This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/11A28878915611EE83F61C41C4F9AE02.roa File: 11A28878915611EE83F61C41C4F9AE02.roa (raw, json) Hash identifier: YCjR3XX3Cd2zeYLJZKZ4kwaaPa0+0oaBqmsJC+zthpI= Subject key identifier: 6B:91:82:4D:57:5A:FF:84:FA:4D:F2:32:E0:07:17:C6:FB:06:26:01 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 01BD Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/11A28878915611EE83F61C41C4F9AE02.roa Signing time: Sat 03 Jan 2026 18:23:22 +0000 ROA not before: Sat 03 Jan 2026 18:23:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 931 IP address blocks: 103.96.80.0/24 maxlen: 24 103.96.81.0/24 maxlen: 24 103.96.82.0/24 maxlen: 24 103.96.83.0/24 maxlen: 24 103.131.130.0/24 maxlen: 24 103.131.131.0/24 maxlen: 24 103.141.235.0/24 maxlen: 24 103.142.167.0/24 maxlen: 24 103.144.51.0/24 maxlen: 24 103.199.98.0/24 maxlen: 24 103.199.99.0/24 maxlen: 24 2401:3a60:1000::/36 maxlen: 36 2401:3a60:1100::/40 maxlen: 40 2401:3a60:1200::/40 maxlen: 40 2401:3a60:1300::/40 maxlen: 40 2401:3a60:1400::/40 maxlen: 40 2401:3a60:1500::/40 maxlen: 40 2401:3a60:15ff::/112 maxlen: 112 2401:3a60:1600::/40 maxlen: 40 2401:3a60:1600::/112 maxlen: 112 2401:3a60:3100::/40 maxlen: 40 2401:3a60:3200::/40 maxlen: 40 2401:3a60:3300::/40 maxlen: 40 2401:3a60:3400::/40 maxlen: 40 2401:3a60:5000::/40 maxlen: 40 2401:3a60:5100::/40 maxlen: 40 2401:3a60:5200::/40 maxlen: 40 2401:3a60:5300::/40 maxlen: 40 2401:3a60:5400::/40 maxlen: 40 2401:3a60:7100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 02:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Jan 3 18:23:22 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69595e9a-1e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1c:f0:b7:1b:ca:2f:08:9c:55:5c:fc:5f:a2: 4a:d4:f6:74:38:91:a5:c5:7c:fc:68:53:3b:b0:07: 6f:ee:bd:3b:d5:0e:28:eb:08:d5:fd:ca:5e:12:58: 2a:69:39:88:cb:57:c9:57:ec:31:2c:5d:bf:d3:f7: 2d:38:09:d2:38:4f:6b:94:65:8c:67:24:7e:7d:f0: bb:6f:91:4e:74:93:ca:8f:c4:94:28:07:71:5c:5e: 5b:ac:e5:4b:c3:f2:1d:09:75:46:c2:3f:a9:76:5a: 3b:75:4d:4f:bd:b5:d5:3a:02:01:5f:c2:75:d5:76: ab:fe:95:91:48:4d:20:93:5c:ea:3b:a1:19:68:c5: 58:94:3a:84:79:59:3d:b6:02:a5:2f:51:39:70:47: 5d:2e:e0:a8:7e:ce:6e:c7:32:7a:0a:46:21:78:ac: 44:fe:36:1a:c0:c5:bc:b3:f9:8e:93:e8:af:67:6e: fa:45:c6:2e:90:f5:b9:dc:4d:a5:0c:da:76:b9:3d: 72:c7:8f:ba:04:19:b4:a9:5c:2f:09:69:19:fd:82: 6b:47:0f:21:7c:40:b7:26:ef:51:32:fe:54:e8:17: eb:bf:89:33:6d:2b:61:0b:37:14:71:ab:3a:65:22: a9:5d:3e:eb:a4:b3:b7:03:df:58:cc:96:d8:01:54: 3e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:91:82:4D:57:5A:FF:84:FA:4D:F2:32:E0:07:17:C6:FB:06:26:01 