This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8D21/450EC5BE03FA11EC8DDE0882C4F9AE02/46779D40040411EC867E3B86C4F9AE02.roa File: 46779D40040411EC867E3B86C4F9AE02.roa (raw, json) Hash identifier: KnYTJ+HHsMOx/xdc0yO0zBhi2Q1hrcUKJxs2is8FYko= Subject key identifier: FB:C5:5F:E1:A9:27:97:0C:7E:53:D6:EC:72:1A:44:68:C2:C0:7C:0E Certificate issuer: /CN=A91D8D21/serialNumber=57817D2BEC1FEFFFE412D9F334DF40428653BCAE Certificate serial: 0573 Authority key identifier: 57:81:7D:2B:EC:1F:EF:FF:E4:12:D9:F3:34:DF:40:42:86:53:BC:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4F9K-wf7__kEtnzNN9AQoZTvK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8D21/450EC5BE03FA11EC8DDE0882C4F9AE02/46779D40040411EC867E3B86C4F9AE02.roa Signing time: Sat 08 Nov 2025 14:17:51 +0000 ROA not before: Sat 08 Nov 2025 14:17:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135597 IP address blocks: 103.171.250.0/23 maxlen: 24 2001:df4:5340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8D21/450EC5BE03FA11EC8DDE0882C4F9AE02/V4F9K-wf7__kEtnzNN9AQoZTvK4.crl rsync://rpki.apnic.net/member_repository/A91D8D21/450EC5BE03FA11EC8DDE0882C4F9AE02/V4F9K-wf7__kEtnzNN9AQoZTvK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4F9K-wf7__kEtnzNN9AQoZTvK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1395 (0x573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8D21, serialNumber=57817D2BEC1FEFFFE412D9F334DF40428653BCAE Validity Not Before: Nov 8 14:17:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690f510f-500a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:5d:a0:17:1f:ad:58:f8:fa:9b:f8:68:a4:29: 4c:e0:e8:f4:92:69:80:1b:f9:5e:db:7f:50:d5:d6: a7:00:8f:5a:9c:ec:94:21:ae:d8:01:ed:b8:80:f9: 5e:91:1f:78:0e:01:25:7d:73:6f:b2:44:0a:81:77: 62:54:e1:2c:93:71:4c:49:27:38:b3:ca:b8:f5:f3: 63:ea:56:cb:8c:df:53:77:9e:ca:f1:cb:7d:f9:de: a9:0f:ad:a1:51:40:86:20:ee:96:cb:bf:de:d5:a4: 6c:76:8f:95:0a:42:b7:8b:a1:bb:24:c6:5a:f0:d4: 16:eb:0c:32:0b:21:21:e7:4f:77:b6:21:97:32:c7: 38:70:3f:43:ec:41:08:13:8f:25:ab:41:51:86:24: 59:cd:69:3e:08:f0:93:18:c7:ca:fa:e2:7c:b8:23: f1:a7:5c:cc:75:f6:59:44:45:ac:67:2e:1d:e9:78: a1:76:18:7e:bd:3f:d8:d3:cf:79:0b:ab:c5:6e:bb: 44:40:8a:27:5b:30:35:6d:88:20:21:32:ee:c6:64: ca:a8:c8:eb:7d:57:01:14:9a:56:9a:3f:ba:04:34: 5a:9a:57:52:a2:a7:a5:03:76:80:9c:31:4f:2a:ae: 70:13:fe:3f:29:a7:f2:dc:9d:69:20:95:9c:b7:c7: 54:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C5:5F:E1:A9:27:97:0C:7E:53:D6:EC:72:1A:44:68:C2:C0:7C:0E X509v3 Authority Key Identifier: keyid:57:81:7D:2B:EC:1F:EF:FF:E4:12:D9:F3:34:DF:40:42:86:53:BC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8D21/450EC5BE03FA11EC8DDE0882C4F9AE02/V4F9K-wf7__kEtnzNN9AQoZTvK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4F9K-wf7__kEtnzNN9AQoZTvK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8D21/450EC5BE03FA11EC8DDE0882C4F9AE02/46779D40040411EC867E3B86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.250.0/23 IPv6: 2001:df4:5340::/48 Signature Algorithm: sha256WithRSAEncryption 86:1d:aa:2b:37:56:42:79:45:6d:ad:cf:d3:fd:ca:53:93:34: 1f:08:6a:1c:50:fe:2f:fb:35:7d:5d:50:85:aa:bd:c4:c6:d1: d5:c9:76:ba:3d:89:7b:4c:67:47:1b:de:fb:ed:ab:78:dd:a6: dd:52:83:3d:29:16:cc:66:9e:eb:4b:ca:79:1d:49:3a:e0:e8: bc:1e:eb:d7:07:42:72:de:2a:2b:d6:97:88:f3:f3:5d:75:52: b5:23:1a:39:f4:3c:54:5c:75:24:5c:3d:86:8e:1d:88:f3:8a: 51:14:43:3e:5e:65:9f:9a:b9:37:31:ba:27:03:a3:88:44:ec: 17:2d:dd:df:42:21:57:66:b3:23:95:b8:86:99:73:15:bf:67: 1a:47:e2:4b:5a:84:95:e1:9e:a7:59:71:0f:b0:40:36:be:46: 25:cf:31:f2:4b:c5:8d:80:e1:43:2c:da:67:50:c2:3e:d7:ed: 7b:0e:d3:50:1f:f9:59:6d:3c:5a:28:fb:e1:b2:1a:d4:f5:60: 12:1a:95:85:40:8a:81:32:fd:96:50:fb:b8:35:de:aa:82:0d: 69:42:e0:fd:bc:13:4e:cb:26:2b:ed:71:52:31:bb:13:41:b2: 3b:cc:af:d0:8b:a7:6f:07:c2:29:3f:b7:94:46:0c:32:03:47: dd:e6:3f:51 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhEMjExMTAvBgNVBAUTKDU3ODE3RDJCRUMxRkVGRkZFNDEyRDlGMzM0REY0MDQy ODY1M0JDQUUwHhcNMjUxMTA4MTQxNzUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBmNTEwZi01MDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+F2gFx+tWPj6m/hopClM4Oj0kmmAG/le239Q1danAI9anOyUIa7YAe24gPle kR94DgElfXNvskQKgXdiVOEsk3FMSSc4s8q49fNj6lbLjN9Td57K8ct9+d6pD62h UUCGIO6Wy7/e1aRsdo+VCkK3i6G7JMZa8NQW6wwyCyEh5093tiGXMsc4cD9D7EEI E48lq0FRhiRZzWk+CPCTGMfK+uJ8uCPxp1zMdfZZREWsZy4d6Xihdhh+vT/Y0895 C6vFbrtEQIonWzA1bYggITLuxmTKqMjrfVcBFJpWmj+6BDRamldSoqelA3aAnDFP Kq5wE/4/Kafy3J1pIJWct8dUMQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPvFX+Gp J5cMflPW7HIaRGjCwHwOMB8GA1UdIwQYMBaAFFeBfSvsH+//5BLZ8zTfQEKGU7yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEQyMS80NTBFQzVCRTAz RkExMUVDOERERTA4ODJDNEY5QUUwMi9WNEY5Sy13ZjdfX2tFdG56Tk45QVFvWlR2 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0RjlLLXdmN19fa0V0bnpOTjlBUW9aVHZLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhEMjEvNDUwRUM1QkUwM0ZBMTFFQzhEREUwODgyQzRGOUFFMDIvNDY3NzlENDAw NDA0MTFFQzg2N0UzQjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnq/owDwQCAAIwCQMHACABDfRTQDANBgkqhkiG9w0BAQsF AAOCAQEAhh2qKzdWQnlFba3P0/3KU5M0HwhqHFD+L/s1fV1Qhaq9xMbR1cl2uj2J e0xnRxve++2reN2m3VKDPSkWzGae60vKeR1JOuDovB7r1wdCct4qK9aXiPPzXXVS tSMaOfQ8VFx1JFw9ho4diPOKURRDPl5ln5q5NzG6JwOjiETsFy3d30IhV2azI5W4 hplzFb9nGkfiS1qEleGep1lxD7BANr5GJc8x8kvFjYDhQyzaZ1DCPtftew7TUB/5 WW08Wij74bIa1PVgEhqVhUCKgTL9llD7uDXeqoINaULg/bwTTssmK+1xUjG7E0Gy O8yv0IunbwfCKT+3lEYMMgNH3eY/UQ== -----END CERTIFICATE-----Generated at Sun Dec 7 02:44:39 2025 by rpki-client