This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FB9DB0B8778011EFA197A558C4F9AE02.roa File: FB9DB0B8778011EFA197A558C4F9AE02.roa (raw, json) Hash identifier: Gu/kywKpuic7wgF2QL39qaRHTk8r7+a6HC5vsZOxOeg= Subject key identifier: 3C:66:EA:EF:77:F6:06:F9:9F:10:59:A4:2E:43:4C:5B:B4:AB:F9:69 Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 0287 Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FB9DB0B8778011EFA197A558C4F9AE02.roa Signing time: Tue 11 Nov 2025 00:17:30 +0000 ROA not before: Tue 11 Nov 2025 00:17:30 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150385 IP address blocks: 103.24.88.0/23 maxlen: 23 103.24.88.0/24 maxlen: 24 103.24.89.0/24 maxlen: 24 2400:baa0::/32 maxlen: 32 2400:baa0:1::/48 maxlen: 48 2400:baa0:2::/48 maxlen: 48 2400:baa0:3::/48 maxlen: 48 2400:baa0:1000::/48 maxlen: 48 2400:baa0:1111::/48 maxlen: 48 2400:baa0:2000::/48 maxlen: 48 2400:baa0:2222::/48 maxlen: 48 2400:baa0:3000::/48 maxlen: 48 2400:baa0:3333::/48 maxlen: 48 2400:baa0:4000::/48 maxlen: 48 2400:baa0:4444::/48 maxlen: 48 2400:baa0:5000::/48 maxlen: 48 2400:baa0:5555::/48 maxlen: 48 2400:baa0:6000::/48 maxlen: 48 2400:baa0:6666::/48 maxlen: 48 2400:baa0:7000::/48 maxlen: 48 2400:baa0:7777::/48 maxlen: 48 2400:baa0:8000::/48 maxlen: 48 2400:baa0:8888::/48 maxlen: 48 2400:baa0:9000::/48 maxlen: 48 2400:baa0:9999::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F, serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Nov 11 00:17:30 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6912809a-0edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:eb:89:6c:9f:cd:ba:5c:43:65:b4:d5:93:6c: 12:d7:fc:17:d9:73:f3:de:00:45:7a:55:46:48:4b: d8:56:97:2c:11:6f:66:fd:3a:b5:ad:e8:14:c2:ec: 74:dd:82:8f:8c:a1:20:ad:d8:60:e5:ee:a4:7a:f3: ef:9b:74:8a:1c:d0:2c:3d:6c:9c:da:a6:33:a6:f4: 76:d3:f5:a6:92:1d:ed:7c:b2:9b:00:df:51:ae:e5: a5:98:c9:04:39:8d:8a:42:6c:ca:35:39:b7:58:b0: 1e:25:9b:9b:e4:0e:10:fc:5a:4e:cf:a9:a5:f3:5b: 74:42:28:a8:d2:d9:69:fe:72:c0:d1:fb:b8:6e:b3: 3a:c8:aa:4b:ac:b3:9b:19:53:88:95:e1:0c:0d:d7: b6:17:62:05:f4:33:d6:00:0b:f6:b0:72:9a:2c:7d: b0:56:28:af:32:58:e1:79:f7:de:93:6c:88:d9:87: 30:be:d6:37:32:9f:50:d2:7e:2a:ed:d8:24:8a:1e: 2a:b4:bc:60:05:ca:17:31:91:6e:e5:be:cd:48:ab: 7f:1b:2a:ce:f9:73:c4:a6:90:3d:68:98:32:3c:07: 30:8f:2b:b3:e5:7f:d0:8f:38:55:9a:70:05:d6:63: dd:c0:6d:91:a2:04:28:72:f5:3f:99:77:86:b4:44: 82:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:66:EA:EF:77:F6:06:F9:9F:10:59:A4:2E:43:4C:5B:B4:AB:F9:69 X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FB9DB0B8778011EFA197A558C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.88.0/23 IPv6: 2400:baa0::/32 Signature Algorithm: sha256WithRSAEncryption 8a:3d:0e:0f:67:a6:c3:ee:4f:64:ab:81:0a:79:c4:88:79:7c: 5a:9b:68:51:b7:12:b0:0b:92:81:4d:e7:35:49:0c:4e:45:b6: 03:07:50:ee:e2:1a:4b:74:c3:5a:5b:ba:86:37:98:d2:d2:07: 5f:d6:3a:fe:00:3e:7c:5e:67:92:57:75:7d:fd:2e:52:3c:41: ef:95:97:b9:3b:42:7a:5f:fb:54:73:e7:9f:ae:f2:ef:35:58: 00:de:b5:24:26:35:ec:95:e3:33:ac:5a:4e:92:c6:67:6b:75: d3:de:c8:4c:2b:51:e4:5e:2f:49:9b:56:08:78:ec:4f:62:47: a4:4a:0c:fe:ed:02:63:f3:21:41:62:91:fd:24:75:29:04:e8: 6f:cf:6e:b3:89:cf:3d:31:87:83:95:35:09:59:7f:b2:4c:e1: 03:93:0e:2f:22:16:21:dc:47:1d:49:67:6c:a1:7c:cf:ec:ed: 4d:75:c4:36:b4:f7:85:66:c6:9c:0d:ca:e6:f3:08:4e:ef:63: 98:a4:98:b2:b2:85:2a:d7:85:92:b2:87:77:21:00:58:c8:87: 51:25:90:a0:87:c0:e9:a2:4c:73:d4:66:16:33:5b:d0:19:25: 9c:4b:28:a5:cc:ed:98:61:dc:f8:a6:11:4c:6f:d0:ea:bc:8f: f9:02:55:af -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjUxMTExMDAxNzMwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTEyODA5YS0wZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeuJbJ/NulxDZbTVk2wS1/wX2XPz3gBFelVGSEvYVpcsEW9m/Tq1regUwux0 3YKPjKEgrdhg5e6kevPvm3SKHNAsPWyc2qYzpvR20/Wmkh3tfLKbAN9RruWlmMkE OY2KQmzKNTm3WLAeJZub5A4Q/FpOz6ml81t0Qiio0tlp/nLA0fu4brM6yKpLrLOb GVOIleEMDde2F2IF9DPWAAv2sHKaLH2wViivMljheffek2yI2YcwvtY3Mp9Q0n4q 7dgkih4qtLxgBcoXMZFu5b7NSKt/GyrO+XPEppA9aJgyPAcwjyuz5X/QjzhVmnAF 1mPdwG2RogQocvU/mXeGtESCawIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDxm6u93 9gb5nxBZpC5DTFu0q/lpMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyOEYvN0REQzVBMkU1NTQ3MTFFREI0N0IzMzJCQzRGOUFFMDIvRkI5REIwQjg3 NzgwMTFFRkExOTdBNTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnGFgwDQQCAAIwBwMFACQAuqAwDQYJKoZIhvcNAQELBQAD ggEBAIo9Dg9npsPuT2SrgQp5xIh5fFqbaFG3ErALkoFN5zVJDE5FtgMHUO7iGkt0 w1pbuoY3mNLSB1/WOv4APnxeZ5JXdX39LlI8Qe+Vl7k7Qnpf+1Rz55+u8u81WADe tSQmNeyV4zOsWk6SxmdrddPeyEwrUeReL0mbVgh47E9iR6RKDP7tAmPzIUFikf0k dSkE6G/PbrOJzz0xh4OVNQlZf7JM4QOTDi8iFiHcRx1JZ2yhfM/s7U11xDa094Vm xpwNyubzCE7vY5ikmLKyhSrXhZKyh3chAFjIh1ElkKCHwOmiTHPUZhYzW9AZJZxL KKXM7Zhh3PimEUxv0Oq8j/kCVa8= -----END CERTIFICATE-----Generated at Sun Dec 7 02:45:49 2025 by rpki-client