This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/16E990CA6B0411ED849E0957C4F9AE02.roa File: 16E990CA6B0411ED849E0957C4F9AE02.roa (raw, json) Hash identifier: j+WiIpQXx8bOOXda/N2C9r1k53EnBU4V+zrlR0ZwoY8= Subject key identifier: E7:B3:6B:30:E7:27:8F:74:88:A8:E5:43:A6:D7:E9:1E:2A:8B:68:46 Certificate issuer: /CN=A91FD4A1/serialNumber=1196CDDFDA3EBDC5ADA8FFC5BCB384912147D544 Certificate serial: 0239 Authority key identifier: 11:96:CD:DF:DA:3E:BD:C5:AD:A8:FF:C5:BC:B3:84:91:21:47:D5:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/16E990CA6B0411ED849E0957C4F9AE02.roa Signing time: Sat 29 Nov 2025 00:27:54 +0000 ROA not before: Sat 29 Nov 2025 00:27:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134228 IP address blocks: 103.156.166.0/23 maxlen: 23 103.156.166.0/24 maxlen: 24 103.156.167.0/24 maxlen: 24 2001:df1:9140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.crl rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4A1, serialNumber=1196CDDFDA3EBDC5ADA8FFC5BCB384912147D544 Validity Not Before: Nov 29 00:27:54 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692a3e09-ed86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:a9:9c:53:d2:01:60:cd:14:1f:f2:f7:56:dd: fb:8d:97:31:5e:60:17:97:3b:6b:db:0c:8b:61:2c: 96:b8:7f:9e:ca:9e:2f:7e:99:65:c3:fc:36:10:6f: 14:9c:f3:ea:ae:64:fa:ee:13:74:99:5d:1a:fe:fc: a2:27:31:5f:23:ae:34:48:f9:ea:e8:6c:34:83:c2: 66:02:55:d7:28:de:fd:d7:bb:5d:3d:0b:40:b5:67: 4f:cf:f9:61:94:96:6c:79:df:6f:a1:79:c8:d7:ac: 01:4c:b3:6a:85:92:c4:20:85:c1:db:17:9b:7b:b4: 94:99:a5:53:df:ba:28:d7:92:c9:9e:50:60:9f:fd: 18:3d:3e:c1:fd:e8:1c:aa:3c:f8:62:b3:93:ce:5e: 11:cf:a1:1c:ed:d6:b2:b3:ca:e8:d7:aa:2e:ed:44: 58:a2:62:3b:38:85:4e:53:c7:1f:a3:9f:7a:63:2b: 94:ab:cb:df:d8:08:55:4b:8e:46:6e:48:ab:0f:9f: ed:7a:d5:4f:ba:48:b2:e8:6f:b7:e0:58:81:c8:74: 69:4b:66:23:c3:f8:4f:0b:de:9b:cd:3a:c7:19:b3: d8:18:c5:3e:08:93:40:99:c0:39:ea:ea:1b:55:21: c6:6f:de:dd:a5:40:25:17:57:18:b6:b2:f0:9a:54: e8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B3:6B:30:E7:27:8F:74:88:A8:E5:43:A6:D7:E9:1E:2A:8B:68:46 X509v3 Authority Key Identifier: keyid:11:96:CD:DF:DA:3E:BD:C5:AD:A8:FF:C5:BC:B3:84:91:21:47:D5:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/16E990CA6B0411ED849E0957C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.166.0/23 IPv6: 2001:df1:9140::/48 Signature Algorithm: sha256WithRSAEncryption 