This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa File: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (raw, json) Hash identifier: 8PBc7rJDdj900RPfyfsyZOspVRuDEqIjR6MwkbVEKO8= Subject key identifier: 6B:2D:D6:DD:D7:5B:27:8C:76:E4:35:9B:62:84:CB:87:94:4B:F7:96 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D5A Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa Signing time: Mon 22 Dec 2025 18:15:01 +0000 ROA not before: Mon 22 Dec 2025 18:15:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24496 IP address blocks: 103.236.194.0/23 maxlen: 24 202.180.216.0/21 maxlen: 24 2407:3680::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3418 (0xd5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Dec 22 18:15:01 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69498aa5-9c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b5:1d:7e:11:27:f0:3f:de:53:c5:ff:90:19: f9:d0:f1:3b:9a:9c:bd:75:2d:88:22:18:b0:bf:eb: 15:a7:06:f3:04:2c:cf:0c:48:a1:5e:97:88:28:e4: c7:f2:c7:a5:85:f3:ea:f9:7f:6d:be:bf:aa:ac:4b: fc:05:d9:55:13:b1:10:66:07:a5:c8:09:51:ff:cc: b2:bc:a5:cb:5b:99:f2:86:5c:72:24:a7:f2:cb:4f: 40:40:ab:5f:51:b0:fb:fc:bb:b8:1a:3e:24:b4:f9: b1:a9:b5:3e:69:dd:9f:9d:90:e3:9e:e4:c5:e0:74: 45:79:eb:aa:48:3b:0e:13:1f:13:2c:97:3c:40:d7: f6:f3:24:37:e0:82:86:b0:96:b4:06:cf:7e:ea:86: 9a:86:a5:a8:43:d2:d1:1c:01:09:2f:27:64:e6:76: 5a:bd:8e:d5:6d:43:b5:df:d5:aa:07:29:e4:22:f2: ee:ad:0a:ab:c7:0f:4f:8f:74:eb:2f:6b:1d:4f:01: b4:5e:b8:6c:5d:4c:06:88:15:74:24:c3:9f:7c:f6: ad:a4:68:68:16:76:f9:7b:28:ee:91:ff:9b:3c:35: 54:2d:66:5c:8f:f9:f6:ea:53:2a:97:29:3c:06:e1: 3c:b9:63:a0:9f:fa:2f:59:a1:b2:2b:37:fc:76:1b: 00:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2D:D6:DD:D7:5B:27:8C:76:E4:35:9B:62:84:CB:87:94:4B:F7:96 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.236.194.0/23 202.180.216.0/21 IPv6: 2407:3680::/32 Signature Algorithm: sha256WithRSAEncryption 2d:17:02:50:76:e7:8d:98:b5:4a:df:0a:79:bc:54:bc:7a:97: c3:57:24:84:cd:67:11:20:64:3d:5d:7c:49:cc:a4:02:01:08: b7:9e:a4:6a:6b:0a:df:e6:22:83:32:a3:5f:45:e8:e9:08:fb: fe:11:8b:b8:a1:66:93:99:61:b1:9d:31:ef:aa:ba:4b:ad:f0: 0c:6e:88:a8:fc:8e:e1:5c:a4:47:c2:ff:e8:94:78:51:2c:b5: 12:37:aa:cb:a6:3f:a3:b2:13:1c:74:7f:e2:2e:d1:e8:e8:e3: 99:2f:b6:d4:14:7f:43:c6:db:43:ac:cb:90:bf:26:42:f2:76: 2f:0f:5b:5a:e0:d6:8a:e2:70:01:ed:c9:30:46:c0:ad:29:93: f3:af:b3:95:52:0a:26:4e:f4:0f:e8:c2:4d:1f:3f:d9:7a:31: b2:f8:0c:12:f3:6e:7c:ac:4a:0e:23:62:1c:27:da:ce:fa:f0: 80:bd:f5:00:d0:d3:75:b2:49:d8:8c:3a:77:db:3f:bb:cd:da: aa:59:04:d8:34:15:25:6e:32:0e:10:e7:95:91:3c:3d:04:29: a6:7a:e1:1a:c9:18:b6:03:17:8e:6e:95:05:3b:78:b8:61:c6: 98:39:6d:44:61:10:d5:ff:9d:46:a4:9c:1c:2a:c4:ed:82:5e: 7d:99:a5:58 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUxMjIyMTgxNTAxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ5OGFhNS05YzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybUdfhEn8D/eU8X/kBn50PE7mpy9dS2IIhiwv+sVpwbzBCzPDEihXpeIKOTH 8selhfPq+X9tvr+qrEv8BdlVE7EQZgelyAlR/8yyvKXLW5nyhlxyJKfyy09AQKtf UbD7/Lu4Gj4ktPmxqbU+ad2fnZDjnuTF4HRFeeuqSDsOEx8TLJc8QNf28yQ34IKG sJa0Bs9+6oaahqWoQ9LRHAEJLydk5nZavY7VbUO139WqBynkIvLurQqrxw9Pj3Tr L2sdTwG0XrhsXUwGiBV0JMOffPatpGhoFnb5eyjukf+bPDVULWZcj/n26lMqlyk8 BuE8uWOgn/ovWaGyKzf8dhsAvwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGst1t3X WyeMduQ1m2KEy4eUS/eWMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M1NjEvODZDMzA0ODJFNzM0MTFFOTlEOEVBRjQ3QzRGOUFFMDIvNUEzOTVFMjZF MkRCMTFFQjg2MDhFQTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFn7MIDBAPKtNgwDQQCAAIwBwMFACQHNoAwDQYJKoZIhvcN AQELBQADggEBAC0XAlB2542YtUrfCnm8VLx6l8NXJITNZxEgZD1dfEnMpAIBCLee pGprCt/mIoMyo19F6OkI+/4Ri7ihZpOZYbGdMe+qukut8AxuiKj8juFcpEfC/+iU eFEstRI3qsumP6OyExx0f+Iu0ejo45kvttQUf0PG20Osy5C/JkLydi8PW1rg1ori cAHtyTBGwK0pk/Ovs5VSCiZO9A/owk0fP9l6MbL4DBLzbnysSg4jYhwn2s768IC9 9QDQ03WySdiMOnfbP7vN2qpZBNg0FSVuMg4Q55WRPD0EKaZ64RrJGLYDF45ulQU7 eLhhxpg5bURhENX/nUaknBwqxO2CXn2ZpVg= -----END CERTIFICATE-----Generated at Sun Jan 25 15:34:45 2026 by rpki-client