This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/D8D317ACE7CE11F0AC86B9F45C6F56BC.roa File: D8D317ACE7CE11F0AC86B9F45C6F56BC.roa (raw, json) Hash identifier: vsTUw206l1auqFVbmz2vzluecexhQZaC872q8GqZIqY= Subject key identifier: 63:EB:EE:B9:74:8A:7F:37:90:95:7A:2D:26:22:D3:6E:00:82:B8:8D Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 023D Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/D8D317ACE7CE11F0AC86B9F45C6F56BC.roa Signing time: Sat 03 Jan 2026 01:21:10 +0000 ROA not before: Sat 03 Jan 2026 01:21:10 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9423 IP address blocks: 103.31.116.0/24 maxlen: 24 103.31.117.0/24 maxlen: 24 2001:df1:7f40::/48 maxlen: 48 2001:df1:7f41::/48 maxlen: 48 2001:df1:7f42::/48 maxlen: 48 2001:df1:7f43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Jan 3 01:21:10 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69586f06-d65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:05:63:8a:4c:74:a5:85:7a:c5:2d:f6:bc:1b: 66:30:09:06:d9:42:e3:89:cc:eb:22:7d:ed:2d:15: 88:b0:b1:87:d8:80:d5:f5:be:e9:e5:fc:da:f3:60: 4e:21:f9:5c:42:10:52:41:e9:b8:b0:c0:d6:dd:d1: 0a:31:8c:1e:e5:7a:79:5e:20:75:5a:f2:24:58:d7: 36:b1:af:e8:8c:cd:18:c9:0b:d5:e4:01:13:ed:68: a5:91:60:1b:a7:6c:5b:4f:0c:68:7f:31:4c:33:f0: 3d:bc:3c:58:fb:f8:07:ef:1e:2f:66:13:76:60:95: c4:a7:d9:92:78:c1:aa:1b:03:3b:84:08:fa:15:2b: 9a:2e:41:b8:cd:79:9a:ba:2a:ee:d0:80:9e:e8:5e: bf:a8:2f:a9:20:38:57:aa:a9:e8:4f:d1:c6:10:16: e3:ad:4f:59:0c:8f:4f:b4:d0:53:fd:89:bc:5c:8a: 93:a7:d8:a0:b8:75:fc:04:db:4b:c9:56:83:13:bc: 9f:c0:27:11:bb:a1:1f:a2:5c:59:c0:8a:19:f6:8f: 4c:10:da:01:3b:0f:1b:03:c2:cc:ba:02:9b:cb:02: ba:02:75:4b:6d:f3:fa:1a:1b:be:2d:0b:48:34:03: b9:c4:4c:51:53:3d:27:78:c6:08:20:d3:d8:bc:9d: 2c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EB:EE:B9:74:8A:7F:37:90:95:7A:2D:26:22:D3:6E:00:82:B8:8D X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/D8D317ACE7CE11F0AC86B9F45C6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.116.0/23 IPv6: 2001:df1:7f40::/46 Signature Algorithm: sha256WithRSAEncryption 9f:75:25:c9:84:de:9f:6d:8f:c1:61:a7:f9:a6:b9:06:b0:e2: 6d:21:9d:c5:e3:bd:ed:0b:fb:9e:fb:06:99:ca:12:0d:ca:04: 35:e3:3c:2a:49:a8:02:31:e2:39:11:f4:ab:e3:a1:a4:8b:89: 59:e0:c2:4d:11:bf:7a:d7:5a:4b:d3:6d:86:34:2a:14:b8:87: d1:d1:01:2c:ad:e6:1f:46:ac:e4:38:40:d0:1f:bc:c0:de:1e: 5b:81:84:07:31:f7:fd:66:c8:17:6e:c7:f4:ec:d2:28:62:ff: dd:cb:5a:20:02:94:22:02:0b:be:06:fb:3e:1f:92:fa:36:9d: b0:4b:93:7d:94:f9:c2:51:d1:d5:41:cb:1d:e2:5b:14:a4:88: 50:72:f8:f6:ce:6d:58:41:92:ab:46:27:07:8b:b1:87:96:5d: f6:31:75:8f:41:d2:de:37:e3:2e:75:f1:53:55:5c:7b:cc:54: 36:a5:b8:12:73:68:47:24:9a:05:cf:7e:c5:25:b1:aa:cc:1c: d1:7b:09:43:af:8b:f0:33:4e:dd:c0:7d:31:f1:cf:36:bc:07: b6:34:97:5c:25:51:a3:a0:b3:27:2c:3c:c6:a9:eb:30:ae:20: c6:8c:09:b3:3a:3d:8f:51:29:c5:fe:bb:10:7e:7e:c9:02:8a: 63:2b:56:aa -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjYwMTAzMDEyMTEwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4NmYwNi1kNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AVjikx0pYV6xS32vBtmMAkG2ULjiczrIn3tLRWIsLGH2IDV9b7p5fza82BO IflcQhBSQem4sMDW3dEKMYwe5Xp5XiB1WvIkWNc2sa/ojM0YyQvV5AET7WilkWAb p2xbTwxofzFMM/A9vDxY+/gH7x4vZhN2YJXEp9mSeMGqGwM7hAj6FSuaLkG4zXma uiru0ICe6F6/qC+pIDhXqqnoT9HGEBbjrU9ZDI9PtNBT/Ym8XIqTp9iguHX8BNtL yVaDE7yfwCcRu6EfolxZwIoZ9o9MENoBOw8bA8LMugKbywK6AnVLbfP6Ghu+LQtI NAO5xExRUz0neMYIINPYvJ0s3wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGPr7rl0 in83kJV6LSYi024AgriNMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IyMUQvNjMyQ0QzRTZBN0Y2MTFFREI5RDYwQzQzQzRGOUFFMDIvRDhEMzE3QUNF N0NFMTFGMEFDODZCOUY0NUM2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnH3QwDwQCAAIwCQMHAiABDfF/QDANBgkqhkiG9w0BAQsF AAOCAQEAn3UlyYTen22PwWGn+aa5BrDibSGdxeO97Qv7nvsGmcoSDcoENeM8Kkmo AjHiORH0q+OhpIuJWeDCTRG/etdaS9NthjQqFLiH0dEBLK3mH0as5DhA0B+8wN4e W4GEBzH3/WbIF27H9OzSKGL/3ctaIAKUIgILvgb7Ph+S+jadsEuTfZT5wlHR1UHL HeJbFKSIUHL49s5tWEGSq0YnB4uxh5Zd9jF1j0HS3jfjLnXxU1Vce8xUNqW4EnNo RySaBc9+xSWxqswc0XsJQ6+L8DNO3cB9MfHPNrwHtjSXXCVRo6CzJyw8xqnrMK4g xowJszo9j1Epxf67EH5+yQKKYytWqg== -----END CERTIFICATE-----Generated at Sun Jan 25 09:19:22 2026 by rpki-client