This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/0BD593E6136D11F09F542C81C4F9AE02.roa File: 0BD593E6136D11F09F542C81C4F9AE02.roa (raw, json) Hash identifier: HrcPdg7AcdEC2smU/wutkGHmrLpDpotb0GCdlOs2xPQ= Subject key identifier: E7:02:C4:33:BE:F3:9A:0C:2B:11:39:D1:FD:B4:95:50:56:37:FD:82 Certificate issuer: /CN=A91F3B5F/serialNumber=9496B1FC6063644372398CEA338B8224259175CB Certificate serial: 7B Authority key identifier: 94:96:B1:FC:60:63:64:43:72:39:8C:EA:33:8B:82:24:25:91:75:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJax_GBjZENyOYzqM4uCJCWRdcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/0BD593E6136D11F09F542C81C4F9AE02.roa Signing time: Sun 09 Nov 2025 04:51:57 +0000 ROA not before: Sun 09 Nov 2025 04:51:57 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153526 IP address blocks: 203.77.168.0/21 maxlen: 21 2401:e9a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/lJax_GBjZENyOYzqM4uCJCWRdcs.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/lJax_GBjZENyOYzqM4uCJCWRdcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJax_GBjZENyOYzqM4uCJCWRdcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=9496B1FC6063644372398CEA338B8224259175CB Validity Not Before: Nov 9 04:51:57 2025 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69101dec-4845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5e:5c:8a:cc:ab:02:06:7c:9b:39:6c:53:2c: 3f:5f:30:10:9b:3d:9b:7c:2b:77:e3:ae:42:c9:c6: b0:1b:02:af:6c:78:6f:a8:62:dc:ad:09:87:4c:23: 37:d1:75:ca:69:38:09:e9:19:49:3b:db:77:21:31: ca:37:4a:af:4c:0a:af:f3:5a:f3:98:3f:c5:a3:91: 3c:d2:eb:25:b8:e4:70:e1:f6:00:d3:c0:7b:91:e2: bb:63:32:a3:3d:f8:1f:94:57:e0:15:c1:de:39:2d: fc:49:42:b4:12:c1:27:43:5e:bf:d1:1c:63:67:8c: 0a:44:c2:a7:47:42:7c:b8:64:d1:9e:0b:db:81:30: 2c:bb:0a:d1:8f:4c:b6:cb:a2:43:a5:5e:2d:4c:76: 3b:0d:8e:27:05:43:d9:31:27:ab:4b:6d:2b:eb:86: 3e:bb:d5:6c:22:67:6a:23:ff:3c:17:7e:3d:eb:3a: a4:2b:91:d3:6c:97:34:e0:f8:23:c1:04:ce:b9:c8: dc:dd:27:90:89:ca:ce:30:06:cc:19:5c:88:77:b8: e6:2e:19:11:b3:c9:ee:a0:92:1f:16:0b:fc:0d:d7: e8:71:38:af:c1:d5:31:d7:9b:ca:30:0c:ed:8e:57: 16:33:f6:aa:6a:02:67:fe:c6:06:45:37:31:d5:fc: 15:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:02:C4:33:BE:F3:9A:0C:2B:11:39:D1:FD:B4:95:50:56:37:FD:82 X509v3 Authority Key Identifier: keyid:94:96:B1:FC:60:63:64:43:72:39:8C:EA:33:8B:82:24:25:91:75:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/lJax_GBjZENyOYzqM4uCJCWRdcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lJax_GBjZENyOYzqM4uCJCWRdcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/BA00C514136611F082E3C50DC4F9AE02/0BD593E6136D11F09F542C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.77.168.0/21 