDhFMkM1 QUMxMUYwQUYyODYyMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcMCzANBgkqhkiG9w0BAQsFAAOCAQEAu/ZLf4sWuEl0mJgx XIhiZw/sYelnoEzH70znQQpXaTxF8XQWkU4LwfYSgAYXEdAcbScB3nn1wd8+sigD 3Jx0t1ml9Vo1fHaYgyvGEwK79NrWqr7wWYH/8bzvgy9N7RB8pR01XmeI3Gz/f9zc /yrudvqKni92IRNIsGmqkxLe2ne6UxhrbFtEF4Oix2xOpgfiPpgwTb4JOzgvyxp9 i6Fwg1PQrtTIqYOeTvrj8aivq1dopnR+0et+yhtlKU4/tO4xtivY4K+bDl+6c+i6 bmQ1VZ9TYN1UyFBZfeNJ57pIsrii1bG+P+B8DH0DeiLBpjAM59bAzco5CmxrV+LU WW3z6Q== -----END CERTIFICATE-----Generated at Sat Dec 6 22:32:05 2025 by rpki-client