This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/CA2A06D6D5E511EE9B319A12C4F9AE02.roa File: CA2A06D6D5E511EE9B319A12C4F9AE02.roa (raw, json) Hash identifier: 1oH4ItbHmVm/1fEeraEE8P2kGDhaFGfTWlutWFwmvbI= Subject key identifier: 13:47:DB:AB:9F:A1:7E:DD:28:F7:E1:00:B6:67:92:B7:63:8A:5B:C4 Certificate issuer: /CN=A91C38CC/serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Certificate serial: 014F Authority key identifier: CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/CA2A06D6D5E511EE9B319A12C4F9AE02.roa Signing time: Wed 19 Nov 2025 00:04:54 +0000 ROA not before: Wed 19 Nov 2025 00:04:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 2713 IP address blocks: 61.245.96.0/21 maxlen: 21 103.117.21.0/24 maxlen: 24 103.118.123.0/24 maxlen: 24 103.118.154.0/23 maxlen: 23 210.79.173.0/24 maxlen: 24 2001:df3:3b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:38:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C38CC, serialNumber=CBC0AD1965851641F66111E8E2902698A9B9ED80 Validity Not Before: Nov 19 00:04:54 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=691d09a5-4a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:7c:50:fa:88:68:54:b4:31:9a:e6:20:b7: df:0c:0c:44:21:c4:b2:a2:d9:96:ee:3f:0d:12:a2: 49:a5:b3:10:09:5d:29:2c:27:00:06:16:04:66:06: f5:17:87:58:19:a7:ca:b7:11:7d:1e:c2:87:73:da: 25:69:41:70:34:a6:fc:29:00:ab:5c:96:d2:80:0e: e9:0c:10:a4:78:d3:00:3f:23:e1:19:de:92:3a:42: ae:e4:6c:ab:27:3c:02:97:a5:01:8f:36:e7:42:26: 8d:ad:6a:85:69:39:c5:9c:b4:09:dd:77:71:eb:69: 20:f1:d3:73:47:94:a6:85:9e:ab:35:0e:df:fd:b0: bb:9e:ee:42:a6:11:68:84:6c:06:c1:eb:ca:dd:ce: 46:2c:c6:40:8e:4c:a7:9c:e0:60:53:da:ff:43:f0: f2:39:23:34:21:ef:2b:c8:30:a5:ed:5a:46:4d:93: f5:a5:a3:69:77:92:5d:ac:2a:5b:f0:0f:f6:08:d4: c1:d0:b2:b4:b6:a3:b8:c3:2e:1f:ca:7f:61:1e:92: 55:8a:9f:31:32:d0:40:d1:cf:57:23:9e:bf:d6:da: 18:9d:5b:ab:0b:46:7a:3c:eb:93:94:cf:44:85:f5: d1:94:4b:0b:27:1e:e0:a8:d5:8a:ad:13:d5:af:58: 5e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:47:DB:AB:9F:A1:7E:DD:28:F7:E1:00:B6:67:92:B7:63:8A:5B:C4 X509v3 Authority Key Identifier: keyid:CB:C0:AD:19:65:85:16:41:F6:61:11:E8:E2:90:26:98:A9:B9:ED:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/y8CtGWWFFkH2YRHo4pAmmKm57YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8CtGWWFFkH2YRHo4pAmmKm57YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C38CC/3AC57C8CD5E511EEB779223EC4F9AE02/CA2A06D6D5E511EE9B319A12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.96.0/21 103.117.21.0/24 103.118.123.0/24 