This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa File: FCF99042301011EFBC350682C4F9AE02.roa (raw, json) Hash identifier: rZI2SkzqxVzOq3Vh/OUdHg7GfUMvt+YmYRrGtjtKaPI= Subject key identifier: B3:05:97:A7:D5:77:44:F8:73:6F:85:4B:9F:63:08:7B:90:DA:E3:6A Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 01D0 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa Signing time: Thu 15 Jan 2026 21:37:22 +0000 ROA not before: Thu 15 Jan 2026 21:37:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 53813 IP address blocks: 167.103.2.0/23 maxlen: 24 167.103.4.0/23 maxlen: 24 167.103.6.0/23 maxlen: 24 167.103.8.0/23 maxlen: 24 167.103.10.0/23 maxlen: 24 167.103.12.0/23 maxlen: 24 167.103.14.0/23 maxlen: 24 167.103.16.0/23 maxlen: 24 167.103.18.0/23 maxlen: 24 167.103.20.0/23 maxlen: 24 167.103.22.0/23 maxlen: 24 167.103.24.0/23 maxlen: 24 167.103.26.0/23 maxlen: 24 167.103.28.0/23 maxlen: 24 167.103.30.0/23 maxlen: 24 167.103.32.0/23 maxlen: 24 167.103.34.0/23 maxlen: 24 167.103.36.0/24 maxlen: 24 167.103.37.0/24 maxlen: 24 167.103.38.0/24 maxlen: 24 167.103.39.0/24 maxlen: 24 167.103.40.0/24 maxlen: 24 167.103.41.0/24 maxlen: 24 167.103.42.0/23 maxlen: 24 167.103.44.0/23 maxlen: 24 167.103.46.0/23 maxlen: 24 167.103.48.0/24 maxlen: 24 167.103.49.0/24 maxlen: 24 167.103.54.0/23 maxlen: 24 167.103.56.0/23 maxlen: 24 167.103.58.0/23 maxlen: 24 167.103.60.0/23 maxlen: 24 167.103.62.0/23 maxlen: 24 167.103.64.0/23 maxlen: 24 167.103.66.0/23 maxlen: 24 167.103.68.0/23 maxlen: 24 167.103.70.0/23 maxlen: 24 167.103.72.0/23 maxlen: 24 167.103.74.0/23 maxlen: 24 167.103.76.0/23 maxlen: 24 167.103.78.0/23 maxlen: 24 167.103.80.0/23 maxlen: 24 167.103.82.0/23 maxlen: 24 167.103.84.0/24 maxlen: 24 167.103.85.0/24 maxlen: 24 167.103.86.0/24 maxlen: 24 167.103.87.0/24 maxlen: 24 167.103.88.0/23 maxlen: 24 167.103.96.0/23 maxlen: 24 167.103.98.0/23 maxlen: 24 167.103.100.0/23 maxlen: 24 167.103.102.0/23 maxlen: 24 167.103.110.0/24 maxlen: 24 167.103.111.0/24 maxlen: 24 167.103.112.0/23 maxlen: 24 167.103.114.0/23 maxlen: 24 167.103.116.0/23 maxlen: 24 167.103.118.0/23 maxlen: 24 167.103.120.0/23 maxlen: 24 167.103.122.0/23 maxlen: 24 167.103.124.0/23 maxlen: 24 167.103.126.0/23 maxlen: 24 167.103.132.0/23 maxlen: 24 167.103.134.0/23 maxlen: 24 167.103.136.0/23 maxlen: 24 167.103.138.0/23 