This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/267FE3681C4B11F082276911C4F9AE02.roa File: 267FE3681C4B11F082276911C4F9AE02.roa (raw, json) Hash identifier: 7lk1iehNVMAw5D5I/OA3g4r5gh0U3kauUIvCFuZswQs= Subject key identifier: 67:64:FA:E8:DE:20:C1:12:59:C4:CC:6A:0E:C8:3F:52:A9:D9:85:2F Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 023D Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/267FE3681C4B11F082276911C4F9AE02.roa Signing time: Fri 05 Dec 2025 01:11:03 +0000 ROA not before: Fri 05 Dec 2025 01:11:03 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 20473 IP address blocks: 43.224.151.0/24 maxlen: 24 103.43.174.0/24 maxlen: 24 103.43.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: Dec 5 01:11:03 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69323127-e98b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f4:24:89:b8:29:0f:c3:85:83:5a:17:8a:5b: 03:b4:8b:ec:f5:8a:39:c8:18:57:ab:a4:3b:5f:a9: 74:cf:8f:e3:06:8d:a3:74:07:43:62:f1:90:a1:80: 63:04:c0:4e:cd:37:43:7a:90:cd:d2:87:ca:22:e7: 05:0d:7f:01:a2:cc:e6:fe:ac:f3:d0:c5:a4:ce:60: 5c:a7:46:bf:e7:91:95:41:b3:4d:8f:ea:e0:2b:98: bc:9e:99:9c:fa:6c:88:ed:e1:d5:de:3d:47:e6:a0: b2:a3:34:ec:2b:68:ed:ba:17:79:8c:c2:fd:9d:92: bd:d0:c1:29:68:18:30:01:79:86:fd:fa:cb:05:b8: 38:d9:75:a4:4b:25:dc:b3:bf:13:a4:a0:44:bc:a4: a8:e1:73:26:43:b1:5e:14:5d:b6:64:47:b2:d0:da: 39:7e:89:ec:a1:67:31:e9:de:44:e5:88:b1:7c:87: 98:f2:ba:36:28:17:68:d7:03:f6:88:45:1d:28:5d: e7:aa:11:6e:2c:ed:27:19:f8:04:2a:9d:ee:a2:0f: 20:18:a1:89:38:62:26:2f:fd:00:a1:e8:c4:42:dd: 3e:eb:c1:cd:1f:f3:ff:9f:29:b8:1d:85:48:ea:13: f1:c0:2f:ee:a3:76:02:19:5c:a7:34:2d:4f:85:4d: a4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:64:FA:E8:DE:20:C1:12:59:C4:CC:6A:0E:C8:3F:52:A9:D9:85:2F X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/267FE3681C4B11F082276911C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.151.0/24 103.43.174.0/23 Signature Algorithm: sha256WithRSAEncryption 23:bc:3b:9e:d9:46:ad:a3:76:d7:90:8a:44:03:b0:e1:44:fb: 2a:17:82:d2:fa:50:94:46:0b:79:5b:d6:b3:91:a2:88:a7:ec: f4:47:04:6f:e7:d6:cc:5c:e7:8c:62:00:1c:b9:aa:3b:8e:61: 85:76:49:0e:c1:f9:57:8c:38:57:12:06:9e:ea:26:e0:4a:f1: 02:ff:f8:a2:40:3f:20:25:89:80:6f:47:18:28:b3:b3:c4:b1: a6:44:f1:e9:3b:25:13:c6:96:57:b6:0a:6b:21:40:d9:90:99: ad:1c:58:8e:32:93:88:37:91:13:ab:b6:44:22:5d:e5:61:e8: e1:ff:a1:0e:00:ba:7b:08:19:ff:35:ee:0a:66:d3:e4:49:93: bc:37:a9:ae:cb:9d:3f:bc:96:dc:8e:1a:c6:58:7e:7c:67:51: 52:59:73:0a:ae:f8:a7:23:63:51:bb:1f:ab:80:ff:84:f6:f7: cf:6c:da:4c:87:da:d3:ab:8e:f5:ce:ce:44:a0:4c:b4:31:71: 9d:3a:28:dc:9b:42:d6:8b:9d:37:7f:76:f1:49:62:b2:cf:33: 0e:2d:ee:ad:b2:6c:b9:f1:91:18:be:32:96:13:dd:ee:88:9b: 17:80:9a:f4:3b:35:85:48:15:9b:c3:69:e6:11:21:46:05:d8: 7d:a3:9b:65 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjUxMjA1MDExMTAzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyMzEyNy1lOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvQkibgpD8OFg1oXilsDtIvs9Yo5yBhXq6Q7X6l0z4/jBo2jdAdDYvGQoYBj BMBOzTdDepDN0ofKIucFDX8Boszm/qzz0MWkzmBcp0a/55GVQbNNj+rgK5i8npmc +myI7eHV3j1H5qCyozTsK2jtuhd5jML9nZK90MEpaBgwAXmG/frLBbg42XWkSyXc s78TpKBEvKSo4XMmQ7FeFF22ZEey0No5fonsoWcx6d5E5YixfIeY8ro2KBdo1wP2 iEUdKF3nqhFuLO0nGfgEKp3uog8gGKGJOGImL/0AoejEQt0+68HNH/P/nym4HYVI 6hPxwC/uo3YCGVynNC1PhU2kcwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGdk+uje IMESWcTMag7IP1Kp2YUvMB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvMjY3RkUzNjgx QzRCMTFGMDgyMjc2OTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4JcDBAFnK64wDQYJKoZIhvcNAQELBQADggEBACO8O57Z Rq2jdteQikQDsOFE+yoXgtL6UJRGC3lb1rORooin7PRHBG/n1sxc54xiABy5qjuO YYV2SQ7B+VeMOFcSBp7qJuBK8QL/+KJAPyAliYBvRxgos7PEsaZE8ek7JRPGlle2 CmshQNmQma0cWI4yk4g3kROrtkQiXeVh6OH/oQ4AunsIGf817gpm0+RJk7w3qa7L nT+8ltyOGsZYfnxnUVJZcwqu+KcjY1G7H6uA/4T2989s2kyH2tOrjvXOzkSgTLQx cZ06KNybQtaLnTd/dvFJYrLPMw4t7q2ybLnxkRi+MpYT3e6ImxeAmvQ7NYVIFZvD aeYRIUYF2H2jm2U= -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:18 2025 by rpki-client