This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/4450DA2C9D0311EF877CD229C4F9AE02.roa File: 4450DA2C9D0311EF877CD229C4F9AE02.roa (raw, json) Hash identifier: X5kzDfqJWwzJqVe1tvfjzhYAWwGVLO7LnjiYU6TrgbE= Subject key identifier: 73:F2:FE:C2:55:98:3C:88:6C:7B:36:C6:D6:6D:25:E7:CB:75:B0:A9 Certificate issuer: /CN=A91BFFBE/serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Certificate serial: C8 Authority key identifier: 7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/4450DA2C9D0311EF877CD229C4F9AE02.roa Signing time: Tue 25 Nov 2025 09:02:16 +0000 ROA not before: Tue 25 Nov 2025 09:02:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.109.144.0/22 maxlen: 24 2405:4900::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFFBE, serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Validity Not Before: Nov 25 09:02:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69257097-e632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:44:dc:cf:b1:d2:da:f5:2e:7a:ec:92:ae:77: 7c:4a:d9:cd:59:3c:80:f8:00:98:a4:fe:e9:ad:c8: 23:c6:0c:55:2a:13:3d:28:e7:fb:ec:68:70:0b:3e: a6:c7:3f:7e:a3:22:c7:7d:05:08:df:91:ae:e9:a6: d9:d1:10:c5:9e:ea:cb:24:3a:6f:c9:12:4d:3a:ae: 68:e4:88:6d:5f:e4:07:6a:ba:7c:80:0b:da:e2:0e: 98:d8:ed:f6:cf:9b:20:a9:33:cd:12:30:48:16:c6: b3:1d:75:70:f0:c7:e5:a9:ae:b4:02:c9:78:8a:9c: ec:3d:a4:c3:3e:3a:eb:51:d2:4b:ab:35:50:aa:9e: e5:57:8a:f9:62:26:95:54:1f:03:d7:02:eb:7f:3e: 35:3e:27:d9:83:3c:65:b6:02:a7:8b:98:65:49:b4: a5:6f:24:3e:fe:76:33:5a:39:04:8c:fa:fb:42:f1: 78:01:4e:96:9f:3b:e5:74:85:bb:b9:e2:6c:22:ce: b4:54:22:88:19:89:30:81:75:29:6f:e8:fd:50:3e: 7a:4a:79:4c:1f:d4:c4:25:34:5e:e9:55:59:9b:f1: 6c:29:4c:0e:00:4d:ac:55:59:9d:79:b3:f9:c1:46: ee:33:73:db:c7:92:4e:40:7c:7a:a9:e6:42:d6:ea: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F2:FE:C2:55:98:3C:88:6C:7B:36:C6:D6:6D:25:E7:CB:75:B0:A9 X509v3 Authority Key Identifier: keyid:7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/4450DA2C9D0311EF877CD229C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.144.0/22 IPv6: 2405:4900::/32 Signature Algorithm: sha256WithRSAEncryption 2a:8f:ae:c7:0f:e9:1b:49:ec:4e:a8:12:34:e9:f0:2c:c4:72: 59:8e:a5:30:60:51:e6:0a:1b:a7:81:13:d8:8b:74:1b:5d:49: 3a:f1:7a:4b:91:51:ed:8d:9b:11:9f:85:ee:bb:cc:52:93:9f: e3:bd:11:3e:f8:b9:d8:19:3f:1f:54:bb:dc:9f:07:a8:b7:b6: 06:38:d8:a4:b2:fb:bf:e8:cf:2e:5f:0a:e7:d8:e9:7b:2b:9e: d9:6e:92:8c:cd:9c:27:e2:c6:88:72:a8:43:f8:69:92:88:92: ab:f6:e4:d8:5e:ec:08:2b:64:c1:8c:2b:2d:24:6f:30:37:41: 2c:6e:a9:91:d9:95:04:9d:e8:02:8e:ca:48:c0:c8:a2:62:df: 6f:a0:7a:e6:c5:d1:1d:1f:0d:7a:d0:f6:43:87:0a:20:fd:cf: c9:49:a9:83:6d:a2:4a:48:15:83:34:bb:16:b5:33:ad:c5:3d: 91:1d:b2:55:f6:ff:f9:f1:b7:bf:8c:a7:b1:14:51:a5:6c:19: 99:a4:35:d1:aa:79:97:46:93:c9:bc:54:7e:0a:40:ec:7d:2c: 5e:cb:07:d4:ca:c1:4a:0f:66:e5:af:1d:c1:a5:f1:e3:c6:95: 26:4d:88:58:c3:d6:30:53:be:57:6f:13:96:95:7a:ef:33:bd: 5b:cf:12:e2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZGQkUxMTAvBgNVBAUTKDdGOTZBRTBBMjJDQTkzOEJENUY5RDlBNzMyOEFGNTgz NjJFQjIyQzEwHhcNMjUxMTI1MDkwMjE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1NzA5Ny1lNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykTcz7HS2vUueuySrnd8StnNWTyA+ACYpP7prcgjxgxVKhM9KOf77GhwCz6m xz9+oyLHfQUI35Gu6abZ0RDFnurLJDpvyRJNOq5o5IhtX+QHarp8gAva4g6Y2O32 z5sgqTPNEjBIFsazHXVw8Mflqa60Asl4ipzsPaTDPjrrUdJLqzVQqp7lV4r5YiaV VB8D1wLrfz41PifZgzxltgKni5hlSbSlbyQ+/nYzWjkEjPr7QvF4AU6WnzvldIW7 ueJsIs60VCKIGYkwgXUpb+j9UD56SnlMH9TEJTRe6VVZm/FsKUwOAE2sVVmdebP5 wUbuM3Pbx5JOQHx6qeZC1urKiQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHPy/sJV mDyIbHs2xtZtJefLdbCpMB8GA1UdIwQYMBaAFH+WrgoiypOL1fnZpzKK9YNi6yLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkZCRS80MjE1OUY1QTlE MDIxMUVGOTlDQzg2MDlDNEY5QUUwMi9mNWF1Q2lMS2s0dlYtZG1uTW9yMWcyTHJJ c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y1YXVDaUxLazR2Vi1kbW5Nb3IxZzJMcklzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZGQkUvNDIxNTlGNUE5RDAyMTFFRjk5Q0M4NjA5QzRGOUFFMDIvNDQ1MERBMkM5 RDAzMTFFRjg3N0NEMjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbZAwDQQCAAIwBwMFACQFSQAwDQYJKoZIhvcNAQELBQAD ggEBACqPrscP6RtJ7E6oEjTp8CzEclmOpTBgUeYKG6eBE9iLdBtdSTrxekuRUe2N mxGfhe67zFKTn+O9ET74udgZPx9Uu9yfB6i3tgY42KSy+7/ozy5fCufY6Xsrntlu kozNnCfixohyqEP4aZKIkqv25Nhe7AgrZMGMKy0kbzA3QSxuqZHZlQSd6AKOykjA yKJi32+geubF0R0fDXrQ9kOHCiD9z8lJqYNtokpIFYM0uxa1M63FPZEdslX2//nx t7+Mp7EUUaVsGZmkNdGqeZdGk8m8VH4KQOx9LF7LB9TKwUoPZuWvHcGl8ePGlSZN iFjD1jBTvldvE5aVeu8zvVvPEuI= -----END CERTIFICATE-----Generated at Sat Dec 6 10:45:35 2025 by rpki-client