This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa File: CFF0FDEC025911EDA0A85765C4F9AE02.roa (raw, json) Hash identifier: wZPPG2aGGXldL11r5unMH6Ru66NW1UIJskV7UNSU5h4= Subject key identifier: FB:0D:28:CA:4B:26:53:3C:71:4E:D7:9C:40:8B:53:9B:97:0D:C1:8D Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 02F9 Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa Signing time: Sun 30 Nov 2025 23:57:05 +0000 ROA not before: Sun 30 Nov 2025 23:57:05 +0000 ROA not after: Mon 30 Mar 2026 00:00:00 +0000 asID: 139200 IP address blocks: 103.123.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 761 (0x2f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A, serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: Nov 30 23:57:05 2025 GMT Not After : Mar 30 00:00:00 2026 GMT Subject: CN=692cd9d1-9dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d4:3d:82:95:6b:c1:79:12:9d:28:ee:cb:dc: 3d:58:fe:0f:a1:59:ec:47:92:67:67:1f:3a:87:75: 49:29:eb:78:fb:a0:19:ec:5b:89:95:49:3b:a5:35: cc:1b:c6:3b:8f:1f:a8:72:42:5e:6d:3a:4a:75:bb: b5:04:af:02:b5:9d:11:8b:94:42:dc:7b:23:45:41: 06:b7:b6:30:73:e1:8b:85:82:c3:8a:02:cb:5e:50: 00:dd:26:59:ea:3d:2c:0d:73:1a:b8:91:28:e4:91: 7e:0f:7e:ad:c1:7a:6f:93:87:08:7a:f8:6d:94:b2: 04:e5:7a:54:aa:9d:cf:61:dc:e2:14:e0:dc:30:58: ca:08:4c:6c:8c:64:a7:1a:1f:a5:2f:a1:c4:57:01: 50:83:07:2b:05:a4:9a:1f:46:2a:9f:be:4c:40:2c: 2f:37:11:b5:d7:10:b0:0d:19:dc:b2:da:30:69:0f: 70:50:92:1d:35:91:32:e4:39:ae:46:68:9c:bf:e1: 31:61:aa:8f:0c:be:92:61:80:16:9d:20:1a:38:6a: 6f:2f:08:3b:84:1f:f6:b7:98:0a:3d:14:c3:06:29: 24:2d:bb:49:97:bc:51:36:3b:73:9f:69:67:fc:94: cc:a8:04:67:e8:ec:67:55:b5:b4:ed:9f:8d:9b:58: 24:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0D:28:CA:4B:26:53:3C:71:4E:D7:9C:40:8B:53:9B:97:0D:C1:8D X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.109.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:e2:62:3d:fb:e8:d5:02:47:35:d2:cf:89:d2:12:64:a6:84: 64:2e:a2:ad:32:ef:72:c7:d8:13:7c:03:45:4d:a0:30:eb:b1: fd:ea:73:dd:f0:7a:48:f0:02:bc:f5:68:9a:ec:3f:bf:a2:8f: 19:65:7c:c6:b2:77:c4:70:81:43:25:7b:73:34:fb:59:15:ba: 59:05:d6:18:ba:94:31:97:17:3d:89:1c:f6:7b:f2:3c:e7:54: df:af:9f:6f:9e:3c:e7:52:49:e8:2b:0a:1c:4f:bd:93:ff:28: 76:65:a8:cf:d5:c6:7f:53:82:9c:0e:f3:89:a9:ad:e4:45:24: 19:6f:c0:4d:ad:f1:81:be:9e:cd:73:fa:ed:da:72:1a:8c:50: 78:11:86:f7:01:3c:94:f2:3a:fe:c5:95:37:d8:8b:95:a1:78: d7:4a:74:64:8e:43:a1:bd:60:a4:fa:f7:e8:04:1e:55:e5:4a: f2:82:d7:4a:5d:66:ab:65:02:d2:59:46:26:fb:49:81:8d:63: 43:49:3b:48:b3:25:52:42:6a:fd:65:f6:5a:07:79:58:77:59: 1b:67:b2:6c:ff:96:29:eb:76:dd:a4:57:61:ee:c0:77:ed:20: c2:6c:0e:3c:51:b0:bd:ae:74:09:aa:45:1a:f7:c8:e3:b2:af: ce:ed:0e:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjUxMTMwMjM1NzA1WhcNMjYwMzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJjZDlkMS05ZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdQ9gpVrwXkSnSjuy9w9WP4PoVnsR5JnZx86h3VJKet4+6AZ7FuJlUk7pTXM G8Y7jx+ockJebTpKdbu1BK8CtZ0Ri5RC3HsjRUEGt7Ywc+GLhYLDigLLXlAA3SZZ 6j0sDXMauJEo5JF+D36twXpvk4cIevhtlLIE5XpUqp3PYdziFODcMFjKCExsjGSn Gh+lL6HEVwFQgwcrBaSaH0Yqn75MQCwvNxG11xCwDRncstowaQ9wUJIdNZEy5Dmu Rmicv+ExYaqPDL6SYYAWnSAaOGpvLwg7hB/2t5gKPRTDBikkLbtJl7xRNjtzn2ln /JTMqARn6OxnVbW07Z+Nm1gk8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPsNKMpL JlM8cU7XnECLU5uXDcGNMB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVBMkEvM0QzNTBGRDIwMjU2MTFFREExMzIyRDVEQzRGOUFFMDIvQ0ZGMEZERUMw MjU5MTFFREEwQTg1NzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABne20wDQYJKoZIhvcNAQELBQADggEBACviYj376NUCRzXS z4nSEmSmhGQuoq0y73LH2BN8A0VNoDDrsf3qc93wekjwArz1aJrsP7+ijxllfMay d8RwgUMle3M0+1kVulkF1hi6lDGXFz2JHPZ78jznVN+vn2+ePOdSSegrChxPvZP/ KHZlqM/Vxn9TgpwO84mpreRFJBlvwE2t8YG+ns1z+u3achqMUHgRhvcBPJTyOv7F lTfYi5WheNdKdGSOQ6G9YKT69+gEHlXlSvKC10pdZqtlAtJZRib7SYGNY0NJO0iz JVJCav1l9loHeVh3WRtnsmz/linrdt2kV2HuwHftIMJsDjxRsL2udAmqRRr3yOOy r87tDhw= -----END CERTIFICATE-----Generated at Sat Dec 6 16:24:02 2025 by rpki-client