This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa File: 1A6C2ADE173F11F08E4D594DC4F9AE02.roa (raw, json) Hash identifier: ZgDpETTaTvgr1BGCkOMC3xeobJ20romoNkqi4HV7DKs= Subject key identifier: C7:EA:51:87:59:EA:E2:C8:60:55:64:67:AB:87:31:95:1F:1A:25:07 Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 023E Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa Signing time: Fri 05 Dec 2025 01:11:04 +0000 ROA not before: Fri 05 Dec 2025 01:11:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23532 IP address blocks: 43.224.149.0/24 maxlen: 24 103.43.172.0/24 maxlen: 24 103.43.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: Dec 5 01:11:04 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69323128-3d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0c:72:7b:69:71:ca:d8:fe:44:71:78:c0:f5: 5b:c3:21:53:73:d8:21:d6:0d:a1:77:9f:6b:fb:bc: 6d:3f:d1:f2:7d:ac:91:78:51:4c:5d:06:b3:aa:04: 9c:d9:b7:f1:7b:91:65:85:c3:eb:ad:82:b1:b6:96: ea:e2:67:b0:ce:f2:f0:3b:20:98:ee:3b:a9:68:c5: 59:ac:b4:6d:77:49:55:92:42:df:aa:b4:96:f5:ef: a2:94:de:60:d2:26:dc:55:60:28:d1:d9:92:5f:c2: 79:cc:36:0d:44:f5:ed:35:23:8f:71:c1:2b:f2:6d: c6:2b:3c:7a:29:73:a4:77:53:dd:c5:db:8f:95:72: f9:5c:6c:d9:f2:ca:fb:17:55:c9:4e:d4:4c:be:03: 30:7f:e9:61:80:bb:28:e1:73:d0:f3:d5:ba:52:02: 23:5e:39:99:52:7c:01:46:3a:4d:f4:49:85:57:fb: 93:bb:01:88:dd:05:81:99:62:ad:48:32:1d:88:3d: 69:a5:29:8d:46:14:d8:a8:45:4d:5c:0b:5c:98:75: f9:95:c2:bc:8b:45:21:16:07:cc:b1:f1:06:87:64: 0a:60:a2:b6:b3:74:f3:4f:e1:55:9d:f7:70:0c:79: 77:47:c8:d9:63:0e:1f:61:d5:8b:94:02:04:d5:be: e1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:EA:51:87:59:EA:E2:C8:60:55:64:67:AB:87:31:95:1F:1A:25:07 X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/1A6C2ADE173F11F08E4D594DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.149.0/24 103.43.172.0/23 Signature Algorithm: sha256WithRSAEncryption a6:4d:e7:0c:1f:2e:eb:d7:c5:78:ed:b0:63:7b:6f:32:15:b7: 69:25:1b:5d:2f:e1:85:be:08:d8:aa:54:85:cd:c2:74:d3:c7: 71:58:23:ee:47:a4:f2:65:55:bd:b1:65:71:f8:69:d3:21:55: 42:81:b2:f2:f0:9a:82:ab:cc:12:24:78:9b:6b:30:b2:47:eb: 2c:f7:98:39:2a:61:a8:19:d8:6f:54:37:31:53:be:52:ed:1b: 94:a6:15:f6:8f:72:98:1e:a9:9d:0c:9e:5f:6d:b0:6b:7e:b5: 77:64:99:00:91:09:75:49:02:bc:b4:ec:a8:ed:eb:ea:1d:da: 12:c2:ec:4d:1e:2f:cd:bb:e6:a5:f8:bb:74:d6:11:9b:01:1f: 9b:8e:c9:26:c3:99:5c:22:3c:bc:df:6a:f9:96:2f:1d:8c:e2: 09:a7:17:12:6d:bf:b6:e7:a7:6d:d2:fc:50:29:a2:db:c2:b5: 51:d1:aa:00:b5:04:f3:17:96:3a:fd:be:f7:95:15:71:94:93: 7e:29:80:ab:95:a0:15:c5:a1:a8:fb:0c:15:ae:ac:54:f8:7f: 44:de:57:ea:b5:94:53:34:27:a8:d9:ea:ff:b7:37:49:18:e3: e9:af:e0:07:88:39:15:b4:99:13:b0:96:1a:9e:64:a2:12:8f: d6:04:e9:b6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjUxMjA1MDExMTA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyMzEyOC0zZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wxye2lxytj+RHF4wPVbwyFTc9gh1g2hd59r+7xtP9HyfayReFFMXQazqgSc 2bfxe5FlhcPrrYKxtpbq4mewzvLwOyCY7jupaMVZrLRtd0lVkkLfqrSW9e+ilN5g 0ibcVWAo0dmSX8J5zDYNRPXtNSOPccEr8m3GKzx6KXOkd1PdxduPlXL5XGzZ8sr7 F1XJTtRMvgMwf+lhgLso4XPQ89W6UgIjXjmZUnwBRjpN9EmFV/uTuwGI3QWBmWKt SDIdiD1ppSmNRhTYqEVNXAtcmHX5lcK8i0UhFgfMsfEGh2QKYKK2s3TzT+FVnfdw DHl3R8jZYw4fYdWLlAIE1b7h+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMfqUYdZ 6uLIYFVkZ6uHMZUfGiUHMB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvMUE2QzJBREUx NzNGMTFGMDhFNEQ1OTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4JUDBAFnK6wwDQYJKoZIhvcNAQELBQADggEBAKZN5wwf LuvXxXjtsGN7bzIVt2klG10v4YW+CNiqVIXNwnTTx3FYI+5HpPJlVb2xZXH4adMh VUKBsvLwmoKrzBIkeJtrMLJH6yz3mDkqYagZ2G9UNzFTvlLtG5SmFfaPcpgeqZ0M nl9tsGt+tXdkmQCRCXVJAry07Kjt6+od2hLC7E0eL8275qX4u3TWEZsBH5uOySbD mVwiPLzfavmWLx2M4gmnFxJtv7bnp23S/FApotvCtVHRqgC1BPMXljr9vveVFXGU k34pgKuVoBXFoaj7DBWurFT4f0TeV+q1lFM0J6jZ6v+3N0kY4+mv4AeIORW0mROw lhqeZKISj9YE6bY= -----END CERTIFICATE-----Generated at Sat Dec 6 20:38:39 2025 by rpki-client