This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/BBF567AEB0F011E5A08A224DC4F9AE02.roa File: BBF567AEB0F011E5A08A224DC4F9AE02.roa (raw, json) Hash identifier: 2jCysRc/ncxmWEacRP7Buw4ItBzXogCKyOpUtSSf4Ks= Subject key identifier: 13:0F:5A:71:B2:46:3F:AA:12:CA:2E:66:5E:58:F6:5D:E5:83:78:42 Certificate issuer: /CN=A91EAE60/serialNumber=20083D4DFA844C5727558C4C756DB20DF807CD81 Certificate serial: 27E8 Authority key identifier: 20:08:3D:4D:FA:84:4C:57:27:55:8C:4C:75:6D:B2:0D:F8:07:CD:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/BBF567AEB0F011E5A08A224DC4F9AE02.roa Signing time: Thu 04 Dec 2025 11:13:39 +0000 ROA not before: Thu 04 Dec 2025 11:13:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17887 IP address blocks: 43.247.56.0/22 maxlen: 22 43.247.56.0/24 maxlen: 24 43.247.57.0/24 maxlen: 24 103.11.12.0/22 maxlen: 22 103.106.8.0/22 maxlen: 22 103.106.8.0/24 maxlen: 24 103.213.204.0/22 maxlen: 22 103.213.204.0/24 maxlen: 24 103.213.205.0/24 maxlen: 24 202.60.192.0/20 maxlen: 20 202.60.192.0/21 maxlen: 21 202.60.192.0/22 maxlen: 22 202.60.195.0/24 maxlen: 24 202.60.196.0/22 maxlen: 22 202.60.198.0/24 maxlen: 24 202.60.199.0/24 maxlen: 24 202.60.200.0/21 maxlen: 21 202.60.200.0/22 maxlen: 22 202.60.200.0/24 maxlen: 24 202.60.203.0/24 maxlen: 24 202.60.204.0/22 maxlen: 22 202.60.204.0/24 maxlen: 24 202.60.205.0/24 maxlen: 24 202.60.207.0/24 maxlen: 24 203.159.72.0/22 maxlen: 22 203.159.72.0/24 maxlen: 24 203.159.73.0/24 maxlen: 24 203.159.74.0/24 maxlen: 24 203.159.75.0/24 maxlen: 24 203.159.96.0/19 maxlen: 19 203.159.96.0/24 maxlen: 24 203.159.100.0/24 maxlen: 24 203.159.101.0/24 maxlen: 24 203.159.103.0/24 maxlen: 24 203.159.104.0/24 maxlen: 24 203.159.107.0/24 maxlen: 24 203.159.108.0/24 maxlen: 24 203.159.111.0/24 maxlen: 24 203.159.112.0/24 maxlen: 24 203.159.120.0/24 maxlen: 24 203.159.124.0/24 maxlen: 24 203.159.125.0/24 maxlen: 24 203.159.126.0/24 maxlen: 24 203.159.127.0/24 maxlen: 24 2405:6d00::/32 maxlen: 32 2405:6d00:100::/48 maxlen: 48 2405:6d00:101::/48 maxlen: 48 2405:6d00:104::/48 maxlen: 48 2405:6d00:105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.crl rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10216 (0x27e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE60, serialNumber=20083D4DFA844C5727558C4C756DB20DF807CD81 Validity Not Before: Dec 4 11:13:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69316ce3-5c68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:45:37:9d:9c:90:bb:c1:d1:ce:2a:5f:30:21: 96:c1:70:c0:bb:e0:16:0e:f6:78:d0:eb:c8:07:5f: 22:57:f1:5f:99:d7:0b:a8:b0:bd:34:35:4f:4f:dd: 07:91:aa:8a:40:f5:56:eb:83:4b:40:84:81:6e:5c: 24:f5:36:f3:0a:62:79:c4:43:22:28:51:0e:39:2d: 04:b7:f7:6c:f8:cf:5a:19:df:e0:6d:c5:20:e1:4f: f5:27:71:20:9c:d4:21:bc:19:29:d4:4e:74:d2:b1: f4:2c:eb:4d:f8:3a:0b:37:ca:73:d4:2c:88:ad:50: 32:67:9c:f5:c3:21:9f:1c:73:52:c4:0f:13:25:2d: ec:a4:04:b2:d7:c6:b3:03:1d:27:9b:f6:88:03:13: 06:4c:be:74:75:c2:82:85:86:5b:6d:20:e6:ad:25: dd:68:32:80:4a:1a:5f:0f:ba:4f:49:66:63:04:26: 0c:21:df:e1:c1:d5:72:4f:3e:ff:73:6a:59:c3:29: 26:f9:4b:d0:fc:97:71:21:ab:93:1f:9f:fc:47:6a: cf:40:1d:24:9a:3e:df:8e:12:ff:4e:75:be:de:4d: