This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/0B4BDC0E993311F08534326BC4F9AE02.roa File: 0B4BDC0E993311F08534326BC4F9AE02.roa (raw, json) Hash identifier: Xax62WHpnxH02bV+GhSPo1Favqt7yKHwi+ro9f5anjI= Subject key identifier: 61:DA:39:A3:48:26:40:B3:DE:D5:3D:1B:F4:1D:65:EB:0D:92:33:30 Certificate issuer: /CN=A91C4FBE/serialNumber=A628757AF3A48286BDFDF83AB4E64E24D82E0C6B Certificate serial: 2D Authority key identifier: A6:28:75:7A:F3:A4:82:86:BD:FD:F8:3A:B4:E6:4E:24:D8:2E:0C:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/0B4BDC0E993311F08534326BC4F9AE02.roa Signing time: Wed 03 Dec 2025 06:05:21 +0000 ROA not before: Wed 03 Dec 2025 06:05:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 23726 IP address blocks: 103.149.148.0/24 maxlen: 24 2001:ded:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.crl rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4FBE, serialNumber=A628757AF3A48286BDFDF83AB4E64E24D82E0C6B Validity Not Before: Dec 3 06:05:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=692fd320-8858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:36:e2:17:9c:2e:d6:02:1b:e6:b8:f0:05:b2: a6:91:a6:ab:54:7e:75:fb:0f:d5:41:b0:c6:b1:4b: 0d:65:bb:95:09:81:20:88:12:bd:b0:02:c9:b2:cb: 5f:b1:95:84:e7:08:b0:f3:26:7d:f3:cf:3b:41:68: 1a:af:5b:fd:59:c1:5f:43:07:27:41:0a:ff:fc:32: 70:ef:80:5a:fb:9e:fd:e0:cd:ef:79:c9:a7:30:51: 76:7b:84:a8:17:6e:98:45:9c:ef:1e:b7:7e:57:d6: e2:1e:66:42:a1:42:35:8a:73:84:0b:c8:33:f4:03: d6:ef:de:88:b3:e2:b1:ff:cd:c2:8b:8e:30:46:aa: a4:34:25:fb:11:ab:38:70:13:bb:87:49:7d:ef:74: f4:0c:da:01:d8:b4:d7:50:84:2d:ef:0e:b5:7f:3d: f1:cb:1a:d6:e2:92:4d:da:d9:22:34:aa:db:ea:20: 7c:04:96:de:55:1c:94:a2:fd:cb:97:fa:d4:e7:17: e7:a4:c1:e0:dd:e3:c7:fb:f2:90:2d:40:e9:d4:ab: be:54:67:33:58:ec:44:6e:80:c4:57:31:43:88:05: d0:4e:9b:9a:23:9f:ec:39:c1:eb:e8:53:9f:05:e3: 6c:dd:e2:e5:78:1f:c9:83:f7:2f:2d:6a:61:57:28: ce:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DA:39:A3:48:26:40:B3:DE:D5:3D:1B:F4:1D:65:EB:0D:92:33:30 X509v3 Authority Key Identifier: keyid:A6:28:75:7A:F3:A4:82:86:BD:FD:F8:3A:B4:E6:4E:24:D8:2E:0C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/0B4BDC0E993311F08534326BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.148.0/24 IPv6: 2001:ded:8000::/48 Signature Algorithm: sha256WithRSAEncryption 64:cf:75:16:47:fa:01:72:93:a1:4a:0e:ef:26:4f:a4:60:e6: