This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ECC7CA2EF1AA11F0885E8853736F56BC.roa File: ECC7CA2EF1AA11F0885E8853736F56BC.roa (raw, json) Hash identifier: SUNQBfdounR6UMKChqQDR7VRQwuseEeAAOo9VPObCBU= Subject key identifier: AB:EB:2C:60:A5:2B:7F:C1:27:2A:F2:34:79:67:FC:88:C1:CD:A1:22 Certificate issuer: /CN=A91E4743/serialNumber=FA7EDE7B62B47B87DD13986A8E72C3FE3656B5CC Certificate serial: 02 Authority key identifier: FA:7E:DE:7B:62:B4:7B:87:DD:13:98:6A:8E:72:C3:FE:36:56:B5:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-n7ee2K0e4fdE5hqjnLD_jZWtcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ECC7CA2EF1AA11F0885E8853736F56BC.roa Signing time: Thu 15 Jan 2026 00:41:27 +0000 ROA not before: Thu 15 Jan 2026 00:41:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140865 IP address blocks: 103.152.154.0/23 maxlen: 24 2001:df4:1380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/-n7ee2K0e4fdE5hqjnLD_jZWtcw.crl rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/-n7ee2K0e4fdE5hqjnLD_jZWtcw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-n7ee2K0e4fdE5hqjnLD_jZWtcw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4743, serialNumber=FA7EDE7B62B47B87DD13986A8E72C3FE3656B5CC Validity Not Before: Jan 15 00:41:27 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=696837b7-e539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d6:5e:18:5e:31:4e:b8:3d:80:0a:a4:55:ed: fb:c0:b0:d2:55:bf:fa:82:0b:75:4e:28:97:9c:e7: 3c:ac:9b:34:86:bb:14:db:e8:ad:d6:2a:e9:e9:12: e3:20:5c:fc:ee:ea:04:61:c4:68:24:c9:94:e9:44: 62:98:a0:17:75:1a:56:a2:26:21:22:5d:72:c3:67: 8f:0a:44:b8:46:ca:0e:70:5f:3d:94:50:3c:39:df: 93:91:7d:30:8c:18:92:d7:1d:88:1b:93:8f:04:b1: c9:73:eb:be:21:a4:04:d3:b4:7a:44:e8:9a:4a:e5: c3:f3:83:59:c6:57:78:73:ca:90:39:cf:04:11:ff: 66:be:f7:b1:5f:3f:cf:bf:1d:76:24:4d:1e:38:c8: 11:ce:ab:17:79:b3:3f:f4:8d:38:f5:00:f3:d5:bb: 56:28:f6:1e:9a:c2:7d:2b:bc:2b:c9:06:06:e3:69: 8b:77:f7:c9:f8:00:13:be:e3:3c:b6:44:5e:ff:55: da:0b:2c:26:79:34:4f:6d:6b:9c:05:ec:de:e5:18: f3:70:87:a4:b4:06:a6:88:5f:32:5d:8c:e6:ab:fd: dc:65:f0:94:32:95:9e:55:41:7b:a5:9b:2d:a0:f6: 76:d2:99:00:5b:53:95:fd:6e:ef:79:59:04:14:fe: ac:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:EB:2C:60:A5:2B:7F:C1:27:2A:F2:34:79:67:FC:88:C1:CD:A1:22 X509v3 Authority Key Identifier: keyid:FA:7E:DE:7B:62:B4:7B:87:DD:13:98:6A:8E:72:C3:FE:36:56:B5:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/-n7ee2K0e4fdE5hqjnLD_jZWtcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-n7ee2K0e4fdE5hqjnLD_jZWtcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ECC7CA2EF1AA11F0885E8853736F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.154.0/23 