This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa File: 765DBCFEEC1A11EAA8520072C4F9AE02.roa (raw, json) Hash identifier: UXvIkLvoYKlKtaN8MzDWhl7hqC5GqZzxRFT3cXR5kww= Subject key identifier: 70:6B:97:53:1B:A2:F9:33:FE:E1:B5:DE:08:A9:A3:C1:53:5B:A1:05 Certificate issuer: /CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Certificate serial: 084F Authority key identifier: 07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa Signing time: Tue 02 Dec 2025 20:22:47 +0000 ROA not before: Tue 02 Dec 2025 20:22:47 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 64049 IP address blocks: 59.153.104.0/22 maxlen: 22 59.153.104.0/24 maxlen: 24 59.153.105.0/24 maxlen: 24 59.153.106.0/24 maxlen: 24 59.153.107.0/24 maxlen: 24 103.198.140.0/22 maxlen: 22 103.198.140.0/24 maxlen: 24 103.198.141.0/24 maxlen: 24 103.198.142.0/24 maxlen: 24 103.198.143.0/24 maxlen: 24 2403:1a80:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2127 (0x84f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD609, serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Validity Not Before: Dec 2 20:22:47 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=692f4a97-a14d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:07:e7:87:aa:5b:94:0c:a2:66:9c:00:c4:ee: 66:dd:84:46:15:d3:3b:62:ba:4b:4e:f8:be:f6:18: 58:56:68:12:bd:df:22:fd:be:9b:d9:a4:13:9e:98: 1d:18:52:5d:64:a2:63:b7:38:b6:c4:8f:8a:b6:f7: 7b:e8:d5:28:f4:95:75:7b:cc:43:e0:93:b7:07:41: 5e:93:1b:cc:c8:3f:ac:be:95:ee:d0:6d:55:01:a9: 23:fb:7c:45:3a:60:e8:bf:e1:ff:5d:7b:29:a1:db: 68:13:22:91:a8:03:7a:9e:21:3e:54:8d:90:7d:99: a1:63:20:db:24:1b:20:50:07:b7:df:7c:ca:9e:ce: 23:45:81:32:1a:83:5b:f9:e0:f0:0a:76:31:66:74: 35:4d:70:1a:e0:b8:c5:bc:fc:86:2e:67:f1:b6:c8: c0:7b:88:7c:89:21:12:0f:df:6a:05:c1:d2:e5:31: 40:c9:f5:b7:0b:5a:ef:48:67:8a:cc:e1:94:e7:80: be:3e:05:71:14:04:7f:51:db:07:a6:b9:91:37:02: 19:b6:78:41:08:66:63:4e:2d:ec:4e:27:f5:93:a0: 1f:63:81:5c:1e:c4:a8:9f:3d:86:1c:32:81:74:87: fe:8a:ce:0f:38:2f:3e:04:ff:f1:26:6f:a4:f8:77: d3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6B:97:53:1B:A2:F9:33:FE:E1:B5:DE:08:A9:A3:C1:53:5B:A1:05 X509v3 Authority Key Identifier: keyid:07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/765DBCFEEC1A11EAA8520072C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.104.0/22 103.198.140.0/22 IPv6: 2403:1a80:a000::/48 Signature Algorithm: sha256WithRSAEncryption 95:75:3b:67:f1:f8:97:22:37:dc:0f:c7:b9:1d:2b:37:be:69: e6:ad:83:eb:71:df:4f:a2:26:9a:65:89:65:38:ab:3f:c9:e9: 6c:e6:14:58:de:c8:20:f6:a2:f2:47:65:94:47:a4:af:5f:1d: a6:07:7f:c4:29:cc:1e:20:58:6f:51:31:93:ec:8d:b2:eb:ea: ee:2f:a6:22:14:99:6e:1a:f2:b3:28:6b:ff:96:81:42:9e:04: e3:14:c4:6a:fb:71:ea:11:93:de:05:83:6a:66:0d:48:d1:36: 05:d5:d7:57:6a:6d:78:52:88:ee:f1:81:0e:bb:5f:04:72:eb: a7:48:17:ab:35:d3:e1:d4:29:69:39:e1:ec:88:c1:1b:8e:6f: de:4a:01:36:f9:9d:e6:df:8a:f0:e1:0a:8d:c7:1b:d2:8e:a2: 7e:2b:3c:ba:54:d4:e6:88:1b:11:55:81:12:6f:d1:7b:f8:68: 79:3d:6f:5e:ba:7b:fd:fe:7a:28:18:c1:48:70:d3:63:b8:ba: 36:92:32:8d:fc:f0:27:dc:e0:86:31:64:5a:0a:1e:0d:98:5a: 00:04:0c:cc:fb:c4:53:12:65:12:8e:ee:e6:f9:28:0f:46:32: 13:0e:10:b9:43:ea:17:f4:64:b9:3c:36:7d:74:02:57:dd:ba: 93:f0:39:29 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2MDkxMTAvBgNVBAUTKDA3Q0Q5RDMxRUQ2MTg2MkFGNTAzRTUyMDk0MjhDN0NC MjdFQTg4MUYwHhcNMjUxMjAyMjAyMjQ3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmNGE5Ny1hMTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wfnh6pblAyiZpwAxO5m3YRGFdM7YrpLTvi+9hhYVmgSvd8i/b6b2aQTnpgd GFJdZKJjtzi2xI+Ktvd76NUo9JV1e8xD4JO3B0FekxvMyD+svpXu0G1VAakj+3xF OmDov+H/XXspodtoEyKRqAN6niE+VI2QfZmhYyDbJBsgUAe333zKns4jRYEyGoNb +eDwCnYxZnQ1TXAa4LjFvPyGLmfxtsjAe4h8iSESD99qBcHS5TFAyfW3C1rvSGeK zOGU54C+PgVxFAR/UdsHprmRNwIZtnhBCGZjTi3sTif1k6AfY4FcHsSonz2GHDKB dIf+is4POC8+BP/xJm+k+HfTPwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHBrl1Mb ovkz/uG13gipo8FTW6EFMB8GA1UdIwQYMBaAFAfNnTHtYYYq9QPlIJQox8sn6ogf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDYwOS8wQzYwOUI5Q0VD MTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhpcjFBLVVnbENqSHl5ZnFp QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I4MmRNZTFoaGlyMUEtVWdsQ2pIeXlmcWlCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQ2MDkvMEM2MDlCOUNFQzE5MTFFQTkyNURGQzZGQzRGOUFFMDIvNzY1REJDRkVF QzFBMTFFQUE4NTIwMDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAI7mWgDBAJnxowwDwQCAAIwCQMHACQDGoCgADANBgkqhkiG 9w0BAQsFAAOCAQEAlXU7Z/H4lyI33A/HuR0rN75p5q2D63HfT6ImmmWJZTirP8np bOYUWN7IIPai8kdllEekr18dpgd/xCnMHiBYb1Exk+yNsuvq7i+mIhSZbhrysyhr /5aBQp4E4xTEavtx6hGT3gWDamYNSNE2BdXXV2pteFKI7vGBDrtfBHLrp0gXqzXT 4dQpaTnh7IjBG45v3koBNvmd5t+K8OEKjccb0o6ifis8ulTU5ogbEVWBEm/Re/ho eT1vXrp7/f56KBjBSHDTY7i6NpIyjfzwJ9zghjFkWgoeDZhaAAQMzPvEUxJlEo7u 5vkoD0YyEw4QuUPqF/RkuTw2fXQCV926k/A5KQ== -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:37 2025 by rpki-client