This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/FD9457225B1011F0A31EF763C4F9AE02.roa File: FD9457225B1011F0A31EF763C4F9AE02.roa (raw, json) Hash identifier: Ve9Qh4M1YqONq/JG/DFrsaMyJzHBLRsnzhhtznWeJio= Subject key identifier: E7:F2:7C:93:A0:5B:03:92:0A:B9:4B:BD:93:F1:17:E3:7B:43:80:32 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 0766 Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/FD9457225B1011F0A31EF763C4F9AE02.roa Signing time: Mon 24 Nov 2025 20:42:10 +0000 ROA not before: Mon 24 Nov 2025 20:42:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141385 IP address blocks: 103.158.2.0/23 maxlen: 23 103.158.2.0/24 maxlen: 24 103.158.3.0/24 maxlen: 24 2001:df2:efc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Nov 24 20:42:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6924c322-197a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ae:03:7d:aa:a2:1e:06:68:68:3f:36:5f:bd: 66:c6:7a:95:6b:ee:a1:f2:c1:61:43:84:9c:da:db: 3d:06:11:59:06:fe:24:f1:9d:0c:fc:54:cd:19:8e: 29:11:58:6b:d6:e2:5a:0a:fa:47:cb:bf:6d:18:9d: 84:16:71:0f:c7:0f:d0:1e:7a:f3:16:d2:e1:6f:4b: 68:25:a5:69:13:a5:04:db:e5:fd:a0:97:9b:f1:c4: bc:b4:15:b8:4c:9d:4e:0b:ea:84:28:0e:aa:58:c5: 95:5f:44:5c:27:6c:98:8b:fe:3f:d7:9a:4d:ed:9d: 47:2e:8f:57:06:40:36:d6:9f:59:e2:4d:28:51:8f: b0:c5:f6:70:12:19:0d:48:71:1b:0a:f8:75:01:5f: b4:c0:9a:cb:c2:a0:a1:93:ab:6e:e0:c5:96:50:79: c9:20:c6:a4:94:22:d6:83:90:4d:13:e4:d0:b4:12: 6a:10:91:64:9e:9c:5b:01:08:99:cf:c9:10:72:93: fb:76:e6:40:08:eb:71:a8:7f:71:0b:5e:e0:47:91: 20:6c:2d:01:cd:21:21:ec:78:10:16:ad:99:6d:42: f6:b3:bc:aa:21:d3:5c:16:c6:7c:49:0b:3b:9e:ef: 77:eb:8d:fc:2d:dc:4a:6b:34:a3:c7:04:c8:2c:e0: 81:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F2:7C:93:A0:5B:03:92:0A:B9:4B:BD:93:F1:17:E3:7B:43:80:32 X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/FD9457225B1011F0A31EF763C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.2.0/23 IPv6: 2001:df2:efc0::/48 Signature Algorithm: sha256WithRSAEncryption 43:80:a2:49:e7:42:97:a6:71:c1:f6:0c:d5:86:bb:94:40:33: b1:ce:c8:c0:24:a9:f9:c7:4b:44:47:ab:59:9b:12:2f:fd:10: 57:79:74:b8:7c:62:06:aa:b1:54:64:f1:40:81:03:14:96:bb: 90:a0:de:28:bd:18:27:53:e8:15:44:80:11:6a:37:d6:d9:82: 1b:aa:ce:ed:ba:43:d7:6b:33:c3:2d:db:b2:24:f2:61:c2:3e: f7:e4:3a:13:94:e3:f2:6f:b5:98:21:e0:bf:35:cc:f1:60:27: 4d:ff:3e:2d:d8:24:07:81:bf:79:47:5f:2e:75:14:47:f7:0c: 3d:86:24:da:d6:54:9c:b1:9f:16:79:7e:56:b1:2b:7c:cc:51: 4a:9c:db:23:80:a7:d2:59:ac:0a:14:7d:b6:e6:ce:d3:41:87: 36:9b:cc:f3:e6:d7:36:d0:a6:d3:7e:e5:52:6d:7c:8a:04:74: 76:6e:7e:c0:8e:eb:9e:b4:88:67:d2:fe:4b:c7:c7:70:67:80: f3:26:59:b3:8c:95:16:8f:6c:ba:00:6c:f0:d2:f4:ca:ab:d0: 88:8d:ee:50:4a:0d:b4:75:b4:ce:e5:78:d9:fb:2e:44:ba:32: 6d:1b:ff:5c:64:2e:3e:a8:83:57:e8:77:68:e2:d8:0e:3d:7f: 34:ea:ce:be -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUxMTI0MjA0MjEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI0YzMyMi0xOTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK4DfaqiHgZoaD82X71mxnqVa+6h8sFhQ4Sc2ts9BhFZBv4k8Z0M/FTNGY4p EVhr1uJaCvpHy79tGJ2EFnEPxw/QHnrzFtLhb0toJaVpE6UE2+X9oJeb8cS8tBW4 TJ1OC+qEKA6qWMWVX0RcJ2yYi/4/15pN7Z1HLo9XBkA21p9Z4k0oUY+wxfZwEhkN SHEbCvh1AV+0wJrLwqChk6tu4MWWUHnJIMaklCLWg5BNE+TQtBJqEJFknpxbAQiZ z8kQcpP7duZACOtxqH9xC17gR5EgbC0BzSEh7HgQFq2ZbUL2s7yqIdNcFsZ8SQs7 nu936438LdxKazSjxwTILOCBPwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOfyfJOg WwOSCrlLvZPxF+N7Q4AyMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGQUYvMDcxNzYyNDA0OTJDMTFFQkE5ODFCRjUyQzRGOUFFMDIvRkQ5NDU3MjI1 QjEwMTFGMEEzMUVGNzYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnngIwDwQCAAIwCQMHACABDfLvwDANBgkqhkiG9w0BAQsF AAOCAQEAQ4CiSedCl6ZxwfYM1Ya7lEAzsc7IwCSp+cdLREerWZsSL/0QV3l0uHxi BqqxVGTxQIEDFJa7kKDeKL0YJ1PoFUSAEWo31tmCG6rO7bpD12szwy3bsiTyYcI+ 9+Q6E5Tj8m+1mCHgvzXM8WAnTf8+LdgkB4G/eUdfLnUUR/cMPYYk2tZUnLGfFnl+ VrErfMxRSpzbI4Cn0lmsChR9tubO00GHNpvM8+bXNtCm037lUm18igR0dm5+wI7r nrSIZ9L+S8fHcGeA8yZZs4yVFo9sugBs8NL0yqvQiI3uUEoNtHW0zuV42fsuRLoy bRv/XGQuPqiDV+h3aOLYDj1/NOrOvg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:45:48 2025 by rpki-client