This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/618AD7B6638A11F08BC2A840C4F9AE02.roa File: 618AD7B6638A11F08BC2A840C4F9AE02.roa (raw, json) Hash identifier: mSkIgywOU9dhooivn2x5OXxcwDybzq+7lQQROc67tvc= Subject key identifier: 1A:95:30:82:30:D3:E1:7D:A4:7C:AD:61:DB:A0:3D:D6:02:F7:7E:5F Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0CE4 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/618AD7B6638A11F08BC2A840C4F9AE02.roa Signing time: Thu 04 Dec 2025 17:59:02 +0000 ROA not before: Thu 04 Dec 2025 17:59:02 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38716 IP address blocks: 103.241.0.0/22 maxlen: 22 103.241.0.0/24 maxlen: 24 103.241.1.0/24 maxlen: 24 103.241.2.0/24 maxlen: 24 103.241.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3300 (0xce4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Dec 4 17:59:02 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6931cbe5-93eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:f3:5b:ec:f3:2a:df:43:2f:7f:d8:d2:90: 99:ab:da:5c:ae:b5:e0:bc:d6:15:e3:77:77:3f:d0: de:0b:37:7f:34:c8:56:d5:a7:75:9f:3e:b6:cc:f7: a8:b1:60:70:34:d5:03:b9:ed:dd:4f:25:4f:4a:98: 30:d0:f2:b2:d3:33:cf:a0:4c:ba:c7:be:bf:3c:c3: 2e:5c:f7:87:34:8b:cd:60:03:c9:d2:7e:e1:32:9e: 67:c0:aa:bc:c7:c8:af:ba:da:43:ec:72:21:23:03: 9c:0c:64:68:62:60:66:8c:9d:99:74:b7:88:38:24: 5d:a3:2e:ac:8d:b5:c6:ef:cc:ba:06:65:11:26:1e: 32:d4:42:dd:ac:5d:f4:de:8e:d3:00:8a:e2:d7:24: e5:ea:c0:a4:01:da:10:ff:a1:40:fc:7d:92:7b:5e: 55:2f:a4:1d:d0:49:6e:f9:b8:4f:41:92:cb:f6:13: 72:31:21:46:a1:22:c1:80:22:7b:58:fe:e1:a3:93: 04:fa:3e:b4:bc:28:1f:30:8b:5e:e8:5b:dc:5b:db: 66:f0:96:73:19:95:bf:29:55:87:2b:74:ea:fa:fa: 88:c9:94:74:b2:2e:5d:31:a2:0f:57:5b:5a:d4:78: c4:7b:b5:b1:35:64:0c:fd:f9:5f:69:b8:53:e4:f9: 1d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:95:30:82:30:D3:E1:7D:A4:7C:AD:61:DB:A0:3D:D6:02:F7:7E:5F X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/618AD7B6638A11F08BC2A840C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.0.0/22 Signature Algorithm: sha256WithRSAEncryption 60:b0:d7:be:64:21:f1:c0:0a:04:12:a8:f5:de:04:a1:32:54: b3:7a:83:93:15:a2:1b:e0:09:4a:d9:e7:9c:ee:64:a3:c3:3e: 70:75:6d:3b:bb:82:92:ab:e3:e4:a2:77:d4:6c:18:cb:f1:20: 4b:84:ad:8e:42:0d:3f:f1:7f:5c:3e:bd:7b:4a:15:ea:61:a5: 59:82:d4:55:38:82:3b:4c:a2:00:00:d5:7a:4d:da:4a:5d:c3: 4e:db:5b:91:78:a4:75:da:85:14:a8:d2:2b:f0:dc:63:55:fc: 04:c8:6e:07:a0:64:3d:a6:17:d4:03:13:d1:1e:2c:5b:82:d3: b7:0d:ac:26:c1:04:30:d0:7c:2a:8f:b8:33:2e:28:38:dd:18: 58:86:84:9d:f0:53:fe:19:24:75:6f:43:d8:43:01:ee:ff:da: c2:1c:f3:d6:ed:f8:05:cd:d1:cf:88:7d:10:7e:5e:f0:45:f2: 74:99:d9:70:15:04:fc:02:3a:2b:eb:12:9f:80:ea:bc:20:5f: cb:7d:3d:05:ff:62:6f:90:7f:76:87:29:40:bf:e3:05:68:10: f6:4d:a4:da:79:4f:1a:ee:97:93:76:d3:a9:4b:80:32:bc:36: 2c:f7:d4:2b:76:19:f7:8c:dd:5e:e6:8e:e0:c1:d1:4e:a5:97: 8b:3a:29:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUxMjA0MTc1OTAyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMxY2JlNS05M2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8HzW+zzKt9DL3/Y0pCZq9pcrrXgvNYV43d3P9DeCzd/NMhW1ad1nz62zPeo sWBwNNUDue3dTyVPSpgw0PKy0zPPoEy6x76/PMMuXPeHNIvNYAPJ0n7hMp5nwKq8 x8ivutpD7HIhIwOcDGRoYmBmjJ2ZdLeIOCRdoy6sjbXG78y6BmURJh4y1ELdrF30 3o7TAIri1yTl6sCkAdoQ/6FA/H2Se15VL6Qd0Elu+bhPQZLL9hNyMSFGoSLBgCJ7 WP7ho5ME+j60vCgfMIte6FvcW9tm8JZzGZW/KVWHK3Tq+vqIyZR0si5dMaIPV1ta 1HjEe7WxNWQM/flfabhT5Pkd0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBqVMIIw 0+F9pHytYdugPdYC935fMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQTMvMjA5MURDOEUwNTAxMTFFQUJEOUIyMDJDQzRGOUFFMDIvNjE4QUQ3QjY2 MzhBMTFGMDhCQzJBODQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8QAwDQYJKoZIhvcNAQELBQADggEBAGCw175kIfHACgQS qPXeBKEyVLN6g5MVohvgCUrZ55zuZKPDPnB1bTu7gpKr4+Sid9RsGMvxIEuErY5C DT/xf1w+vXtKFephpVmC1FU4gjtMogAA1XpN2kpdw07bW5F4pHXahRSo0ivw3GNV /ATIbgegZD2mF9QDE9EeLFuC07cNrCbBBDDQfCqPuDMuKDjdGFiGhJ3wU/4ZJHVv Q9hDAe7/2sIc89bt+AXN0c+IfRB+XvBF8nSZ2XAVBPwCOivrEp+A6rwgX8t9PQX/ Ym+Qf3aHKUC/4wVoEPZNpNp5Txrul5N206lLgDK8Niz31Ct2GfeM3V7mjuDB0U6l l4s6KZ4= -----END CERTIFICATE-----Generated at Sun Dec 7 07:03:49 2025 by rpki-client