This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa File: 0BFA0C9C927E11EEA47AD74FC4F9AE02.roa (raw, json) Hash identifier: 03xQSZXfxDyCzRtWljLHUlOT109SCX3SLMxm27msFJQ= Subject key identifier: 32:F5:20:E5:09:EF:7D:49:B7:46:A0:E5:59:5A:8C:E3:00:FF:D9:5E Certificate issuer: /CN=A91EF35B/serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Certificate serial: 04D4 Authority key identifier: E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa Signing time: Thu 20 Nov 2025 22:45:40 +0000 ROA not before: Thu 20 Nov 2025 22:45:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146990 IP address blocks: 103.172.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1236 (0x4d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF35B, serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Validity Not Before: Nov 20 22:45:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=691f9a13-c24a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1c:45:b9:38:59:aa:2e:ff:cb:ba:3c:b0:63: d4:6d:fe:4b:2a:b8:73:9a:fc:58:11:28:ae:1a:b5: a2:d4:14:b6:7e:03:b4:6e:d4:d0:70:f0:74:68:ed: 28:dc:66:56:a3:6e:44:66:d0:e7:75:1a:23:a6:3f: 38:a5:72:17:27:ce:f9:d3:51:f2:d9:3e:33:e4:ca: c8:4e:8f:e8:9e:30:75:cd:ec:49:fe:ae:3c:04:e6: 7c:56:e4:0c:cc:8a:a5:87:05:ba:5f:fe:15:68:39: 20:d3:d5:f4:17:1b:68:60:ae:f5:7b:43:42:41:31: 88:bf:b4:c8:68:2b:20:2e:ee:25:f6:f9:3e:d7:23: 90:ae:13:34:c8:bd:a2:0e:73:19:44:1f:06:6f:e4: bb:ef:8e:96:b0:d6:be:02:94:fe:4e:a4:05:26:bb: 28:2d:af:29:a0:7c:0e:fc:b9:cd:6d:a4:72:32:74: a3:fa:1d:b5:71:35:c9:47:99:6d:5f:19:61:95:8f: be:ff:a3:0d:24:b3:ca:31:cb:d3:69:da:46:e5:19: eb:5b:fe:f7:a9:7c:d0:e7:30:01:55:69:fd:f8:d8: dd:88:d1:54:30:d6:4c:a1:09:8a:56:36:f5:99:a1: 56:3d:8b:4b:e3:dc:a7:ce:c8:ba:0e:75:eb:ca:2c: a3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F5:20:E5:09:EF:7D:49:B7:46:A0:E5:59:5A:8C:E3:00:FF:D9:5E X509v3 Authority Key Identifier: keyid:E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.138.0/24 Signature Algorithm: sha256WithRSAEncryption 99:2f:1d:41:68:cc:b8:11:6c:9c:9c:0b:96:dd:be:be:8a:82: 85:e0:00:24:27:74:ca:78:e3:6c:ae:67:03:5e:ad:4b:46:b1: 52:17:78:e4:64:87:38:22:4b:ba:34:d6:05:07:a4:88:30:2d: 6f:06:59:6a:88:82:e8:be:85:96:b4:bc:7f:2c:4f:74:ad:31: 3b:26:25:12:67:20:75:1b:93:6c:d3:29:42:34:7e:74:e7:4d: e0:d7:d5:39:7f:cd:84:8d:83:80:8f:81:7c:c3:3d:4b:7b:6c: a6:9f:31:93:05:8a:26:3a:e8:e0:b7:5a:48:f9:0b:9e:b5:ee: 5f:c1:d9:f1:2c:9a:5f:ad:a8:a9:42:1b:0c:c1:2d:e3:a5:e6: 25:fe:4d:8e:59:97:a1:19:6c:bc:e4:1b:9b:fa:8c:b0:46:76: 3a:b5:30:4e:28:ff:7a:2d:f0:ed:ee:7e:ef:cd:80:c5:aa:5d: 13:89:29:ee:92:5a:a5:39:ba:4d:68:8a:b4:f4:a6:24:b3:34: ac:d7:fc:35:be:a2:a5:9f:62:fe:4d:4b:c3:c2:dd:f3:86:2a: 9a:55:c1:8f:b3:b2:c1:b8:7d:50:b3:b9:b0:22:1b:34:cd:b1: f3:83:30:62:e8:5e:19:49:36:42:5c:26:18:72:06:17:3b:13: bf:c9:0f:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYzNUIxMTAvBgNVBAUTKEU0MDcyMEJBMjkzQkFGMjVCQzBBMTc3OEM2NUNGMEQy RTBGMzUxNjAwHhcNMjUxMTIwMjI0NTQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmOWExMy1jMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xxFuThZqi7/y7o8sGPUbf5LKrhzmvxYESiuGrWi1BS2fgO0btTQcPB0aO0o 3GZWo25EZtDndRojpj84pXIXJ87501Hy2T4z5MrITo/onjB1zexJ/q48BOZ8VuQM zIqlhwW6X/4VaDkg09X0FxtoYK71e0NCQTGIv7TIaCsgLu4l9vk+1yOQrhM0yL2i DnMZRB8Gb+S7746WsNa+ApT+TqQFJrsoLa8poHwO/LnNbaRyMnSj+h21cTXJR5lt XxlhlY++/6MNJLPKMcvTadpG5RnrW/73qXzQ5zABVWn9+NjdiNFUMNZMoQmKVjb1 maFWPYtL49ynzsi6DnXryiyjdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDL1IOUJ 731Jt0ag5VlajOMA/9leMB8GA1UdIwQYMBaAFOQHILopO68lvAoXeMZc8NLg81Fg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjM1Qi9FMDEwMTU4QTU2 NEUxMUVDODU4ODU5MTRDNEY5QUUwMi81QWNndWlrN3J5VzhDaGQ0eGx6dzB1RHpV V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVBY2d1aWs3cnlXOENoZDR4bHp3MHVEelVXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYzNUIvRTAxMDE1OEE1NjRFMTFFQzg1ODg1OTE0QzRGOUFFMDIvMEJGQTBDOUM5 MjdFMTFFRUE0N0FENzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrIowDQYJKoZIhvcNAQELBQADggEBAJkvHUFozLgRbJyc C5bdvr6KgoXgACQndMp442yuZwNerUtGsVIXeORkhzgiS7o01gUHpIgwLW8GWWqI gui+hZa0vH8sT3StMTsmJRJnIHUbk2zTKUI0fnTnTeDX1Tl/zYSNg4CPgXzDPUt7 bKafMZMFiiY66OC3Wkj5C5617l/B2fEsml+tqKlCGwzBLeOl5iX+TY5Zl6EZbLzk G5v6jLBGdjq1ME4o/3ot8O3ufu/NgMWqXROJKe6SWqU5uk1oirT0piSzNKzX/DW+ oqWfYv5NS8PC3fOGKppVwY+zssG4fVCzubAiGzTNsfODMGLoXhlJNkJcJhhyBhc7 E7/JDzU= -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:08 2025 by rpki-client