This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/56F533B4A63011EEA6054D52C4F9AE02.roa File: 56F533B4A63011EEA6054D52C4F9AE02.roa (raw, json) Hash identifier: o9KJ5VBvsGr89sjQLF50nP6E17Mg3I1scYJNnsN7baE= Subject key identifier: EF:4B:3D:4D:48:B8:32:EF:04:D5:98:BD:02:EC:0B:65:C1:72:05:11 Certificate issuer: /CN=A91DCAE8/serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Certificate serial: 3568 Authority key identifier: AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/56F533B4A63011EEA6054D52C4F9AE02.roa Signing time: Thu 22 Jan 2026 07:01:15 +0000 ROA not before: Thu 22 Jan 2026 07:01:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38235 IP address blocks: 103.90.148.0/22 maxlen: 24 103.120.132.0/22 maxlen: 24 103.141.164.0/23 maxlen: 24 103.206.76.0/22 maxlen: 24 116.212.128.0/19 maxlen: 24 150.107.4.0/22 maxlen: 22 150.107.4.0/24 maxlen: 24 150.107.5.0/24 maxlen: 24 150.107.6.0/24 maxlen: 24 150.107.7.0/24 maxlen: 24 160.202.32.0/24 maxlen: 24 160.202.33.0/24 maxlen: 24 160.202.34.0/24 maxlen: 24 160.202.35.0/24 maxlen: 24 202.37.179.0/24 maxlen: 24 202.57.208.0/24 maxlen: 24 202.57.209.0/24 maxlen: 24 202.57.210.0/23 maxlen: 23 202.57.210.0/24 maxlen: 24 202.57.211.0/24 maxlen: 24 203.147.128.0/20 maxlen: 24 203.171.252.0/22 maxlen: 24 203.176.128.0/21 maxlen: 22 203.176.128.0/23 maxlen: 24 203.176.130.0/24 maxlen: 24 203.176.131.0/24 maxlen: 24 203.176.132.0/24 maxlen: 24 203.176.133.0/24 maxlen: 24 203.176.134.0/24 maxlen: 24 203.176.135.0/24 maxlen: 24 203.176.136.0/21 maxlen: 22 203.176.136.0/24 maxlen: 24 203.176.137.0/24 maxlen: 24 203.176.138.0/23 maxlen: 24 203.176.140.0/22 maxlen: 24 210.247.192.0/20 maxlen: 24 2405:da00::/32 maxlen: 36 2405:da00::/40 maxlen: 40 2405:da00::/48 maxlen: 48 2405:da00:1::/48 maxlen: 48 2405:da00:10::/44 maxlen: 44 2405:da00:99::/48 maxlen: 48 2405:da00:100::/40 maxlen: 40 2405:da00:200::/40 maxlen: 40 2405:da00:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13672 (0x3568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCAE8, serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Validity Not Before: Jan 22 07:01:15 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6971cb3b-1df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:d2:26:2a:26:c4:2a:01:ee:ba:37:10:5d: 89:67:e2:4e:e8:6a:35:3e:db:83:d6:fb:86:a4:05: 98:6b:17:38:ec:bd:67:ee:21:62:38:09:2f:94:05: d0:ab:ea:97:fc:44:fa:d8:d3:ac:4e:d2:87:ce:0e: e2:14:d8:be:bc:84:70:60:a2:10:3b:e0:fd:ce:23: cb:ce:52:60:8c:32:91:63:5a:83:df:05:3d:be:2c: f1:0c:fb:4b:6d:5a:d6:c0:c0:bd:b4:43:a8:28:f6: 1c:e4:82:f6:21:90:c4:ee:14:a1:d7:a4:65:92:40: 3b:9e:60:27:74:63:b5:85:3a:3e:5a:7c:4f:2a:21: f0:93:a5:66:c0:86:31:65:05:f9:d8:13:78:2a:65: 0f:44:69:97:6d:14:aa:f1:0b:bb:56:62:e2:0b:3d: e0:bd:25:1d:14:b3:bf:86:a8:23:8f:fe:80:f9:96: 28:5a:90:46:d6:fb:b3:5b:df:66:8a:fb:2f:2f:d7: 3b:ef:1b:f7:e0:1b:a3:ec:2d:02:55:a2:32:f3:a2: 6a:2a:98:64:c8:86:2f:56:17:15:75:b0:d2:07:16: ec:44:ef:ac:2e:b1:77:62:aa:ee:96:6f:fc:5b:a5: aa:d8:92:d6:79:7b:de:fa:5f:6e:da:be:cf:21:3b: 40:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:4B:3D:4D:48:B8:32:EF:04:D5:98:BD:02:EC:0B:65:C1:72:05:11 