This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa File: 2A52AB54138811F0BA2C056DC4F9AE02.roa (raw, json) Hash identifier: Vnu6W3c5mtCJ8RNYo9UKcVv6r6S6vcvSfaZ4RoE8UjQ= Subject key identifier: EF:D9:BA:F8:DB:D0:9D:63:59:4C:AE:F0:2B:5C:47:0F:0F:81:FD:CF Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 05D0 Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa Signing time: Fri 21 Nov 2025 07:58:30 +0000 ROA not before: Fri 21 Nov 2025 07:58:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135031 IP address blocks: 103.206.160.0/23 maxlen: 23 103.206.160.0/24 maxlen: 24 103.206.161.0/24 maxlen: 24 103.206.163.0/24 maxlen: 24 106.0.56.0/22 maxlen: 24 2404:7f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1488 (0x5d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Nov 21 07:58:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69201ba6-113a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6c:c6:2a:54:10:6e:29:67:24:3a:a4:71:f0: 09:5d:b4:3c:9b:55:bd:a9:79:3a:30:de:e2:37:9d: ef:44:0d:62:38:14:43:84:07:db:50:25:66:34:df: 1a:c4:01:36:54:a3:61:ab:dc:69:0a:1d:19:6b:f9: a1:a1:8c:57:62:5b:b2:c1:e6:e9:9f:70:90:bf:bb: 64:59:87:ea:3b:93:8e:99:b7:35:6b:62:bf:2c:c9: 71:52:f7:1a:42:d8:0b:9f:46:e3:4e:98:32:ac:0e: 90:49:df:14:32:03:31:2d:49:36:47:9c:c3:4c:49: 1a:ea:df:81:28:48:2f:48:7c:7e:f9:bc:df:61:db: d1:8f:22:0f:72:5b:87:13:10:b0:de:0c:5c:f4:28: 5c:83:6a:46:7f:78:ea:37:52:3f:20:8e:d1:47:e2: a6:55:44:a4:6b:1e:e8:c1:f9:32:05:98:1f:13:6e: 98:44:f0:9e:86:45:02:c7:9b:2f:dd:47:7e:1f:14: a4:09:14:15:0f:52:c4:1b:3e:03:3a:80:e3:f7:b0: 22:6a:f6:83:08:42:b8:ca:b5:3d:72:5b:de:60:ac: 23:aa:6d:e4:4d:da:8f:96:9b:61:e3:c8:15:9a:d8: f9:2b:ba:ab:41:5b:b5:d3:4d:f5:6e:9c:85:92:e3: e8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D9:BA:F8:DB:D0:9D:63:59:4C:AE:F0:2B:5C:47:0F:0F:81:FD:CF X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.160.0/23 103.206.163.0/24 106.0.56.0/22 IPv6: 2404:7f80::/32 Signature Algorithm: sha256WithRSAEncryption 4b:66:ac:aa:6c:bd:0e:8f:ed:65:30:4e:1f:95:b6:c7:e7:7c: 27:02:83:e9:fb:c3:3d:fc:89:f5:0d:e4:ed:5d:80:3b:8e:b5: 4a:5f:79:89:4f:0d:2b:df:a1:5c:8a:71:85:e2:6b:c2:ec:38: 30:d7:22:9f:a2:58:47:7f:57:01:63:af:cd:21:a8:58:d5:75: 8f:a2:fc:a8:9a:38:ec:50:0d:64:2f:57:86:51:3d:79:6a:b9: 16:d0:53:8c:af:c9:ed:4e:79:69:0f:54:a8:2b:c6:4d:d3:20: 39:68:a9:e1:4c:c2:ee:00:1e:fb:f4:70:cd:47:57:d3:2d:7f: 19:ae:ec:07:80:dc:9a:62:32:36:0a:45:43:92:be:f2:05:b0: 06:85:37:7f:b8:d3:2e:b7:91:42:56:38:46:09:a6:0b:52:70: 5f:f6:0f:b3:06:fe:58:7b:97:3c:de:e6:23:33:0f:71:ee:ca: d5:a1:d5:86:c6:38:7f:d1:1c:f5:ab:b0:45:85:12:05:4c:ae: f0:ee:c4:3f:88:15:9a:72:55:9e:64:d6:f2:d3:60:2d:56:c1: 94:3c:bf:38:f9:05:d2:b5:a2:11:c7:8f:a3:81:a4:72:81:69: a2:f3:a5:c6:d0:7d:c8:47:73:75:17:56:c7:d8:aa:1c:5e:b4: c3:97:e1:26 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjUxMTIxMDc1ODMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTIwMWJhNi0xMTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWzGKlQQbilnJDqkcfAJXbQ8m1W9qXk6MN7iN53vRA1iOBRDhAfbUCVmNN8a xAE2VKNhq9xpCh0Za/mhoYxXYluywebpn3CQv7tkWYfqO5OOmbc1a2K/LMlxUvca QtgLn0bjTpgyrA6QSd8UMgMxLUk2R5zDTEka6t+BKEgvSHx++bzfYdvRjyIPcluH ExCw3gxc9Chcg2pGf3jqN1I/II7RR+KmVUSkax7owfkyBZgfE26YRPCehkUCx5sv 3Ud+HxSkCRQVD1LEGz4DOoDj97AiavaDCEK4yrU9clveYKwjqm3kTdqPlpth48gV mtj5K7qrQVu10031bpyFkuPouQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFO/Zuvjb 0J1jWUyu8CtcRw8Pgf3PMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUzMjMvREY2NkRFMjRFNTYxMTFFQjg0QkZFODIwQzRGOUFFMDIvMkE1MkFCNTQx Mzg4MTFGMEJBMkMwNTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnzqADBABnzqMDBAJqADgwDQQCAAIwBwMFACQEf4AwDQYJ KoZIhvcNAQELBQADggEBAEtmrKpsvQ6P7WUwTh+VtsfnfCcCg+n7wz38ifUN5O1d gDuOtUpfeYlPDSvfoVyKcYXia8LsODDXIp+iWEd/VwFjr80hqFjVdY+i/KiaOOxQ DWQvV4ZRPXlquRbQU4yvye1OeWkPVKgrxk3TIDloqeFMwu4AHvv0cM1HV9Mtfxmu 7AeA3JpiMjYKRUOSvvIFsAaFN3+40y63kUJWOEYJpgtScF/2D7MG/lh7lzze5iMz D3HuytWh1YbGOH/RHPWrsEWFEgVMrvDuxD+IFZpyVZ5k1vLTYC1WwZQ8vzj5BdK1 ohHHj6OBpHKBaaLzpcbQfchHc3UXVsfYqhxetMOX4SY= -----END CERTIFICATE-----Generated at Sat Dec 6 23:42:30 2025 by rpki-client