be:59:ee:03:50:9a:5e:85:ef:60:ed:5c:99:03:cd: 1f:ee:0b:28:f0:33:b1:c8:72:3c:c4:97:2c:6f:04: c0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0F:5A:71:B2:46:3F:AA:12:CA:2E:66:5E:58:F6:5D:E5:83:78:42 X509v3 Authority Key Identifier: keyid:20:08:3D:4D:FA:84:4C:57:27:55:8C:4C:75:6D:B2:0D:F8:07:CD:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/BBF567AEB0F011E5A08A224DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.56.0/22 103.11.12.0/22 103.106.8.0/22 103.213.204.0/22 202.60.192.0/20 203.159.72.0/22 203.159.96.0/19 IPv6: 2405:6d00::/32 Signature Algorithm: sha256WithRSAEncryption 65:1e:5c:e5:31:64:4f:3b:50:a0:87:72:d4:0f:4e:16:aa:d6: 71:c5:2f:80:85:b9:7f:1c:4c:c5:d9:98:98:1a:c7:d8:75:88: 5e:ee:1a:b9:a2:1f:3f:d9:46:84:14:dd:6c:f7:c6:2d:f4:51: 4a:10:0c:3f:7b:56:87:1a:80:dd:5e:20:b2:74:a5:1f:d3:14: e0:07:72:97:ba:82:07:44:96:dc:e1:57:bf:49:e0:04:e4:ff: bc:02:0f:8f:84:10:1a:bd:98:f8:6d:fd:1e:31:79:7d:f7:72: 0d:01:fb:2c:d9:25:b2:5c:66:70:a5:55:bb:e1:15:7a:a2:62: 60:4f:ad:43:c0:b0:e4:ab:f4:a0:13:29:74:79:72:f2:b1:94: 74:16:f4:97:d8:c0:04:f1:74:66:be:e4:98:2d:00:1e:6d:df: 7e:84:69:14:43:6d:99:8e:64:71:ad:fe:ed:2a:f7:b4:53:9d: 29:3c:d2:38:50:57:7d:61:24:df:2b:f1:c7:ef:ec:82:2f:d5: e2:58:87:da:4b:40:f3:4c:7b:8d:f7:6d:ba:e1:07:5b:11:fb: 72:5b:a6:e7:12:fa:45:fe:fd:e6:6c:7d:ab:92:8d:64:98:99: 4a:fe:a4:53:9d:74:ec:5d:40:83:b7:1c:ae:07:0b:7b:e1:41: dc:3c:ab:b5 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICJ+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFNjAxMTAvBgNVBAUTKDIwMDgzRDRERkE4NDRDNTcyNzU1OEM0Qzc1NkRCMjBE RjgwN0NEODEwHhcNMjUxMjA0MTExMzM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMxNmNlMy01YzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UU3nZyQu8HRzipfMCGWwXDAu+AWDvZ40OvIB18iV/FfmdcLqLC9NDVPT90H kaqKQPVW64NLQISBblwk9TbzCmJ5xEMiKFEOOS0Et/ds+M9aGd/gbcUg4U/1J3Eg nNQhvBkp1E500rH0LOtN+DoLN8pz1CyIrVAyZ5z1wyGfHHNSxA8TJS3spASy18az Ax0nm/aIAxMGTL50dcKChYZbbSDmrSXdaDKAShpfD7pPSWZjBCYMId/hwdVyTz7/ c2pZwykm+UvQ/JdxIauTH5/8R2rPQB0kmj7fjhL/TnW+3k2+We4DUJpehe9g7VyZ A80f7gso8DOxyHI8xJcsbwTA/wIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFBMPWnGy Rj+qEsouZl5Y9l3lg3hCMB8GA1UdIwQYMBaAFCAIPU36hExXJ1WMTHVtsg34B82B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUU2MC9GMTk5NjcxMkM3 Q0YxMUU0QjEzQkUxMjFDNEY5QUUwMi9JQWc5VGZxRVRGY25WWXhNZFcyeURmZ0h6 WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBZzlUZnFFVEZjblZZeE1kVzJ5RGZnSHpZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFNjAvRjE5OTY3MTJDN0NGMTFFNEIxM0JFMTIxQzRGOUFFMDIvQkJGNTY3QUVC MEYwMTFFNUEwOEEyMjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIr9zgDBAJnCwwDBAJnaggDBAJn1cwDBATKPMADBALLn0gD BAXLn2AwDQQCAAIwBwMFACQFbQAwDQYJKoZIhvcNAQELBQADggEBAGUeXOUxZE87 UKCHctQPThaq1nHFL4CFuX8cTMXZmJgax9h1iF7uGrmiHz/ZRoQU3Wz3xi30UUoQ DD97VocagN1eILJ0pR/TFOAHcpe6ggdEltzhV79J4ATk/7wCD4+EEBq9mPht/R4x eX33cg0B+yzZJbJcZnClVbvhFXqiYmBPrUPAsOSr9KATKXR5cvKxlHQW9JfYwATx dGa+5JgtAB5t336EaRRDbZmOZHGt/u0q97RTnSk80jhQV31hJN8r8cfv7IIv1eJY h9pLQPNMe433bbrhB1sR+3JbpucS+kX+/eZsfauSjWSYmUr+pFOddOxdQIO3HK4H C3vhQdw8q7U= -----END CERTIFICATE-----Generated at Sat Dec 6 22:47:44 2025 by rpki-client