This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa File: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (raw, json) Hash identifier: quzgA63SpLjcb7xHGEjv3O11w0qxKCOwrlK8xFLHM54= Subject key identifier: 99:92:26:0B:C6:FD:3A:5E:B1:E0:C4:B6:25:C5:12:EC:B1:CE:27:44 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 01BC Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa Signing time: Fri 05 Dec 2025 08:05:28 +0000 ROA not before: Fri 05 Dec 2025 08:05:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141766 IP address blocks: 103.152.24.0/24 maxlen: 24 103.152.25.0/24 maxlen: 24 103.163.156.0/24 maxlen: 24 103.184.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 08:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Dec 5 08:05:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69329248-9d6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:25:ef:59:7e:6f:60:78:15:93:2d:7a:5b:68: 11:55:7c:83:c9:d1:e8:0f:58:ee:3f:21:ae:da:16: ca:82:b3:65:3d:3a:cb:2c:e4:bc:98:b8:5d:9d:ae: 30:08:02:04:78:46:5b:96:2f:f6:3e:d1:bc:eb:7c: 8c:11:cf:97:12:4d:88:b4:0f:a6:fd:d6:a8:c5:83: 8d:70:5b:06:30:da:d2:57:7f:d5:bc:1d:cf:10:1c: cf:f3:58:d0:65:7a:3f:a6:d0:c4:b3:48:ad:80:e1: 46:8d:36:b9:dd:8b:46:27:d9:59:86:6f:7b:6c:04: 7c:79:13:12:59:14:95:12:b5:9f:21:a4:a2:9b:84: 57:d9:3e:ef:19:4c:2f:20:fb:24:ff:19:3c:67:dd: b2:41:73:c6:a1:14:8d:67:6d:69:01:49:10:40:21: f8:11:a1:34:f9:84:da:06:ad:e0:e5:a7:cb:26:2c: 8b:d1:86:24:05:1e:a2:4f:7f:57:e5:dc:63:fb:69: 10:f3:4a:2c:27:df:fd:54:30:99:34:d9:27:9c:1a: 19:0a:17:fb:97:01:5b:10:c4:9b:ec:10:33:08:53: 43:b4:04:bb:b6:39:7a:9c:50:79:0b:81:47:97:f2: bf:34:1d:e4:ec:2c:46:d6:4a:8e:6e:df:8d:00:39: e9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:92:26:0B:C6:FD:3A:5E:B1:E0:C4:B6:25:C5:12:EC:B1:CE:27:44 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.24.0/23 103.163.156.0/24 103.184.129.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:0f:d3:76:b6:85:ab:13:cb:45:10:6e:0b:96:73:a9:40:89: 96:b5:90:a7:d1:a3:09:57:0c:6d:2c:30:18:68:67:39:06:25: f5:cd:dd:89:f9:a7:7a:38:b5:b0:e9:0d:a7:b7:85:6d:1d:8f: b4:12:e2:c1:46:d3:99:8b:2e:52:1c:3b:b6:9f:e3:07:6e:c5: 21:d3:80:3e:91:91:e6:09:82:d7:80:ec:7b:25:4d:79:41:65: 34:1e:f4:ff:6e:0e:71:21:e5:c4:72:0e:e0:6c:cf:2a:07:53: 3c:50:cb:39:ba:b4:3b:75:d2:29:65:ee:60:15:92:cb:a9:d4: 82:ab:13:36:51:4b:a1:8e:69:52:39:92:eb:81:7a:54:64:2c: 1e:f2:a9:38:e7:a2:33:cf:d6:1c:1a:16:62:25:2b:0a:31:ba: c5:0a:2a:61:c8:66:3a:15:27:4d:19:57:41:2e:ce:55:52:ac: f5:10:26:df:6d:03:7a:87:c7:e7:5b:d4:b8:71:4a:3d:e8:b9: a0:4e:6f:18:27:9a:26:2e:83:ed:ec:77:b2:be:a7:c4:89:06: 71:3b:9d:5f:b3:e0:98:07:20:a7:4b:44:9e:65:c7:a5:88:3a: 98:f9:8b:80:7f:ec:40:27:f7:cd:10:35:2a:2b:81:d4:69:6c: b6:9e:e3:01 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjUxMjA1MDgwNTI4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyOTI0OC05ZDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyXvWX5vYHgVky16W2gRVXyDydHoD1juPyGu2hbKgrNlPTrLLOS8mLhdna4w CAIEeEZbli/2PtG863yMEc+XEk2ItA+m/daoxYONcFsGMNrSV3/VvB3PEBzP81jQ ZXo/ptDEs0itgOFGjTa53YtGJ9lZhm97bAR8eRMSWRSVErWfIaSim4RX2T7vGUwv IPsk/xk8Z92yQXPGoRSNZ21pAUkQQCH4EaE0+YTaBq3g5afLJiyL0YYkBR6iT39X 5dxj+2kQ80osJ9/9VDCZNNknnBoZChf7lwFbEMSb7BAzCFNDtAS7tjl6nFB5C4FH l/K/NB3k7CxG1kqObt+NADnp0wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJmSJgvG /TpeseDEtiXFEuyxzidEMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5QjkvOTUxRjk4RUEzMkQyMTFFRTg2OUZEQjcxQzRGOUFFMDIvRjM0ODREQkEz NENFMTFFRUJCQTlEMDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnmBgDBABno5wDBABnuIEwDQYJKoZIhvcNAQELBQADggEB AJ0P03a2hasTy0UQbguWc6lAiZa1kKfRowlXDG0sMBhoZzkGJfXN3Yn5p3o4tbDp Dae3hW0dj7QS4sFG05mLLlIcO7af4wduxSHTgD6RkeYJgteA7HslTXlBZTQe9P9u DnEh5cRyDuBszyoHUzxQyzm6tDt10ill7mAVksup1IKrEzZRS6GOaVI5kuuBelRk LB7yqTjnojPP1hwaFmIlKwoxusUKKmHIZjoVJ00ZV0EuzlVSrPUQJt9tA3qHx+db 1LhxSj3ouaBObxgnmiYug+3sd7K+p8SJBnE7nV+z4JgHIKdLRJ5lx6WIOpj5i4B/ 7EAn980QNSorgdRpbLae4wE= -----END CERTIFICATE-----Generated at Sun Dec 7 02:54:34 2025 by rpki-client