This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/3003C4BA7C7711EEB9E0BE15C4F9AE02.roa File: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (raw, json) Hash identifier: gHDAbk+csdO0hOBDuH+ZATTF34H0ukA+S9Q9dMiUWDk= Subject key identifier: CE:63:F2:9E:66:BE:2C:78:D2:5A:EC:5F:94:A3:3D:73:4E:3B:58:9E Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0645 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/3003C4BA7C7711EEB9E0BE15C4F9AE02.roa Signing time: Thu 22 Jan 2026 22:19:08 +0000 ROA not before: Thu 22 Jan 2026 22:19:08 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 13150 IP address blocks: 103.203.220.0/24 maxlen: 24 103.203.221.0/24 maxlen: 24 103.203.222.0/24 maxlen: 24 103.203.223.0/24 maxlen: 24 113.30.128.0/24 maxlen: 24 123.253.152.0/24 maxlen: 24 123.253.153.0/24 maxlen: 24 123.253.154.0/24 maxlen: 24 123.253.155.0/24 maxlen: 24 150.195.208.0/24 maxlen: 24 150.195.209.0/24 maxlen: 24 150.195.210.0/24 maxlen: 24 150.195.211.0/24 maxlen: 24 150.195.212.0/24 maxlen: 24 150.195.214.0/24 maxlen: 24 150.195.217.0/24 maxlen: 24 150.195.218.0/24 maxlen: 24 150.195.219.0/24 maxlen: 24 150.195.220.0/24 maxlen: 24 150.195.221.0/24 maxlen: 24 150.195.222.0/24 maxlen: 24 150.195.223.0/24 maxlen: 24 202.75.242.0/24 maxlen: 24 202.75.243.0/24 maxlen: 24 202.75.244.0/24 maxlen: 24 202.75.246.0/24 maxlen: 24 202.75.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1605 (0x645) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Jan 22 22:19:08 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6972a25c-a2d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:be:ac:bf:94:78:94:27:f9:85:22:0c:74: d0:e7:5f:1f:4f:8b:ea:0b:8e:bb:a7:46:73:23:9c: 6c:dd:17:d9:9a:04:ad:9b:95:88:d2:38:68:42:ef: 62:b6:16:07:2a:cf:97:86:dc:3e:d3:14:8f:56:dc: b0:95:ec:73:1d:4e:f7:90:c8:74:d1:61:0d:cd:14: 09:ff:c8:8a:59:37:e2:69:1a:d2:36:4d:12:02:d4: c2:2e:63:0d:4d:ee:c8:b4:af:b5:d4:5c:fc:39:bb: a4:2a:a7:da:ac:0d:66:0e:34:ad:de:4e:1c:2a:10: 1e:c3:e9:07:05:68:eb:88:b8:63:2d:6b:23:de:68: 0a:23:08:97:0e:f0:43:9f:08:f7:66:b2:8a:b0:48: 3f:19:50:4a:cc:01:6e:a9:b9:5e:67:00:08:8c:df: dc:ea:2c:3d:7c:04:3c:8d:a3:0c:75:cf:33:95:3c: 28:e2:c1:b8:43:2c:fd:cf:d0:6e:7c:bb:8e:56:4e: a7:84:46:8e:c8:4f:04:8f:d4:ef:ad:12:4d:a3:c9: cf:3b:a9:a8:0e:7b:f8:c2:d7:e3:db:ee:ec:f6:34: e6:82:17:68:bc:e8:47:5e:ba:8c:ea:45:43:a4:18: 01:1a:0a:c0:2f:e8:7a:6b:20:7a:8a:0a:72:3b:78: b0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:63:F2:9E:66:BE:2C:78:D2:5A:EC:5F:94:A3:3D:73:4E:3B:58:9E X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/3003C4BA7C7711EEB9E0BE15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.220.0/22 113.30.128.0/24 123.253.152.0/22 150.195.208.0-150.195.212.255 150.195.214.0/24 150.195.217.0-150.195.223.255 202.75.242.0-202.75.244.255 202.75.246.