b6:ec:50:f9:fe:2d:a1:7d:26:e6:c8:9b:ae:c0:df:de:e3:93: 5a:3e:8f:ce:ee:6b:18:e5:2d:e4:a3:88:0c:b2:e3:dc:95:11: f2:18:e1:30:14:34:b5:70:af:0e:df:9d:fb:64:be:89:d8:d5: 0b:40:41:03:a9:f0:0d:99:5d:93:32:2b:48:f6:b4:49:9f:63: 4d:1a:da:9c:4f:c7:3e:17:4d:a9:bb:22:8e:5b:e0:50:b0:60: 30:c7:5e:4f:4f:97:3d:41:f0:d7:cc:f6:e1:a5:92:f3:91:4d: 2d:51:36:fe:07:db:d3:5a:21:79:b8:ce:75:bb:67:11:b3:d6: 42:5c:85:33:04:e5:5b:bd:08:96:ca:be:c0:72:40:7b:1e:7a: d1:d0:fd:1e:3c:5e:ab:d0:8a:3c:11:f4:e4:38:58:ac:bd:37: 9e:2a:9e:89:4b:7f:47:fb:7b:16:68:b7:ec:28:bc:b3:67:79: ea:24:50:6b:b8:01:96:48:77:5b:d2:40:da:14:03:ca:8a:0f: 73:98:ed:0a:da:60:d7:7e:bc:dd:f9:a2:4d:b2:53:63:e6:46: 79:90:98:c6:fb:09:51:26:21:11:51:46:31:d7:46:22:77:e2: e6:fd:18:7a -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NEZCRTExMC8GA1UEBRMoQTYyODc1N0FGM0E0ODI4NkJERkRGODNBQjRFNjRFMjRE ODJFMEM2QjAeFw0yNTEyMDMwNjA1MjFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MmZkMzIwLTg4NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPNuIXnC7WAhvmuPAFsqaRpqtUfnX7D9VBsMaxSw1lu5UJgSCIEr2wAsmyy1+x lYTnCLDzJn3zzztBaBqvW/1ZwV9DBydBCv/8MnDvgFr7nv3gze95yacwUXZ7hKgX bphFnO8et35X1uIeZkKhQjWKc4QLyDP0A9bv3oiz4rH/zcKLjjBGqqQ0JfsRqzhw E7uHSX3vdPQM2gHYtNdQhC3vDrV/PfHLGtbikk3a2SI0qtvqIHwElt5VHJSi/cuX +tTnF+ekweDd48f78pAtQOnUq75UZzNY7ERugMRXMUOIBdBOm5ojn+w5wevoU58F 42zd4uV4H8mD9y8tamFXKM4BAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUYdo5o0gm QLPe1T0b9B1l6w2SMzAwHwYDVR0jBBgwFoAUpih1evOkgoa9/fg6tOZOJNguDGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0RkJFLzI1RTgyNkFFOTkz MjExRjBBMzU0QkE2OUM0RjlBRTAyL3BpaDFldk9rZ29hOV9mZzZ0T1pPSk5ndURH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGloMWV2T2tnb2E5X2ZnNnRPWk9KTmd1REdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEZCRS8yNUU4MjZBRTk5MzIxMUYwQTM1NEJBNjlDNEY5QUUwMi8wQjRCREMwRTk5 MzMxMUYwODUzNDMyNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeVlDAPBAIAAjAJAwcAIAEN7YAAMA0GCSqGSIb3DQEBCwUA A4IBAQBkz3UWR/oBcpOhSg7vJk+kYOa27FD5/i2hfSbmyJuuwN/e45NaPo/O7msY 5S3ko4gMsuPclRHyGOEwFDS1cK8O3537ZL6J2NULQEEDqfANmV2TMitI9rRJn2NN GtqcT8c+F02puyKOW+BQsGAwx15PT5c9QfDXzPbhpZLzkU0tUTb+B9vTWiF5uM51 u2cRs9ZCXIUzBOVbvQiWyr7AckB7HnrR0P0ePF6r0Io8EfTkOFisvTeeKp6JS39H +3sWaLfsKLyzZ3nqJFBruAGWSHdb0kDaFAPKig9zmO0K2mDXfrzd+aJNslNj5kZ5 kJjG+wlRJiERUUYx10Yid+Lm/Rh6 -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:40 2025 by rpki-client