maxlen: 24 167.103.140.0/23 maxlen: 24 167.103.142.0/23 maxlen: 24 167.103.144.0/23 maxlen: 24 167.103.146.0/23 maxlen: 24 167.103.154.0/23 maxlen: 24 167.103.156.0/23 maxlen: 24 167.103.158.0/23 maxlen: 24 167.103.160.0/23 maxlen: 24 167.103.162.0/23 maxlen: 24 167.103.164.0/23 maxlen: 24 167.103.166.0/23 maxlen: 24 167.103.186.0/23 maxlen: 24 167.103.188.0/23 maxlen: 24 167.103.190.0/23 maxlen: 24 167.103.192.0/23 maxlen: 24 167.103.196.0/23 maxlen: 24 167.103.198.0/23 maxlen: 24 167.103.200.0/23 maxlen: 24 167.103.202.0/23 maxlen: 24 167.103.204.0/23 maxlen: 24 167.103.206.0/23 maxlen: 24 167.103.208.0/23 maxlen: 24 167.103.210.0/23 maxlen: 24 167.103.212.0/23 maxlen: 24 167.103.214.0/23 maxlen: 24 167.103.216.0/23 maxlen: 24 167.103.228.0/23 maxlen: 24 167.103.230.0/23 maxlen: 24 167.103.232.0/23 maxlen: 24 167.103.234.0/23 maxlen: 24 167.103.248.0/23 maxlen: 24 167.103.250.0/23 maxlen: 24 167.103.252.0/23 maxlen: 24 167.103.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Jan 15 21:37:22 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69695e12-fb20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c5:71:ae:b4:3b:9d:0f:eb:cc:88:82:9c:6b: 83:64:bb:8d:32:25:55:ab:59:ab:35:c8:66:39:18: c4:44:4a:ba:e6:c4:d3:94:42:b3:4d:5d:70:09:e3: 1d:e2:81:aa:0c:d8:ba:ef:77:a2:d8:01:0c:15:3e: f3:9f:f1:8c:75:66:5c:71:f2:79:e8:fa:28:00:27: 27:a6:c6:a2:65:38:30:77:2c:12:9a:b9:97:b0:16: 4a:cb:a8:b1:b7:20:7e:cf:ad:0a:6d:ff:f6:ed:5f: 11:1d:98:72:14:25:d4:df:24:76:76:fe:37:5f:56: 5a:6e:0e:54:a6:95:62:6f:01:38:32:fb:89:b0:33: 74:99:92:47:86:5a:5a:41:07:0a:c3:f9:ea:aa:37: ca:3f:f8:9e:75:25:c6:5b:1e:32:ba:54:7a:9a:2f: f2:04:66:a8:68:fa:74:45:62:03:45:30:dc:e7:9f: d2:92:97:d1:2d:2b:d7:7c:c9:cd:03:a1:d4:09:cf: 18:21:f6:fd:85:f8:79:fd:51:30:4d:84:13:f7:69: 82:33:c7:f2:59:98:4e:74:99:17:e7:c2:e1:02:63: 0d:a3:06:06:5c:ec:f4:99:9c:e7:3b:4c:34:f2:74: a5:bb:be:ca:0b:6f:a3:83:67:9c:b7:ba:fe:34:51: 07:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:05:97:A7:D5:77:44:F8:73:6F:85:4B:9F:63:08:7B:90:DA:E3:6A X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/FCF99042301011EFBC350682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.2.0-167.103.49.255 167.103.54.0-167.103.89.255 167.103.96.0/21 167.103.110.0-167.103.127.255 167.103.132.0-167.103.147.255 167.103.154.0-167.103.167.255 