This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa File: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (raw, json) Hash identifier: 6WTlAebSNT3dRwlxKbzoaSgBI3lIZqiUGPWCDMJw06Q= Subject key identifier: 24:2D:DC:8E:B0:DA:65:68:D7:68:FD:BA:5B:0F:CD:50:85:EA:A2:36 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 0662 Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa Signing time: Tue 25 Nov 2025 12:28:54 +0000 ROA not before: Tue 25 Nov 2025 12:28:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 63473 IP address blocks: 103.73.64.0/23 maxlen: 23 103.73.66.0/24 maxlen: 24 103.73.67.0/24 maxlen: 24 216.250.96.0/24 maxlen: 24 216.250.97.0/24 maxlen: 24 2406:ef80:1::/48 maxlen: 48 2406:ef80:2::/48 maxlen: 48 2406:ef80:3::/48 maxlen: 48 2406:ef80:4::/48 maxlen: 48 2406:ef80:5::/48 maxlen: 48 2406:ef80:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176, serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Nov 25 12:28:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6925a106-ded9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ea:2f:6e:ed:44:98:d9:95:c2:85:44:d6:d4: af:ec:86:be:a4:aa:94:d6:a0:fc:25:67:7a:eb:68: 32:94:19:7c:73:a8:af:3c:94:79:e6:75:38:33:f4: 9e:95:68:d8:30:0f:1e:f5:df:3b:86:8b:bd:74:f3: df:2a:bc:cc:cf:41:2d:a5:8a:81:b3:f8:15:1f:79: a0:0b:f7:8b:29:0c:3b:fd:85:e3:3d:ee:31:2e:0a: 28:cf:ea:1b:64:1a:fc:62:28:e7:29:a8:0c:1a:64: a5:7b:b7:00:f8:00:ae:d2:cf:5a:a1:5f:f4:f7:ac: 7e:77:54:33:ec:aa:06:b2:2a:01:fe:ff:4a:61:c9: 9f:48:df:e9:9d:40:91:97:90:09:ba:13:bb:b8:75: aa:e0:76:b8:d4:ef:09:d5:5c:56:4a:8c:73:ea:c4: d7:13:10:c7:05:70:e8:c7:4a:45:d8:b4:26:ce:e0: 0f:31:fc:5d:36:bf:5e:ee:ea:99:cb:98:c7:19:74: 65:b6:cf:dd:36:a9:06:fc:f8:fb:08:19:2f:a1:1c: e7:b9:21:50:36:1a:12:7a:39:04:c7:5e:77:ba:a9: a4:91:fb:b9:f8:ba:8e:11:59:c9:09:9d:97:ed:0d: 5d:9f:b9:c9:49:fd:72:36:d9:01:18:09:e0:b0:52: c0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2D:DC:8E:B0:DA:65:68:D7:68:FD:BA:5B:0F:CD:50:85:EA:A2:36 X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.64.0/22 216.250.96.0/23 IPv6: 2406:ef80:1::-2406:ef80:5:ffff:ffff:ffff:ffff:ffff 2406:ef80:100::/40 Signature Algorithm: sha256WithRSAEncryption 15:27:e8:fb:72:98:f6:78:f1:67:bf:f1:8a:76:2f:3d:ef:cb: 0d:2a:1e:e4:04:5c:4a:f7:78:a0:74:52:31:63:d0:e2:91:8b: 58:6f:c1:81:7f:4a:6c:2d:cd:bb:03:e9:a1:7f:b6:db:37:09: 22:f9:9f:fc:47:ec:42:69:74:89:66:5d:84:a7:c4:3f:2d:a9: 07:05:13:9a:60:b5:e5:e3:a5:dc:33:7b:43:ad:98:33:16:b5: 74:bc:13:7f:bc:69:f4:6c:f3:6e:d5:60:a7:f8:16:25:f1:47: 3b:1b:37:20:5e:77:36:32:a7:9f:9e:d7:3e:f5:0a:df:9a:55: 8d:54:76:73:4d:2e:2b:10:a0:1c:0c:cd:06:a6:77:1c:aa:b0: 1c:f1:01:3c:6b:6b:8e:cf:1c:5d:f7:a0:92:43:04:79:6b:f9: 90:53:a2:ee:91:b7:bf:c9:c3:52:30:14:b5:61:93:2d:29:d0: 45:db:20:c0:79:0a:ec:af:ea:7a:fb:3f:2a:bf:cb:e2:69:9f: da:f1:04:86:c5:9f:9b:51:d2:e1:a2:39:6d:3e:86:7b:65:39: 55:c8:ad:90:cd:c6:25:4f:18:7d:b5:3e:b9:21:e2:bc:a2:b3: cb:82:3f:72:88:3d:ab:7f:1e:4c:4e:69:e7:f2:f6:4c:a4:28: c2:64:f5:5a -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjUxMTI1MTIyODU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTI1YTEwNi1kZWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuovbu1EmNmVwoVE1tSv7Ia+pKqU1qD8JWd662gylBl8c6ivPJR55nU4M/Se lWjYMA8e9d87hou9dPPfKrzMz0EtpYqBs/gVH3mgC/eLKQw7/YXjPe4xLgooz+ob ZBr8YijnKagMGmSle7cA+ACu0s9aoV/096x+d1Qz7KoGsioB/v9KYcmfSN/pnUCR l5AJuhO7uHWq4Ha41O8J1VxWSoxz6sTXExDHBXDox0pF2LQmzuAPMfxdNr9e7uqZ y5jHGXRlts/dNqkG/Pj7CBkvoRznuSFQNhoSejkEx153uqmkkfu5+LqOEVnJCZ2X 7Q1dn7nJSf1yNtkBGAngsFLA/wIDAQABo4ICvzCCArswHQYDVR0OBBYEFCQt3I6w 2mVo12j9ulsPzVCF6qI2MB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExNzYvQUREM0FFQ0VCMjhFMTFFQjk0RDIxODQ3QzRGOUFFMDIvNjU5NUNFOUNC MjkwMTFFQkJCRjRGNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MBIEAgABMAwDBAJnSUADBAHY+mAwIgQCAAIwHDASAwcAJAbvgAABAwcBJAbv gAAEAwYAJAbvgAEwDQYJKoZIhvcNAQELBQADggEBABUn6PtymPZ48We/8Yp2Lz3v yw0qHuQEXEr3eKB0UjFj0OKRi1hvwYF/SmwtzbsD6aF/tts3CSL5n/xH7EJpdIlm XYSnxD8tqQcFE5pgteXjpdwze0OtmDMWtXS8E3+8afRs827VYKf4FiXxRzsbNyBe dzYyp5+e1z71Ct+aVY1UdnNNLisQoBwMzQamdxyqsBzxATxra47PHF33oJJDBHlr +ZBTou6Rt7/Jw1IwFLVhky0p0EXbIMB5Cuyv6nr7Pyq/y+Jpn9rxBIbFn5tR0uGi OW0+hntlOVXIrZDNxiVPGH21Prkh4ryis8uCP3KIPat/HkxOaefy9kykKMJk9Vo= -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:14 2025 by rpki-client