X509v3 Authority Key Identifier: keyid:AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/56F533B4A63011EEA6054D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.148.0/22 103.120.132.0/22 103.141.164.0/23 103.206.76.0/22 116.212.128.0/19 150.107.4.0/22 160.202.32.0/22 202.37.179.0/24 202.57.208.0/22 203.147.128.0/20 203.171.252.0/22 203.176.128.0/20 210.247.192.0/20 IPv6: 2405:da00::/32 Signature Algorithm: sha256WithRSAEncryption 65:8d:5c:24:1f:22:25:61:94:3e:97:fa:2e:87:7d:eb:5e:d1: 7c:46:56:f1:7c:e4:03:f4:68:02:81:1a:40:76:18:b3:9d:0c: 32:10:dd:f1:e4:23:84:18:c8:34:16:3d:66:42:18:94:10:fa: f2:cd:09:d5:1c:e8:3e:34:4b:33:f8:3a:22:61:4a:a6:c2:26: 43:0d:28:7b:d2:26:ae:05:ba:17:99:48:ad:f7:20:80:c9:fd: 7f:40:66:b1:bd:ab:b6:70:b2:ed:5d:4b:12:e0:35:13:2b:8d: 3d:b1:6a:ff:50:22:be:bd:59:98:6d:e1:4d:01:4e:8a:ec:bb: e6:aa:56:71:a4:33:94:96:41:9c:cf:65:38:3f:6b:21:d1:8e: 70:93:b8:04:36:9b:3d:14:a4:27:64:a1:d4:eb:9f:ec:87:57: d1:f6:08:0d:2e:07:90:d9:31:af:c6:3a:e7:e9:d1:90:ec:1c: 63:71:c3:bc:ab:30:1d:7c:7c:f0:c9:ee:ea:c9:dc:63:7e:c9: 74:da:fb:89:9b:ee:f2:41:b5:43:16:2f:cf:17:1e:05:da:88: 92:87:53:5c:e0:ac:1c:59:2f:a7:42:f1:04:44:fd:f9:a4:e2: fa:fa:b1:96:ec:f4:04:7e:a7:bf:9f:9d:0c:f4:ae:24:f8:0f: 42:84:08:e9 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgICNWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RENBRTgxMTAvBgNVBAUTKEFBQjBFMkI2MkY2MzQzODk1NzMwQzA1NDg4RTdGQzRF MjZDNTFBNkMwHhcNMjYwMTIyMDcwMTE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcxY2IzYi0xZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwafSJiomxCoB7ro3EF2JZ+JO6Go1PtuD1vuGpAWYaxc47L1n7iFiOAkvlAXQ q+qX/ET62NOsTtKHzg7iFNi+vIRwYKIQO+D9ziPLzlJgjDKRY1qD3wU9vizxDPtL bVrWwMC9tEOoKPYc5IL2IZDE7hSh16RlkkA7nmAndGO1hTo+WnxPKiHwk6VmwIYx ZQX52BN4KmUPRGmXbRSq8Qu7VmLiCz3gvSUdFLO/hqgjj/6A+ZYoWpBG1vuzW99m ivsvL9c77xv34Buj7C0CVaIy86JqKphkyIYvVhcVdbDSBxbsRO+sLrF3Yqrulm/8 W6Wq2JLWeXve+l9u2r7PITtAzwIDAQABo4IC7DCCAugwHQYDVR0OBBYEFO9LPU1I uDLvBNWYvQLsC2XBcgURMB8GA1UdIwQYMBaAFKqw4rYvY0OJVzDAVIjn/E4mxRps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0FFOC84QjZBREUxNDFE OTMxMUUyOTJDQjIzRjcwOEIwMkNEMi9xckRpdGk5alE0bFhNTUJVaU9mOFRpYkZH bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyRGl0aTlqUTRsWE1NQlVpT2Y4VGliRkdtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENBRTgvOEI2QURFMTQxRDkzMTFFMjkyQ0IyM0Y3MDhCMDJDRDIvNTZGNTMzQjRB NjMwMTFFRUE2MDU0RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwdgYIKwYBBQUHAQcBAf8E ZzBlMFQEAgABME4DBAJnWpQDBAJneIQDBAFnjaQDBAJnzkwDBAV01IADBAKWawQD BAKgyiADBADKJbMDBALKOdADBATLk4ADBALLq/wDBATLsIADBATS98AwDQQCAAIw BwMFACQF2gAwDQYJKoZIhvcNAQELBQADggEBAGWNXCQfIiVhlD6X+i6Hfete0XxG VvF85AP0aAKBGkB2GLOdDDIQ3fHkI4QYyDQWPWZCGJQQ+vLNCdUc6D40SzP4OiJh SqbCJkMNKHvSJq4FuheZSK33IIDJ/X9AZrG9q7Zwsu1dSxLgNRMrjT2xav9QIr69 WZht4U0BTorsu+aqVnGkM5SWQZzPZTg/ayHRjnCTuAQ2mz0UpCdkodTrn+yHV9H2 CA0uB5DZMa/GOufp0ZDsHGNxw7yrMB18fPDJ7urJ3GN+yXTa+4mb7vJBtUMWL88X HgXaiJKHU1zgrBxZL6dC8QRE/fmk4vr6sZbs9AR+p7+fnQz0riT4D0KECOk= -----END CERTIFICATE-----Generated at Sun Jan 25 10:47:50 2026 by rpki-client