This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/9D77DCA4599A11ECA574BF52C4F9AE02.roa File: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (raw, json) Hash identifier: OULy8AteTWM2ruRqPX3BP5aZJPVwl5Zhsr9cGcGL5GI= Subject key identifier: 47:A6:63:8E:88:FB:76:3B:6F:67:7D:15:C4:AB:ED:06:09:F1:D0:51 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04B1 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/9D77DCA4599A11ECA574BF52C4F9AE02.roa Signing time: Thu 18 Dec 2025 23:20:15 +0000 ROA not before: Thu 18 Dec 2025 23:20:15 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149281 IP address blocks: 103.177.220.0/23 maxlen: 24 2001:df0:2bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Dec 18 23:20:15 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69448c2f-d284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9c:e8:cf:f8:ee:50:31:23:a9:0f:bd:16:fe: d7:eb:ed:8c:f6:b0:31:21:d4:f3:5c:cc:ef:f4:d5: 3c:d8:12:f2:a1:00:5d:ee:5e:23:e4:90:2d:17:3b: 0d:81:e1:37:14:41:8a:7b:84:6b:e9:dd:33:60:c0: 14:0e:4e:ac:21:20:42:b4:be:30:ee:1d:ae:18:49: 79:1d:41:55:39:d8:55:01:f1:f5:89:08:ce:c8:81: ad:19:63:ec:37:f9:ac:47:1e:c7:05:c7:9d:f1:5e: 42:a7:40:8d:ed:34:5c:75:97:4a:6f:a4:99:b2:07: 5a:a1:af:e6:a5:b7:5f:b4:ca:34:a4:50:93:2d:ba: bb:74:b8:da:6e:c3:fa:fa:53:7d:0e:71:63:f8:99: 85:42:ab:3e:e7:d5:11:95:db:d3:6c:8e:c1:2a:71: 11:c8:87:1b:af:cc:dc:ec:7a:92:69:69:0c:ff:77: d3:8f:ed:e2:05:68:a7:f8:74:29:24:c8:a9:d3:ae: cb:73:a5:71:d7:9c:92:93:c8:1d:dc:a6:36:68:c2: 17:07:5d:72:53:99:4b:59:2f:5d:84:45:6d:54:ee: 77:81:df:9e:ed:79:5b:a6:96:19:93:d7:01:00:65: bd:6c:81:ac:e8:74:93:da:1e:52:e5:51:ef:2d:0e: 24:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A6:63:8E:88:FB:76:3B:6F:67:7D:15:C4:AB:ED:06:09:F1:D0:51 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/9D77DCA4599A11ECA574BF52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.220.0/23 IPv6: 2001:df0:2bc0::/48 Signature Algorithm: sha256WithRSAEncryption 11:a1:eb:f1:c9:8c:2e:14:3e:1a:34:f4:4e:f4:8a:00:d0:44: 6e:80:51:9d:92:45:d0:69:4d:19:19:bb:fb:cc:20:71:a0:23: c0:7b:de:1c:1b:48:3e:bd:a7:2b:a0:49:4c:09:70:c0:2f:ae: 8b:3c:99:64:d2:49:80:cf:d6:2c:f6:ce:02:fb:97:88:92:a8: 1c:de:66:64:85:d0:a1:e5:b0:f2:32:f6:aa:bf:7a:32:fa:2f: 3b:4f:9e:3b:99:0b:19:51:de:5f:75:34:05:9a:2d:2e:1c:5e: b3:4a:46:ee:58:1a:0a:f8:3b:b2:d8:2a:6a:bf:d3:ac:8d:4a: a5:88:00:be:06:3b:1c:2a:69:79:50:0a:8f:32:d8:68:be:d9: c7:7a:23:18:31:41:3a:08:22:92:82:30:23:84:3a:90:85:67: e8:e5:2f:28:ba:2f:34:1d:a0:58:de:e1:0b:05:69:5c:3f:f7: 54:dc:bd:3c:15:ab:9e:92:8c:ba:1a:0a:77:4e:6b:68:f9:fe: 14:63:b0:d8:4e:9a:70:43:c8:f4:ee:03:1d:2d:12:56:c9:2c: 9c:c9:f4:04:45:24:d8:99:c1:09:31:45:6f:96:4c:b2:62:47: 6f:9d:e7:62:2c:5f:b5:7b:4f:a9:73:85:85:0e:07:a7:21:9e: 06:f5:9e:0c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjUxMjE4MjMyMDE1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0OGMyZi1kMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Jzoz/juUDEjqQ+9Fv7X6+2M9rAxIdTzXMzv9NU82BLyoQBd7l4j5JAtFzsN geE3FEGKe4Rr6d0zYMAUDk6sISBCtL4w7h2uGEl5HUFVOdhVAfH1iQjOyIGtGWPs N/msRx7HBced8V5Cp0CN7TRcdZdKb6SZsgdaoa/mpbdftMo0pFCTLbq7dLjabsP6 +lN9DnFj+JmFQqs+59URldvTbI7BKnERyIcbr8zc7HqSaWkM/3fTj+3iBWin+HQp JMip067Lc6Vx15ySk8gd3KY2aMIXB11yU5lLWS9dhEVtVO53gd+e7XlbppYZk9cB AGW9bIGs6HST2h5S5VHvLQ4k1wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEemY46I +3Y7b2d9FcSr7QYJ8dBRMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1QzQvM0UzQTU1MDI1OTk4MTFFQzkzOTFENTUwQzRGOUFFMDIvOUQ3N0RDQTQ1 OTlBMTFFQ0E1NzRCRjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsdwwDwQCAAIwCQMHACABDfArwDANBgkqhkiG9w0BAQsF AAOCAQEAEaHr8cmMLhQ+GjT0TvSKANBEboBRnZJF0GlNGRm7+8wgcaAjwHveHBtI Pr2nK6BJTAlwwC+uizyZZNJJgM/WLPbOAvuXiJKoHN5mZIXQoeWw8jL2qr96Mvov O0+eO5kLGVHeX3U0BZotLhxes0pG7lgaCvg7stgqar/TrI1KpYgAvgY7HCppeVAK jzLYaL7Zx3ojGDFBOggikoIwI4Q6kIVn6OUvKLovNB2gWN7hCwVpXD/3VNy9PBWr npKMuhoKd05raPn+FGOw2E6acEPI9O4DHS0SVsksnMn0BEUk2JnBCTFFb5ZMsmJH b53nYixftXtPqXOFhQ4HpyGeBvWeDA== -----END CERTIFICATE-----Generated at Wed Dec 24 23:19:20 2025 by rpki-client