This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/06F73C70ABD011F0977C9F10C4F9AE02.roa File: 06F73C70ABD011F0977C9F10C4F9AE02.roa (raw, json) Hash identifier: qVJeghg9xFTUN1CD6PkiZIjv0lu5fKKjik0h1AgrzM8= Subject key identifier: E0:96:EE:F4:78:67:AD:62:8F:91:A3:E1:62:E1:7A:69:C8:1A:47:DE Certificate issuer: /CN=A91E9EBA/serialNumber=85AE6219F86269414BE176B7825F16CDDD4242D4 Certificate serial: F8 Authority key identifier: 85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/06F73C70ABD011F0977C9F10C4F9AE02.roa Signing time: Thu 27 Nov 2025 03:21:45 +0000 ROA not before: Thu 27 Nov 2025 03:21:45 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 26658 IP address blocks: 103.197.168.0/22 maxlen: 24 220.158.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9EBA, serialNumber=85AE6219F86269414BE176B7825F16CDDD4242D4 Validity Not Before: Nov 27 03:21:45 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6927c3c8-6e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:6f:7e:de:1a:e6:14:e7:0b:6a:53:1b:da: ce:50:a2:8b:39:78:0e:49:6c:40:de:f1:35:69:a1: 64:39:51:c6:51:40:76:c3:ce:0f:d1:43:a7:5b:30: b8:51:de:b3:77:c5:14:b4:34:bc:bf:b9:89:8c:ed: ee:f0:7a:15:0b:ae:82:a7:a3:7e:6c:c7:73:fc:4e: de:37:4f:07:be:96:9e:7e:9a:35:26:9d:9d:79:65: 09:94:5f:32:2f:8b:c6:11:a2:d9:78:19:c9:89:a7: 8d:a7:14:50:f4:bc:41:31:95:27:30:37:37:8c:36: c4:ab:90:de:15:e0:b0:7f:2b:9b:14:45:cb:a4:1d: 3e:ed:ce:96:1d:a7:c9:e7:ae:87:4a:a5:29:e5:3c: c3:83:5f:83:87:63:a6:0a:9c:9e:47:6b:e8:07:82: 37:91:8e:4c:52:13:63:94:39:7d:18:65:0f:5f:a1: 45:d7:5b:c8:2a:db:91:5d:82:71:66:52:3c:6b:45: 88:14:52:12:03:24:7c:1e:8b:72:ff:e9:ef:2d:cc: a6:e7:d5:84:61:6f:78:ff:13:8a:d6:7c:06:df:01: 9d:93:b6:32:29:16:fd:7c:3a:2a:08:d6:e1:34:4f: 2a:91:94:ac:b3:c6:2f:d6:4a:f7:52:57:b3:b5:84: 0e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:96:EE:F4:78:67:AD:62:8F:91:A3:E1:62:E1:7A:69:C8:1A:47:DE X509v3 Authority Key Identifier: keyid:85:AE:62:19:F8:62:69:41:4B:E1:76:B7:82:5F:16:CD:DD:42:42:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ha5iGfhiaUFL4Xa3gl8Wzd1CQtQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9EBA/FA320CDA5ADC11EFB5606637C4F9AE02/06F73C70ABD011F0977C9F10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.168.0/22 220.158.224.0/22 Signature Algorithm: sha256WithRSAEncryption 84:18:6e:f8:b7:d5:5f:88:12:ae:84:89:62:6d:89:08:f7:40: 