This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4A2FDB94DA3F11F0A550B47F8ED3641D.roa File: 4A2FDB94DA3F11F0A550B47F8ED3641D.roa (raw, json) Hash identifier: wIVDcovfjaW48Qb333j3HFf+Ank1H8nyxSPomJxTa+M= Subject key identifier: 15:32:EA:35:E7:6A:B9:B8:B1:1C:8F:C3:A4:49:CE:63:6F:42:4C:37 Certificate issuer: /CN=A91471A0/serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Certificate serial: 02 Authority key identifier: DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4A2FDB94DA3F11F0A550B47F8ED3641D.roa Signing time: Tue 16 Dec 2025 05:23:01 +0000 ROA not before: Tue 16 Dec 2025 05:23:01 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152194 IP address blocks: 43.226.20.0/24 maxlen: 24 43.226.21.0/24 maxlen: 24 43.226.23.0/24 maxlen: 24 103.45.68.0/24 maxlen: 24 103.45.69.0/24 maxlen: 24 103.45.70.0/24 maxlen: 24 103.45.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 05:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471A0, serialNumber=DE8C116551042BE8E7264BEDB582F0A377BB24BD Validity Not Before: Dec 16 05:23:01 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6940ecb5-a2e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:34:df:30:a9:7a:e1:26:aa:dc:62:61:9a:c2: ee:89:51:74:06:b8:4d:c6:ce:0e:49:60:64:7d:5e: 75:4d:29:dd:a7:b0:97:01:42:bc:91:41:3d:39:63: fc:4f:fc:ce:95:3c:5a:48:96:a1:1f:71:8d:fb:87: 53:38:8b:3a:0f:65:e6:fa:3c:ce:20:44:a5:a4:cb: ab:5d:0a:03:78:f0:00:98:26:7a:9c:58:d3:a0:00: f0:0f:61:06:5a:8d:16:5f:a1:42:dc:47:07:85:7f: 61:7a:72:a9:87:b2:e1:eb:d2:f1:38:0f:c6:f5:75: c2:19:90:06:9a:f6:ce:6a:56:b1:92:f0:9e:6c:79: 0b:38:26:3a:91:f8:a1:d4:11:db:84:2a:69:0c:ec: 8e:9a:31:41:55:8a:0d:03:ab:72:02:ab:12:84:a4: c0:17:f2:d1:fe:56:14:df:eb:1f:fb:25:78:73:4c: b1:e0:73:d1:19:15:18:f9:41:fd:6e:4b:5c:7b:11: 30:90:7d:7a:fe:92:a1:fe:d5:49:3a:0c:10:4c:17: 4b:55:d3:29:e0:bf:ca:b0:70:d8:02:a1:f5:44:54: cb:6d:16:ea:b1:bc:b6:44:fa:e4:04:37:1b:87:f2: 59:1f:32:db:dc:aa:60:2d:05:d8:ba:f9:d5:0d:2a: c9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:32:EA:35:E7:6A:B9:B8:B1:1C:8F:C3:A4:49:CE:63:6F:42:4C:37 X509v3 Authority Key Identifier: keyid:DE:8C:11:65:51:04:2B:E8:E7:26:4B:ED:B5:82:F0:A3:77:BB:24:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/3owRZVEEK-jnJkvttYLwo3e7JL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3owRZVEEK-jnJkvttYLwo3e7JL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471A0/D6994DE6DA3E11F081F5A4578ED3641D/4A2FDB94DA3F11F0A550B47F8ED3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.20.0/23 