This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4A2FDB94DA3F11F0A550B47F8ED3641D.roa File: 4A2FDB94DA3F11F0A550B47F8ED3641D.roa (raw, json) Hash identifier: 9F80SnIRBwa8Rl2nPCGmsw9HttDY96Ll4TGMQEUaSHo= Subject key identifier: C0:D9:1D:42:89:69:93:8E:E8:AC:45:9F:1C:16:BD:A4:B6:08:09:23 Certificate issuer: /CN=A91471A0/serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Certificate serial: 1F Authority key identifier: DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4A2FDB94DA3F11F0A550B47F8ED3641D.roa Signing time: Tue 03 Feb 2026 08:26:13 +0000 ROA not before: Tue 03 Feb 2026 08:26:13 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152194 IP address blocks: 43.226.20.0/24 maxlen: 24 43.226.21.0/24 maxlen: 24 43.226.23.0/24 maxlen: 24 103.45.68.0/24 maxlen: 24 103.45.69.0/24 maxlen: 24 103.45.70.0/24 maxlen: 24 103.45.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Feb 2026 07:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471A0, serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Validity Not Before: Feb 3 08:26:13 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6981b125-8ebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:9c:32:1f:07:ec:d5:7c:5a:65:f8:e6:bf:b4: 11:0c:a3:6e:e4:ad:cc:70:c5:55:9c:24:b2:88:a4: c6:f0:e6:3e:d7:8a:1b:61:f9:85:5c:01:d5:c4:33: d0:b9:12:a5:59:d9:00:14:69:82:fc:09:77:3b:27: b0:83:bf:e8:4e:9b:aa:25:b4:ab:f2:35:e5:e2:54: 63:86:48:6e:1c:b2:7f:79:1a:37:50:1e:84:ea:90: 6d:79:1f:2c:64:37:1c:43:96:43:6a:cc:f1:7a:32: 78:b1:89:7e:7b:24:dc:1c:3a:c3:69:06:36:74:4f: 13:64:74:bc:3b:1a:00:a0:a9:cd:2f:69:c2:25:5e: bc:63:f2:51:06:a9:e0:43:b0:a4:18:4d:f8:74:75: 00:1c:02:b6:42:d6:78:27:f1:f2:7e:f4:ba:31:02: a2:81:0e:30:53:a0:4f:14:c2:7f:70:5f:dc:c2:5d: 86:57:63:90:28:e0:ed:2d:37:61:12:88:fe:ee:38: cf:bb:70:48:98:bd:10:6a:24:a8:74:a7:29:98:3b: 7b:29:12:f7:56:16:ae:ce:89:7b:32:bf:be:c4:e9: 04:27:d3:25:e3:b2:3e:60:75:5c:55:c8:b2:23:fe: a0:f9:a1:94:77:6e:eb:ae:1a:92:d0:d6:c9:71:3c: 3e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D9:1D:42:89:69:93:8E:E8:AC:45:9F:1C:16:BD:A4:B6:08:09:23 X509v3 Authority Key Identifier: keyid:DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4A2FDB94DA3F11F0A550B47F8ED3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.20.0/23 43.226.23.0/24 103.45.68.0/22 Signature Algorithm: sha256WithRSAEncryption 63:66:f9:a9:84:83:a4:68:d4:f8:36:c5:d1:cd:8b:15:61:4e: 20:7e:f3:45:f9:23:50:3d:e3:67:d4:d8:50:f5:21:06:57:5d: 9d:72:2d:75:2e:45:f5:02:f9:03:59:9b:d9:cf:87:3f:65:51: d0:31:99:42:58:2d:b3:ba:d0:67:13:73:e1:06:9f:40:07:b0: a3:8e:57:e9:00:a9:46:e9:d9:09:a8:05:1b:ff:bb:d7:bb:67: 6d:10:c0:d7:2c:a9:c6:4a:a7:eb:9c:19:6b:56:cd:64:d0:25: dd:62:16:3a:92:a2:bd:e1:c0:36:08:90:0a:5f:a6:cc:7d:40: c8:93:04:18:b2:d6:55:a5:40:bc:57:69:50:db:0c:84:9e:88: b9:a7:83:be:9c:2f:73:93:eb:48:ee:aa:06:a3:e5:ad:2b:48: fd:b6:76:b3:dd:00:93:86:11:96:9e:8c:47:61:7f:6a:ce:b8: 62:a3:2d:69:4f:c0:a4:fd:98:35:65:a0:45:6b:0b:d5:37:05: b7:fb:15:1b:1a:58:85:03:9c:73:c7:c8:95:35:b3:41:25:5b: b2:70:37:04:50:a5:3b:67:d2:7c:2f:3c:71:4f:72:2b:0d:65: dc:e3:80:64:3f:06:d0:b1:4a:b6:1b:71:0f:bc:42:84:82:f7: 5c:bd:90:1d -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTE0 NzFBMDExMC8GA1UEBRMoREU4QzExNjU1MTA0MkJFOEU3MjY0QkVEQjU4MkYwQTM3 N0JCMjRCRDAeFw0yNjAyMDMwODI2MTNaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5ODFiMTI1LThlYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCInDIfB+zVfFpl+Oa/tBEMo27krcxwxVWcJLKIpMbw5j7Xihth+YVcAdXEM9C5 EqVZ2QAUaYL8CXc7J7CDv+hOm6oltKvyNeXiVGOGSG4csn95GjdQHoTqkG15Hyxk NxxDlkNqzPF6MnixiX57JNwcOsNpBjZ0TxNkdLw7GgCgqc0vacIlXrxj8lEGqeBD sKQYTfh0dQAcArZC1ngn8fJ+9LoxAqKBDjBToE8Uwn9wX9zCXYZXY5Ao4O0tN2ES iP7uOM+7cEiYvRBqJKh0pymYO3spEvdWFq7OiXsyv77E6QQn0yXjsj5gdVxVyLIj /qD5oZR3buuuGpLQ1slxPD6RAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUwNkdQolp k47orEWfHBa9pLYICSMwHwYDVR0jBBgwFoAU3owRZVEEK+jnJkvttYLwo3e7JL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3MUEwL0Q2OTk0REU2REEz RTExRjA4MUY1QTQ1NzhFRDM2NDFELzNvd1JaVkVFSy1qbkprdnR0WUx3bzNlN0pM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM293UlpWRUVLLWpuSmt2dHRZTHdvM2U3SkwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFBMC9ENjk5NERFNkRBM0UxMUYwODFGNUE0NTc4RUQzNjQxRC80QTJGREI5NERB M0YxMUYwQTU1MEI0N0Y4RUQzNjQxRC5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEASviFAMEACviFwMEAmctRDANBgkqhkiG9w0BAQsFAAOCAQEA Y2b5qYSDpGjU+DbF0c2LFWFOIH7zRfkjUD3jZ9TYUPUhBlddnXItdS5F9QL5A1mb 2c+HP2VR0DGZQlgts7rQZxNz4QafQAewo45X6QCpRunZCagFG/+717tnbRDA1yyp xkqn65wZa1bNZNAl3WIWOpKiveHANgiQCl+mzH1AyJMEGLLWVaVAvFdpUNsMhJ6I uaeDvpwvc5PrSO6qBqPlrStI/bZ2s90Ak4YRlp6MR2F/as64YqMtaU/ApP2YNWWg RWsL1TcFt/sVGxpYhQOcc8fIlTWzQSVbsnA3BFClO2fSfC88cU9yKw1l3OOAZD8G 0LFKthtxD7xChIL3XL2QHQ== -----END CERTIFICATE-----Generated at Tue Feb 10 09:05:50 2026 by rpki-client