This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/D927A2DAA64A11EE8316D651C4F9AE02.roa File: D927A2DAA64A11EE8316D651C4F9AE02.roa (raw, json) Hash identifier: xbh5NpVKALglVtZNCUBnPO9evcznNHzqKAZUvaztOkY= Subject key identifier: 81:A9:26:26:A6:68:13:12:71:D2:CE:29:30:BB:96:03:AF:66:82:B3 Certificate issuer: /CN=A91FFE9F/serialNumber=0B095236234E6935BAA341E3235A3DB473ACC67F Certificate serial: 0F8C Authority key identifier: 0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/D927A2DAA64A11EE8316D651C4F9AE02.roa Signing time: Thu 20 Nov 2025 17:36:54 +0000 ROA not before: Thu 20 Nov 2025 17:36:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 23750 IP address blocks: 103.130.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.crl rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3980 (0xf8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE9F, serialNumber=0B095236234E6935BAA341E3235A3DB473ACC67F Validity Not Before: Nov 20 17:36:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=691f51b6-44a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3e:00:da:7b:25:09:d0:3a:5e:46:41:a8:9e: d6:a5:69:d9:81:70:38:05:d6:c9:f3:da:77:b9:a3: 4c:d5:4b:3b:52:00:51:33:7d:84:97:a1:29:cf:4b: 32:61:59:72:68:87:f2:f0:e7:2b:14:78:64:26:9d: ae:7c:3b:45:36:ae:ce:70:c1:f1:07:b4:ff:26:a8: 29:f6:bc:66:84:56:80:46:ca:b5:a3:a0:5f:ca:f9: b5:86:96:55:21:22:21:cb:70:86:a4:13:55:42:81: 5a:06:d0:e8:4d:9e:b3:1d:7f:85:1a:bf:b2:59:da: 0f:95:a9:f6:eb:0e:55:c1:61:86:2f:c6:43:c9:57: e3:66:3b:5a:ed:5a:6e:ab:94:bd:d9:0e:5d:11:9d: 56:91:ec:83:a1:c5:38:63:5b:d8:ec:fd:89:64:c8: db:d0:b7:44:c7:1a:3c:82:5a:d2:d6:b5:ee:a9:1d: 22:5e:09:ec:03:21:1a:cb:a1:5c:3a:2a:de:58:b8: 89:ce:8a:45:7b:bf:86:c7:08:bc:a4:6b:8c:8e:0e: 4d:f3:7c:9a:bf:c4:21:d6:3d:ea:56:de:e7:1c:d9: 5f:2e:49:55:a4:26:05:59:3a:d7:1b:da:80:9b:b6: 5a:65:39:8c:e4:2d:e1:a4:80:d9:02:1e:ce:fc:ac: 3e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A9:26:26:A6:68:13:12:71:D2:CE:29:30:BB:96:03:AF:66:82:B3 X509v3 Authority Key Identifier: keyid:0B:09:52:36:23:4E:69:35:BA:A3:41:E3:23:5A:3D:B4:73:AC:C6:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/CwlSNiNOaTW6o0HjI1o9tHOsxn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwlSNiNOaTW6o0HjI1o9tHOsxn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFE9F/8BE063E07B1611E99949AC51C4F9AE02/D927A2DAA64A11EE8316D651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.156.0/24 Signature