This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/09DA4C5E1B6911EB9D105D47C4F9AE02.roa File: 09DA4C5E1B6911EB9D105D47C4F9AE02.roa (raw, json) Hash identifier: BgSATl98twuchqf4rz3DFUGetcAtQbQS4vsZDzneV7I= Subject key identifier: F0:5E:46:22:DE:CF:83:29:49:B1:00:F2:02:6F:03:45:A3:C9:5B:ED Certificate issuer: /CN=A91E2868/serialNumber=08F67EEB137932B7820E3E4F848B6E27AFAF1EFB Certificate serial: 07BE Authority key identifier: 08:F6:7E:EB:13:79:32:B7:82:0E:3E:4F:84:8B:6E:27:AF:AF:1E:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CPZ-6xN5MreCDj5PhItuJ6-vHvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/09DA4C5E1B6911EB9D105D47C4F9AE02.roa Signing time: Sat 08 Nov 2025 20:41:24 +0000 ROA not before: Sat 08 Nov 2025 20:41:24 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141375 IP address blocks: 103.157.202.0/23 maxlen: 23 103.157.202.0/24 maxlen: 24 103.157.203.0/24 maxlen: 24 2001:df5:2c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/CPZ-6xN5MreCDj5PhItuJ6-vHvs.crl rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/CPZ-6xN5MreCDj5PhItuJ6-vHvs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CPZ-6xN5MreCDj5PhItuJ6-vHvs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2868, serialNumber=08F67EEB137932B7820E3E4F848B6E27AFAF1EFB Validity Not Before: Nov 8 20:41:24 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690faaf4-ec2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ef:f9:65:b8:ed:f8:01:3e:49:6e:d6:24:8f: cd:f1:57:67:0a:1d:c9:dc:81:8d:72:72:f9:2d:e8: 1c:96:1a:87:37:7f:0e:2b:37:2c:9c:c1:13:c6:62: f3:af:51:7f:2b:dd:6a:a5:90:f7:e5:15:5a:9d:63: e3:56:ce:b7:1a:a2:9d:ba:ed:74:ba:47:39:51:b8: 5f:fe:9a:93:b3:a0:d3:c6:cf:66:66:d4:af:3b:85: 85:4f:03:a8:2d:bf:a4:3d:91:9a:8c:94:3c:c7:fc: b1:86:be:63:af:f9:8c:59:c7:a7:ee:9a:ef:59:e7: d8:cf:6d:36:d7:d9:30:a3:17:33:d4:5f:69:fc:ca: 4c:c5:64:96:18:90:ad:a9:91:7c:b2:4f:03:1c:65: 92:ae:93:39:5d:0d:72:14:55:92:6c:dd:27:55:27: f9:f5:e4:e8:c8:33:81:bb:31:c2:ae:f9:f4:5d:2d: b2:c2:f8:00:a9:ac:0e:3d:41:58:2a:9e:02:08:fd: ac:26:9c:72:ae:cb:12:d1:1e:5a:d1:92:12:6d:91: e3:a4:67:79:d0:63:a6:f2:a9:9e:80:1d:56:0e:14: 2e:84:a9:b7:d4:63:be:db:f7:e5:67:02:3d:2a:4f: bb:5f:f9:2b:da:38:9c:77:d2:cd:38:40:2f:b1:9f: 2d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:5E:46:22:DE:CF:83:29:49:B1:00:F2:02:6F:03:45:A3:C9:5B:ED X509v3 Authority Key Identifier: keyid:08:F6:7E:EB:13:79:32:B7:82:0E:3E:4F:84:8B:6E:27:AF:AF:1E:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/CPZ-6xN5MreCDj5PhItuJ6-vHvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CPZ-6xN5MreCDj5PhItuJ6-vHvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/09DA4C5E1B6911EB9D105D47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.202.0/23 