This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/CE988D80FB7311EC97CD7F85C4F9AE02.roa File: CE988D80FB7311EC97CD7F85C4F9AE02.roa (raw, json) Hash identifier: LU6z1pVOuXrNPzgnwfluQqu2bwjgft7G2Wo6z9gDgOM= Subject key identifier: 00:5A:B6:99:AE:80:61:5A:26:44:6A:4E:85:ED:CF:69:79:55:93:B0 Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 05AF Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/CE988D80FB7311EC97CD7F85C4F9AE02.roa Signing time: Fri 02 Jan 2026 23:19:20 +0000 ROA not before: Fri 02 Jan 2026 23:19:20 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 395092 IP address blocks: 43.230.160.0/22 maxlen: 24 103.20.234.0/23 maxlen: 24 103.27.132.0/23 maxlen: 23 103.27.134.0/23 maxlen: 23 103.159.64.0/23 maxlen: 24 117.55.192.0/23 maxlen: 24 117.55.194.0/23 maxlen: 24 203.96.176.0/22 maxlen: 24 210.16.64.0/22 maxlen: 24 2406:cb40::/48 maxlen: 48 2406:cb40:1::/48 maxlen: 48 2406:cb41::/48 maxlen: 48 2406:cb42::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 2 23:19:20 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69585278-8ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:52:0c:7c:05:4d:09:9d:5e:11:d2:b3:77:97: 82:ff:3d:50:b7:d6:fd:9b:41:4d:c1:41:42:c0:30: 37:2f:ac:39:88:a4:38:93:86:63:f5:d7:77:ed:e6: e9:28:9e:01:d4:f0:49:80:e2:d7:01:f6:78:b8:2c: 0e:0b:f5:2a:4d:60:fc:5f:13:8e:d8:f9:34:c8:9f: c7:41:13:2f:80:63:ae:dc:b2:6b:58:b1:cc:67:f7: 79:bd:c0:ab:14:b9:73:91:b2:2c:d5:62:81:51:31: 56:33:9b:69:f9:0b:97:17:88:e0:78:26:af:66:fd: 28:53:9b:03:83:b9:17:7c:9a:35:8d:17:bc:cf:a6: c3:db:92:d1:c7:2f:ea:31:cc:b8:e7:4b:fc:ee:89: 90:d8:ce:fc:73:cb:7e:a2:44:92:1e:e5:c7:57:25: 22:33:e4:e8:89:51:6a:79:7f:c5:da:69:1b:44:5f: 9c:ee:50:8e:fd:52:36:30:2c:9f:ce:32:b4:2b:4b: 5c:20:7b:e9:14:ab:69:87:67:06:4f:bd:a2:75:cd: 2a:da:24:4d:b3:30:cf:d1:12:37:f0:5f:4f:09:ce: f9:33:a0:e2:62:f4:f0:93:00:3c:8f:e9:dc:19:87: 59:45:ca:10:ea:3a:0d:e0:ff:3e:7d:cc:66:c1:54: 9d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5A:B6:99:AE:80:61:5A:26:44:6A:4E:85:ED:CF:69:79:55:93:B0 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/CE988D80FB7311EC97CD7F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.160.0/22 103.20.234.0/23 103.27.132.0/22 103.159.64.0/23 117.55.192.0/22 203.96.176.0/22 210.16.64.0/22 