This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/E0A8B344173E11F093E0F04CC4F9AE02.roa File: E0A8B344173E11F093E0F04CC4F9AE02.roa (raw, json) Hash identifier: fBJ9k2H/Hb9fF/wKAywDTADv2ryPlfGg6eSwhAqRSN8= Subject key identifier: 8A:BF:D7:5A:AC:9A:A6:8B:D3:86:55:34:1A:B2:5C:34:FB:8E:F4:13 Certificate issuer: /CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Certificate serial: 0239 Authority key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/E0A8B344173E11F093E0F04CC4F9AE02.roa Signing time: Fri 05 Dec 2025 01:10:59 +0000 ROA not before: Fri 05 Dec 2025 01:10:59 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 10103 IP address blocks: 43.224.149.0/24 maxlen: 24 103.43.172.0/24 maxlen: 24 103.43.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C87, serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B Validity Not Before: Dec 5 01:10:59 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69323123-43c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:19:27:d9:84:d7:90:3f:65:06:5e:4f:e2:f3: 60:98:8e:dc:f4:e5:cb:7e:75:1f:45:c9:6e:8f:cc: 5a:ae:46:06:fd:62:87:70:8c:7c:2d:8d:24:7f:7b: 8e:ef:10:fa:22:8a:fc:ce:39:de:26:19:a1:bc:a4: 77:a9:2a:da:82:3d:15:5d:98:a8:9b:ad:51:ae:05: c9:ee:d3:f4:f1:7f:d0:d3:c1:49:52:cb:11:7f:fa: 1b:11:a2:fc:df:c0:03:14:19:2f:00:89:a3:cb:87: 7f:e0:e6:a3:43:b0:fb:51:75:ba:aa:e2:01:56:f2: 97:6b:9b:dc:e6:c0:e7:c2:b1:66:1a:ce:dc:79:7a: f2:db:17:e1:d7:b9:c7:ae:fe:ec:96:e1:a0:0a:e9: 0e:e8:1e:26:2a:74:cc:63:7f:d5:b0:de:05:bd:68: e1:1b:65:48:c0:7a:65:66:43:8e:a7:28:bf:e4:75: 88:9b:76:4f:43:b6:68:fd:be:73:35:49:9d:01:28: cf:38:16:d0:8b:94:a2:77:af:8b:ae:8d:23:e2:c8: 09:e1:ea:8d:81:31:82:2d:d6:25:49:98:62:df:af: 63:a0:26:59:c4:31:e6:6e:29:cc:17:1e:6a:72:1f: ca:85:a1:e9:2e:9a:7a:21:f6:07:0f:6a:00:e6:21: 85:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:BF:D7:5A:AC:9A:A6:8B:D3:86:55:34:1A:B2:5C:34:FB:8E:F4:13 X509v3 Authority Key Identifier: keyid:EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/E0A8B344173E11F093E0F04CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.149.0/24 103.43.172.0/23 Signature Algorithm: sha256WithRSAEncryption 86:6d:f4:58:84:13:9b:07:2b:6d:56:5c:bf:89:7d:04:80:74: 5c:8b:db:f7:ff:0d:28:4d:3b:e5:1e:87:37:a6:1b:9b:47:3f: c2:91:83:7f:34:d2:17:26:21:24:bb:18:26:2f:5f:34:ff:95: 35:54:dd:8b:d5:f2:4a:1e:c9:f1:c2:cd:c9:91:90:aa:18:b6: af:8b:ce:b8:28:c5:ce:9e:0d:ed:a3:4d:df:3a:aa:98:98:6f: a6:e5:b4:c5:68:0f:d6:c3:01:7b:20:dc:dd:58:2f:fd:2b:89: f5:a5:c9:1f:99:90:90:b3:08:ee:c9:70:f3:22:8e:18:cd:18: 93:84:65:25:18:a8:d1:25:c9:0e:8c:2e:8c:5e:8d:55:19:97: dd:4e:10:76:bf:75:82:be:ff:1b:a2:4e:44:a3:a5:dd:6b:de: 4b:d5:07:3a:85:52:7a:5f:0a:c8:70:2e:90:7f:15:8e:08:c2: ec:ba:cd:21:71:2d:a4:75:62:cd:81:14:ae:db:a4:5f:6d:f9: 10:e2:6b:2a:84:ce:6e:9a:a6:18:58:5a:51:a9:87:42:5a:d7: f6:70:bf:8e:df:d3:c1:fe:7a:70:69:65:c7:c8:5f:89:8a:1a: d1:3a:99:1d:12:b4:8c:36:d7:3d:d2:a1:89:5c:43:7b:1b:19: 15:4f:13:0d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDODcxMTAvBgNVBAUTKEVGOUZFMzgxREEzRDQyRUI3QzRFMEQwNDlDQ0FFNzIy OEUyOEZCNEIwHhcNMjUxMjA1MDExMDU5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMyMzEyMy00M2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBkn2YTXkD9lBl5P4vNgmI7c9OXLfnUfRcluj8xarkYG/WKHcIx8LY0kf3uO 7xD6Ior8zjneJhmhvKR3qSragj0VXZiom61RrgXJ7tP08X/Q08FJUssRf/obEaL8 38ADFBkvAImjy4d/4OajQ7D7UXW6quIBVvKXa5vc5sDnwrFmGs7ceXry2xfh17nH rv7sluGgCukO6B4mKnTMY3/VsN4FvWjhG2VIwHplZkOOpyi/5HWIm3ZPQ7Zo/b5z NUmdASjPOBbQi5Sid6+Lro0j4sgJ4eqNgTGCLdYlSZhi369joCZZxDHmbinMFx5q ch/KhaHpLpp6IfYHD2oA5iGFuwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIq/11qs mqaL04ZVNBqyXDT7jvQTMB8GA1UdIwQYMBaAFO+f44HaPULrfE4NBJzK5yKOKPtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0M4Ny9FNzgyODU0RUVG MEIxMUVEODFERDJENzJDNEY5QUUwMi83NV9qZ2RvOVF1dDhUZzBFbk1ybklvNG8t MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1X2pnZG85UXV0OFRnMEVuTXJuSW80by0wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDODcvRTc4Mjg1NEVFRjBCMTFFRDgxREQyRDcyQzRGOUFFMDIvRTBBOEIzNDQx NzNFMTFGMDkzRTBGMDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4JUDBAFnK6wwDQYJKoZIhvcNAQELBQADggEBAIZt9FiE E5sHK21WXL+JfQSAdFyL2/f/DShNO+UehzemG5tHP8KRg3800hcmISS7GCYvXzT/ lTVU3YvV8koeyfHCzcmRkKoYtq+Lzrgoxc6eDe2jTd86qpiYb6bltMVoD9bDAXsg 3N1YL/0rifWlyR+ZkJCzCO7JcPMijhjNGJOEZSUYqNElyQ6MLoxejVUZl91OEHa/ dYK+/xuiTkSjpd1r3kvVBzqFUnpfCshwLpB/FY4Iwuy6zSFxLaR1Ys2BFK7bpF9t +RDiayqEzm6aphhYWlGph0Ja1/Zwv47f08H+enBpZcfIX4mKGtE6mR0StIw21z3S oYlcQ3sbGRVPEw0= -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:19 2025 by rpki-client