This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa File: B46C8BFA89AD11ED93CAB75FC4F9AE02.roa (raw, json) Hash identifier: OQgU1fqpb861fD2zmKo8rKBXP1JjJTjguqm2j7NIGDs= Subject key identifier: 9F:2C:91:B9:A3:8D:5F:EC:50:17:D4:BF:52:C6:D4:71:E6:63:CC:9D Certificate issuer: /CN=A91DE570/serialNumber=71C127D1C06AFC7C454DD1093EB2CB7E12D787C0 Certificate serial: 0246 Authority key identifier: 71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa Signing time: Wed 03 Dec 2025 00:59:37 +0000 ROA not before: Wed 03 Dec 2025 00:59:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141209 IP address blocks: 103.143.242.0/23 maxlen: 23 103.143.242.0/24 maxlen: 24 103.143.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.crl rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE570, serialNumber=71C127D1C06AFC7C454DD1093EB2CB7E12D787C0 Validity Not Before: Dec 3 00:59:37 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692f8b79-951e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:d9:c3:5d:28:31:5d:24:02:3b:b5:99:fa: ae:a9:12:7c:cd:34:12:15:b4:4d:ca:d4:c3:64:33: 0b:2f:2a:a4:c3:32:7a:46:aa:1a:b6:9c:a2:3c:ff: fb:60:01:9d:dd:45:f2:56:ee:49:7f:12:43:2c:07: 8f:e2:e6:86:ab:eb:2b:fb:33:23:eb:39:42:c7:3e: f2:09:34:26:f9:e1:95:31:0a:6c:52:3e:57:f3:41: b0:03:b3:6c:31:08:a6:aa:ef:c0:7e:a2:6c:56:1e: c3:04:25:58:8a:6e:e2:84:9b:a7:5c:f8:e7:4c:70: eb:69:05:fb:d3:a6:05:a0:95:d9:df:6b:36:d8:1e: 75:ed:42:f5:fe:57:32:21:db:d1:b2:b7:2c:2a:dd: e8:04:c0:af:fc:e6:86:4c:15:3c:92:05:41:f5:8a: 36:e3:a5:a5:36:fb:56:22:ad:5b:a5:c3:ba:40:ff: c0:78:7c:f2:76:a3:f5:ca:3c:af:bb:df:ff:7d:d3: ff:ab:76:a3:05:14:a3:6b:aa:c2:90:5d:12:02:4d: a6:29:37:51:50:33:6d:83:46:e0:b1:3e:fd:a7:81: 50:9b:6e:bc:49:3d:9d:25:fe:96:cd:17:ae:c8:f7: f0:e5:a4:c8:0f:8d:d5:69:77:ce:ff:b0:4f:52:18: f8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2C:91:B9:A3:8D:5F:EC:50:17:D4:BF:52:C6:D4:71:E6:63:CC:9D X509v3 Authority Key Identifier: keyid:71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.242.0/23 Signature Algorithm: sha256WithRSAEncryption 03:fa:4a:16:74:44:ad:3c:6c:4a:47:63:a2:8f:d5:44:b0:83: 22:18:e5:9f:ac:36:9f:a4:d2:28:be:40:a9:81:e4:2f:81:c0: f5:c3:d2:56:9e:1f:fb:5e:5c:a2:a2:81:fa:bd:84:29:9a:4e: 59:0c:98:1f:ba:b4:c5:15:fc:a3:c6:2c:a8:cb:f8:14:da:fa: ac:f5:07:02:b0:b6:a7:71:cd:50:49:c4:d4:58:5a:a5:5f:e7: 41:de:b5:c8:f6:d8:61:4c:56:da:f9:a2:27:e7:df:0c:53:d0: aa:25:aa:76:4b:87:61:15:fd:c7:74:f0:1b:0f:8c:76:28:28: 0a:1d:fa:fb:da:d6:19:0f:3b:14:34:fc:f0:d9:83:33:14:ca: 14:d8:4f:44:46:47:ed:ba:b9:f0:5f:7a:1e:a4:87:1d:1e:49: 16:4a:3b:22:d9:3c:a6:8b:f2:33:d5:bd:93:32:99:d9:69:c8: 65:9a:d0:94:f0:72:6b:21:f4:93:c3:6f:84:65:68:09:45:bb: 7e:20:6b:e8:03:2f:4d:5d:f9:5f:8e:76:51:4d:f3:59:34:26: 14:a5:ff:47:88:83:85:b0:c6:6c:35:0d:ce:2a:4a:08:43:55: 5a:a6:c9:da:b5:a2:5b:99:1b:18:b9:ce:c9:29:6e:10:c9:54: 17:e1:34:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1NzAxMTAvBgNVBAUTKDcxQzEyN0QxQzA2QUZDN0M0NTRERDEwOTNFQjJDQjdF MTJENzg3QzAwHhcNMjUxMjAzMDA1OTM3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmOGI3OS05NTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8nZw10oMV0kAju1mfquqRJ8zTQSFbRNytTDZDMLLyqkwzJ6RqoatpyiPP/7 YAGd3UXyVu5JfxJDLAeP4uaGq+sr+zMj6zlCxz7yCTQm+eGVMQpsUj5X80GwA7Ns MQimqu/AfqJsVh7DBCVYim7ihJunXPjnTHDraQX706YFoJXZ32s22B517UL1/lcy IdvRsrcsKt3oBMCv/OaGTBU8kgVB9Yo246WlNvtWIq1bpcO6QP/AeHzydqP1yjyv u9//fdP/q3ajBRSja6rCkF0SAk2mKTdRUDNtg0bgsT79p4FQm268ST2dJf6WzReu yPfw5aTID43VaXfO/7BPUhj4QQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ8skbmj jV/sUBfUv1LG1HHmY8ydMB8GA1UdIwQYMBaAFHHBJ9HAavx8RU3RCT6yy34S14fA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTU3MC9DMkNCMTE5QzY1 ODMxMUVEOTYwMDJDMkNDNEY5QUUwMi9jY0VuMGNCcV9IeEZUZEVKUHJMTGZoTFho OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjRW4wY0JxX0h4RlRkRUpQckxMZmhMWGg4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU1NzAvQzJDQjExOUM2NTgzMTFFRDk2MDAyQzJDQzRGOUFFMDIvQjQ2QzhCRkE4 OUFEMTFFRDkzQ0FCNzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj/IwDQYJKoZIhvcNAQELBQADggEBAAP6ShZ0RK08bEpH Y6KP1USwgyIY5Z+sNp+k0ii+QKmB5C+BwPXD0laeH/teXKKigfq9hCmaTlkMmB+6 tMUV/KPGLKjL+BTa+qz1BwKwtqdxzVBJxNRYWqVf50Hetcj22GFMVtr5oifn3wxT 0KolqnZLh2EV/cd08BsPjHYoKAod+vva1hkPOxQ0/PDZgzMUyhTYT0RGR+26ufBf eh6khx0eSRZKOyLZPKaL8jPVvZMymdlpyGWa0JTwcmsh9JPDb4RlaAlFu34ga+gD L01d+V+OdlFN81k0JhSl/0eIg4Wwxmw1Dc4qSghDVVqmydq1oluZGxi5zskpbhDJ VBfhNDU= -----END CERTIFICATE-----Generated at Sun Dec 7 07:45:31 2025 by rpki-client