This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa File: 63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa (raw, json) Hash identifier: PTG7v7H/L/iB1kTQek05PTVpPv3OUl73Y3q6ui+6etU= Subject key identifier: DA:17:20:6C:4D:EE:EE:13:37:52:F7:54:8A:C3:FF:D3:A4:56:26:D2 Certificate issuer: /CN=A91D46B0/serialNumber=9761FF5F3F8416BE01E23FC705847DFA94484DB6 Certificate serial: 080A Authority key identifier: 97:61:FF:5F:3F:84:16:BE:01:E2:3F:C7:05:84:7D:FA:94:48:4D:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa Signing time: Sun 30 Nov 2025 20:21:20 +0000 ROA not before: Sun 30 Nov 2025 20:21:20 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133770 IP address blocks: 103.156.238.0/23 maxlen: 23 103.156.238.0/24 maxlen: 24 103.156.239.0/24 maxlen: 24 2001:df5:180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.crl rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2058 (0x80a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D46B0, serialNumber=9761FF5F3F8416BE01E23FC705847DFA94484DB6 Validity Not Before: Nov 30 20:21:20 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692ca73f-2416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:77:b8:33:72:39:37:26:22:cb:0e:2a:de:52: 05:70:27:5c:b9:fd:59:12:63:f2:b9:13:71:e3:30: 8b:63:af:2e:60:2d:d1:27:12:df:c1:48:c8:9c:df: 51:83:5d:6f:d5:a1:5d:35:e6:fa:5f:cd:97:16:25: 7c:6b:d9:0f:76:5a:83:11:27:8d:66:80:c6:d9:ec: 31:da:6d:0a:25:b4:d7:18:ed:91:a8:0a:3b:1b:ea: 05:da:9c:b8:19:27:03:21:7a:9b:f7:da:25:26:84: 6d:50:54:9b:0b:0e:38:d4:40:86:19:9b:07:af:d8: 51:89:50:6c:3e:14:e1:b6:9e:2e:09:a3:06:98:43: d8:94:2e:55:4f:0f:84:4f:6b:01:67:72:73:fe:75: f7:d5:a9:ba:5d:47:c3:c9:f9:6f:73:4e:33:92:21: f9:03:ad:bc:19:c0:b8:db:47:04:39:d9:8d:df:ea: 68:d6:8d:49:59:bc:38:f8:16:8a:c4:bf:82:bf:0e: 72:22:d3:1b:d7:7c:4f:26:c2:e0:17:26:21:f4:b1: 8d:20:8f:ea:cc:e9:92:92:11:24:15:08:de:c2:f6: 52:c1:78:46:81:c5:99:93:2c:0f:27:dd:4c:0e:64: 86:c8:2e:f3:de:52:82:03:1e:8b:7e:9d:fd:bc:c6: a9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:17:20:6C:4D:EE:EE:13:37:52:F7:54:8A:C3:FF:D3:A4:56:26:D2 X509v3 Authority Key Identifier: keyid:97:61:FF:5F:3F:84:16:BE:01:E2:3F:C7:05:84:7D:FA:94:48:4D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.238.0/23 IPv6: 2001:df5:180::/48 Signature Algorithm: sha256WithRSAEncryption c2:2c:cb:7f:82:1d:c6:4f:3a:25:41:63:ae:24:44:d3:d0:18: 62:68:9d:cf:13:2f:8d:cf:be:7d:5c:ee:e6:09:cd:49:d0:94: 10:0e:38:cd:cf:ce:06:39:cb:04:e2:4c:bc:e0:2d:4e:8e:d5: e3:89:ff:15:87:f8:30:fe:2e:89:b5:5f:b6:f3:33:c0:f9:03: 6c:e2:63:78:56:a7:d5:9e:4b:3e:e1:66:74:6d:46:68:0d:87: b3:68:e0:08:5f:10:d1:06:84:b9:fc:2c:24:5a:3f:4b:5b:39: 1a:ef:e4:08:44:96:ea:39:0c:9a:52:f5:4a:1f:33:76:0b:84: a7:cd:46:43:8a:f1:c9:c0:dc:9c:b9:33:f5:d0:a6:7a:dd:11: 98:00:f2:73:53:4b:94:75:6f:6a:01:ae:2d:6f:56:e4:6f:d5: ee:d0:86:48:5b:16:8e:02:43:7d:45:f4:cc:45:00:0e:71:e6: c1:5c:69:c5:03:a2:f2:fe:c9:dc:c5:46:d1:5f:0c:3b:ca:d6: e4:a7:94:d4:10:c3:78:11:f9:82:45:22:d0:4b:2c:af:1e:c9: be:5e:d9:6d:53:d3:b5:7c:5d:46:15:cd:6d:a4:ea:ec:a5:8d: ff:ab:01:cf:1a:f5:65:77:92:6e:1b:45:1d:30:19:10:38:66: 31:47:80:0d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2QjAxMTAvBgNVBAUTKDk3NjFGRjVGM0Y4NDE2QkUwMUUyM0ZDNzA1ODQ3REZB OTQ0ODREQjYwHhcNMjUxMTMwMjAyMTIwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJjYTczZi0yNDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHe4M3I5NyYiyw4q3lIFcCdcuf1ZEmPyuRNx4zCLY68uYC3RJxLfwUjInN9R g11v1aFdNeb6X82XFiV8a9kPdlqDESeNZoDG2ewx2m0KJbTXGO2RqAo7G+oF2py4 GScDIXqb99olJoRtUFSbCw441ECGGZsHr9hRiVBsPhThtp4uCaMGmEPYlC5VTw+E T2sBZ3Jz/nX31am6XUfDyflvc04zkiH5A628GcC420cEOdmN3+po1o1JWbw4+BaK xL+Cvw5yItMb13xPJsLgFyYh9LGNII/qzOmSkhEkFQjewvZSwXhGgcWZkywPJ91M DmSGyC7z3lKCAx6Lfp39vMapNQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNoXIGxN 7u4TN1L3VIrD/9OkVibSMB8GA1UdIwQYMBaAFJdh/18/hBa+AeI/xwWEffqUSE22 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDZCMC9FNTA5MDJCNjA3 OUIxMUVCOEExRjI3MzJDNEY5QUUwMi9sMkhfWHotRUZyNEI0al9IQllSOS1wUklU YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wySF9Yei1FRnI0QjRqX0hCWVI5LXBSSVRiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ2QjAvRTUwOTAyQjYwNzlCMTFFQjhBMUYyNzMyQzRGOUFFMDIvNjNCNEREMUFE QTIzMTFFQjhBNEVDMTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnO4wDwQCAAIwCQMHACABDfUBgDANBgkqhkiG9w0BAQsF AAOCAQEAwizLf4Idxk86JUFjriRE09AYYmidzxMvjc++fVzu5gnNSdCUEA44zc/O BjnLBOJMvOAtTo7V44n/FYf4MP4uibVftvMzwPkDbOJjeFan1Z5LPuFmdG1GaA2H s2jgCF8Q0QaEufwsJFo/S1s5Gu/kCESW6jkMmlL1Sh8zdguEp81GQ4rxycDcnLkz 9dCmet0RmADyc1NLlHVvagGuLW9W5G/V7tCGSFsWjgJDfUX0zEUADnHmwVxpxQOi 8v7J3MVG0V8MO8rW5KeU1BDDeBH5gkUi0Essrx7Jvl7ZbVPTtXxdRhXNbaTq7KWN /6sBzxr1ZXeSbhtFHTAZEDhmMUeADQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:08:58 2025 by rpki-client