This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa File: 7A5433D6A37811F083057A2CC4F9AE02.roa (raw, json) Hash identifier: Azo/7D1+QWPIasd8atIdZkcvQFSHPMDV++2Sw9E53SE= Subject key identifier: 37:50:8C:E0:02:05:2C:42:EF:F6:2A:44:D1:7B:C8:F9:63:67:CA:21 Certificate issuer: /CN=A91C67F9/serialNumber=BD4C441F02C7ADD42FA6242E8331D93F59E5183A Certificate serial: 023A Authority key identifier: BD:4C:44:1F:02:C7:AD:D4:2F:A6:24:2E:83:31:D9:3F:59:E5:18:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa Signing time: Fri 05 Dec 2025 00:40:30 +0000 ROA not before: Fri 05 Dec 2025 00:40:30 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150708 IP address blocks: 103.65.226.0/23 maxlen: 23 103.65.226.0/24 maxlen: 24 103.65.227.0/24 maxlen: 24 2001:df1:c8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.crl rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C67F9, serialNumber=BD4C441F02C7ADD42FA6242E8331D93F59E5183A Validity Not Before: Dec 5 00:40:30 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=693229fe-67d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5e:b0:37:42:11:36:dd:35:b8:c3:7f:12:82: 92:33:63:1c:a6:6c:64:14:35:67:b2:ca:47:e9:23: 73:1d:0c:0c:e2:b4:e5:74:83:4f:e9:34:18:45:1f: 12:a2:e4:dd:c4:1d:e9:d8:e6:cd:6e:e7:dc:08:df: 0f:e5:f2:e0:a9:21:81:de:51:84:57:3b:d2:84:b8: f7:39:93:6a:a6:a6:7a:a7:7d:a9:66:96:0b:45:b5: ca:da:04:5f:b3:8c:cc:61:f5:e2:63:3a:9e:15:c2: 5d:3f:83:70:1b:fa:e8:ff:55:3b:08:b7:9a:22:52: 99:c8:51:a0:fa:f9:ef:fd:5c:f4:b0:cb:a0:37:83: a9:11:d7:e3:d7:6f:1c:1e:1a:08:c6:ba:64:c0:a4: 11:4e:ba:51:ae:7c:d9:ae:9c:ea:24:1e:24:e7:24: ae:2c:6e:88:3b:ab:24:cf:cc:9e:9d:57:82:3a:fe: 88:89:a2:28:ab:b0:78:48:bb:d0:ff:66:c9:0c:0a: a3:ff:be:2c:62:62:66:da:23:76:b7:39:a6:9b:e6: 0f:87:9b:b6:45:31:b0:fe:0e:d2:14:71:f8:f6:df: 74:a8:7b:d0:66:bc:aa:93:8e:62:f4:a5:cc:ae:ba: 02:b0:a4:9e:85:e8:92:23:fc:44:5e:62:cd:16:52: 47:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:50:8C:E0:02:05:2C:42:EF:F6:2A:44:D1:7B:C8:F9:63:67:CA:21 X509v3 Authority Key Identifier: keyid:BD:4C:44:1F:02:C7:AD:D4:2F:A6:24:2E:83:31:D9:3F:59:E5:18:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.226.0/23 IPv6: 2001:df1:c8c0::/48 Signature Algorithm: sha256WithRSAEncryption a2:57:d9:a2:0d:cf:af:8c:4a:86:78:8d:14:b7:02:ee:13:86: 48:af:c6:4e:9b:16:b0:37:83:87:d1:4a:55:c1:c2:bc:b6:ed: