This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa File: CFF0FDEC025911EDA0A85765C4F9AE02.roa (raw, json) Hash identifier: LoYEejNqn6llhBwJ7xFsIlEEw1I815MKrVHi2CZC9n0= Subject key identifier: 6C:97:B2:D8:1B:F2:56:50:5F:6D:E1:C8:D1:35:B7:45:69:FB:A7:54 Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 030E Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa Signing time: Sat 03 Jan 2026 00:20:28 +0000 ROA not before: Sat 03 Jan 2026 00:20:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139200 IP address blocks: 103.123.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 782 (0x30e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A, serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: Jan 3 00:20:27 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=695860cb-f066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ff:95:ed:4f:48:f3:59:9e:9c:21:b6:4b:95: 16:8a:08:4b:77:58:1f:33:31:7d:a7:63:6e:f9:8b: 75:9d:ee:a6:48:0b:6f:e3:1c:32:86:ec:63:92:96: 6b:b5:28:74:47:9d:96:3b:d8:17:fd:ed:a9:66:d8: 39:d6:19:8c:74:06:55:67:e7:0a:2a:e5:21:17:cb: 29:9a:ca:b4:98:47:61:a7:93:8e:b2:97:12:1e:9e: 90:fc:7b:b4:87:8a:25:77:b8:5d:a7:8c:85:34:ef: ad:b1:cd:b1:03:1b:d6:70:08:13:14:be:08:2a:6a: ac:da:d7:6e:d1:60:4b:86:2e:6a:a5:ef:63:50:3c: 32:30:ea:d8:03:ed:a9:35:01:c7:ea:01:4b:c4:f4: 35:d8:24:d4:bd:f1:71:b5:a5:fd:0f:2a:33:2e:68: 20:95:4e:1b:d8:fb:d1:cc:c9:79:e1:17:6c:53:5d: 24:c7:e1:56:0f:71:da:05:29:d6:20:ba:50:b2:75: f0:e5:f7:cc:ea:fb:be:9a:bf:63:1e:ae:8b:87:e7: ec:c3:12:d0:8a:4a:79:56:82:a8:32:44:1a:1d:8c: c0:65:e6:0e:a8:94:50:41:f8:70:88:a0:a3:cf:01: 5c:3a:7d:4e:16:98:3b:af:fa:6f:bb:cd:7f:66:a1: e8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:97:B2:D8:1B:F2:56:50:5F:6D:E1:C8:D1:35:B7:45:69:FB:A7:54 X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.109.0/24 Signature Algorithm: sha256WithRSAEncryption 83:56:8e:d1:e4:a3:a2:da:15:a5:d2:12:ce:f3:72:96:0b:2e: 4d:52:03:40:73:da:5d:97:6a:e3:09:f0:6d:06:33:7b:70:53: fb:1a:0c:16:1e:fc:6e:27:30:e0:15:e5:03:6a:f9:69:79:1c: 23:2e:28:6a:29:ca:ea:0f:7e:ef:53:fb:ef:b7:1e:bf:75:0d: cb:c6:57:ab:10:4b:71:5d:f8:52:f0:fd:a0:91:1e:2c:24:d7: a8:e6:ff:22:76:ba:97:66:90:88:f7:e3:ed:ff:a9:d7:ff:fc: 71:fa:63:3a:79:86:fb:fb:05:4a:2f:26:21:f2:4b:e2:52:63: cd:a1:00:ee:b8:54:d0:ee:c9:a0:32:1d:f0:ad:e6:bd:c7:2d: 54:8f:f4:d1:39:81:70:48:c0:1d:a2:6a:2f:71:2f:b2:91:a5: 1b:c0:cf:ea:c9:d3:de:c4:ec:f5:46:e6:d2:0f:58:eb:e8:11: 69:63:99:ac:8f:6b:ad:5e:ce:7c:4b:2e:21:a7:d1:c6:df:52: 77:75:43:f8:ea:fa:0f:0f:30:ec:99:2c:15:87:77:f9:6b:4c: c7:37:d6:a1:eb:96:6f:08:3d:ce:f5:f0:05:f8:e6:56:7e:14: a9:9a:1e:c0:b7:fb:fd:f8:4a:ef:18:e4:20:fb:56:21:d7:14: fc:48:64:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjYwMTAzMDAyMDI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4NjBjYi1mMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/+V7U9I81menCG2S5UWighLd1gfMzF9p2Nu+Yt1ne6mSAtv4xwyhuxjkpZr tSh0R52WO9gX/e2pZtg51hmMdAZVZ+cKKuUhF8spmsq0mEdhp5OOspcSHp6Q/Hu0 h4old7hdp4yFNO+tsc2xAxvWcAgTFL4IKmqs2tdu0WBLhi5qpe9jUDwyMOrYA+2p NQHH6gFLxPQ12CTUvfFxtaX9DyozLmgglU4b2PvRzMl54RdsU10kx+FWD3HaBSnW ILpQsnXw5ffM6vu+mr9jHq6Lh+fswxLQikp5VoKoMkQaHYzAZeYOqJRQQfhwiKCj zwFcOn1OFpg7r/pvu81/ZqHoVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGyXstgb 8lZQX23hyNE1t0Vp+6dUMB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVBMkEvM0QzNTBGRDIwMjU2MTFFREExMzIyRDVEQzRGOUFFMDIvQ0ZGMEZERUMw MjU5MTFFREEwQTg1NzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABne20wDQYJKoZIhvcNAQELBQADggEBAINWjtHko6LaFaXS Es7zcpYLLk1SA0Bz2l2XauMJ8G0GM3twU/saDBYe/G4nMOAV5QNq+Wl5HCMuKGop yuoPfu9T+++3Hr91DcvGV6sQS3Fd+FLw/aCRHiwk16jm/yJ2updmkIj34+3/qdf/ /HH6Yzp5hvv7BUovJiHyS+JSY82hAO64VNDuyaAyHfCt5r3HLVSP9NE5gXBIwB2i ai9xL7KRpRvAz+rJ097E7PVG5tIPWOvoEWljmayPa61eznxLLiGn0cbfUnd1Q/jq +g8PMOyZLBWHd/lrTMc31qHrlm8IPc718AX45lZ+FKmaHsC3+/34Su8Y5CD7ViHX FPxIZLM= -----END CERTIFICATE-----Generated at Sun Jan 25 13:52:58 2026 by rpki-client