IPv6: 2401:e9a0::/32 Signature Algorithm: sha256WithRSAEncryption 84:6c:ed:cb:85:3b:33:a7:81:70:d6:02:1c:3d:07:d9:de:e2: a0:89:3b:5a:c5:fc:05:80:26:97:2b:e9:8c:9b:8a:38:ad:2d: 09:18:eb:fc:ad:14:b2:49:cd:ab:d1:fd:fe:f2:33:6d:af:a5: 06:aa:ed:37:e2:0f:30:68:f7:3d:f4:a5:ec:0d:72:ca:8f:bf: c0:29:9a:aa:ff:94:19:24:4f:d4:52:dd:97:1f:e3:85:2c:b6: 39:67:6c:4c:a3:47:a6:6a:37:c5:fb:bf:6b:59:24:1e:be:58: 76:b9:f7:6a:4c:fb:c5:9c:c3:59:00:80:f0:52:9b:5a:d4:5d: ab:70:7b:e0:24:f3:38:cd:b9:33:7c:96:c9:d3:e6:a4:2d:3f: b1:d6:49:aa:ca:ae:50:54:1a:30:c7:c7:c4:30:52:ad:07:b5: 02:6e:66:f5:8b:18:16:a3:d8:3f:23:e8:4a:a0:fd:56:15:90: c0:aa:08:2a:2d:d7:7b:2b:aa:2e:be:96:f9:88:39:83:a3:97: 1e:9a:b2:66:01:38:d1:d5:5a:db:81:db:e2:86:1b:ad:aa:b8: fa:1b:c5:7d:b3:c8:60:1a:18:10:bb:67:a1:89:57:2c:92:b2: 67:0c:26:ea:4a:75:b6:14:4a:95:16:5d:94:49:08:a6:0e:7e: 61:14:0a:e4 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoOTQ5NkIxRkM2MDYzNjQ0MzcyMzk4Q0VBMzM4QjgyMjQy NTkxNzVDQjAeFw0yNTExMDkwNDUxNTdaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MTAxZGVjLTQ4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0XlyKzKsCBnybOWxTLD9fMBCbPZt8K3fjrkLJxrAbAq9seG+oYtytCYdMIzfR dcppOAnpGUk723chMco3Sq9MCq/zWvOYP8WjkTzS6yW45HDh9gDTwHuR4rtjMqM9 +B+UV+AVwd45LfxJQrQSwSdDXr/RHGNnjApEwqdHQny4ZNGeC9uBMCy7CtGPTLbL okOlXi1MdjsNjicFQ9kxJ6tLbSvrhj671WwiZ2oj/zwXfj3rOqQrkdNslzTg+CPB BM65yNzdJ5CJys4wBswZXIh3uOYuGRGzye6gkh8WC/wN1+hxOK/B1THXm8owDO2O VxYz9qpqAmf+xgZFNzHV/BUzAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU5wLEM77z mgwrETnR/bSVUFY3/YIwHwYDVR0jBBgwFoAUlJax/GBjZENyOYzqM4uCJCWRdcsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0JBMDBDNTE0MTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyL2xKYXhfR0JqWkVOeU9ZenFNNHVDSkNXUmRj cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEpheF9HQmpaRU55T1l6cU00dUNKQ1dSZGNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CQTAwQzUxNDEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8wQkQ1OTNFNjEz NkQxMUYwOUY1NDJDODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEA8tNqDANBAIAAjAHAwUAJAHpoDANBgkqhkiG9w0BAQsFAAOC AQEAhGzty4U7M6eBcNYCHD0H2d7ioIk7WsX8BYAmlyvpjJuKOK0tCRjr/K0UsknN q9H9/vIzba+lBqrtN+IPMGj3PfSl7A1yyo+/wCmaqv+UGSRP1FLdlx/jhSy2OWds TKNHpmo3xfu/a1kkHr5Ydrn3akz7xZzDWQCA8FKbWtRdq3B74CTzOM25M3yWydPm pC0/sdZJqsquUFQaMMfHxDBSrQe1Am5m9YsYFqPYPyPoSqD9VhWQwKoIKi3Xeyuq Lr6W+Yg5g6OXHpqyZgE40dVa24Hb4oYbraq4+hvFfbPIYBoYELtnoYlXLJKyZwwm 6kp1thRKlRZdlEkIpg5+YRQK5A== -----END CERTIFICATE-----Generated at Sat Dec 6 18:49:18 2025 by rpki-client