This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49CAEF64D07011F08EAB2929C4F9AE02.roa File: 49CAEF64D07011F08EAB2929C4F9AE02.roa (raw, json) Hash identifier: Dq1CKXIyNSfYIrpYzOR2XXicVsO2S1H/EK9/Tu0yc48= Subject key identifier: BE:64:32:84:7B:4B:58:59:72:17:A6:DA:4F:D5:EE:3D:67:F9:4D:3E Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Certificate serial: 21F6 Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49CAEF64D07011F08EAB2929C4F9AE02.roa Signing time: Wed 03 Dec 2025 18:07:22 +0000 ROA not before: Wed 03 Dec 2025 18:07:22 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 26337 IP address blocks: 43.245.52.0/22 maxlen: 24 203.17.36.0/24 maxlen: 24 203.170.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8694 (0x21f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3794, serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Validity Not Before: Dec 3 18:07:22 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=69307c5a-cf91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fd:b9:a3:6a:14:5b:1c:44:09:2c:d3:c3:c1: 99:e4:c9:c6:23:4b:b4:f0:95:82:76:83:ac:ab:0e: f7:48:60:6d:ff:50:26:3e:4f:1d:76:5a:b5:52:f7: d9:c0:4b:77:16:da:6a:2b:1a:0f:b5:a2:27:59:ca: 6e:77:31:15:61:68:26:b7:c5:a2:a1:00:a7:48:e0: 6a:6d:2e:7e:0f:fd:12:48:e5:4f:0b:b4:a6:19:9e: f4:1f:36:e0:8a:aa:09:b5:84:9c:bf:02:6e:96:a6: 57:7a:e0:07:d3:ec:98:3f:e9:1f:7b:da:25:6a:e5: d3:42:9b:59:ae:e3:7a:ba:2e:9c:b3:1b:c3:90:2e: b4:de:45:1d:c6:db:d1:d6:0f:22:a3:3f:55:04:b2: af:9d:25:e1:52:c9:c1:fe:9c:b3:10:01:60:30:3e: 12:81:1c:78:5e:e9:e9:25:3f:c6:6a:2f:3e:bc:b1: 43:6e:a1:8e:b1:8f:d0:fd:49:13:46:0c:cb:e7:6c: 02:0f:e1:65:f1:fd:7e:4f:a8:b3:c7:68:d6:47:34: b8:62:52:2d:44:47:b2:c4:65:3b:ec:ea:b2:84:b0: a0:80:79:7d:ce:8b:1b:fe:68:24:f6:e6:ed:43:cd: 67:2c:44:cb:6d:2d:b9:6b:25:6b:e9:bc:08:c7:7b: 15:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:64:32:84:7B:4B:58:59:72:17:A6:DA:4F:D5:EE:3D:67:F9:4D:3E X509v3 Authority Key Identifier: keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49CAEF64D07011F08EAB2929C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.52.0/22 203.17.36.0/24 203.170.80.0/21 Signature Algorithm: sha256WithRSAEncryption 40:14:44:ce:43:7c:0a:5b:43:38:be:f7:99:70:9c:02:d3:c1: 91:83:50:b6:ff:d9:5f:ef:5d:c4:85:52:73:2c:a0:30:3e:07: 14:75:6d:bb:d8:56:d5:06:eb:48:51:c2:76:56:17:d3:18:24: df:6f:11:5f:47:ee:b9:a1:f2:1a:eb:f5:8a:19:23:23:49:cc: 7b:c9:e1:95:ab:00:aa:c3:d6:86:5f:39:33:bc:05:5b:19:54: 12:8f:a9:6b:aa:03:d6:a0:23:fc:e4:8d:47:c9:a3:6e:f8:c5: fb:82:81:97:de:2b:cc:f4:d6:30:00:27:92:2f:55:e1:57:3d: 2d:19:f5:8d:ef:d2:a2:d6:e7:99:6e:1d:10:0d:94:bb:b7:4d: 0a:73:83:00:25:c5:d9:4d:1d:5b:50:ec:aa:4a:18:58:a9:13: 6d:8c:51:19:b1:e4:c0:f3:6e:2f:a3:42:b1:fb:dd:58:fa:e6: e9:51:5e:af:a8:26:27:1f:19:c4:f8:67:58:90:2b:7b:79:cf: a2:4f:37:61:bc:5b:3c:3d:61:e6:b1:8e:1f:c3:86:2d:43:ba: bf:76:61:54:a3:9e:6f:27:4f:68:97:6e:1f:f0:d8:cc:da:7a: a1:e3:93:9a:59:0f:d0:a8:d7:01:12:82:d8:50:e4:db:d8:6f: a5:5d:41:36 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICIfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3OTQxMTAvBgNVBAUTKDMwRTU4OTI4OEVCNjUwMDI1MTBDODc3QjQ2NkFCRTE5 NzUzQkRCQ0UwHhcNMjUxMjAzMTgwNzIyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMwN2M1YS1jZjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtP25o2oUWxxECSzTw8GZ5MnGI0u08JWCdoOsqw73SGBt/1AmPk8ddlq1UvfZ wEt3FtpqKxoPtaInWcpudzEVYWgmt8WioQCnSOBqbS5+D/0SSOVPC7SmGZ70Hzbg iqoJtYScvwJulqZXeuAH0+yYP+kfe9olauXTQptZruN6ui6csxvDkC603kUdxtvR 1g8ioz9VBLKvnSXhUsnB/pyzEAFgMD4SgRx4XunpJT/Gai8+vLFDbqGOsY/Q/UkT RgzL52wCD+Fl8f1+T6izx2jWRzS4YlItREeyxGU77OqyhLCggHl9zosb/mgk9ubt Q81nLETLbS25ayVr6bwIx3sVvQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL5kMoR7 S1hZchem2k/V7j1n+U0+MB8GA1UdIwQYMBaAFDDliSiOtlACUQyHe0Zqvhl1O9vO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzc5NC8yMEZFNTYxNkU5 OEYxMUU1QTNERERDNjZDNEY5QUUwMi9NT1dKS0k2MlVBSlJESWQ3Um1xLUdYVTcy ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PV0pLSTYyVUFKUkRJZDdSbXEtR1hVNzI4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3OTQvMjBGRTU2MTZFOThGMTFFNUEzREREQzY2QzRGOUFFMDIvNDlDQUVGNjRE MDcwMTFGMDhFQUIyOTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr9TQDBADLESQDBAPLqlAwDQYJKoZIhvcNAQELBQADggEB AEAURM5DfApbQzi+95lwnALTwZGDULb/2V/vXcSFUnMsoDA+BxR1bbvYVtUG60hR wnZWF9MYJN9vEV9H7rmh8hrr9YoZIyNJzHvJ4ZWrAKrD1oZfOTO8BVsZVBKPqWuq A9agI/zkjUfJo274xfuCgZfeK8z01jAAJ5IvVeFXPS0Z9Y3v0qLW55luHRANlLu3 TQpzgwAlxdlNHVtQ7KpKGFipE22MURmx5MDzbi+jQrH73Vj65ulRXq+oJicfGcT4 Z1iQK3t5z6JPN2G8Wzw9Yeaxjh/Dhi1Dur92YVSjnm8nT2iXbh/w2MzaeqHjk5pZ D9Co1wESgthQ5NvYb6VdQTY= -----END CERTIFICATE-----Generated at Sat Dec 6 20:43:24 2025 by rpki-client