103.118.154.0/23 210.79.173.0/24 IPv6: 2001:df3:3b40::/48 Signature Algorithm: sha256WithRSAEncryption c5:12:20:b4:e1:12:8c:3d:b0:41:db:86:e2:90:f0:48:5f:68: 6f:89:f9:3d:90:ed:6f:98:67:e3:9f:2a:86:c4:1d:6b:7d:ab: 55:01:a1:96:9f:07:50:67:3e:dc:f3:81:95:a3:05:54:93:0f: 5d:e2:a7:9f:8d:36:9b:b5:87:9e:68:7b:52:1b:c2:2a:e4:0d: fd:a0:5b:cb:e3:bf:29:a4:be:7f:07:18:cc:cf:ab:5d:d5:05: 80:dc:bb:8a:bc:68:ed:e4:31:7f:df:a4:48:57:10:36:d1:eb: 93:3e:1a:50:bb:e3:0c:89:58:50:57:50:95:47:d1:25:99:dd: 8f:f8:c0:d5:5d:cb:5e:d8:98:c8:4c:5d:d5:98:8f:dd:e9:f9: 50:29:6e:15:b2:7b:9d:ce:a7:cf:e4:e4:cc:4f:56:7d:28:e2: 4c:c0:aa:72:74:d9:91:a1:d7:b2:34:39:d9:5b:fd:17:76:f6: 0e:6d:08:d3:0e:59:5b:d5:80:7e:75:e8:e5:79:30:58:8d:07: d7:1e:52:4c:b8:55:ce:07:bb:fd:25:db:a1:90:16:9c:52:d1: ef:f3:7c:8f:77:7f:10:a7:85:0f:91:f0:b7:2c:9c:a5:36:41: dd:21:d2:d3:44:c1:1f:39:4b:57:0a:3a:29:f5:81:ed:c1:0a: 03:eb:eb:b3 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4Q0MxMTAvBgNVBAUTKENCQzBBRDE5NjU4NTE2NDFGNjYxMTFFOEUyOTAyNjk4 QTlCOUVEODAwHhcNMjUxMTE5MDAwNDU0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFkMDlhNS00YTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxJ8UPqIaFS0MZrmILffDAxEIcSyotmW7j8NEqJJpbMQCV0pLCcABhYEZgb1 F4dYGafKtxF9HsKHc9olaUFwNKb8KQCrXJbSgA7pDBCkeNMAPyPhGd6SOkKu5Gyr JzwCl6UBjzbnQiaNrWqFaTnFnLQJ3Xdx62kg8dNzR5SmhZ6rNQ7f/bC7nu5CphFo hGwGwevK3c5GLMZAjkynnOBgU9r/Q/DyOSM0Ie8ryDCl7VpGTZP1paNpd5JdrCpb 8A/2CNTB0LK0tqO4wy4fyn9hHpJVip8xMtBA0c9XI56/1toYnVurC0Z6POuTlM9E hfXRlEsLJx7gqNWKrRPVr1hewQIDAQABo4ICvjCCArowHQYDVR0OBBYEFBNH26uf oX7dKPfhALZnkrdjilvEMB8GA1UdIwQYMBaAFMvArRllhRZB9mER6OKQJpipue2A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzhDQy8zQUM1N0M4Q0Q1 RTUxMUVFQjc3OTIyM0VDNEY5QUUwMi95OEN0R1dXRkZrSDJZUkhvNHBBbW1LbTU3 WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k4Q3RHV1dGRmtIMllSSG80cEFtbUttNTdZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzM4Q0MvM0FDNTdDOENENUU1MTFFRUI3NzkyMjNFQzRGOUFFMDIvQ0EyQTA2RDZE NUU1MTFFRTlCMzE5QTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBAM99WADBABndRUDBABndnsDBAFndpoDBADST60wDwQCAAIw CQMHACABDfM7QDANBgkqhkiG9w0BAQsFAAOCAQEAxRIgtOESjD2wQduG4pDwSF9o b4n5PZDtb5hn458qhsQda32rVQGhlp8HUGc+3POBlaMFVJMPXeKnn402m7WHnmh7 UhvCKuQN/aBby+O/KaS+fwcYzM+rXdUFgNy7irxo7eQxf9+kSFcQNtHrkz4aULvj DIlYUFdQlUfRJZndj/jA1V3LXtiYyExd1ZiP3en5UCluFbJ7nc6nz+TkzE9WfSji TMCqcnTZkaHXsjQ52Vv9F3b2Dm0I0w5ZW9WAfnXo5XkwWI0H1x5STLhVzge7/SXb oZAWnFLR7/N8j3d/EKeFD5HwtyycpTZB3SHS00TBHzlLVwo6KfWB7cEKA+vrsw== -----END CERTIFICATE-----Generated at Sun Dec 7 07:00:01 2025 by rpki-client