This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa File: B5569B88096311EE9ECB644DC4F9AE02.roa (raw, json) Hash identifier: EKpqTE+DSQzuWA1tMtvhbBcjl08oPjSJOPcC2uEjTi0= Subject key identifier: E6:3B:7F:39:7C:DC:65:A2:0B:22:F9:33:BE:8D:67:38:CD:18:8B:63 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 01DC Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa Signing time: Sun 07 Dec 2025 05:59:17 +0000 ROA not before: Sun 07 Dec 2025 05:59:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 400318 IP address blocks: 49.0.56.0/21 maxlen: 21 49.0.56.0/24 maxlen: 24 49.0.57.0/24 maxlen: 24 49.0.58.0/24 maxlen: 24 49.0.59.0/24 maxlen: 24 49.0.60.0/24 maxlen: 24 49.0.61.0/24 maxlen: 24 49.0.62.0/24 maxlen: 24 49.0.63.0/24 maxlen: 29 103.36.54.0/23 maxlen: 29 103.247.56.0/22 maxlen: 28 2401:daa0:55::/48 maxlen: 48 2401:daa0:57::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 02:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Dec 7 05:59:17 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=693517b5-c5fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3b:d5:8c:a0:37:6d:b2:c7:bb:b1:67:db:64: 59:86:fd:d2:ad:44:db:50:8c:57:69:c4:45:1c:ce: 7b:01:cb:21:a4:9c:fb:4c:5c:5d:1e:da:2f:8e:f2: c2:cb:d4:7d:4c:3a:69:d6:32:86:94:2f:0e:07:21: 13:58:8e:9b:d9:da:0f:7a:b8:91:b1:02:e7:f7:0c: 5b:c5:3d:7c:1a:43:07:c9:05:23:5a:61:99:bb:7e: 0c:1f:e5:01:33:90:4b:eb:cc:fa:a9:0c:11:36:a4: 09:0c:dd:0c:c1:79:c9:9c:cf:42:0c:a2:0c:05:42: 8a:1e:a2:80:af:d4:8c:2b:ab:9b:e3:d8:f1:d9:1f: 70:ce:43:df:55:f1:ce:08:c1:39:d9:08:81:08:1e: e4:bc:d2:6e:6b:ae:e2:ad:a9:2b:b6:44:c6:fe:7b: f5:56:0e:56:f2:bb:45:58:9d:45:45:5c:57:ab:4c: 0d:28:c8:13:7d:c0:94:c8:38:45:ae:4b:17:24:bf: be:2d:2f:e1:f6:91:20:ec:46:00:77:b2:84:89:7d: 35:8e:0c:74:e6:67:7b:f3:3d:1c:5c:23:b8:34:97: 60:3d:5f:e9:de:61:fd:03:bb:1e:be:c4:73:1a:5a: d8:4b:24:f3:e9:0d:e4:70:70:55:da:74:64:85:f0: 97:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3B:7F:39:7C:DC:65:A2:0B:22:F9:33:BE:8D:67:38:CD:18:8B:63 X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.56.0/21 103.36.54.0/23 103.247.56.0/22 IPv6: 2401:daa0:55::/48 2401:daa0:57::/48 Signature Algorithm: sha256WithRSAEncryption 48:da:2d:8d:d6:66:48:1c:73:4c:d9:3b:a0:88:ce:50:b1:67: 33:6b:e2:a1:46:2b:8e:9f:53:87:ed:70:ed:ff:cc:fb:aa:18: 3c:19:7c:ec:d4:24:23:da:d2:6c:30:80:63:b4:6d:8c:74:43: cd:27:02:42:08:fb:66:38:e6:3b:97:22:0e:c1:84:23:40:0d: f3:2a:4b:1b:70:5d:cc:7e:5b:84:61:0f:c4:19:8c:76:f0:df: 11:ae:0e:b1:f0:d9:89:05:07:5e:d4:25:2f:3b:87:91:b2:5d: 41:c5:84:9e:90:01:3f:81:60:2e:99:51:b3:dc:cf:50:09:6b: 7a:a8:2c:bf:9e:41:32:3d:25:3b:c5:00:b2:ef:14:15:1b:ab: fd:83:64:d9:a8:e5:d4:1a:9a:0e:f4:12:f2:d0:25:9f:60:1f: e4:63:45:91:08:22:ee:54:38:89:5a:6b:8d:bb:9e:00:e1:fd: 5c:b9:69:a5:03:57:7e:1d:cc:e9:d9:c2:ac:b7:cd:bf:41:48: 8c:b7:ab:b7:17:43:1c:a3:f6:d2:51:5f:2a:c7:51:fb:84:37: bd:25:ec:c2:e1:f1:f1:be:be:89:89:24:70:51:97:82:08:9d: 5d:ab:b5:4e:2b:d7:c1:b9:c0:7f:15:79:7a:d1:af:cb:b9:21: 60:b2:83:87 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjUxMjA3MDU1OTE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM1MTdiNS1jNWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzvVjKA3bbLHu7Fn22RZhv3SrUTbUIxXacRFHM57AcshpJz7TFxdHtovjvLC y9R9TDpp1jKGlC8OByETWI6b2doPeriRsQLn9wxbxT18GkMHyQUjWmGZu34MH+UB M5BL68z6qQwRNqQJDN0MwXnJnM9CDKIMBUKKHqKAr9SMK6ub49jx2R9wzkPfVfHO CME52QiBCB7kvNJua67irakrtkTG/nv1Vg5W8rtFWJ1FRVxXq0wNKMgTfcCUyDhF rksXJL++LS/h9pEg7EYAd7KEiX01jgx05md78z0cXCO4NJdgPV/p3mH9A7sevsRz GlrYSyTz6Q3kcHBV2nRkhfCXHwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFOY7fzl8 3GWiCyL5M76NZzjNGItjMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyODAvQzA0QjFCNzYwOTVGMTFFRUFEMEVEMDRDQzRGOUFFMDIvQjU1NjlCODgw OTYzMTFFRTlFQ0I2NDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAMxADgDBAFnJDYDBAJn9zgwGAQCAAIwEgMHACQB2qAAVQMH ACQB2qAAVzANBgkqhkiG9w0BAQsFAAOCAQEASNotjdZmSBxzTNk7oIjOULFnM2vi oUYrjp9Th+1w7f/M+6oYPBl87NQkI9rSbDCAY7RtjHRDzScCQgj7ZjjmO5ciDsGE I0AN8ypLG3BdzH5bhGEPxBmMdvDfEa4OsfDZiQUHXtQlLzuHkbJdQcWEnpABP4Fg LplRs9zPUAlreqgsv55BMj0lO8UAsu8UFRur/YNk2ajl1BqaDvQS8tAln2Af5GNF kQgi7lQ4iVprjbueAOH9XLlppQNXfh3M6dnCrLfNv0FIjLertxdDHKP20lFfKsdR +4Q3vSXswuHx8b6+iYkkcFGXggidXau1TivXwbnAfxV5etGvy7khYLKDhw== -----END CERTIFICATE-----Generated at Thu Dec 18 16:02:37 2025 by rpki-client