This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/81F21152D1BD11EC9D8FBC52C4F9AE02.roa File: 81F21152D1BD11EC9D8FBC52C4F9AE02.roa (raw, json) Hash identifier: DavRSCZXh0NjWkBtqCUm0P5Y6uJAvAoKRo/hi86WtUU= Subject key identifier: 7B:05:E4:DE:FF:6A:28:18:81:85:AA:4D:6B:88:48:54:B9:E7:D4:B1 Certificate issuer: /CN=A91C9324/serialNumber=772841A26326314EA2E4383475DE31B6DCE7DBA5 Certificate serial: 03AD Authority key identifier: 77:28:41:A2:63:26:31:4E:A2:E4:38:34:75:DE:31:B6:DC:E7:DB:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyhBomMmMU6i5Dg0dd4xttzn26U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/81F21152D1BD11EC9D8FBC52C4F9AE02.roa Signing time: Mon 08 Dec 2025 23:37:21 +0000 ROA not before: Mon 08 Dec 2025 23:37:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139739 IP address blocks: 103.144.117.0/24 maxlen: 24 2001:df1:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/dyhBomMmMU6i5Dg0dd4xttzn26U.crl rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/dyhBomMmMU6i5Dg0dd4xttzn26U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyhBomMmMU6i5Dg0dd4xttzn26U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9324, serialNumber=772841A26326314EA2E4383475DE31B6DCE7DBA5 Validity Not Before: Dec 8 23:37:21 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69376131-4af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:4c:8b:21:6d:11:bf:32:7c:6e:45:eb:23: 16:ed:8e:c3:ff:79:41:0d:8d:f0:26:b1:55:b6:68: 28:aa:0b:13:a8:9f:6a:66:bf:bc:1c:c2:f2:78:d1: b3:f5:3d:39:51:7e:26:29:a6:d7:8e:60:25:f3:fb: 33:7f:40:d6:89:a8:1f:83:1a:44:56:17:21:bd:5a: 02:14:60:0f:bb:ae:b7:55:2f:de:73:3e:a4:f3:71: 67:23:ac:ba:50:46:fe:7c:80:e1:3a:fd:4a:7c:50: 04:a0:75:2e:a5:52:75:c5:ad:8a:c5:1e:96:f4:21: 85:60:7c:32:9f:da:d0:aa:2d:53:11:41:1c:70:a4: 03:02:49:5e:26:88:36:b6:21:8a:5b:ce:ea:53:65: 53:93:db:49:6d:30:85:bc:76:ae:9a:29:71:70:6e: c3:d3:07:68:03:23:d1:35:04:28:b7:cd:b7:03:44: 45:ea:dd:1c:ff:eb:6e:4a:42:99:5f:91:ba:a5:8c: 59:08:e6:db:1d:49:0a:c2:05:ce:00:d1:e6:be:c6: 59:36:3d:8f:c1:63:2c:c3:22:cf:30:5d:8d:db:c6: c0:37:63:b8:ec:28:cd:cf:6a:d5:76:8b:28:4c:ac: 88:f3:e3:69:b5:b4:5b:a4:d9:9d:55:35:d9:e1:f0: 3e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:05:E4:DE:FF:6A:28:18:81:85:AA:4D:6B:88:48:54:B9:E7:D4:B1 X509v3 Authority Key Identifier: keyid:77:28:41:A2:63:26:31:4E:A2:E4:38:34:75:DE:31:B6:DC:E7:DB:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/dyhBomMmMU6i5Dg0dd4xttzn26U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyhBomMmMU6i5Dg0dd4xttzn26U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/81F21152D1BD11EC9D8FBC52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.117.0/24 