This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/D55CBB8CEC5B11F0861F235B4C6F56BC.roa File: D55CBB8CEC5B11F0861F235B4C6F56BC.roa (raw, json) Hash identifier: QeeV1YXvSkItZe/t3MpzT1r6pmBTqwUx593UfvD7Sck= Subject key identifier: A4:F6:27:8F:69:5C:9E:41:89:A2:D7:F5:3F:F4:8A:EA:11:79:A6:B5 Certificate issuer: /CN=A91CA297/serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08 Certificate serial: 0918 Authority key identifier: 57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/D55CBB8CEC5B11F0861F235B4C6F56BC.roa Signing time: Fri 16 Jan 2026 05:08:50 +0000 ROA not before: Fri 16 Jan 2026 05:08:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 2914 IP address blocks: 103.224.253.0/24 maxlen: 24 103.224.254.0/24 maxlen: 24 103.224.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2328 (0x918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA297, serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08 Validity Not Before: Jan 16 05:08:50 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6969c7e2-be26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b6:09:e3:1c:5c:78:c9:19:e1:25:4a:f1:8a: 08:41:37:09:51:70:60:bb:a4:a3:f7:8d:fc:d3:34: 09:cb:dd:49:5f:c8:68:82:a1:ce:81:88:cd:f3:9c: 49:18:40:4a:76:3a:a7:a4:24:9c:4d:54:54:db:d7: 83:dd:b3:67:fc:f4:dc:4b:72:cf:e5:63:86:56:b9: cf:49:59:cc:d7:1f:85:2a:e9:15:9a:05:66:51:69: 92:83:f1:f3:b5:0f:fc:bf:10:ce:7e:72:20:a8:cc: 8d:67:30:cb:fc:9c:91:fe:66:d3:22:b3:9d:3b:98: c3:98:4c:45:40:63:1b:d5:7d:13:b8:33:28:ea:ce: 61:d7:6a:f6:41:ae:6d:b3:1d:f8:81:07:ca:3b:3e: bd:d7:9b:62:1a:5f:be:82:aa:97:18:c0:5f:7b:83: b4:d8:80:00:91:4a:15:2f:f3:0d:87:ff:70:14:da: f3:52:71:5c:cb:70:73:bc:9f:7a:10:1d:82:c7:60: 40:4a:77:ae:fa:2e:b9:8c:a2:50:7e:0b:a4:a0:4d: ff:b4:b1:ed:5e:91:7f:76:58:ce:e9:84:9e:78:0f: 65:d5:01:99:2d:ca:57:c4:b2:7b:26:6d:9c:33:a4: 5e:98:96:71:88:73:de:d9:18:5d:86:db:f6:39:0b: c3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F6:27:8F:69:5C:9E:41:89:A2:D7:F5:3F:F4:8A:EA:11:79:A6:B5 X509v3 Authority Key Identifier: keyid:57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/D55CBB8CEC5B11F0861F235B4C6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.253.0-103.224.255.255 Signature Algorithm: sha256WithRSAEncryption 18:5f:d7:69:6d:79:1a:01:66:62:4c:4e:41:80:16:7c:2c:88: 39:6c:d0:c9:8a:75:4b:69:dc:1f:92:0c:8a:e9:09:5d:67:98: 90:53:a1:9f:89:a6:f7:fe:8b:34:e7:3b:21:94:2d:9d:49:a0: 37:09:9a:da:d0:bc:cc:90:cc:8f:71:18:1c:b8:45:69:c0:38: aa:67:a4:25:93:95:e9:13:5a:e2:4e:5b:65:6d:25:41:ba:13: a0:5b:44:03:93:e5:19:50:e1:7d:a0:a9:d0:76:82:e3:7a:77: 6c:68:b8:02:2d:d2:ff:f4:ef:30:16:78:42:9f:ab:da:75:7c: 2b:08:85:02:ed:f1:9c:b8:ec:5a:ea:32:d8:5e:0e:be:05:0c: 0f:8f:a4:94:91:91:fd:b7:8c:00:5d:c6:cd:69:ac:f5:b0:b4: a6:83:8b:67:8f:0e:c2:83:b7:c9:55:89:f3:36:17:a4:6b:dd: 61:d5:54:f9:54:65:5e:d9:09:ef:89:a9:85:9b:7a:5c:f7:a2: 02:94:19:1d:5e:07:4f:9b:0e:c7:7a:ca:a1:9e:5d:67:fd:51: 75:05:77:bc:f7:bc:4c:9b:8d:95:80:2b:a6:a3:fa:31:35:b8: b0:ea:1c:4e:9f:f4:85:f8:ca:00:55:fe:13:6d:59:42:19:1d: 11:48:84:a8 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EyOTcxMTAvBgNVBAUTKDU3REI0MkFCOUVCQkVGQkZFMjEwNzNGNTAwN0ZDMzc2 MkM1RkJCMDgwHhcNMjYwMTE2MDUwODUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY5YzdlMi1iZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bYJ4xxceMkZ4SVK8YoIQTcJUXBgu6Sj94380zQJy91JX8hogqHOgYjN85xJ GEBKdjqnpCScTVRU29eD3bNn/PTcS3LP5WOGVrnPSVnM1x+FKukVmgVmUWmSg/Hz tQ/8vxDOfnIgqMyNZzDL/JyR/mbTIrOdO5jDmExFQGMb1X0TuDMo6s5h12r2Qa5t sx34gQfKOz6915tiGl++gqqXGMBfe4O02IAAkUoVL/MNh/9wFNrzUnFcy3BzvJ96 EB2Cx2BASneu+i65jKJQfgukoE3/tLHtXpF/dljO6YSeeA9l1QGZLcpXxLJ7Jm2c M6RemJZxiHPe2Rhdhtv2OQvDdwIDAQABo4ICnDCCApgwHQYDVR0OBBYEFKT2J49p XJ5BiaLX9T/0iuoReaa1MB8GA1UdIwQYMBaAFFfbQqueu++/4hBz9QB/w3YsX7sI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTI5Ny8yNEVEMjE1NkJD MjgxMUVBOTdGOTZENDFDNEY5QUUwMi9WOXRDcTU2Nzc3X2lFSFAxQUhfRGRpeGZ1 d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y5dENxNTY3NzdfaUVIUDFBSF9EZGl4ZnV3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0EyOTcvMjRFRDIxNTZCQzI4MTFFQTk3Rjk2RDQxQzRGOUFFMDIvRDU1Q0JCOENF QzVCMTFGMDg2MUYyMzVCNEM2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMEAGfg/QMDAGfgMA0GCSqGSIb3DQEBCwUAA4IBAQAYX9dp bXkaAWZiTE5BgBZ8LIg5bNDJinVLadwfkgyK6QldZ5iQU6Gfiab3/os05zshlC2d SaA3CZra0LzMkMyPcRgcuEVpwDiqZ6Qlk5XpE1riTltlbSVBuhOgW0QDk+UZUOF9 oKnQdoLjendsaLgCLdL/9O8wFnhCn6vadXwrCIUC7fGcuOxa6jLYXg6+BQwPj6SU kZH9t4wAXcbNaaz1sLSmg4tnjw7Cg7fJVYnzNheka91h1VT5VGVe2QnviamFm3pc 96IClBkdXgdPmw7Hesqhnl1n/VF1BXe897xMm42VgCumo/oxNbiw6hxOn/SF+MoA Vf4TbVlCGR0RSISo -----END CERTIFICATE-----Generated at Sun Jan 25 03:58:29 2026 by rpki-client