This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C258B0D0E03C11EF991E147AC4F9AE02.roa File: C258B0D0E03C11EF991E147AC4F9AE02.roa (raw, json) Hash identifier: laAl8Txo1gIHcxVocQuJwP60FGqDJ3pXtoHTwy2bFVE= Subject key identifier: F3:45:9F:79:6D:26:98:1B:E8:6C:71:D4:41:31:04:0A:72:C1:F9:25 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0304 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C258B0D0E03C11EF991E147AC4F9AE02.roa Signing time: Thu 04 Dec 2025 23:39:07 +0000 ROA not before: Thu 04 Dec 2025 23:39:07 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 139016 IP address blocks: 103.159.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 772 (0x304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Dec 4 23:39:07 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69321b9b-3990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:52:e8:46:bb:94:d2:e6:b9:ad:1c:b4:1f:f7: 6f:ca:4d:a9:d4:f2:a1:c5:44:bc:ea:93:2a:38:49: 7a:d4:99:be:ae:1f:b9:d5:a5:bd:ee:27:90:4d:b9: da:3f:03:51:65:01:d2:90:6d:8a:cf:a8:0d:0c:80: b2:51:e1:2d:27:c8:bf:59:fa:3c:0b:f0:4c:a8:79: b1:55:6f:b0:d3:82:7f:29:f6:bc:99:80:4f:e2:0d: d1:da:5b:31:2f:7e:ad:3d:27:9b:e9:22:8b:df:8c: fd:a6:23:6d:69:d9:5c:55:d9:c3:f8:85:c8:b5:1b: 68:70:3d:ff:6f:2f:5b:77:5a:37:99:0e:38:31:8a: 0f:4c:b8:04:51:7a:8d:5a:a9:56:47:23:b5:d8:cd: 8c:79:f5:23:df:ed:63:07:ce:ba:0d:b7:ee:19:d8: 4a:fb:67:97:d4:2f:37:e5:bb:fa:9b:d8:44:dc:06: e6:30:31:ef:31:01:bf:44:7a:30:96:2b:34:5c:7e: 9b:de:0f:c4:0b:bf:ec:1c:5f:b3:13:5a:b0:d6:da: dc:6d:b8:4d:44:01:9e:cc:a9:1a:b1:a4:05:c7:bd: f8:8e:41:b2:4b:d2:f5:27:db:17:9a:53:eb:2a:5a: fb:9b:9b:16:65:7a:b5:b5:70:5c:a7:56:0e:30:cf: 71:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:45:9F:79:6D:26:98:1B:E8:6C:71:D4:41:31:04:0A:72:C1:F9:25 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C258B0D0E03C11EF991E147AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.37.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:ee:0a:0f:c3:8f:4d:fe:20:67:b9:37:73:2e:1a:f0:b3:05: a2:50:44:22:15:d5:04:51:a5:b2:c7:51:04:2b:53:0d:b2:9a: 53:f3:ae:37:82:ca:a8:8a:15:6b:8b:c7:56:bb:46:f3:ee:47: 4b:d7:e9:d6:1c:11:5d:5f:42:59:4f:07:b9:ea:93:32:e1:ed: f8:ce:1b:0b:3b:6e:0a:b0:0e:32:c8:be:d4:04:87:da:67:9f: 50:c4:52:c2:f2:f8:d3:7b:4e:74:32:d7:14:e3:a9:be:6a:2f: a8:e4:bb:c7:fe:c0:de:b0:e2:53:30:e1:6b:c0:31:99:38:2a: ee:1c:d3:bd:b9:7d:8a:e9:6c:65:ef:c2:84:0a:ed:7d:a4:2b: a7:06:36:2f:a8:e8:11:e1:55:1e:a9:26:cb:e0:c3:b9:3d:11: b7:be:90:77:e1:b7:25:54:9f:34:ed:2c:5c:c8:12:c7:36:4a: b9:42:19:21:bc:c0:29:0c:78:6b:01:a9:5f:07:af:2b:20:8e: bc:ec:2c:cd:a3:ef:3f:b8:3b:62:b6:82:f4:20:02:cd:24:63: 4e:fa:60:4d:5c:e3:2d:1b:35:f8:05:4d:f0:89:5e:dd:9e:ef: b0:86:cd:0d:fb:1c:41:3d:59:78:0b:4b:44:a9:30:a7:77:fb: 01:0e:cf:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMjA0MjMzOTA3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyMWI5Yi0zOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFLoRruU0ua5rRy0H/dvyk2p1PKhxUS86pMqOEl61Jm+rh+51aW97ieQTbna PwNRZQHSkG2Kz6gNDICyUeEtJ8i/Wfo8C/BMqHmxVW+w04J/Kfa8mYBP4g3R2lsx L36tPSeb6SKL34z9piNtadlcVdnD+IXItRtocD3/by9bd1o3mQ44MYoPTLgEUXqN WqlWRyO12M2MefUj3+1jB866DbfuGdhK+2eX1C835bv6m9hE3AbmMDHvMQG/RHow lis0XH6b3g/EC7/sHF+zE1qw1trcbbhNRAGezKkasaQFx734jkGyS9L1J9sXmlPr Klr7m5sWZXq1tXBcp1YOMM9xrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPNFn3lt Jpgb6Gxx1EExBApywfklMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI5Q0IvMUY5MDJCMEUwNUFGMTFFREE3MTc2NDJCQzRGOUFFMDIvQzI1OEIwRDBF MDNDMTFFRjk5MUUxNDdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnyUwDQYJKoZIhvcNAQELBQADggEBAD/uCg/Dj03+IGe5 N3MuGvCzBaJQRCIV1QRRpbLHUQQrUw2ymlPzrjeCyqiKFWuLx1a7RvPuR0vX6dYc EV1fQllPB7nqkzLh7fjOGws7bgqwDjLIvtQEh9pnn1DEUsLy+NN7TnQy1xTjqb5q L6jku8f+wN6w4lMw4WvAMZk4Ku4c0725fYrpbGXvwoQK7X2kK6cGNi+o6BHhVR6p Jsvgw7k9Ebe+kHfhtyVUnzTtLFzIEsc2SrlCGSG8wCkMeGsBqV8HrysgjrzsLM2j 7z+4O2K2gvQgAs0kY076YE1c4y0bNfgFTfCJXt2e77CGzQ37HEE9WXgLS0SpMKd3 +wEOz/4= -----END CERTIFICATE-----Generated at Sun Dec 7 00:39:37 2025 by rpki-client