01:61:36:30:10:de:1c:8c:d8:16:47:fa:89:65:39:f3:17:04: 49:52:09:66:ea:6c:0d:b8:e6:50:21:a2:7c:71:67:08:33:6e: f8:34:db:22:f8:67:72:38:7b:35:e2:d0:c5:77:0b:37:aa:0b: af:da:54:06:f0:6a:29:b7:0c:2e:1b:ce:c3:ab:88:5a:fc:18: ec:f2:ed:c6:0e:1c:16:40:e8:64:f0:50:04:b0:00:c1:27:85: c4:9b:e9:64:c9:d9:9f:83:e2:25:43:98:42:44:e7:25:81:3c: 15:30:95:b4:37:c7:21:43:42:fe:ab:d2:4e:a5:5f:5b:3d:12: 94:65:4d:1c:87:7f:c2:61:1d:37:59:51:31:8b:95:e1:7a:a4: 51:84:8f:e4:df:01:2a:ea:98:68:30:b5:e2:24:42:7b:68:e4: 3a:9e:0f:21:97:d0:32:cc:f1:31:10:88:45:d8:55:cc:6e:e7: 62:a3:b8:cf:d6:45:a9:1b:bb:94:ca:b2:cd:7d:4a:9c:7c:03: 9f:96:91:b9:fd:84:3a:25:a3:99:68:68:93:cd:64:c9:e7:bf: e1:9e:3a:f6:fc:bb:17:5a:47:82:e6:51:68:ed:59:7e:16:b3: b0:7c:0f:52:e5:06:f0:ca:ff:9d:32:f6:63:91:a3:0e:ce:68: fa:0b:70:17 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ0QTExMTAvBgNVBAUTKDExOTZDRERGREEzRUJEQzVBREE4RkZDNUJDQjM4NDkx MjE0N0Q1NDQwHhcNMjUxMTI5MDAyNzU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJhM2UwOS1lZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9KmcU9IBYM0UH/L3Vt37jZcxXmAXlztr2wyLYSyWuH+eyp4vfpllw/w2EG8U nPPqrmT67hN0mV0a/vyiJzFfI640SPnq6Gw0g8JmAlXXKN7917tdPQtAtWdPz/lh lJZsed9voXnI16wBTLNqhZLEIIXB2xebe7SUmaVT37oo15LJnlBgn/0YPT7B/egc qjz4YrOTzl4Rz6Ec7days8ro16ou7URYomI7OIVOU8cfo596YyuUq8vf2AhVS45G bkirD5/tetVPukiy6G+34FiByHRpS2Yjw/hPC96bzTrHGbPYGMU+CJNAmcA56uob VSHGb97dpUAlF1cYtrLwmlTokQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOezazDn J490iKjlQ6bX6R4qi2hGMB8GA1UdIwQYMBaAFBGWzd/aPr3Fraj/xbyzhJEhR9VE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDRBMS82MkI0MjNCQTZC MDExMUVEOUEzMEYxNTVDNEY5QUUwMi9FWmJOMzlvLXZjV3RxUF9GdkxPRWtTRkgx VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VaYk4zOW8tdmNXdHFQX0Z2TE9Fa1NGSDFVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQ0QTEvNjJCNDIzQkE2QjAxMTFFRDlBMzBGMTU1QzRGOUFFMDIvMTZFOTkwQ0E2 QjA0MTFFRDg0OUUwOTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnKYwDwQCAAIwCQMHACABDfGRQDANBgkqhkiG9w0BAQsF AAOCAQEAAWE2MBDeHIzYFkf6iWU58xcESVIJZupsDbjmUCGifHFnCDNu+DTbIvhn cjh7NeLQxXcLN6oLr9pUBvBqKbcMLhvOw6uIWvwY7PLtxg4cFkDoZPBQBLAAwSeF xJvpZMnZn4PiJUOYQkTnJYE8FTCVtDfHIUNC/qvSTqVfWz0SlGVNHId/wmEdN1lR MYuV4XqkUYSP5N8BKuqYaDC14iRCe2jkOp4PIZfQMszxMRCIRdhVzG7nYqO4z9ZF qRu7lMqyzX1KnHwDn5aRuf2EOiWjmWhok81kyee/4Z469vy7F1pHguZRaO1Zfhaz sHwPUuUG8Mr/nTL2Y5GjDs5o+gtwFw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:00:01 2025 by rpki-client