This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/2E6E6386D21E11F0B5C0A977C4F9AE02.roa File: 2E6E6386D21E11F0B5C0A977C4F9AE02.roa (raw, json) Hash identifier: nmmwbRgeg6x+DwLWt0s6OMWtS0zyAxCJ4V/dXBc7nRE= Subject key identifier: 9D:63:6D:8D:43:C4:C2:F8:48:38:D9:C0:D2:E2:F7:EF:32:A9:EB:F6 Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 101F Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/2E6E6386D21E11F0B5C0A977C4F9AE02.roa Signing time: Fri 05 Dec 2025 21:05:52 +0000 ROA not before: Fri 05 Dec 2025 21:05:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133752 IP address blocks: 103.138.32.0/24 maxlen: 24 2404:bb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4127 (0x101f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8, serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: Dec 5 21:05:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69334930-4195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b9:e6:ac:85:cb:3d:23:5e:be:a4:88:98:3b: a4:04:cb:c3:bf:4b:97:fc:1c:a1:fc:ac:dc:92:92: 84:e0:3c:d3:be:3f:ec:8b:d1:51:10:b5:0d:31:a4: 35:46:3a:c5:5c:4b:22:b6:16:f6:03:47:7f:8e:d5: f6:f1:92:03:cc:96:20:8e:44:84:0c:32:54:bb:73: ca:1d:87:7b:f7:e6:11:4e:3a:c7:4e:c3:4a:8a:f4: f4:3a:d5:39:d3:5c:db:f3:d3:89:06:30:e0:e5:e3: ac:50:91:ff:66:13:cd:bd:28:45:e3:3e:c2:d7:99: cd:f1:34:e4:fb:e7:b9:f4:2d:c8:9d:8c:56:cc:bb: 52:9f:4e:57:36:5e:0b:b4:19:43:bf:33:21:a2:27: cd:08:f3:f6:31:ad:aa:eb:c2:bf:3f:01:61:3b:ac: db:3b:ae:bc:e0:91:04:fb:ed:8b:49:19:39:4c:65: a6:50:c4:34:1b:73:d4:33:f5:dd:a2:a0:59:24:06: 33:bd:18:b7:6a:1b:36:09:9d:13:b7:22:b5:10:00: f0:29:00:7b:4a:ef:15:99:0e:8f:6a:6e:bd:80:7b: f2:90:ab:4a:09:f0:3a:d0:11:4e:01:03:b1:90:b2: 75:7e:8c:9e:43:00:82:9b:3b:18:45:a8:9f:80:00: 54:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:63:6D:8D:43:C4:C2:F8:48:38:D9:C0:D2:E2:F7:EF:32:A9:EB:F6 X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/2E6E6386D21E11F0B5C0A977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.32.0/24 IPv6: 2404:bb40::/32 Signature Algorithm: sha256WithRSAEncryption 34:17:6b:96:2d:9c:96:96:dc:99:6e:11:26:b1:a7:7d:0a:55: ca:68:25:8e:e0:32:d8:0f:29:71:19:dc:11:72:6d:cb:a4:ae: 12:08:db:b1:7f:eb:42:5e:13:0e:d7:a5:bd:f4:ab:87:e6:37: 71:ad:1d:53:13:13:cb:69:e0:bd:8c:59:30:12:bc:f8:f8:2c: 2c:fe:6f:72:24:27:e0:86:1c:1e:6c:c2:c2:bc:a8:bf:b5:bf: 33:da:09:e4:78:8c:45:65:ee:24:b4:7f:7a:2a:c3:73:20:94: 48:a6:ac:72:49:07:7d:62:5f:cf:32:22:01:00:e1:18:e3:a9: dc:d8:4d:c6:d8:c5:41:39:d1:5f:42:c0:70:58:ff:2d:e0:88: 82:a3:66:dc:21:0f:46:3e:27:f8:3e:4e:d7:f7:a5:a8:d7:80: cc:ee:f8:7e:dd:5f:28:3b:87:ab:28:1e:ef:90:52:60:7a:55: db:fc:f5:ec:28:ce:cc:af:86:22:0b:34:77:9c:aa:90:9c:e7: d7:47:65:a3:10:6f:4f:4b:7f:fd:2b:6e:ae:02:fc:d0:85:d8: 82:7f:77:62:df:13:b7:5e:b8:ec:79:47:5a:6f:59:a3:57:99: 11:5d:75:e0:f3:c9:af:33:07:77:f1:f9:79:3a:8f:4f:90:0a: a6:45:9f:1d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjUxMjA1MjEwNTUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMzNDkzMC00MTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7nmrIXLPSNevqSImDukBMvDv0uX/Byh/KzckpKE4DzTvj/si9FRELUNMaQ1 RjrFXEsithb2A0d/jtX28ZIDzJYgjkSEDDJUu3PKHYd79+YRTjrHTsNKivT0OtU5 01zb89OJBjDg5eOsUJH/ZhPNvShF4z7C15nN8TTk++e59C3InYxWzLtSn05XNl4L tBlDvzMhoifNCPP2Ma2q68K/PwFhO6zbO6684JEE++2LSRk5TGWmUMQ0G3PUM/Xd oqBZJAYzvRi3ahs2CZ0TtyK1EADwKQB7Su8VmQ6Pam69gHvykKtKCfA60BFOAQOx kLJ1foyeQwCCmzsYRaifgABUZwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJ1jbY1D xML4SDjZwNLi9+8yqev2MB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE3RTgvRjE2RTE4NTY1QzUzMTFFOTlBQjVDRjY4QzRGOUFFMDIvMkU2RTYzODZE MjFFMTFGMEI1QzBBOTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABniiAwDQQCAAIwBwMFACQEu0AwDQYJKoZIhvcNAQELBQAD ggEBADQXa5YtnJaW3JluESaxp30KVcpoJY7gMtgPKXEZ3BFybcukrhII27F/60Je Ew7Xpb30q4fmN3GtHVMTE8tp4L2MWTASvPj4LCz+b3IkJ+CGHB5swsK8qL+1vzPa CeR4jEVl7iS0f3oqw3MglEimrHJJB31iX88yIgEA4RjjqdzYTcbYxUE50V9CwHBY /y3giIKjZtwhD0Y+J/g+Ttf3pajXgMzu+H7dXyg7h6soHu+QUmB6Vdv89ewozsyv hiILNHecqpCc59dHZaMQb09Lf/0rbq4C/NCF2IJ/d2LfE7deuOx5R1pvWaNXmRFd deDzya8zB3fx+Xk6j0+QCqZFnx0= -----END CERTIFICATE-----Generated at Sat Dec 6 18:46:14 2025 by rpki-client