X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/11A28878915611EE83F61C41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.80.0/22 103.131.130.0/23 103.141.235.0/24 103.142.167.0/24 103.144.51.0/24 103.199.98.0/23 IPv6: 2401:3a60:1000::/36 2401:3a60:3100::-2401:3a60:34ff:ffff:ffff:ffff:ffff:ffff 2401:3a60:5000::-2401:3a60:54ff:ffff:ffff:ffff:ffff:ffff 2401:3a60:7100::/40 Signature Algorithm: sha256WithRSAEncryption 07:25:a7:99:36:2b:c8:dd:8a:11:bb:fd:8f:09:e8:ad:fe:a7: 3b:99:15:cc:04:19:f4:af:1d:a1:18:a9:a9:d3:bd:ad:6f:c4: e0:e0:c2:24:14:b0:86:08:7c:6e:47:61:ea:fc:fe:f1:8c:c0: ba:e7:10:45:c1:38:22:70:ae:59:ec:a4:ed:c6:d0:6a:04:89: ac:e5:f5:6c:cd:73:32:d9:d3:64:0c:6f:30:7d:4f:e8:64:d8: 6d:3b:56:16:0c:f9:87:04:25:a7:c5:d3:1d:5f:11:d8:0a:d2: 20:2f:04:9c:73:b4:2f:ae:e6:b6:f5:8c:0b:d1:ba:43:99:e2: 99:9d:df:fb:b6:1d:94:27:67:dc:af:6d:31:c9:51:ae:59:f1: 2d:c5:b2:3d:57:08:d3:04:09:74:eb:86:b2:49:08:b2:14:f6: cf:5b:1a:90:8f:89:e2:a2:dc:18:00:35:1b:1e:51:09:62:84: ae:53:0d:be:d5:14:03:5c:ed:f0:c2:64:fc:62:2b:50:3a:15: 64:26:ba:b0:cb:80:a6:40:3b:66:c0:7a:12:32:99:a1:1f:a1: 7b:25:b6:3c:5f:c1:19:7b:28:50:cc:0d:c9:80:64:8c:c9:fb: 8e:84:72:6b:86:49:90:6b:1b:d4:37:69:53:6b:ec:0e:52:7a: d1:71:2e:31 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjYwMTAzMTgyMzIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU5NWU5YS0xZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BzwtxvKLwicVVz8X6JK1PZ0OJGlxXz8aFM7sAdv7r071Q4o6wjV/cpeElgq aTmIy1fJV+wxLF2/0/ctOAnSOE9rlGWMZyR+ffC7b5FOdJPKj8SUKAdxXF5brOVL w/IdCXVGwj+pdlo7dU1PvbXVOgIBX8J11Xar/pWRSE0gk1zqO6EZaMVYlDqEeVk9 tgKlL1E5cEddLuCofs5uxzJ6CkYheKxE/jYawMW8s/mOk+ivZ276RcYukPW53E2l DNp2uT1yx4+6BBm0qVwvCWkZ/YJrRw8hfEC3Ju9RMv5U6Bfrv4kzbSthCzcUcas6 ZSKpXT7rpLO3A99YzJbYAVQ+KQIDAQABo4IC7zCCAuswHQYDVR0OBBYEFGuRgk1X Wv+E+k3yMuAHF8b7BiYBMB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5QjIvMEE2RjNCNDI5MTU1MTFFRUE0QzBGNjY4QzRGOUFFMDIvMTFBMjg4Nzg5 MTU2MTFFRTgzRjYxQzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwweQYIKwYBBQUHAQcBAf8E ajBoMCoEAgABMCQDBAJnYFADBAFng4IDBABnjesDBABnjqcDBABnkDMDBAFnx2Iw OgQCAAIwNAMGBCQBOmAQMBADBgAkATpgMQMGACQBOmA0MBADBgQkATpgUAMGACQB OmBUAwYAJAE6YHEwDQYJKoZIhvcNAQELBQADggEBAAclp5k2K8jdihG7/Y8J6K3+ pzuZFcwEGfSvHaEYqanTva1vxODgwiQUsIYIfG5HYer8/vGMwLrnEEXBOCJwrlns pO3G0GoEiazl9WzNczLZ02QMbzB9T+hk2G07VhYM+YcEJafF0x1fEdgK0iAvBJxz tC+u5rb1jAvRukOZ4pmd3/u2HZQnZ9yvbTHJUa5Z8S3Fsj1XCNMECXTrhrJJCLIU 9s9bGpCPieKi3BgANRseUQlihK5TDb7VFANc7fDCZPxiK1A6FWQmurDLgKZAO2bA ehIymaEfoXsltjxfwRl7KFDMDcmAZIzJ+46EcmuGSZBrG9Q3aVNr7A5SetFxLjE= -----END CERTIFICATE-----Generated at Tue Jan 27 07:17:23 2026 by rpki-client