43.226.23.0/24 103.45.68.0/22 Signature Algorithm: sha256WithRSAEncryption 15:4e:0a:97:25:63:74:fe:a8:57:00:ab:78:27:ee:71:a1:2f: 53:e5:0b:82:32:eb:ea:0d:83:bf:67:4c:0e:22:19:50:d4:62: 34:17:1f:29:fa:6d:8e:5c:3b:06:e3:ce:f4:d5:4a:9f:55:13: 9b:f7:2d:e7:4d:5d:99:b2:81:48:eb:78:23:79:40:d4:5e:79: 1f:dc:a1:0c:2e:ab:97:2e:bd:dc:e9:7a:59:d8:35:ac:d6:0d: 79:60:7c:df:4b:a5:a1:0b:e6:48:95:b8:4f:f8:cf:aa:1e:db: 48:1d:73:a3:6e:79:3c:19:d6:01:dd:44:c0:74:c6:88:dc:c7: 71:dc:0e:c2:96:0f:7c:70:3f:4f:64:17:9a:94:cd:4a:21:93: a6:8e:1b:db:b5:f8:bb:5b:a0:2f:6e:9f:a8:db:fb:d9:fa:aa: 38:a9:70:aa:43:04:be:33:06:74:9b:4b:2a:ad:6f:b0:e0:51: 97:f6:d6:af:97:e1:f3:7b:30:66:73:54:00:28:54:73:26:26: f2:1e:35:54:30:99:97:8b:61:15:cb:2c:49:7d:59:a0:14:3e: 9c:dc:5f:a3:7f:0e:dd:a5:c3:d4:3a:48:92:eb:40:c6:16:01: f8:eb:42:0f:4b:78:17:77:08:e8:8a:51:1c:66:dc:ab:64:f9: 6b:1d:84:ba -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzFBMDExMC8GA1UEBRMoREU4QzExNjU1MTA0MkJFOEU3MjY0QkVEQjU4MkYwQTM3 N0JCMjRCRDAeFw0yNTEyMTYwNTIzMDFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NDBlY2I1LWEyZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnNN8wqXrhJqrcYmGawu6JUXQGuE3Gzg5JYGR9XnVNKd2nsJcBQryRQT05Y/xP /M6VPFpIlqEfcY37h1M4izoPZeb6PM4gRKWky6tdCgN48ACYJnqcWNOgAPAPYQZa jRZfoULcRweFf2F6cqmHsuHr0vE4D8b1dcIZkAaa9s5qVrGS8J5seQs4JjqR+KHU EduEKmkM7I6aMUFVig0Dq3ICqxKEpMAX8tH+VhTf6x/7JXhzTLHgc9EZFRj5Qf1u S1x7ETCQfXr+kqH+1Uk6DBBMF0tV0yngv8qwcNgCofVEVMttFuqxvLZE+uQENxuH 8lkfMtvcqmAtBdi6+dUNKslFAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUFTLqNedq ubixHI/DpEnOY29CTDcwHwYDVR0jBBgwFoAU3owRZVEEK+jnJkvttYLwo3e7JL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3MUEwL0Q2OTk0REU2REEz RTExRjA4MUY1QTQ1NzhFRDM2NDFELzNvd1JaVkVFSy1qbkprdnR0WUx3bzNlN0pM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM293UlpWRUVLLWpuSmt2dHRZTHdvM2U3SkwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFBMC9ENjk5NERFNkRBM0UxMUYwODFGNUE0NTc4RUQzNjQxRC80QTJGREI5NERB M0YxMUYwQTU1MEI0N0Y4RUQzNjQxRC5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEASviFAMEACviFwMEAmctRDANBgkqhkiG9w0BAQsFAAOCAQEA FU4KlyVjdP6oVwCreCfucaEvU+ULgjLr6g2Dv2dMDiIZUNRiNBcfKfptjlw7BuPO 9NVKn1UTm/ct501dmbKBSOt4I3lA1F55H9yhDC6rly693Ol6Wdg1rNYNeWB830ul oQvmSJW4T/jPqh7bSB1zo255PBnWAd1EwHTGiNzHcdwOwpYPfHA/T2QXmpTNSiGT po4b27X4u1ugL26fqNv72fqqOKlwqkMEvjMGdJtLKq1vsOBRl/bWr5fh83swZnNU AChUcyYm8h41VDCZl4thFcssSX1ZoBQ+nNxfo38O3aXD1DpIkutAxhYB+OtCD0t4 F3cI6IpRHGbcq2T5ax2Eug== -----END CERTIFICATE-----Generated at Thu Dec 18 02:09:10 2025 by rpki-client