8f:8d:6c:53:68:5d:34:97:61:86:96:f9:39:aa:36:21:1b:62: 96:20:3a:df:9e:9f:47:19:c3:a4:80:20:a2:2d:a9:2b:3b:f8: f1:a9:78:21:a2:07:3b:83:d2:10:7c:45:2c:cb:58:4c:0a:04: 1c:69:73:f8:59:f6:82:28:80:27:d9:7c:d5:33:b1:1c:5a:e4: b9:bf:ba:9e:f8:0b:0a:59:0f:75:55:51:f6:7a:40:2d:a8:7a: e7:9c:fb:6f:55:02:9d:de:2e:b8:98:cc:e8:7e:1f:e1:6f:13: c0:fc:72:d3:9a:ed:b9:bc:39:24:3b:37:1e:8f:eb:a6:f6:a2: ce:fe:90:74:58:98:7e:1a:f5:d2:53:66:36:0a:8c:0f:6f:3f: d6:3e:5b:00:37:5c:b7:26:45:a3:51:6b:78:f6:ab:7b:9c:ee: 75:17:bb:9b:77:76:ea:6a:ac:b5:d8:c6:12:5c:0b:23:c6:dc: 84:bc:84:99:5d:91:de:42:86:e7:83:0c:93:99:06:37:89:2b: 75:52:25:b6:e6:a1:90:4e:af:36:13:eb:fa:f1:df:cb:3c:2f: db:3f:78:1f:0b:f9:07:61:57:bd:c0:33:5d:3c:6c:60:e9:ac: 8f:df:db:3a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlFQkExMTAvBgNVBAUTKDg1QUU2MjE5Rjg2MjY5NDE0QkUxNzZCNzgyNUYxNkNE REQ0MjQyRDQwHhcNMjUxMTI3MDMyMTQ1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI3YzNjOC02ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdVvft4a5hTnC2pTG9rOUKKLOXgOSWxA3vE1aaFkOVHGUUB2w84P0UOnWzC4 Ud6zd8UUtDS8v7mJjO3u8HoVC66Cp6N+bMdz/E7eN08Hvpaefpo1Jp2deWUJlF8y L4vGEaLZeBnJiaeNpxRQ9LxBMZUnMDc3jDbEq5DeFeCwfyubFEXLpB0+7c6WHafJ 566HSqUp5TzDg1+Dh2OmCpyeR2voB4I3kY5MUhNjlDl9GGUPX6FF11vIKtuRXYJx ZlI8a0WIFFISAyR8Hoty/+nvLcym59WEYW94/xOK1nwG3wGdk7YyKRb9fDoqCNbh NE8qkZSss8Yv1kr3UleztYQOaQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOCW7vR4 Z61ij5Gj4WLhemnIGkfeMB8GA1UdIwQYMBaAFIWuYhn4YmlBS+F2t4JfFs3dQkLU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUVCQS9GQTMyMENEQTVB REMxMUVGQjU2MDY2MzdDNEY5QUUwMi9oYTVpR2ZoaWFVRkw0WGEzZ2w4V3pkMUNR dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhNWlHZmhpYVVGTDRYYTNnbDhXemQxQ1F0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlFQkEvRkEzMjBDREE1QURDMTFFRkI1NjA2NjM3QzRGOUFFMDIvMDZGNzNDNzBB QkQwMTFGMDk3N0M5RjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnxagDBALcnuAwDQYJKoZIhvcNAQELBQADggEBAIQYbvi3 1V+IEq6EiWJtiQj3QI+NbFNoXTSXYYaW+TmqNiEbYpYgOt+en0cZw6SAIKItqSs7 +PGpeCGiBzuD0hB8RSzLWEwKBBxpc/hZ9oIogCfZfNUzsRxa5Lm/up74CwpZD3VV UfZ6QC2oeuec+29VAp3eLriYzOh+H+FvE8D8ctOa7bm8OSQ7Nx6P66b2os7+kHRY mH4a9dJTZjYKjA9vP9Y+WwA3XLcmRaNRa3j2q3uc7nUXu5t3dupqrLXYxhJcCyPG 3IS8hJldkd5ChueDDJOZBjeJK3VSJbbmoZBOrzYT6/rx38s8L9s/eB8L+QdhV73A M108bGDprI/f2zo= -----END CERTIFICATE-----Generated at Sat Dec 6 19:56:19 2025 by rpki-client