d6:85:a3:1f:a2:9c:c8:9f:b9:f0:07:97:66:e3:d2:14:f6:37: a0:f3:65:ad:4c:aa:90:16:20:a5:7f:81:1d:6c:98:b0:8a:40: d9:3b:fe:c0:7b:17:01:76:83:72:2d:64:ba:f5:32:1b:47:9e: ee:4b:eb:95:fe:74:8f:db:9f:48:a2:8c:dd:55:92:6f:79:96: 96:9a:00:d8:0f:33:9c:1b:30:05:4b:31:e7:20:63:26:17:70: d0:78:16:24:23:32:d7:d8:17:48:78:41:b7:b7:a5:a5:e3:fb: 2f:39:cb:0c:b9:cd:05:e5:08:e9:d0:d4:c2:3e:50:e3:58:10: 02:ed:83:d3:c4:da:d0:73:f8:6e:66:66:5a:02:18:70:c4:e0: 08:6b:5c:88:7e:60:2c:78:e2:c1:b5:c5:05:3b:eb:c6:a1:3d: e1:40:4e:87:1f:47:c0:23:05:ad:f0:a7:fe:fc:35:2c:6b:dc: bc:1a:cb:fb:97:2f:8a:b9:de:41:40:80:80:6d:d1:22:8d:d4: dd:dd:54:68:d4:dd:71:99:e5:61:28:e2:f1:14:ee:47:f1:d2: e6:f4:6b:ac -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY3RjkxMTAvBgNVBAUTKEJENEM0NDFGMDJDN0FERDQyRkE2MjQyRTgzMzFEOTNG NTlFNTE4M0EwHhcNMjUxMjA1MDA0MDMwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyMjlmZS02N2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp16wN0IRNt01uMN/EoKSM2McpmxkFDVnsspH6SNzHQwM4rTldINP6TQYRR8S ouTdxB3p2ObNbufcCN8P5fLgqSGB3lGEVzvShLj3OZNqpqZ6p32pZpYLRbXK2gRf s4zMYfXiYzqeFcJdP4NwG/ro/1U7CLeaIlKZyFGg+vnv/Vz0sMugN4OpEdfj128c HhoIxrpkwKQRTrpRrnzZrpzqJB4k5ySuLG6IO6skz8yenVeCOv6IiaIoq7B4SLvQ /2bJDAqj/74sYmJm2iN2tzmmm+YPh5u2RTGw/g7SFHH49t90qHvQZryqk45i9KXM rroCsKSeheiSI/xEXmLNFlJHXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDdQjOAC BSxC7/YqRNF7yPljZ8ohMB8GA1UdIwQYMBaAFL1MRB8Cx63UL6YkLoMx2T9Z5Rg6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjdGOS9FQUUxMkU0NDhE QUQxMUVEQjJEQ0M0ODdDNEY5QUUwMi92VXhFSHdMSHJkUXZwaVF1Z3pIWlAxbmxH RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZVeEVId0xIcmRRdnBpUXVnekhaUDFubEdEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY3RjkvRUFFMTJFNDQ4REFEMTFFREIyRENDNDg3QzRGOUFFMDIvN0E1NDMzRDZB Mzc4MTFGMDgzMDU3QTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnQeIwDwQCAAIwCQMHACABDfHIwDANBgkqhkiG9w0BAQsF AAOCAQEAolfZog3Pr4xKhniNFLcC7hOGSK/GTpsWsDeDh9FKVcHCvLbt1oWjH6Kc yJ+58AeXZuPSFPY3oPNlrUyqkBYgpX+BHWyYsIpA2Tv+wHsXAXaDci1kuvUyG0ee 7kvrlf50j9ufSKKM3VWSb3mWlpoA2A8znBswBUsx5yBjJhdw0HgWJCMy19gXSHhB t7elpeP7LznLDLnNBeUI6dDUwj5Q41gQAu2D08Ta0HP4bmZmWgIYcMTgCGtciH5g LHjiwbXFBTvrxqE94UBOhx9HwCMFrfCn/vw1LGvcvBrL+5cvirneQUCAgG3RIo3U 3d1UaNTdcZnlYSji8RTuR/HS5vRrrA== -----END CERTIFICATE-----Generated at Sun Dec 7 02:25:07 2025 by rpki-client