This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/709F3B2E145C11EC9A902165C4F9AE02.roa File: 709F3B2E145C11EC9A902165C4F9AE02.roa (raw, json) Hash identifier: M6yv5fOW6rdXU2ZAH2K4BETuh9vZsuidxSebVax3mOc= Subject key identifier: 56:F7:9B:55:E8:E2:5A:53:FE:CC:83:2C:B4:BA:01:B8:5F:3F:BF:15 Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 0557 Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/709F3B2E145C11EC9A902165C4F9AE02.roa Signing time: Wed 26 Nov 2025 22:14:53 +0000 ROA not before: Wed 26 Nov 2025 22:14:53 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 135615 IP address blocks: 103.172.188.0/23 maxlen: 23 103.172.188.0/24 maxlen: 24 103.172.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1367 (0x557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB, serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: Nov 26 22:14:53 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69277bdd-9ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:21:83:e2:e4:18:a9:da:4a:ee:fe:99:3e:98: 3e:97:01:b1:06:4a:b2:4e:e3:93:a0:b3:d9:4b:06: 0c:24:c1:96:ce:33:35:24:eb:6c:07:c8:0e:60:1c: 5c:42:7c:23:51:ba:46:ca:b3:26:e4:35:9f:59:fd: 9c:f2:31:bd:e4:5e:d1:9b:f8:9d:02:ea:75:0b:14: 46:95:7a:e7:bd:c9:b5:ed:ca:4c:ef:e3:fd:5a:d9: 8a:ab:f2:49:e7:0e:d2:61:d2:79:0f:cf:0e:2b:16: 70:76:c6:c9:97:a7:9e:94:d1:54:88:9e:cc:fd:f6: 51:a6:ae:fa:39:05:c7:da:e5:a0:c6:14:0e:10:32: f7:07:58:dd:fe:76:a8:0e:97:66:d0:4c:49:01:9c: 10:32:0b:5d:c0:1e:96:7a:77:99:f5:2f:5a:52:70: 24:1a:9d:0f:9b:fd:dd:82:f9:7e:d6:50:96:2f:2e: 53:5a:dc:6f:d5:8b:f7:cf:8b:30:49:37:c7:eb:5d: d0:d6:73:5a:44:52:83:bf:5d:c8:bc:85:d5:ff:ef: f1:48:f4:3c:60:be:9b:74:9d:1f:0a:d6:7c:b5:ae: f1:55:db:c0:27:98:3f:15:a1:60:cf:38:44:36:d8: 49:d3:b5:bc:0c:48:e3:55:39:8a:2e:a8:e1:d8:77: fb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F7:9B:55:E8:E2:5A:53:FE:CC:83:2C:B4:BA:01:B8:5F:3F:BF:15 X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/709F3B2E145C11EC9A902165C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.188.0/23 Signature Algorithm: sha256WithRSAEncryption 97:11:1d:73:6d:7a:63:b4:97:2f:69:6f:79:12:bc:65:ef:06: 94:0d:4c:3a:96:9a:25:d9:a2:8b:99:8c:94:50:80:9f:6d:fe: c6:9a:c0:cd:56:0d:52:5c:3b:01:79:af:74:6a:de:cc:80:3c: fc:e6:f2:90:1b:8c:30:a7:cd:2c:96:85:5c:47:d8:79:c0:24: c5:03:c2:cc:22:c3:9d:43:cc:15:29:ad:8c:98:80:02:d0:ff: b2:0c:d0:7c:55:49:65:5a:ce:45:fb:a8:eb:71:6c:55:df:8c: b9:38:aa:41:65:a6:17:2b:ef:f9:58:e1:0f:ee:63:76:58:07: 7c:3a:ca:0a:f9:ab:d8:1a:56:19:ac:11:9a:d5:7b:fa:af:92: 0b:7d:58:39:9c:91:b1:b5:e9:c6:cc:ba:ab:e7:3f:5a:67:43: ca:b3:9e:75:96:14:ca:65:10:55:aa:03:c4:4d:1a:35:ab:26: f8:14:8d:5b:f9:32:76:ab:fd:13:93:fa:ef:08:36:8e:0d:b0: 35:ac:9f:e8:fa:64:36:29:7c:c3:15:27:2e:41:b7:6f:cc:88: bd:05:3c:97:29:f8:1f:80:38:8d:13:5d:2d:96:c1:b4:f7:f6: 65:ea:ed:2f:b5:b8:a4:40:bb:cd:4a:f6:9a:a1:73:cf:d0:21: b0:62:85:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjUxMTI2MjIxNDUzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3N2JkZC05YWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoiGD4uQYqdpK7v6ZPpg+lwGxBkqyTuOToLPZSwYMJMGWzjM1JOtsB8gOYBxc QnwjUbpGyrMm5DWfWf2c8jG95F7Rm/idAup1CxRGlXrnvcm17cpM7+P9WtmKq/JJ 5w7SYdJ5D88OKxZwdsbJl6eelNFUiJ7M/fZRpq76OQXH2uWgxhQOEDL3B1jd/nao Dpdm0ExJAZwQMgtdwB6WeneZ9S9aUnAkGp0Pm/3dgvl+1lCWLy5TWtxv1Yv3z4sw STfH613Q1nNaRFKDv13IvIXV/+/xSPQ8YL6bdJ0fCtZ8ta7xVdvAJ5g/FaFgzzhE NthJ07W8DEjjVTmKLqjh2Hf7iQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFb3m1Xo 4lpT/syDLLS6AbhfP78VMB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg3QUIvOTE2QjA2NjYxNDU4MTFFQzlFRDZDNzNCQzRGOUFFMDIvNzA5RjNCMkUx NDVDMTFFQzlBOTAyMTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrLwwDQYJKoZIhvcNAQELBQADggEBAJcRHXNtemO0ly9p b3kSvGXvBpQNTDqWmiXZoouZjJRQgJ9t/saawM1WDVJcOwF5r3Rq3syAPPzm8pAb jDCnzSyWhVxH2HnAJMUDwswiw51DzBUprYyYgALQ/7IM0HxVSWVazkX7qOtxbFXf jLk4qkFlphcr7/lY4Q/uY3ZYB3w6ygr5q9gaVhmsEZrVe/qvkgt9WDmckbG16cbM uqvnP1pnQ8qznnWWFMplEFWqA8RNGjWrJvgUjVv5Mnar/ROT+u8INo4NsDWsn+j6 ZDYpfMMVJy5Bt2/MiL0FPJcp+B+AOI0TXS2WwbT39mXq7S+1uKRAu81K9pqhc8/Q IbBihRg= -----END CERTIFICATE-----Generated at Sat Dec 6 18:31:50 2025 by rpki-client