This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/216DB034DE9711EC9289256FC4F9AE02.roa File: 216DB034DE9711EC9289256FC4F9AE02.roa (raw, json) Hash identifier: qlMXQv5YG72B5bvHOWClhFBHdZ0cbsaRo7l6jKiwpA4= Subject key identifier: 67:13:54:CB:99:35:6F:32:DC:A0:14:B2:E3:27:ED:11:95:96:3F:3A Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 04CB Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/216DB034DE9711EC9289256FC4F9AE02.roa Signing time: Tue 30 Dec 2025 23:19:50 +0000 ROA not before: Tue 30 Dec 2025 23:19:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136526 IP address blocks: 103.254.72.0/22 maxlen: 22 103.254.74.0/24 maxlen: 24 192.51.188.0/24 maxlen: 24 204.52.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Dec 30 23:19:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69545e16-c201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:aa:72:b5:86:1b:d2:fa:b2:16:87:3f:32:dd: 7a:ea:24:11:86:a9:93:82:f1:82:55:7c:25:33:d5: d9:cb:3b:ed:84:c1:28:08:e3:eb:71:2b:1d:87:5f: f6:a4:bf:f0:93:13:ab:55:9c:72:e2:1f:f8:38:09: 63:8d:b7:2c:6e:60:dc:86:ba:f4:d0:69:f5:7f:48: 04:98:0e:a6:2c:d5:96:1d:af:d7:6c:e1:14:63:e8: 9a:88:2e:6b:d0:81:26:9d:d8:76:d9:ce:4a:20:7e: 73:91:99:4d:dd:39:97:01:8e:1c:b8:35:63:ef:35: 41:f1:16:97:7f:34:18:39:87:cd:db:61:cd:7b:6a: b9:bd:4d:59:49:2d:a4:81:ae:57:56:44:1c:1a:95: b2:5f:dc:21:d5:14:e1:83:aa:fb:25:1a:3d:7f:67: 36:3d:4a:1d:a8:6e:f4:2d:e6:b2:d4:ec:db:24:7b: 8f:25:2c:81:c0:ff:73:38:61:cc:cc:f8:2a:45:52: 21:f6:86:bb:24:9d:66:82:0f:ef:cd:82:0e:7e:89: ab:86:6f:8b:04:f4:3e:87:35:db:3a:1a:7e:8d:50: 77:d4:01:14:4c:c6:6e:59:c4:95:2b:8c:45:02:a2: 52:be:d2:42:02:15:04:b3:0d:42:5b:bc:4c:74:53: 50:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:13:54:CB:99:35:6F:32:DC:A0:14:B2:E3:27:ED:11:95:96:3F:3A X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/216DB034DE9711EC9289256FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.72.0/22 192.51.188.0/24 204.52.191.0/24 Signature Algorithm: sha256WithRSAEncryption a9:db:43:23:5a:08:61:0d:5d:56:20:5c:bf:57:e0:30:02:e8: e6:47:c3:f0:c2:63:e3:ee:70:49:98:83:b9:bc:c1:58:cd:95: 5b:5a:cf:8e:f5:7b:95:30:db:7a:05:ab:ac:5a:b8:4d:1a:e9: 49:12:a1:c8:58:17:9b:dd:77:7a:96:9f:c3:d7:11:b6:59:42: 2b:c6:74:5e:b8:b7:5c:c4:6e:15:3b:33:62:2b:1c:f6:7b:c4: 45:e4:9a:13:8b:c6:5d:97:f1:13:98:37:be:db:b4:ea:34:a1: 59:87:d8:46:61:64:93:af:a2:74:97:7e:30:22:25:af:0f:25: 19:be:70:56:38:bb:03:29:c8:d7:24:9c:4c:07:e1:1d:2a:c7: 18:eb:a7:ec:ed:7e:03:fe:b2:ba:50:e7:9e:07:df:af:47:c1: f0:fc:ca:35:49:f6:81:19:2a:c2:0f:5f:1b:17:44:52:72:b8: 59:92:c9:7d:3b:10:d0:f8:12:a8:95:73:8f:bf:f6:d0:67:f4: ef:e7:a7:a8:8b:1b:a7:6c:9c:12:32:48:06:6c:55:65:2a:73: 83:33:db:88:74:50:83:fe:b3:04:83:de:fe:79:fd:c8:62:a8: 10:b5:d3:c0:fa:52:97:51:63:43:4e:87:1f:35:3d:84:3f:5b: e0:33:7f:96 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUxMjMwMjMxOTUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0NWUxNi1jMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKpytYYb0vqyFoc/Mt166iQRhqmTgvGCVXwlM9XZyzvthMEoCOPrcSsdh1/2 pL/wkxOrVZxy4h/4OAljjbcsbmDchrr00Gn1f0gEmA6mLNWWHa/XbOEUY+iaiC5r 0IEmndh22c5KIH5zkZlN3TmXAY4cuDVj7zVB8RaXfzQYOYfN22HNe2q5vU1ZSS2k ga5XVkQcGpWyX9wh1RThg6r7JRo9f2c2PUodqG70Leay1OzbJHuPJSyBwP9zOGHM zPgqRVIh9oa7JJ1mgg/vzYIOfomrhm+LBPQ+hzXbOhp+jVB31AEUTMZuWcSVK4xF AqJSvtJCAhUEsw1CW7xMdFNQnwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGcTVMuZ NW8y3KAUsuMn7RGVlj86MB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvMjE2REIwMzRE RTk3MTFFQzkyODkyNTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn/kgDBADAM7wDBADMNL8wDQYJKoZIhvcNAQELBQADggEB AKnbQyNaCGENXVYgXL9X4DAC6OZHw/DCY+PucEmYg7m8wVjNlVtaz471e5Uw23oF q6xauE0a6UkSochYF5vdd3qWn8PXEbZZQivGdF64t1zEbhU7M2IrHPZ7xEXkmhOL xl2X8ROYN77btOo0oVmH2EZhZJOvonSXfjAiJa8PJRm+cFY4uwMpyNcknEwH4R0q xxjrp+ztfgP+srpQ554H369HwfD8yjVJ9oEZKsIPXxsXRFJyuFmSyX07END4EqiV c4+/9tBn9O/np6iLG6dsnBIySAZsVWUqc4Mz24h0UIP+swSD3v55/chiqBC108D6 UpdRY0NOhx81PYQ/W+Azf5Y= -----END CERTIFICATE-----Generated at Sun Jan 25 12:24:05 2026 by rpki-client