This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa File: D0F245E0D76711EE99C72C29C4F9AE02.roa (raw, json) Hash identifier: AMCsMfJDurfCyrp2gOqfFlijgxzaSiXGO6EzIZjXWyQ= Subject key identifier: 5B:E4:7E:36:9F:D3:F1:59:13:D0:52:FE:56:0F:CA:CD:8A:6D:F1:68 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: 0154 Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa Signing time: Tue 23 Dec 2025 03:24:30 +0000 ROA not before: Tue 23 Dec 2025 03:24:30 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149018 IP address blocks: 103.88.89.0/24 maxlen: 24 103.176.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA, serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Validity Not Before: Dec 23 03:24:30 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694a0b6e-37f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:b3:93:bd:02:b0:44:0f:60:cf:4e:1e:0c: 85:e1:05:5a:26:10:83:27:d8:d4:6e:a6:23:57:b9: 67:fa:92:38:03:87:37:17:d7:d3:db:79:e4:85:3e: ea:85:1c:17:40:92:ab:02:73:ff:93:e7:f0:ba:3f: 8a:4b:1a:4e:d4:7b:5c:fd:f6:83:9e:56:08:a3:05: 82:94:ad:c6:17:58:6b:d8:0c:d4:a0:42:52:bb:37: ed:43:8d:a3:11:1c:d1:44:08:dd:72:8f:74:9f:98: df:43:ae:02:fd:ec:04:a9:a8:fc:b7:b3:37:9f:c4: f7:e6:6b:79:6e:d5:6c:65:ec:44:66:26:5e:cf:e6: 49:3a:ea:76:95:b0:9b:53:67:b2:96:3f:a8:05:18: 0d:24:e3:95:c1:b8:c4:41:a3:2f:75:e1:6e:2c:fe: 92:b7:64:7f:33:28:1d:d1:45:d3:98:b8:34:6d:0f: 7c:3e:19:0b:be:f8:9f:ce:6a:18:2b:e1:b4:9a:aa: 06:8c:b9:bb:18:49:03:2a:b2:b6:95:41:e7:c7:59: 5f:a3:51:68:d1:cb:7b:7f:af:7f:32:15:92:8c:9d: f9:72:3e:27:77:de:ab:2c:2e:3f:6c:ed:56:b6:a5: d5:ab:26:b5:55:94:a3:20:10:68:2a:4b:9a:6e:88: 0a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E4:7E:36:9F:D3:F1:59:13:D0:52:FE:56:0F:CA:CD:8A:6D:F1:68 X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.89.0/24 103.176.118.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:32:33:f5:4b:13:fa:69:74:85:94:fa:d9:84:7a:28:34:73: e1:34:b5:e0:9d:5b:da:2f:a8:dd:cb:87:8a:34:63:eb:a9:2a: 90:8d:77:18:e5:a0:b1:1e:56:36:7c:d5:2c:36:a5:b5:2c:28: e2:31:d6:15:72:6c:cc:43:cf:0d:e1:eb:8e:83:89:96:99:00: 0b:38:25:66:e4:fc:58:5d:90:9e:0a:3f:6b:71:09:33:f0:a4: 27:37:39:2d:16:a2:f2:f1:16:40:9e:89:b8:07:60:92:5d:f5: 43:bd:10:a6:67:98:2e:42:9e:5c:08:e1:cd:f9:bc:f4:60:7b: 0d:2f:13:c7:6c:fe:b9:62:62:9a:b8:c6:0b:f5:aa:21:0d:08: 95:69:20:06:d5:a7:eb:eb:d0:97:4b:b0:f4:83:36:10:b5:21: 75:a4:4f:bb:73:f5:07:00:cc:8b:aa:a1:1f:b6:8a:91:a8:89: 89:7b:c6:88:5e:37:93:c8:b0:c4:8b:aa:07:24:12:bd:c0:a3: 54:60:94:c5:e1:ac:a5:d0:57:e2:ce:3b:b7:24:ac:28:ec:b2: 40:b8:16:2d:90:58:e8:d2:29:6d:c5:63:11:55:96:d9:b4:d4: 0b:26:9c:33:e2:a3:6e:a9:3d:ad:28:cf:8b:14:7e:d1:f5:a3: 85:75:fc:c1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjUwRUExMTAvBgNVBAUTKDRCMjVCMTQ3MjBGMDQ0NEJCM0Q2NjhGOTYzNTg0MzU0 RjdGQUMyMTMwHhcNMjUxMjIzMDMyNDMwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRhMGI2ZS0zN2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrazk70CsEQPYM9OHgyF4QVaJhCDJ9jUbqYjV7ln+pI4A4c3F9fT23nkhT7q hRwXQJKrAnP/k+fwuj+KSxpO1Htc/faDnlYIowWClK3GF1hr2AzUoEJSuzftQ42j ERzRRAjdco90n5jfQ64C/ewEqaj8t7M3n8T35mt5btVsZexEZiZez+ZJOup2lbCb U2eylj+oBRgNJOOVwbjEQaMvdeFuLP6St2R/Mygd0UXTmLg0bQ98PhkLvvifzmoY K+G0mqoGjLm7GEkDKrK2lUHnx1lfo1Fo0ct7f69/MhWSjJ35cj4nd96rLC4/bO1W tqXVqya1VZSjIBBoKkuabogKUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFvkfjaf 0/FZE9BS/lYPys2KbfFoMB8GA1UdIwQYMBaAFEslsUcg8ERLs9Zo+WNYQ1T3+sIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBFQS81MjFEMUFEOEQ3 NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JFdXoxbWo1WTFoRFZQZjZ3 aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwRUEvNTIxRDFBRDhENzY3MTFFRUFGMjJDMDY2QzRGOUFFMDIvRDBGMjQ1RTBE NzY3MTFFRTk5QzcyQzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnWFkDBABnsHYwDQYJKoZIhvcNAQELBQADggEBAIwyM/VL E/ppdIWU+tmEeig0c+E0teCdW9ovqN3Lh4o0Y+upKpCNdxjloLEeVjZ81Sw2pbUs KOIx1hVybMxDzw3h646DiZaZAAs4JWbk/FhdkJ4KP2txCTPwpCc3OS0WovLxFkCe ibgHYJJd9UO9EKZnmC5CnlwI4c35vPRgew0vE8ds/rliYpq4xgv1qiENCJVpIAbV p+vr0JdLsPSDNhC1IXWkT7tz9QcAzIuqoR+2ipGoiYl7xoheN5PIsMSLqgckEr3A o1RglMXhrKXQV+LOO7ckrCjsskC4Fi2QWOjSKW3FYxFVltm01AsmnDPio26pPa0o z4sUftH1o4V1/ME= -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:58 2025 by rpki-client