IPv6: 2001:df1:c080::/48 Signature Algorithm: sha256WithRSAEncryption 82:6c:81:af:30:60:7e:42:7e:2c:73:0d:07:37:4d:59:2e:d9: 85:8f:df:d1:15:73:33:d9:0c:82:08:ea:84:19:ca:d6:5f:c3: fc:ae:d6:9b:a8:e7:30:03:63:d7:ba:69:c3:2b:51:6b:c9:c1: 3d:72:5b:77:bc:c5:18:bf:45:5b:f4:d5:d1:22:6b:89:a2:41: 16:35:93:a4:07:55:11:94:a8:9e:b9:36:9a:69:bc:87:f4:b1: e4:f7:f4:69:c6:e3:29:ed:09:73:9a:0a:65:4c:d4:b4:1f:50: ed:67:36:89:48:74:3b:91:9f:ba:c3:dc:1f:d3:c2:14:24:4f: 24:e9:80:9d:24:29:28:f1:2c:53:77:1b:90:2d:b7:e0:07:fa: d9:38:cb:74:03:8e:74:1a:99:b8:31:4a:d5:23:f9:59:b8:2d: 49:ba:7e:2b:5e:10:76:e3:9d:e5:0e:15:65:d4:e5:60:04:07: d0:00:f4:0e:3c:89:4a:d4:bb:c6:15:b9:c4:cb:35:47:80:b9: 14:4d:1c:3b:f6:35:b0:76:51:a4:ed:25:04:96:68:47:2d:21: 00:51:e1:67:00:e9:bd:d6:9f:35:e9:63:b4:86:16:a4:47:30: 0c:37:33:12:af:bc:c7:ac:b8:73:b6:55:bc:ba:d5:de:73:90: ac:fd:22:4b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjQxMTAvBgNVBAUTKDc3Mjg0MUEyNjMyNjMxNEVBMkU0MzgzNDc1REUzMUI2 RENFN0RCQTUwHhcNMjUxMjA4MjMzNzIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM3NjEzMS00YWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCtMiyFtEb8yfG5F6yMW7Y7D/3lBDY3wJrFVtmgoqgsTqJ9qZr+8HMLyeNGz 9T05UX4mKabXjmAl8/szf0DWiagfgxpEVhchvVoCFGAPu663VS/ecz6k83FnI6y6 UEb+fIDhOv1KfFAEoHUupVJ1xa2KxR6W9CGFYHwyn9rQqi1TEUEccKQDAkleJog2 tiGKW87qU2VTk9tJbTCFvHaumilxcG7D0wdoAyPRNQQot823A0RF6t0c/+tuSkKZ X5G6pYxZCObbHUkKwgXOANHmvsZZNj2PwWMswyLPMF2N28bAN2O47CjNz2rVdoso TKyI8+NptbRbpNmdVTXZ4fA+DwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHsF5N7/ aigYgYWqTWuISFS559SxMB8GA1UdIwQYMBaAFHcoQaJjJjFOouQ4NHXeMbbc59ul MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNC9FRjgzRTMwRUQw MDkxMUVDOTJBMTZBM0NDNEY5QUUwMi9keWhCb21NbU1VNmk1RGcwZGQ0eHR0em4y NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R5aEJvbU1tTVU2aTVEZzBkZDR4dHR6bjI2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzMjQvRUY4M0UzMEVEMDA5MTFFQzkyQTE2QTNDQzRGOUFFMDIvODFGMjExNTJE MUJEMTFFQzlEOEZCQzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnkHUwDwQCAAIwCQMHACABDfHAgDANBgkqhkiG9w0BAQsF AAOCAQEAgmyBrzBgfkJ+LHMNBzdNWS7ZhY/f0RVzM9kMggjqhBnK1l/D/K7Wm6jn MANj17ppwytRa8nBPXJbd7zFGL9FW/TV0SJriaJBFjWTpAdVEZSonrk2mmm8h/Sx 5Pf0acbjKe0Jc5oKZUzUtB9Q7Wc2iUh0O5GfusPcH9PCFCRPJOmAnSQpKPEsU3cb kC234Af62TjLdAOOdBqZuDFK1SP5WbgtSbp+K14QduOd5Q4VZdTlYAQH0AD0DjyJ StS7xhW5xMs1R4C5FE0cO/Y1sHZRpO0lBJZoRy0hAFHhZwDpvdafNeljtIYWpEcw DDczEq+8x6y4c7ZVvLrV3nOQrP0iSw== -----END CERTIFICATE-----Generated at Tue Dec 23 13:12:08 2025 by rpki-client