This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa File: FCF7126E310711ECBFFF5E62C4F9AE02.roa (raw, json) Hash identifier: gCOEYT4rHx9TvA+ZfRDtwyz4y4ESf0OKJSXNsFVnH2I= Subject key identifier: EB:D8:B9:66:77:DC:84:3E:F2:F3:40:31:1C:DA:30:CC:DA:04:36:36 Certificate issuer: /CN=A91EC38C/serialNumber=C396C1E5037D335F7341CA2ECF82261300CDFE95 Certificate serial: 050D Authority key identifier: C3:96:C1:E5:03:7D:33:5F:73:41:CA:2E:CF:82:26:13:00:CD:FE:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa Signing time: Tue 18 Nov 2025 22:44:44 +0000 ROA not before: Tue 18 Nov 2025 22:44:44 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 147176 IP address blocks: 103.174.190.0/24 maxlen: 24 103.174.191.0/24 maxlen: 24 2001:df7:d280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.crl rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1293 (0x50d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC38C, serialNumber=C396C1E5037D335F7341CA2ECF82261300CDFE95 Validity Not Before: Nov 18 22:44:44 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691cf6dc-6750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:79:75:6e:7a:ed:6c:67:2f:6c:03:48:57:76: 8c:4f:c0:74:26:62:b1:b8:43:03:db:c5:0a:87:01: 96:96:30:0b:70:d8:4e:c9:3b:fe:a6:be:3a:03:1d: 60:75:99:ea:e2:81:63:ba:4a:cb:a9:b1:e1:ef:fb: 33:35:ab:73:73:9e:6d:1e:dd:dd:ed:aa:a0:75:25: ab:04:41:c8:30:6f:1a:3a:75:c0:96:2d:85:43:c1: 3b:d2:a8:8b:13:f7:8c:09:b0:90:ac:92:0d:03:c4: df:27:90:78:43:17:71:5b:f4:8e:1e:f5:e6:80:6e: 73:68:9a:ef:c0:92:8d:c3:40:89:a6:4e:c7:cd:8d: d7:e6:ea:da:b0:61:0a:e6:1f:08:fa:0d:28:43:51: bf:e0:61:4e:a5:0f:f2:2f:a2:9d:68:40:ab:af:19: 32:cb:81:c6:51:f2:2d:31:cf:cb:e4:d0:af:c9:e5: a4:82:0f:29:c2:be:b5:58:81:90:22:e3:ac:a1:6c: a6:fd:ef:88:cc:b7:ba:90:3c:43:1f:29:fc:1d:b0: f3:ee:a6:02:d9:2c:b7:11:40:32:3a:a8:22:0e:6d: 29:1e:28:c4:2e:a9:cc:93:32:2f:ef:ca:f3:53:00: 38:e5:20:c0:78:da:3f:4f:67:89:8a:5c:9d:c2:c9: 1f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D8:B9:66:77:DC:84:3E:F2:F3:40:31:1C:DA:30:CC:DA:04:36:36 X509v3 Authority Key Identifier: keyid:C3:96:C1:E5:03:7D:33:5F:73:41:CA:2E:CF:82:26:13:00:CD:FE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.190.0/23 IPv6: 2001:df7:d280::/48 Signature Algorithm: sha256WithRSAEncryption 46:8f:b1:df:09:bc:5a:d2:58:d8:1e:94:c4:19:21:33:27:7e: a8:6d:29:da:b3:76:8a:05:f5:8a:06:26:0f:74:e9:52:1c:85: ea:20:14:7f:da:5a:40:9e:93:5a:e4:f9:dd:16:f6:90:10:a1: a6:cb:32:86:3d:5a:dc:9f:35:2a:83:3d:f1:f1:e7:eb:c9:13: f4:f8:b8:f2:e6:20:81:85:70:ac:8c:5b:75:82:0e:bc:08:6a: 61:8e:a0:44:9a:e2:a5:73:8c:16:99:7d:fd:da:f0:74:b3:17: 35:5b:20:31:ce:9d:70:dc:5f:65:f1:52:1c:5f:f8:38:44:83: 92:d9:a4:f3:93:a0:fd:e3:3c:70:f9:3d:76:ab:10:40:9a:d8: e6:7e:b9:3b:05:de:dc:28:43:d1:ff:6e:a8:f2:31:8f:c0:15: 4b:9e:77:06:db:70:44:6b:3c:a1:c8:fd:65:7f:25:ef:05:ab: 1f:9e:df:6e:be:e3:10:56:ef:a1:59:07:d2:86:29:73:e9:e7: 56:de:71:b9:92:d0:06:4f:d2:c4:df:2b:7a:03:a2:92:da:dd: fb:59:bf:e5:eb:1e:15:36:65:c3:46:74:35:cc:73:1a:ce:96: 71:3c:98:e5:12:28:d6:f2:0e:07:87:4b:25:7f:5e:84:e0:30: 7a:67:b0:71 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzOEMxMTAvBgNVBAUTKEMzOTZDMUU1MDM3RDMzNUY3MzQxQ0EyRUNGODIyNjEz MDBDREZFOTUwHhcNMjUxMTE4MjI0NDQ0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFjZjZkYy02NzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXl1bnrtbGcvbANIV3aMT8B0JmKxuEMD28UKhwGWljALcNhOyTv+pr46Ax1g dZnq4oFjukrLqbHh7/szNatzc55tHt3d7aqgdSWrBEHIMG8aOnXAli2FQ8E70qiL E/eMCbCQrJINA8TfJ5B4QxdxW/SOHvXmgG5zaJrvwJKNw0CJpk7HzY3X5urasGEK 5h8I+g0oQ1G/4GFOpQ/yL6KdaECrrxkyy4HGUfItMc/L5NCvyeWkgg8pwr61WIGQ IuOsoWym/e+IzLe6kDxDHyn8HbDz7qYC2Sy3EUAyOqgiDm0pHijELqnMkzIv78rz UwA45SDAeNo/T2eJilydwskfkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOvYuWZ3 3IQ+8vNAMRzaMMzaBDY2MB8GA1UdIwQYMBaAFMOWweUDfTNfc0HKLs+CJhMAzf6V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzM4Qy84NzA0OERBQTMx MDQxMUVDODNERjJDNUJDNEY5QUUwMi93NWJCNVFOOU0xOXpRY291ejRJbUV3RE5f cFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c1YkI1UU45TTE5elFjb3V6NEltRXdETl9wVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMzOEMvODcwNDhEQUEzMTA0MTFFQzgzREYyQzVCQzRGOUFFMDIvRkNGNzEyNkUz MTA3MTFFQ0JGRkY1RTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrr4wDwQCAAIwCQMHACABDffSgDANBgkqhkiG9w0BAQsF AAOCAQEARo+x3wm8WtJY2B6UxBkhMyd+qG0p2rN2igX1igYmD3TpUhyF6iAUf9pa QJ6TWuT53Rb2kBChpssyhj1a3J81KoM98fHn68kT9Pi48uYggYVwrIxbdYIOvAhq YY6gRJripXOMFpl9/drwdLMXNVsgMc6dcNxfZfFSHF/4OESDktmk85Og/eM8cPk9 dqsQQJrY5n65OwXe3ChD0f9uqPIxj8AVS553BttwRGs8ocj9ZX8l7wWrH57fbr7j EFbvoVkH0oYpc+nnVt5xuZLQBk/SxN8regOiktrd+1m/5eseFTZlw0Z0NcxzGs6W cTyY5RIo1vIOB4dLJX9ehOAwemewcQ== -----END CERTIFICATE-----Generated at Sun Dec 7 00:52:04 2025 by rpki-client