This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa File: 7F29585EC43011F09039384AC4F9AE02.roa (raw, json) Hash identifier: 48zywXKMdCoecrzGBCo9/VsiO+sSg4SaJvOnw5Kh4Qo= Subject key identifier: 1E:DE:D1:03:F9:C9:7B:16:4B:7B:C8:26:BC:F7:46:4F:DD:71:24:8F Certificate issuer: /CN=A91F231C/serialNumber=68D1466433958416DD81A7D4ABF2B243EE7D8B56 Certificate serial: 0D Authority key identifier: 68:D1:46:64:33:95:84:16:DD:81:A7:D4:AB:F2:B2:43:EE:7D:8B:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa Signing time: Tue 25 Nov 2025 04:37:08 +0000 ROA not before: Tue 25 Nov 2025 04:37:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135359 IP address blocks: 103.208.188.0/24 maxlen: 24 103.208.189.0/24 maxlen: 24 103.208.190.0/24 maxlen: 24 103.208.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.crl rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F231C, serialNumber=68D1466433958416DD81A7D4ABF2B243EE7D8B56 Validity Not Before: Nov 25 04:37:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69253274-15c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:46:e4:a5:3b:79:0d:1c:96:58:1a:0c:8c:5c: 0b:18:c7:c3:ff:bf:cc:54:2f:f1:f2:d1:74:a2:8b: 81:6d:5e:43:90:25:ae:e5:21:ab:ef:74:c9:9f:9d: ab:1f:12:ae:98:85:b3:6c:d4:92:c7:7a:74:3d:1c: f9:86:80:09:1e:d0:13:ab:78:8d:2a:a1:c5:ac:f2: 4c:f3:31:9d:1f:98:c7:2a:90:8f:58:e0:dc:3a:76: d6:a3:db:d3:a0:fc:64:23:32:fd:54:dd:5d:97:60: 3f:20:84:26:48:ef:45:f4:86:c3:40:44:63:60:24: 6b:1e:70:6e:8f:49:2e:e0:72:e8:c6:88:5b:66:68: 46:08:39:87:2c:c2:28:cc:4c:93:a7:36:5b:a5:04: 09:79:de:80:02:5f:57:72:ce:3c:fb:61:ce:12:22: 98:c6:7e:02:68:d4:5d:21:ab:11:c0:1d:30:63:62: 70:22:35:a7:fd:90:8c:01:97:2d:7a:5b:db:6e:12: b3:f6:fa:a3:97:9c:a7:15:1d:26:08:cb:b7:b9:e7: 28:b0:7e:f9:48:9d:56:bc:ea:19:9b:9c:a8:e5:3a: 68:46:a9:b2:ad:a5:8e:e4:7d:25:e8:3d:92:8a:9e: e6:c1:49:73:2e:b9:8b:3b:b2:3a:15:c5:2d:de:26: c5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DE:D1:03:F9:C9:7B:16:4B:7B:C8:26:BC:F7:46:4F:DD:71:24:8F X509v3 Authority Key Identifier: keyid:68:D1:46:64:33:95:84:16:DD:81:A7:D4:AB:F2:B2:43:EE:7D:8B:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.188.0/22 Signature Algorithm: sha256WithRSAEncryption 41:22:52:4a:ea:fe:20:7b:8b:63:d8:65:ac:3e:74:b2:83:8c: ce:c5:21:e0:92:bb:27:55:89:2d:3a:44:67:7e:f7:74:b9:33: 6d:cb:19:81:fd:eb:bb:3b:95:10:48:9c:c2:a0:d0:13:86:e2: 22:4a:2a:f3:1a:7a:03:4a:2b:43:e6:55:89:b9:48:e1:5b:2e: e7:3a:39:33:b4:89:45:a0:c8:7b:5b:d3:ff:3b:db:83:b0:19: ba:59:68:7b:de:2b:a2:26:f5:ed:af:e6:bb:04:5d:12:df:c1: da:3d:af:9b:59:fc:50:b7:95:36:4d:df:9a:5b:be:a8:4e:5a: 6d:99:89:5b:00:e8:29:44:90:97:30:8f:f7:09:f3:b5:67:a9: 11:68:e6:50:c9:81:c8:42:8e:7c:c8:d1:e3:ad:fd:e2:41:0a: 16:da:d7:2e:10:b5:12:80:c7:5b:86:d1:ce:16:6f:2c:42:cd: ca:2a:e3:4d:b5:09:b0:41:72:a6:15:b7:71:84:af:3a:48:67: 9e:6e:cd:de:a4:f1:ec:3d:21:3d:48:6f:63:c9:67:e4:b6:1c: 62:76:63:8e:08:42:0f:05:db:31:b8:48:c5:c1:63:ca:0f:cb: 48:cd:e8:c3:1e:f4:0f:18:a3:c4:c3:f1:73:4c:8d:92:cc:a9: 3e:7e:5c:9d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjMxQzExMC8GA1UEBRMoNjhEMTQ2NjQzMzk1ODQxNkREODFBN0Q0QUJGMkIyNDNF RTdEOEI1NjAeFw0yNTExMjUwNDM3MDhaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MjUzMjc0LTE1YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+RuSlO3kNHJZYGgyMXAsYx8P/v8xUL/Hy0XSii4FtXkOQJa7lIavvdMmfnasf Eq6YhbNs1JLHenQ9HPmGgAke0BOreI0qocWs8kzzMZ0fmMcqkI9Y4Nw6dtaj29Og /GQjMv1U3V2XYD8ghCZI70X0hsNARGNgJGsecG6PSS7gcujGiFtmaEYIOYcswijM TJOnNlulBAl53oACX1dyzjz7Yc4SIpjGfgJo1F0hqxHAHTBjYnAiNaf9kIwBly16 W9tuErP2+qOXnKcVHSYIy7e55yiwfvlInVa86hmbnKjlOmhGqbKtpY7kfSXoPZKK nubBSXMuuYs7sjoVxS3eJsXTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHt7RA/nJ exZLe8gmvPdGT91xJI8wHwYDVR0jBBgwFoAUaNFGZDOVhBbdgafUq/KyQ+59i1Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyMzFDLzI4RTgzRTZBQzQz MDExRjA5NkNFOUM0OUM0RjlBRTAyL2FORkdaRE9WaEJiZGdhZlVxX0t5US01OWkx WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU5GR1pET1ZoQmJkZ2FmVXFfS3lRLTU5aTFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjMxQy8yOEU4M0U2QUM0MzAxMUYwOTZDRTlDNDlDNEY5QUUwMi83RjI5NTg1RUM0 MzAxMUYwOTAzOTM4NEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfQvDANBgkqhkiG9w0BAQsFAAOCAQEAQSJSSur+IHuLY9hl rD50soOMzsUh4JK7J1WJLTpEZ373dLkzbcsZgf3ruzuVEEicwqDQE4biIkoq8xp6 A0orQ+ZViblI4Vsu5zo5M7SJRaDIe1vT/zvbg7AZulloe94roib17a/muwRdEt/B 2j2vm1n8ULeVNk3fmlu+qE5abZmJWwDoKUSQlzCP9wnztWepEWjmUMmByEKOfMjR 46394kEKFtrXLhC1EoDHW4bRzhZvLELNyirjTbUJsEFyphW3cYSvOkhnnm7N3qTx 7D0hPUhvY8ln5LYcYnZjjghCDwXbMbhIxcFjyg/LSM3owx70DxijxMPxc0yNksyp Pn5cnQ== -----END CERTIFICATE-----Generated at Sun Dec 7 04:10:56 2025 by rpki-client