This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91FCBAF2C45711ECBDED2D29C4F9AE02.roa File: 91FCBAF2C45711ECBDED2D29C4F9AE02.roa (raw, json) Hash identifier: Y6ELVNdKx5z7l4m+x03Plj423TabW+NwrSuM1pagytU= Subject key identifier: BA:FF:F7:DD:B3:E1:A9:CE:26:29:12:C5:F5:DF:F0:9B:2E:97:14:F3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: CCFA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91FCBAF2C45711ECBDED2D29C4F9AE02.roa Signing time: Thu 08 Jan 2026 11:22:15 +0000 ROA not before: Thu 08 Jan 2026 11:22:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132781 IP address blocks: 103.207.100.0/24 maxlen: 24 103.207.101.0/24 maxlen: 24 103.224.181.0/24 maxlen: 24 103.250.30.0/24 maxlen: 24 2001:df3:7f40::/48 maxlen: 48 2001:df3:7f41::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 11:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52474 (0xccfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 8 11:22:15 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=695f9366-7bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:29:80:01:38:ec:bf:c0:e7:95:9f:a0:23:a8: 6c:32:23:e6:e5:c1:8a:5f:c3:83:0f:2f:72:26:c2: 2b:ad:46:fb:fa:f7:1f:c2:d3:f6:18:38:df:75:d4: 53:0f:6a:43:dc:9c:4e:1c:80:dd:55:10:aa:4b:c3: 6f:99:6c:b2:36:12:4e:35:73:4b:53:29:ab:96:bb: ec:30:52:67:99:c2:f6:a5:43:0e:f3:2c:ff:3a:53: 20:17:53:3b:b6:ab:e2:be:52:94:24:c9:90:d0:10: 53:f9:f1:e1:c9:6a:38:dc:a5:fb:fe:c6:49:8d:6f: e6:f6:8f:a4:55:b8:e1:2b:86:77:e3:60:49:0c:95: 9c:84:d2:41:ca:39:7c:d9:26:bf:65:7e:f3:17:a7: 6c:ed:81:18:65:9f:c7:6a:d8:db:04:21:69:43:a9: bd:3c:56:74:84:9a:e9:70:4c:21:72:6b:a2:3f:48: 4c:17:6c:c3:62:84:83:01:be:71:fc:f4:e4:1b:2a: ac:55:2b:87:f9:92:e1:0a:86:59:7b:cf:32:91:03: fa:eb:7b:50:0b:30:17:f0:56:0e:6e:96:c5:f6:99: 62:34:da:00:aa:d0:ef:a0:af:66:c5:c9:5e:3b:cd: 58:94:09:98:18:26:89:58:a5:62:24:56:7b:9f:2f: 97:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FF:F7:DD:B3:E1:A9:CE:26:29:12:C5:F5:DF:F0:9B:2E:97:14:F3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/91FCBAF2C45711ECBDED2D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.100.0/23 103.224.181.0/24 103.250.30.0/24 IPv6: 2001:df3:7f40::/47 Signature Algorithm: sha256WithRSAEncryption 13:0a:47:6e:c3:bc:c6:73:91:8e:cc:44:05:22:41:0c:4e:53: e6:ec:07:31:bc:d4:10:fe:67:66:51:64:5f:4c:30:3e:39:04: ee:3c:5b:4a:0f:6c:a6:f0:42:85:62:4a:be:8d:4b:49:47:f7: 82:61:70:ae:6c:8a:d6:14:d3:be:da:3e:59:17:a5:ce:22:27: 1b:92:87:cb:43:cd:ea:6c:b7:93:fa:f5:69:65:36:44:de:a6: d6:e7:23:ef:c0:1e:db:b0:7f:c2:18:d1:85:4c:7d:42:75:29: 1c:ff:08:14:ca:65:fc:db:c7:8f:67:ba:cd:24:7c:51:ea:e1: 22:54:9c:1b:e1:96:1a:cb:b5:cd:eb:ff:b2:c3:d3:e0:f6:8f: ce:a1:87:a3:e1:71:e5:97:a6:47:b1:fb:33:74:8c:bd:66:b8: af:4d:88:fd:63:3b:36:50:71:1d:0f:5a:11:d3:8d:05:4b:4d: 0f:50:2b:7d:cd:a1:42:88:02:9d:8e:7c:51:76:1f:ef:15:bf: 9e:62:ac:c6:8f:83:2f:21:86:fe:ca:8d:a1:82:42:31:52:e7: 0a:28:dc:a2:76:a5:95:c9:1a:0a:0b:d1:89:2c:39:11:c5:4f: b9:21:74:dc:1d:cb:41:22:9a:15:f6:5e:d5:6f:63:89:09:26: b9:0d:df:53 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDAMz6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDEwODExMjIxNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAwwNNjk1ZjkzNjYtN2JkMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIpgAE47L/A55WfoCOobDIj5uXBil/Dgw8vcibCK61G+/r3H8LT9hg433XU Uw9qQ9ycThyA3VUQqkvDb5lssjYSTjVzS1Mpq5a77DBSZ5nC9qVDDvMs/zpTIBdT O7ar4r5SlCTJkNAQU/nx4clqONyl+/7GSY1v5vaPpFW44SuGd+NgSQyVnITSQco5 fNkmv2V+8xenbO2BGGWfx2rY2wQhaUOpvTxWdISa6XBMIXJroj9ITBdsw2KEgwG+ cfz05BsqrFUrh/mS4QqGWXvPMpED+ut7UAswF/BWDm6WxfaZYjTaAKrQ76CvZsXJ XjvNWJQJmBgmiVilYiRWe58vl00CAwEAAaOCArIwggKuMB0GA1UdDgQWBBS6//fd s+GpziYpEsX13/CbLpcU8zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzkxRkNCQUYy QzQ1NzExRUNCREVEMkQyOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDwGCCsGAQUFBwEHAQH/ BC0wKzAYBAIAATASAwQBZ89kAwQAZ+C1AwQAZ/oeMA8EAgACMAkDBwEgAQ3zf0Aw DQYJKoZIhvcNAQELBQADggEBABMKR27DvMZzkY7MRAUiQQxOU+bsBzG81BD+Z2ZR ZF9MMD45BO48W0oPbKbwQoViSr6NS0lH94JhcK5sitYU077aPlkXpc4iJxuSh8tD zepst5P69WllNkTeptbnI+/AHtuwf8IY0YVMfUJ1KRz/CBTKZfzbx49nus0kfFHq 4SJUnBvhlhrLtc3r/7LD0+D2j86hh6PhceWXpkex+zN0jL1muK9NiP1jOzZQcR0P WhHTjQVLTQ9QK33NoUKIAp2OfFF2H+8Vv55irMaPgy8hhv7KjaGCQjFS5woo3KJ2 pZXJGgoL0YksORHFT7khdNwdy0EimhX2XtVvY4kJJrkN31M= -----END CERTIFICATE-----Generated at Mon Jan 19 21:44:26 2026 by rpki-client