IPv6: 2406:cb40::/47 2406:cb41::/48 2406:cb42::/48 Signature Algorithm: sha256WithRSAEncryption 82:33:46:6f:0c:15:f5:45:ea:b6:b0:a9:05:e4:05:f7:3e:86: b2:63:68:30:cc:a1:ff:09:27:e2:0c:17:d5:75:f2:94:01:b4: 0f:05:65:c2:a9:fb:5f:cb:f7:ef:4a:8a:e9:e3:a3:fa:30:83: 9b:c5:8e:64:4b:92:76:cc:7a:51:27:fc:3f:7f:a8:44:3a:70: 5b:2c:ed:35:11:82:5f:d2:bc:c1:e8:10:70:58:de:f8:18:8c: a9:c5:7c:28:9b:fe:13:19:61:45:64:37:29:f4:cb:1f:3e:ce: 18:34:96:3c:c7:c7:cf:5b:8a:8e:5d:7b:37:3c:33:45:c9:a2: f6:83:30:e3:76:ac:ab:04:dc:71:09:16:51:01:00:3f:84:c6: b3:90:32:b6:2d:9f:04:1b:04:eb:69:8e:0c:4f:75:9b:91:f5: a1:2d:32:8c:26:e6:6e:ae:61:37:4d:0c:9b:02:a2:be:f3:b9: ba:07:bc:f5:c2:b7:79:3c:0c:39:ac:4e:98:31:58:70:08:f9: cf:aa:ed:8f:9d:ec:cc:2d:2e:4f:48:de:04:2b:31:4a:f2:69: 4c:54:5f:cb:51:4a:b3:e3:11:11:91:66:65:08:b5:9d:a8:f8: 36:67:98:c7:4b:e5:d8:91:7f:3e:14:9c:c9:5e:2e:f5:6b:22: ab:e9:4d:3e -----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjYwMTAyMjMxOTIwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4NTI3OC04Y2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVIMfAVNCZ1eEdKzd5eC/z1Qt9b9m0FNwUFCwDA3L6w5iKQ4k4Zj9dd37ebp KJ4B1PBJgOLXAfZ4uCwOC/UqTWD8XxOO2Pk0yJ/HQRMvgGOu3LJrWLHMZ/d5vcCr FLlzkbIs1WKBUTFWM5tp+QuXF4jgeCavZv0oU5sDg7kXfJo1jRe8z6bD25LRxy/q Mcy450v87omQ2M78c8t+okSSHuXHVyUiM+ToiVFqeX/F2mkbRF+c7lCO/VI2MCyf zjK0K0tcIHvpFKtph2cGT72idc0q2iRNszDP0RI38F9PCc75M6DiYvTwkwA8j+nc GYdZRcoQ6joN4P8+fcxmwVSddwIDAQABo4IC3DCCAtgwHQYDVR0OBBYEFABatpmu gGFaJkRqToXtz2l5VZOwMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENzIvNDU3NkE2NzIyNjEyMTFFQ0I5MzE5OTQyQzRGOUFFMDIvQ0U5ODhEODBG QjczMTFFQzk3Q0Q3Rjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZgYIKwYBBQUHAQcBAf8E VzBVMDAEAgABMCoDBAIr5qADBAFnFOoDBAJnG4QDBAFnn0ADBAJ1N8ADBALLYLAD BALSEEAwIQQCAAIwGwMHASQGy0AAAAMHACQGy0EAAAMHACQGy0IAADANBgkqhkiG 9w0BAQsFAAOCAQEAgjNGbwwV9UXqtrCpBeQF9z6GsmNoMMyh/wkn4gwX1XXylAG0 DwVlwqn7X8v370qK6eOj+jCDm8WOZEuSdsx6USf8P3+oRDpwWyztNRGCX9K8wegQ cFje+BiMqcV8KJv+ExlhRWQ3KfTLHz7OGDSWPMfHz1uKjl17NzwzRcmi9oMw43as qwTccQkWUQEAP4TGs5Ayti2fBBsE62mODE91m5H1oS0yjCbmbq5hN00MmwKivvO5 uge89cK3eTwMOaxOmDFYcAj5z6rtj53szC0uT0jeBCsxSvJpTFRfy1FKs+MREZFm ZQi1naj4NmeYx0vl2JF/PhScyV4u9Wsiq+lNPg== -----END CERTIFICATE-----Generated at Thu Jan 22 15:49:05 2026 by rpki-client