IPv6: 2001:df4:1380::/48 Signature Algorithm: sha256WithRSAEncryption 98:51:57:41:1a:1f:64:62:37:7f:17:e4:bc:b6:87:6f:63:8f: 80:d4:c3:f4:38:b7:3d:06:49:33:93:72:f8:08:2d:69:43:24: 54:d0:55:14:f3:a4:5f:00:48:18:b7:c0:73:a2:3f:70:e2:02: 4a:7c:a3:96:8d:0f:8a:7f:46:b4:04:82:54:81:c2:27:26:f7: 52:c5:74:fc:2c:05:44:8a:c9:1d:42:a9:ec:f7:3e:a6:2e:9e: e5:0e:71:8e:58:cf:11:ab:cb:f0:76:82:b8:29:48:2c:bc:14: 38:c7:e8:41:94:c0:54:d7:c8:22:8e:9b:f6:1f:91:5d:e7:36: 67:ba:8a:6b:21:39:f2:b1:1c:e7:ba:73:32:eb:ef:d6:8c:8d: 7a:c4:55:91:52:ec:8a:78:0f:5c:60:94:ef:14:69:d1:e1:ea: 1c:2e:bb:21:82:98:ca:f0:5e:af:f6:9f:9f:c3:b2:4b:62:0f: 65:15:d0:fe:b6:8f:5e:cb:af:e2:66:5b:09:ee:e8:e4:5a:cc: b8:50:a9:30:50:0d:00:51:6c:57:7c:e6:2d:09:a5:98:95:c1: 82:11:88:d9:2d:a9:64:fb:81:ec:44:7b:c6:f3:01:ad:54:55: 22:27:ec:02:85:d2:f0:31:d6:e7:a1:11:1d:00:ec:ab:06:d6: d3:1a:db:10 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF NDc0MzExMC8GA1UEBRMoRkE3RURFN0I2MkI0N0I4N0REMTM5ODZBOEU3MkMzRkUz NjU2QjVDQzAeFw0yNjAxMTUwMDQxMjdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NjgzN2I3LWU1MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDr1l4YXjFOuD2ACqRV7fvAsNJVv/qCC3VOKJec5zysmzSGuxTb6K3WKunpEuMg XPzu6gRhxGgkyZTpRGKYoBd1GlaiJiEiXXLDZ48KRLhGyg5wXz2UUDw535ORfTCM GJLXHYgbk48Esclz674hpATTtHpE6JpK5cPzg1nGV3hzypA5zwQR/2a+97FfP8+/ HXYkTR44yBHOqxd5sz/0jTj1APPVu1Yo9h6awn0rvCvJBgbjaYt398n4ABO+4zy2 RF7/VdoLLCZ5NE9ta5wF7N7lGPNwh6S0BqaIXzJdjOar/dxl8JQylZ5VQXulmy2g 9nbSmQBbU5X9bu95WQQU/qy9AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUq+ssYKUr f8EnKvI0eWf8iMHNoSIwHwYDVR0jBBgwFoAU+n7ee2K0e4fdE5hqjnLD/jZWtcww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0NzQzLzY3MEY4MDkyQkI2 RjExRUE5NjFGQjg0RUM0RjlBRTAyLy1uN2VlMkswZTRmZEU1aHFqbkxEX2paV3Rj dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLW43ZWUySzBlNGZkRTVocWpuTERfalpXdGN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDc0My82NzBGODA5MkJCNkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9FQ0M3Q0EyRUYx QUExMUYwODg1RTg4NTM3MzZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeYmjAPBAIAAjAJAwcAIAEN9BOAMA0GCSqGSIb3DQEBCwUA A4IBAQCYUVdBGh9kYjd/F+S8todvY4+A1MP0OLc9Bkkzk3L4CC1pQyRU0FUU86Rf AEgYt8Bzoj9w4gJKfKOWjQ+Kf0a0BIJUgcInJvdSxXT8LAVEiskdQqns9z6mLp7l DnGOWM8Rq8vwdoK4KUgsvBQ4x+hBlMBU18gijpv2H5Fd5zZnuoprITnysRznunMy 6+/WjI16xFWRUuyKeA9cYJTvFGnR4eocLrshgpjK8F6v9p+fw7JLYg9lFdD+to9e y6/iZlsJ7ujkWsy4UKkwUA0AUWxXfOYtCaWYlcGCEYjZLalk+4HsRHvG8wGtVFUi J+wChdLwMdbnoREdAOyrBtbTGtsQ -----END CERTIFICATE-----Generated at Sun Jan 25 10:13:57 2026 by rpki-client