This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/1D9F5104C99B11F092A1C310C4F9AE02.roa File: 1D9F5104C99B11F092A1C310C4F9AE02.roa (raw, json) Hash identifier: ZN1p2zv3KPrxvd3wmx3vHgZQDRb5IctflFC6poo4JQE= Subject key identifier: A3:14:AA:2E:F7:D6:CF:07:08:A0:BB:39:E1:32:83:32:6D:AF:E5:4F Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: D4 Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/1D9F5104C99B11F092A1C310C4F9AE02.roa Signing time: Tue 25 Nov 2025 01:07:30 +0000 ROA not before: Tue 25 Nov 2025 01:07:30 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139005 IP address blocks: 103.138.130.0/24 maxlen: 24 2405:e40::/45 maxlen: 45 2405:e40:100::/45 maxlen: 45 2405:e40:108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Nov 25 01:07:30 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=69250152-6c94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7b:5f:84:3e:75:e7:30:2f:81:50:e0:26:da: d6:e9:83:f1:fc:ab:19:b0:03:73:b6:a6:bf:97:92: ef:4a:ca:a3:ec:67:d5:3b:be:ba:10:97:1d:bb:32: 63:e0:3d:cb:b9:95:5d:fe:a2:2a:4b:76:10:ed:6a: 71:99:cf:21:39:97:de:f2:61:6f:32:08:0d:af:90: 89:ef:14:a8:22:7a:ce:43:db:33:57:3c:6a:2b:57: 2c:06:a7:78:3a:5d:01:76:87:fb:55:b2:32:46:5e: 06:26:52:aa:13:7a:86:59:e3:70:49:5e:84:16:e3: 92:8d:7d:27:ba:c5:91:87:0c:b8:55:94:af:35:45: 4b:9a:97:ac:09:34:df:14:0d:d4:70:a2:d0:87:b7: bd:b4:92:6a:27:fb:5e:0c:2e:20:9b:4d:80:25:0d: e7:f8:76:49:77:94:44:a9:4c:20:c2:67:3f:b0:07: d0:7b:e2:7e:68:99:d1:d6:be:67:bf:0d:1a:70:78: 7b:66:02:ee:8a:9b:41:7b:a7:50:98:7c:11:6c:57: 08:0e:af:4e:56:94:61:de:11:c7:67:e9:b3:2a:37: 53:58:c4:0b:d8:29:8d:5a:05:e3:0b:67:6b:88:16: 4b:2f:18:28:f6:61:59:97:c1:91:2e:aa:ac:87:7f: 8b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:14:AA:2E:F7:D6:CF:07:08:A0:BB:39:E1:32:83:32:6D:AF:E5:4F X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/1D9F5104C99B11F092A1C310C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.130.0/24 IPv6: 2405:e40::/45 2405:e40:100::-2405:e40:108:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 83:44:4a:e2:af:66:9a:ea:8d:8c:e5:fa:b8:18:22:ff:b4:c1: 5a:78:9e:51:42:f6:a4:3c:51:a2:56:58:0f:00:a7:99:e5:7f: 68:19:b7:d3:71:bb:9f:61:19:62:f2:f6:0a:9e:88:9d:83:0d: b5:16:03:d3:88:17:64:23:e8:c8:61:d6:7b:db:1b:56:ee:3b: 6f:df:23:8b:10:c3:07:33:28:7a:2f:37:33:61:f7:37:b6:a7: 54:04:ff:31:f2:1a:13:10:6d:04:55:ca:d5:62:ec:23:e6:69: 6a:f8:8e:0a:2b:14:53:0e:8b:13:53:58:7d:14:be:a4:ce:96: 19:95:c1:1c:89:5a:2b:71:fc:f1:04:c7:f5:e1:aa:4e:ca:ce: 56:62:8a:3c:fc:9e:70:0f:c1:61:1e:fb:61:e6:63:d2:1c:1b: 72:98:a0:ba:b3:0c:ec:dd:e7:ec:2d:0e:ef:86:79:90:2d:97: 08:4b:07:4e:fe:3e:14:4b:ff:07:26:93:31:ce:a7:2e:62:51: ca:db:33:7b:7d:cf:c6:a3:29:00:71:53:93:af:36:46:77:e2: 63:3a:76:fe:6b:c3:2d:05:79:65:b2:8f:fd:cb:49:8c:6c:30: d2:f1:c1:52:ec:cb:8e:07:0e:25:27:91:10:a9:29:54:93:62: c4:a2:21:c6 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4QUQxMTAvBgNVBAUTKEQxMEMyMDk2RkI1REIzMDRBQkQyRjk5RjQ1QTI5NDg4 MjkyRDM3MjEwHhcNMjUxMTI1MDEwNzMwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1MDE1Mi02Yzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXtfhD515zAvgVDgJtrW6YPx/KsZsANztqa/l5LvSsqj7GfVO766EJcduzJj 4D3LuZVd/qIqS3YQ7Wpxmc8hOZfe8mFvMggNr5CJ7xSoInrOQ9szVzxqK1csBqd4 Ol0Bdof7VbIyRl4GJlKqE3qGWeNwSV6EFuOSjX0nusWRhwy4VZSvNUVLmpesCTTf FA3UcKLQh7e9tJJqJ/teDC4gm02AJQ3n+HZJd5REqUwgwmc/sAfQe+J+aJnR1r5n vw0acHh7ZgLuiptBe6dQmHwRbFcIDq9OVpRh3hHHZ+mzKjdTWMQL2CmNWgXjC2dr iBZLLxgo9mFZl8GRLqqsh3+L6QIDAQABo4ICuTCCArUwHQYDVR0OBBYEFKMUqi73 1s8HCKC7OeEygzJtr+VPMB8GA1UdIwQYMBaAFNEMIJb7XbMEq9L5n0WilIgpLTch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjhBRC9ERUJBMjM4MDg2 QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3U3Iwdm1mUmFLVWlDa3RO eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY4QUQvREVCQTIzODA4NkEwMTFFRkIzNkUzMDBFQzRGOUFFMDIvMUQ5RjUxMDRD OTlCMTFGMDkyQTFDMzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMAwEAgABMAYDBABnioIwIgQCAAIwHAMHAyQFDkAAADARAwYAJAUOQAEDBwAk BQ5AAQgwDQYJKoZIhvcNAQELBQADggEBAINESuKvZprqjYzl+rgYIv+0wVp4nlFC 9qQ8UaJWWA8Ap5nlf2gZt9Nxu59hGWLy9gqeiJ2DDbUWA9OIF2Qj6Mhh1nvbG1bu O2/fI4sQwwczKHovNzNh9ze2p1QE/zHyGhMQbQRVytVi7CPmaWr4jgorFFMOixNT WH0UvqTOlhmVwRyJWitx/PEEx/Xhqk7KzlZiijz8nnAPwWEe+2HmY9IcG3KYoLqz DOzd5+wtDu+GeZAtlwhLB07+PhRL/wcmkzHOpy5iUcrbM3t9z8ajKQBxU5OvNkZ3 4mM6dv5rwy0FeWWyj/3LSYxsMNLxwVLsy44HDiUnkRCpKVSTYsSiIcY= -----END CERTIFICATE-----Generated at Sat Dec 6 16:36:24 2025 by rpki-client