This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa File: 21997AB0FEBC11E9B0463650C4F9AE02.roa (raw, json) Hash identifier: kORq6/cl+oCzGu+ttlLoR0HpOr8sfMN0azjct0QnY7Y= Subject key identifier: 96:C3:D3:4F:66:FC:8A:F0:9D:44:EA:22:4B:AC:72:7B:53:DD:90:47 Certificate issuer: /CN=A91D8F57/serialNumber=4FED3D3721A78AB20486CDAF34A3AE6917D87CBE Certificate serial: 0CE1 Authority key identifier: 4F:ED:3D:37:21:A7:8A:B2:04:86:CD:AF:34:A3:AE:69:17:D8:7C:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa Signing time: Wed 14 Jan 2026 18:15:46 +0000 ROA not before: Wed 14 Jan 2026 18:15:46 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137257 IP address blocks: 103.106.64.0/23 maxlen: 24 2402:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.crl rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3297 (0xce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8F57, serialNumber=4FED3D3721A78AB20486CDAF34A3AE6917D87CBE Validity Not Before: Jan 14 18:15:46 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6967dd52-bd39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e2:15:e8:c0:62:9b:9a:78:e1:db:67:fb:fd: 6a:92:86:72:b2:a8:7e:1a:dc:02:ae:da:c0:b0:99: 20:25:79:56:7a:11:86:be:c1:67:37:8f:bf:16:d8: 6a:ef:d2:85:d8:b8:dd:75:1a:91:bc:1f:2e:39:3e: 35:5d:c6:7b:b1:6d:50:1d:07:5a:8e:97:c6:da:cb: c1:c5:ef:a4:18:44:7f:38:0f:fd:c6:d6:d7:09:db: b2:27:0b:e0:51:4b:be:55:c4:b8:de:94:e4:42:7c: 22:a8:c0:6f:4d:12:71:ff:3e:7c:02:a9:b9:2b:df: c7:fd:34:a9:d9:85:4a:8a:3c:ff:5d:0c:37:8b:8b: 4e:8d:ab:f5:6b:85:a4:13:3d:fe:1e:aa:41:5f:92: 54:47:d8:7d:5f:40:30:24:a3:57:b2:bc:35:1e:3c: 5a:64:ca:c6:7d:30:cf:3e:a9:8c:3d:22:9e:4f:d3: 41:12:98:bc:03:79:80:6e:14:4a:7c:24:23:ff:98: 50:35:fb:5b:77:0c:e2:2a:3f:fb:09:6b:90:c9:ae: d6:73:64:78:a4:41:d6:ce:a3:a6:43:24:a8:95:b5: 16:94:e0:cc:32:f8:20:40:36:d3:5e:f3:0a:79:5d: c2:c4:a3:c4:92:5d:46:a3:5a:f0:bf:de:cf:39:1f: 08:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C3:D3:4F:66:FC:8A:F0:9D:44:EA:22:4B:AC:72:7B:53:DD:90:47 X509v3 Authority Key Identifier: keyid:4F:ED:3D:37:21:A7:8A:B2:04:86:CD:AF:34:A3:AE:69:17:D8:7C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.64.0/23 IPv6: 2402:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption ab:3c:2c:b8:53:95:2d:54:ed:d6:da:4d:12:f3:bd:d9:d4:b1: 9f:41:3b:6a:3c:00:89:ae:c0:a5:87:ff:3b:dc:7d:85:2a:45: e7:04:a8:57:95:c6:24:cb:51:7b:76:d9:96:f2:07:16:1a:79: 79:c6:68:78:49:e2:a0:1a:80:5e:62:0d:fe:6f:1d:53:c6:45: c5:21:62:ce:f1:71:14:e9:13:c4:7f:11:8b:e4:a3:d1:66:61: 0c:44:e2:50:38:e1:af:a6:b3:0c:1d:97:d3:47:f8:7d:e8:3d: 52:15:86:e7:4d:67:be:a7:e0:0e:70:0a:1f:62:f4:33:cd:57: 5b:43:0c:d9:0e:6f:2a:aa:88:e0:2a:ba:26:b6:5c:a1:92:98: d7:5f:fb:91:78:79:b3:b4:ec:f2:53:84:2a:35:58:ec:54:8b: b9:c9:b5:95:c6:de:87:52:99:28:fe:b9:e2:cd:eb:91:a5:1f: 31:ea:15:e3:1e:6c:11:ba:92:e9:f4:2c:5e:a0:08:06:4c:9f: 35:97:19:d0:8a:d5:0f:32:65:35:ca:3d:f2:16:65:0a:f8:fb: f6:1c:56:be:e4:1e:c0:09:bd:7d:ce:f2:cf:43:fc:a9:bb:61: 73:8e:14:12:55:81:b6:83:42:17:8e:ec:5b:84:41:c8:b9:a9: 81:2c:e1:4e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDhGNTcxMTAvBgNVBAUTKDRGRUQzRDM3MjFBNzhBQjIwNDg2Q0RBRjM0QTNBRTY5 MTdEODdDQkUwHhcNMjYwMTE0MTgxNTQ2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY3ZGQ1Mi1iZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOIV6MBim5p44dtn+/1qkoZysqh+GtwCrtrAsJkgJXlWehGGvsFnN4+/Fthq 79KF2LjddRqRvB8uOT41XcZ7sW1QHQdajpfG2svBxe+kGER/OA/9xtbXCduyJwvg UUu+VcS43pTkQnwiqMBvTRJx/z58Aqm5K9/H/TSp2YVKijz/XQw3i4tOjav1a4Wk Ez3+HqpBX5JUR9h9X0AwJKNXsrw1HjxaZMrGfTDPPqmMPSKeT9NBEpi8A3mAbhRK fCQj/5hQNftbdwziKj/7CWuQya7Wc2R4pEHWzqOmQySolbUWlODMMvggQDbTXvMK eV3CxKPEkl1Go1rwv97POR8INQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJbD009m /IrwnUTqIkuscntT3ZBHMB8GA1UdIwQYMBaAFE/tPTchp4qyBIbNrzSjrmkX2Hy+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEY1Ny80QzU5Rjk2NkZF QkExMUU5OUVEOTgyNENDNEY5QUUwMi9ULTA5TnlHbmlySUVoczJ2TktPdWFSZllm TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QtMDlOeUduaXJJRWhzMnZOS091YVJmWWZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhGNTcvNEM1OUY5NjZGRUJBMTFFOTlFRDk4MjRDQzRGOUFFMDIvMjE5OTdBQjBG RUJDMTFFOUIwNDYzNjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnakAwDQQCAAIwBwMFACQCPMAwDQYJKoZIhvcNAQELBQAD ggEBAKs8LLhTlS1U7dbaTRLzvdnUsZ9BO2o8AImuwKWH/zvcfYUqRecEqFeVxiTL UXt22ZbyBxYaeXnGaHhJ4qAagF5iDf5vHVPGRcUhYs7xcRTpE8R/EYvko9FmYQxE 4lA44a+mswwdl9NH+H3oPVIVhudNZ76n4A5wCh9i9DPNV1tDDNkObyqqiOAquia2 XKGSmNdf+5F4ebO07PJThCo1WOxUi7nJtZXG3odSmSj+ueLN65GlHzHqFeMebBG6 kun0LF6gCAZMnzWXGdCK1Q8yZTXKPfIWZQr4+/YcVr7kHsAJvX3O8s9D/Km7YXOO FBJVgbaDQheO7FuEQci5qYEs4U4= -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:00 2026 by rpki-client