IPv6: 2001:df5:2c80::/48 Signature Algorithm: sha256WithRSAEncryption 73:14:85:3c:84:9c:99:05:22:a1:2d:de:5b:c7:cf:e1:10:4f: 9f:95:c5:ca:fd:24:0a:29:c3:1b:d1:b0:26:5d:16:42:35:fb: a8:d4:cf:c5:a5:f8:f7:f2:3a:59:4f:c8:66:09:64:98:fc:67: 86:42:a0:f9:a8:3d:50:a2:42:b8:8b:f7:66:12:5a:ad:f4:37: 5d:2d:8c:b0:de:f7:4c:10:1f:df:23:f9:48:76:7d:47:6c:99: 64:25:a9:79:e7:84:c3:0e:c4:2f:cc:23:82:c2:43:bb:a2:ea: e4:d5:88:8a:36:3f:ae:8b:a8:4b:b8:a3:d2:fc:59:5e:f6:0e: 8e:cf:0f:fc:0b:86:6c:4b:76:7d:e4:16:47:35:97:54:05:fe: 84:be:ea:83:7b:6a:84:46:55:cf:2a:17:61:34:03:a9:26:83: 63:ac:37:e4:cb:1d:9b:f8:c5:c6:93:b3:81:ec:40:22:42:31: 0a:53:a9:b1:66:47:11:c5:fa:76:8e:c6:ff:0f:98:fc:8e:e3: a7:72:e8:f1:1b:04:53:7b:e5:bf:69:e9:48:3c:ba:70:22:2a: ea:e5:a6:19:49:47:5b:ee:fd:2f:7c:61:43:be:93:05:b3:5a: f8:15:5c:5a:b8:a1:75:28:78:77:66:36:2f:81:e3:f5:77:c4: 6d:a6:0a:7f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4NjgxMTAvBgNVBAUTKDA4RjY3RUVCMTM3OTMyQjc4MjBFM0U0Rjg0OEI2RTI3 QUZBRjFFRkIwHhcNMjUxMTA4MjA0MTI0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBmYWFmNC1lYzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqe/5Zbjt+AE+SW7WJI/N8VdnCh3J3IGNcnL5LegclhqHN38OKzcsnMETxmLz r1F/K91qpZD35RVanWPjVs63GqKduu10ukc5Ubhf/pqTs6DTxs9mZtSvO4WFTwOo Lb+kPZGajJQ8x/yxhr5jr/mMWcen7prvWefYz20219kwoxcz1F9p/MpMxWSWGJCt qZF8sk8DHGWSrpM5XQ1yFFWSbN0nVSf59eToyDOBuzHCrvn0XS2ywvgAqawOPUFY Kp4CCP2sJpxyrssS0R5a0ZISbZHjpGd50GOm8qmegB1WDhQuhKm31GO+2/flZwI9 Kk+7X/kr2jicd9LNOEAvsZ8tXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPBeRiLe z4MpSbEA8gJvA0WjyVvtMB8GA1UdIwQYMBaAFAj2fusTeTK3gg4+T4SLbievrx77 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjg2OC82N0YxN0Q4QzFC NjcxMUVCODIwQ0NCNDJDNEY5QUUwMi9DUFotNnhONU1yZUNEajVQaEl0dUo2LXZI dnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NQWi02eE41TXJlQ0RqNVBoSXR1SjYtdkh2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4NjgvNjdGMTdEOEMxQjY3MTFFQjgyMENDQjQyQzRGOUFFMDIvMDlEQTRDNUUx QjY5MTFFQjlEMTA1RDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnncowDwQCAAIwCQMHACABDfUsgDANBgkqhkiG9w0BAQsF AAOCAQEAcxSFPIScmQUioS3eW8fP4RBPn5XFyv0kCinDG9GwJl0WQjX7qNTPxaX4 9/I6WU/IZglkmPxnhkKg+ag9UKJCuIv3ZhJarfQ3XS2MsN73TBAf3yP5SHZ9R2yZ ZCWpeeeEww7EL8wjgsJDu6Lq5NWIijY/rouoS7ij0vxZXvYOjs8P/AuGbEt2feQW RzWXVAX+hL7qg3tqhEZVzyoXYTQDqSaDY6w35Msdm/jFxpOzgexAIkIxClOpsWZH EcX6do7G/w+Y/I7jp3Lo8RsEU3vlv2npSDy6cCIq6uWmGUlHW+79L3xhQ76TBbNa +BVcWrihdSh4d2Y2L4Hj9XfEbaYKfw== -----END CERTIFICATE-----Generated at Sun Dec 7 02:44:35 2025 by rpki-client