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:54:bc:18:b5:1a:b7:3e:10:7a:42:83:0b:95:fb:4e:92:e3: 7a:8f:75:47:be:56:3b:7c:68:c9:91:07:59:6c:09:e7:05:48: 98:b7:6e:f6:4f:33:2c:be:46:6e:75:67:37:fe:88:be:2d:2f: 52:04:bf:16:a9:77:34:0f:3f:25:e1:b4:e1:06:32:5c:29:36: 17:f0:3d:a0:dd:58:19:85:19:7a:35:14:53:f1:00:30:fe:8e: ab:3d:a0:92:69:7c:98:d5:98:02:cf:c1:cd:d0:f2:5e:bb:4f: df:53:ce:1a:88:15:a9:e4:70:c7:36:88:9b:f5:68:df:c0:ef: c3:0f:4a:a2:04:02:e6:79:2c:24:8e:0d:27:1a:83:12:34:a4: 4a:fe:89:65:dc:c5:23:bb:9b:2b:0e:07:c5:01:e3:b8:de:db: cd:78:5f:b3:c0:68:72:0a:a4:e0:15:ff:97:80:59:dc:41:26: 93:39:39:eb:e6:d1:93:f4:02:7c:57:24:3f:35:b5:78:c0:eb: 92:34:87:50:f9:9d:ce:12:78:a3:85:7f:97:e3:a8:72:e4:81: ec:61:8b:16:7b:91:7d:55:18:7e:07:66:20:65:37:17:7b:bb: 69:71:a7:57:a0:7b:74:6c:1c:11:0e:06:52:e3:35:9c:fc:20: 7c:ff:ed:e1 -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgICBkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwMTIyMjIxOTA4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTcyYTI1Yy1hMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNa+rL+UeJQn+YUiDHTQ518fT4vqC467p0ZzI5xs3RfZmgStm5WI0jhoQu9i thYHKs+Xhtw+0xSPVtywlexzHU73kMh00WENzRQJ/8iKWTfiaRrSNk0SAtTCLmMN Te7ItK+11Fz8ObukKqfarA1mDjSt3k4cKhAew+kHBWjriLhjLWsj3mgKIwiXDvBD nwj3ZrKKsEg/GVBKzAFuqbleZwAIjN/c6iw9fAQ8jaMMdc8zlTwo4sG4Qyz9z9Bu fLuOVk6nhEaOyE8Ej9TvrRJNo8nPO6moDnv4wtfj2+7s9jTmghdovOhHXrqM6kVD pBgBGgrAL+h6ayB6igpyO3iwsQIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFM5j8p5m vix40lrsX5SjPXNOO1ieMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREM0QvQjAyMDJEMzJEOEI5MTFFQkFCQzFGNDg1QzRGOUFFMDIvMzAwM0M0QkE3 Qzc3MTFFRUI5RTBCRTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYQYIKwYBBQUHAQcBAf8E UjBQME4EAgABMEgDBAJny9wDBABxHoADBAJ7/ZgwDAMEBJbD0AMEAJbD1AMEAJbD 1jAMAwQAlsPZAwQFlsPAMAwDBAHKS/IDBADKS/QDBAHKS/YwDQYJKoZIhvcNAQEL BQADggEBAIpUvBi1Grc+EHpCgwuV+06S43qPdUe+Vjt8aMmRB1lsCecFSJi3bvZP Myy+Rm51Zzf+iL4tL1IEvxapdzQPPyXhtOEGMlwpNhfwPaDdWBmFGXo1FFPxADD+ jqs9oJJpfJjVmALPwc3Q8l67T99TzhqIFankcMc2iJv1aN/A78MPSqIEAuZ5LCSO DScagxI0pEr+iWXcxSO7mysOB8UB47je2814X7PAaHIKpOAV/5eAWdxBJpM5Oevm 0ZP0AnxXJD81tXjA65I0h1D5nc4SeKOFf5fjqHLkgexhixZ7kX1VGH4HZiBlNxd7 u2lxp1ege3RsHBEOBlLjNZz8IHz/7eE= -----END CERTIFICATE-----Generated at Sun Jan 25 18:28:56 2026 by rpki-client