This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/C42CEC7ECC3611EF9C79665CC4F9AE02.roa File: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (raw, json) Hash identifier: vScPDcKQqioESY3fiWqsXqSq+CDEGlxPspBb4jYpPj8= Subject key identifier: 01:00:0B:9C:B4:09:A2:8C:6C:6D:CA:B6:81:DE:AC:A7:48:40:A9:2A Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 07B3 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/C42CEC7ECC3611EF9C79665CC4F9AE02.roa Signing time: Sun 18 Jan 2026 21:17:49 +0000 ROA not before: Sun 18 Jan 2026 21:17:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137274 IP address blocks: 103.106.164.0/23 maxlen: 23 103.106.164.0/24 maxlen: 24 103.106.165.0/24 maxlen: 24 2406:e340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:52:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Jan 18 21:17:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=696d4dfd-1732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b4:8b:e1:1d:15:8b:b4:f1:91:18:48:b9:a5: 7a:43:87:c6:9b:e5:2d:52:2a:30:32:c6:75:4e:42: c6:50:fa:a9:fd:c9:e7:60:6f:f0:55:cc:a4:2b:c8: 95:c2:39:55:52:98:74:94:53:94:b4:23:25:6e:1a: f7:d6:c1:85:22:68:41:58:6d:c6:d6:5f:16:55:ce: c0:fa:96:d1:bd:1f:46:f6:ae:99:b8:af:9d:94:7c: ff:5f:a8:1d:7f:da:07:8e:ad:bb:37:96:b7:37:79: 61:45:67:af:8f:ed:e6:11:4f:7e:89:5f:4f:af:5d: 06:51:93:32:e0:32:49:09:92:a4:d7:85:f0:27:40: 32:de:7b:cc:bf:d5:5f:1d:81:74:53:4c:b0:f3:7f: 2a:d7:07:6c:97:d2:d9:90:c1:0b:05:70:22:7b:9d: 13:95:51:15:69:5a:2c:90:1d:19:82:5d:e3:aa:20: 6f:b8:db:2b:af:0f:3b:de:7a:dc:9d:90:71:99:0a: 42:01:0e:73:a3:fd:85:94:83:f3:f1:21:34:35:81: f8:c8:b0:5a:00:93:dc:c1:0b:da:48:9d:a4:05:05: 33:2c:f6:ec:eb:19:8d:c0:48:ca:d8:3b:f1:fa:03: b7:45:eb:8e:4e:7f:cd:35:80:69:d5:b9:18:20:e3: af:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:00:0B:9C:B4:09:A2:8C:6C:6D:CA:B6:81:DE:AC:A7:48:40:A9:2A X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/C42CEC7ECC3611EF9C79665CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.164.0/23 IPv6: 2406:e340::/32 Signature Algorithm: sha256WithRSAEncryption 54:b1:0e:1f:7d:88:0c:cd:67:04:fd:02:97:1b:6a:f6:9d:e1: df:74:ec:1b:cd:8f:13:72:3a:90:8d:bc:12:c2:d7:03:b1:e8: d0:01:f3:94:78:b4:34:82:85:a9:68:d9:02:35:f9:7f:d3:1f: c8:17:e6:ae:b9:eb:52:11:64:9c:9c:a5:9f:01:2b:4a:64:d6: cb:e6:38:1c:80:ff:74:2e:1e:2f:67:75:10:df:9e:28:f0:1d: 0d:9f:cd:48:eb:d2:c9:72:d2:47:ea:82:d2:d4:eb:e8:0b:4f: 00:a4:b8:af:d6:6a:70:29:da:ed:4f:30:75:5d:f0:ce:87:68: 0d:6c:a6:29:aa:fb:2e:22:2e:79:70:5c:46:fd:de:4c:a9:d8: b8:89:f9:33:d6:f6:6e:7f:83:2e:dc:66:12:82:b8:c2:4b:f0: aa:4c:df:2c:91:7f:32:06:a5:59:9f:6d:db:3c:02:64:87:ea: 75:8b:98:22:fe:a0:33:3d:e7:29:d5:e7:28:58:d7:90:bf:23: b5:ec:45:81:3a:d9:a2:2c:3c:f5:85:b1:cd:f6:9b:ce:23:7b: e9:c2:46:67:16:52:ca:14:aa:96:9e:d9:97:b0:2c:8a:66:d2: e4:e4:d8:5d:dc:4b:4a:11:56:6c:ab:e7:b5:66:bb:2a:b1:f3: 5d:90:41:2e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjYwMTE4MjExNzQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZkNGRmZC0xNzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrSL4R0Vi7TxkRhIuaV6Q4fGm+UtUiowMsZ1TkLGUPqp/cnnYG/wVcykK8iV wjlVUph0lFOUtCMlbhr31sGFImhBWG3G1l8WVc7A+pbRvR9G9q6ZuK+dlHz/X6gd f9oHjq27N5a3N3lhRWevj+3mEU9+iV9Pr10GUZMy4DJJCZKk14XwJ0Ay3nvMv9Vf HYF0U0yw838q1wdsl9LZkMELBXAie50TlVEVaVoskB0Zgl3jqiBvuNsrrw873nrc nZBxmQpCAQ5zo/2FlIPz8SE0NYH4yLBaAJPcwQvaSJ2kBQUzLPbs6xmNwEjK2Dvx +gO3ReuOTn/NNYBp1bkYIOOvhQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAEAC5y0 CaKMbG3KtoHerKdIQKkqMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUwMjEvOUFGRDQ4NkMzQkJDMTFFQkE3NzZGMTYxQzRGOUFFMDIvQzQyQ0VDN0VD QzM2MTFFRjlDNzk2NjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnaqQwDQQCAAIwBwMFACQG40AwDQYJKoZIhvcNAQELBQAD ggEBAFSxDh99iAzNZwT9Apcbavad4d907BvNjxNyOpCNvBLC1wOx6NAB85R4tDSC halo2QI1+X/TH8gX5q6561IRZJycpZ8BK0pk1svmOByA/3QuHi9ndRDfnijwHQ2f zUjr0sly0kfqgtLU6+gLTwCkuK/WanAp2u1PMHVd8M6HaA1spimq+y4iLnlwXEb9 3kyp2LiJ+TPW9m5/gy7cZhKCuMJL8KpM3yyRfzIGpVmfbds8AmSH6nWLmCL+oDM9 5ynV5yhY15C/I7XsRYE62aIsPPWFsc32m84je+nCRmcWUsoUqpae2ZewLIpm0uTk 2F3cS0oRVmyr57Vmuyqx812QQS4= -----END CERTIFICATE-----Generated at Mon Jan 26 00:42:45 2026 by rpki-client