167.103.186.0-167.103.193.255 167.103.196.0-167.103.217.255 167.103.228.0-167.103.235.255 167.103.248.0/21 Signature Algorithm: sha256WithRSAEncryption 2d:74:f9:e3:08:f1:90:e7:9e:0d:03:63:cd:d6:3d:8d:a7:a7: a4:e2:39:4b:10:85:4d:80:55:1f:a5:a4:19:a6:1c:f4:97:38: 6f:7d:a1:3a:44:83:01:92:2d:18:5f:30:71:ab:80:d9:03:cb: 36:3d:48:d0:ed:40:ce:98:77:fe:a0:51:d8:9b:10:e5:09:91: ea:da:38:b3:8e:c3:d6:cf:dd:9f:79:87:75:d4:1b:b1:f0:89: 00:e0:9a:ae:fc:64:ea:e3:33:15:0d:5a:90:5d:3c:57:3d:05: 69:14:33:c8:5c:de:03:6d:7a:2d:e7:12:fb:81:ed:c1:70:06: df:6a:1a:d0:ed:db:ae:71:10:8a:a5:7c:6f:a7:99:15:b4:5b: ba:5d:26:91:c3:5c:3e:0b:d3:be:4f:e7:09:19:87:84:03:3e: a3:bb:26:d1:71:43:9b:25:3e:72:18:23:7c:74:2f:e0:cb:f0: 58:7d:de:72:31:de:84:32:bb:8f:fa:d7:26:6f:0e:8b:2d:bf: 7e:78:8a:f4:0e:db:eb:e4:0e:74:63:87:a9:b6:6e:29:59:b8: 53:6c:a6:0f:a6:58:ca:c6:14:73:c7:86:38:9f:e7:83:e7:3d: bc:d2:1b:4e:6b:86:c0:de:10:f3:d1:df:6d:1a:18:7d:0a:7b: ad:11:e2:e0 -----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjYwMTE1MjEzNzIyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTY5NWUxMi1mYjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MVxrrQ7nQ/rzIiCnGuDZLuNMiVVq1mrNchmORjEREq65sTTlEKzTV1wCeMd 4oGqDNi673ei2AEMFT7zn/GMdWZccfJ56PooACcnpsaiZTgwdywSmrmXsBZKy6ix tyB+z60Kbf/27V8RHZhyFCXU3yR2dv43X1Zabg5UppVibwE4MvuJsDN0mZJHhlpa QQcKw/nqqjfKP/iedSXGWx4yulR6mi/yBGaoaPp0RWIDRTDc55/SkpfRLSvXfMnN A6HUCc8YIfb9hfh5/VEwTYQT92mCM8fyWZhOdJkX58LhAmMNowYGXOz0mZznO0w0 8nSlu77KC2+jg2ect7r+NFEH/QIDAQABo4IDDzCCAwswHQYDVR0OBBYEFLMFl6fV d0T4c2+FS59jCHuQ2uNqMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvRkNGOTkwNDIz MDEwMTFFRkJDMzUwNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgZgGCCsGAQUFBwEHAQH/ BIGIMIGFMIGCBAIAATB8MAwDBAGnZwIDBAGnZzAwDAMEAadnNgMEAadnWAMEA6dn YDAMAwQBp2duAwQHp2cAMAwDBAKnZ4QDBAKnZ5AwDAMEAadnmgMEA6dnoDAMAwQB p2e6AwQBp2fAMAwDBAKnZ8QDBAGnZ9gwDAMEAqdn5AMEAqdn6AMEA6dn+DANBgkq hkiG9w0BAQsFAAOCAQEALXT54wjxkOeeDQNjzdY9jaenpOI5SxCFTYBVH6WkGaYc 9Jc4b32hOkSDAZItGF8wcauA2QPLNj1I0O1Azph3/qBR2JsQ5QmR6to4s47D1s/d n3mHddQbsfCJAOCarvxk6uMzFQ1akF08Vz0FaRQzyFzeA216LecS+4HtwXAG32oa 0O3brnEQiqV8b6eZFbRbul0mkcNcPgvTvk/nCRmHhAM+o7sm0XFDmyU+chgjfHQv 4MvwWH3ecjHehDK7j/rXJm8Oiy2/fniK9A7b6+QOdGOHqbZuKVm4U2ymD6ZYysYU c8eGOJ/ng+c9vNIbTmuGwN4Q89HfbRoYfQp7rRHi4A== -----END CERTIFICATE-----Generated at Mon Jan 26 11:47:03 2026 by rpki-client