Algorithm: sha256WithRSAEncryption ca:36:de:ef:2c:00:00:41:d9:dd:ee:e5:40:73:3f:33:9a:f1: 98:af:dd:c4:29:30:6e:ce:31:99:2f:74:97:b2:09:78:bb:01: f5:bf:04:a1:5d:24:65:a3:1f:70:1e:80:eb:74:1c:e8:47:58: 11:61:a4:75:dc:57:e7:09:01:da:c6:a9:e2:08:42:30:b0:d8: 11:b4:58:d1:c4:71:b0:9c:31:b1:49:cf:93:fd:d0:9a:9a:e0: 7b:69:8e:ef:1b:fc:91:bd:15:d7:66:f1:3e:e2:69:d8:d1:97: 81:35:d0:8d:d4:ff:d0:4a:e7:ee:ce:6b:e4:b5:2c:9a:12:3d: 61:41:66:34:2b:35:9e:7a:32:a3:73:ab:fd:4c:4a:de:eb:1f: 11:8e:65:7f:f3:67:cc:7a:f4:a1:e6:bb:04:6a:fc:cb:fa:b2: 82:2c:5c:15:aa:fe:9d:de:6d:fa:8c:f1:93:ca:1e:d2:24:4d: 34:11:5a:67:80:33:bd:17:47:d7:94:9a:e8:7a:0f:f2:90:63: 09:5f:0e:d1:93:3f:53:f8:ae:c8:4e:6c:41:fa:b6:f4:0c:b3: 29:b3:7f:5b:6f:d8:1b:c9:67:16:e0:f1:d6:0c:fb:f5:52:ba: 1d:ef:b3:9c:10:37:b3:70:05:16:7f:34:9c:8c:cf:1a:c1:e2: 2f:fd:3c:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFOUYxMTAvBgNVBAUTKDBCMDk1MjM2MjM0RTY5MzVCQUEzNDFFMzIzNUEzREI0 NzNBQ0M2N0YwHhcNMjUxMTIwMTczNjU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTFmNTFiNi00NGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuT4A2nslCdA6XkZBqJ7WpWnZgXA4BdbJ89p3uaNM1Us7UgBRM32El6Epz0sy YVlyaIfy8OcrFHhkJp2ufDtFNq7OcMHxB7T/Jqgp9rxmhFaARsq1o6Bfyvm1hpZV ISIhy3CGpBNVQoFaBtDoTZ6zHX+FGr+yWdoPlan26w5VwWGGL8ZDyVfjZjta7Vpu q5S92Q5dEZ1WkeyDocU4Y1vY7P2JZMjb0LdExxo8glrS1rXuqR0iXgnsAyEay6Fc OireWLiJzopFe7+Gxwi8pGuMjg5N83yav8Qh1j3qVt7nHNlfLklVpCYFWTrXG9qA m7ZaZTmM5C3hpIDZAh7O/Kw+GwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIGpJiam aBMScdLOKTC7lgOvZoKzMB8GA1UdIwQYMBaAFAsJUjYjTmk1uqNB4yNaPbRzrMZ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkU5Ri84QkUwNjNFMDdC MTYxMUU5OTk0OUFDNTFDNEY5QUUwMi9Dd2xTTmlOT2FUVzZvMEhqSTFvOXRIT3N4 bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N3bFNOaU5PYVRXNm8wSGpJMW85dEhPc3huOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZFOUYvOEJFMDYzRTA3QjE2MTFFOTk5NDlBQzUxQzRGOUFFMDIvRDkyN0EyREFB NjRBMTFFRTgzMTZENjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngpwwDQYJKoZIhvcNAQELBQADggEBAMo23u8sAABB2d3u 5UBzPzOa8Ziv3cQpMG7OMZkvdJeyCXi7AfW/BKFdJGWjH3AegOt0HOhHWBFhpHXc V+cJAdrGqeIIQjCw2BG0WNHEcbCcMbFJz5P90Jqa4Htpju8b/JG9Fddm8T7iadjR l4E10I3U/9BK5+7Oa+S1LJoSPWFBZjQrNZ56MqNzq/1MSt7rHxGOZX/zZ8x69KHm uwRq/Mv6soIsXBWq/p3ebfqM8ZPKHtIkTTQRWmeAM70XR9eUmuh6D/KQYwlfDtGT P1P4rshObEH6tvQMsymzf1tv2BvJZxbg8dYM+/VSuh3vs5wQN7NwBRZ/NJyMzxrB 4i/9POo= -----END CERTIFICATE-----Generated at Sat Dec 6 20:03:10 2025 by rpki-client