This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/A96F9914F1D811EFA3152963C4F9AE02.roa File: A96F9914F1D811EFA3152963C4F9AE02.roa (raw, json) Hash identifier: y5r64khzSw4GsA8xyBSb7sjaOP2q8bm+ycDDb5OSbXI= Subject key identifier: 3E:D4:FC:E7:27:66:FD:96:D0:F2:3E:31:9D:F2:0D:F8:5E:D5:28:43 Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 06F2 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/A96F9914F1D811EFA3152963C4F9AE02.roa Signing time: Tue 02 Dec 2025 21:25:08 +0000 ROA not before: Tue 02 Dec 2025 21:25:08 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139769 IP address blocks: 43.251.8.0/24 maxlen: 24 43.251.9.0/24 maxlen: 24 43.251.10.0/24 maxlen: 24 43.251.11.0/24 maxlen: 24 103.42.104.0/24 maxlen: 24 103.42.105.0/24 maxlen: 24 103.42.106.0/24 maxlen: 24 103.42.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1778 (0x6f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Dec 2 21:25:08 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f5934-865f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:97:87:2d:37:98:74:53:3a:32:6f:1c:a9: 9e:e8:ec:99:cb:fd:d7:c1:57:47:2d:b5:a7:0e:85: 5a:82:d5:05:5c:0d:55:ab:6f:16:60:15:b2:0c:4e: fa:a5:ad:61:39:cc:78:de:4b:07:df:73:d2:3d:53: 02:8d:04:c9:2b:9a:fa:b5:0a:45:5c:2a:93:a5:a0: 20:30:28:45:25:fa:9a:01:75:14:29:16:3b:a7:c9: f4:bd:63:6c:6b:a1:07:db:79:cc:c9:02:fc:bd:12: 09:52:fe:5e:9e:e8:61:db:ab:0c:0e:ea:fa:cc:13: 72:ee:a7:6b:f6:29:ec:79:44:9a:46:78:b2:12:ec: 27:fe:1e:fe:bf:55:2d:20:58:24:4f:8d:05:28:11: 86:75:e3:65:1b:26:06:67:19:9e:0e:77:5f:12:81: f6:99:0c:c8:44:d2:95:5e:d0:84:1f:25:04:4e:6a: eb:af:45:ba:89:6d:3d:52:ae:eb:20:6d:75:8e:5c: 23:b1:b1:07:a2:fa:c0:55:5b:29:ae:d1:a8:eb:01: 5c:f4:2e:47:13:e6:17:04:d9:51:aa:1a:48:4b:d7: 79:74:8e:92:cf:80:dc:88:2d:4d:01:da:0d:dd:5d: f5:a3:74:0a:bf:2c:32:69:b6:2b:ef:fa:07:81:7d: a0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D4:FC:E7:27:66:FD:96:D0:F2:3E:31:9D:F2:0D:F8:5E:D5:28:43 X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/A96F9914F1D811EFA3152963C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.8.0/22 103.42.104.0/22 Signature Algorithm: sha256WithRSAEncryption 19:a2:e1:ce:32:73:d0:b1:2c:0c:79:31:c4:17:bc:1d:83:20: 12:d3:00:58:94:e3:ab:2d:c4:f0:a4:ea:07:c2:00:a9:87:34: 9f:20:1f:70:58:c1:c5:3d:a2:5a:53:7b:54:e5:87:60:c9:12: b2:fe:e2:00:bb:92:0a:9c:ce:9c:b9:9c:96:49:7a:b1:2f:d3: 58:9b:ad:fa:bc:88:bb:cc:ee:85:5b:a5:88:76:34:db:ed:4c: d1:40:93:50:5f:c8:13:45:bc:d1:9a:24:64:1c:8e:b8:4e:1c: ad:68:09:25:a8:b7:35:da:8d:08:aa:fd:2e:55:c1:b0:10:ce: 8a:19:8e:03:1c:f4:3f:d7:3d:a1:ea:27:a7:ea:c8:0e:a9:07: af:03:d9:46:b4:37:1e:91:f3:6d:50:c9:12:83:d7:cc:16:06: 9b:4e:92:7d:1b:bf:aa:bd:52:7a:be:60:1f:c2:9c:15:66:cc: 75:fc:05:82:66:5f:63:93:05:b1:f6:9c:fa:e6:a2:91:c6:38: ba:95:4d:b4:86:38:35:66:e7:d0:dc:88:32:88:7f:2d:59:15: e4:2e:72:2a:5c:eb:07:3e:7a:0b:1c:e4:cd:47:71:6c:dc:6b: ee:4b:4c:bf:b6:e9:6b:25:af:0b:42:7e:2a:a0:10:19:2e:e0: 82:3f:e7:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUxMjAyMjEyNTA4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmNTkzNC04NjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8aXhy03mHRTOjJvHKme6OyZy/3XwVdHLbWnDoVagtUFXA1Vq28WYBWyDE76 pa1hOcx43ksH33PSPVMCjQTJK5r6tQpFXCqTpaAgMChFJfqaAXUUKRY7p8n0vWNs a6EH23nMyQL8vRIJUv5enuhh26sMDur6zBNy7qdr9inseUSaRniyEuwn/h7+v1Ut IFgkT40FKBGGdeNlGyYGZxmeDndfEoH2mQzIRNKVXtCEHyUETmrrr0W6iW09Uq7r IG11jlwjsbEHovrAVVsprtGo6wFc9C5HE+YXBNlRqhpIS9d5dI6Sz4DciC1NAdoN 3V31o3QKvywyabYr7/oHgX2gDwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFD7U/Ocn Zv2W0PI+MZ3yDfhe1ShDMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY0OTkvOUY4MzZDNTI3ODA5MTFFQkExNkFFMTU2QzRGOUFFMDIvQTk2Rjk5MTRG MUQ4MTFFRkEzMTUyOTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+wgDBAJnKmgwDQYJKoZIhvcNAQELBQADggEBABmi4c4y c9CxLAx5McQXvB2DIBLTAFiU46stxPCk6gfCAKmHNJ8gH3BYwcU9olpTe1Tlh2DJ ErL+4gC7kgqczpy5nJZJerEv01ibrfq8iLvM7oVbpYh2NNvtTNFAk1BfyBNFvNGa JGQcjrhOHK1oCSWotzXajQiq/S5VwbAQzooZjgMc9D/XPaHqJ6fqyA6pB68D2Ua0 Nx6R821QyRKD18wWBptOkn0bv6q9Unq+YB/CnBVmzHX8BYJmX2OTBbH2nPrmopHG OLqVTbSGODVm59DciDKIfy1ZFeQucipc6wc+egsc5M1HcWzca+5LTL+26WslrwtC fiqgEBku4II/52Q= -----END CERTIFICATE-----Generated at Sun Dec 7 07:16:03 2025 by rpki-client