This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/35831FCE937011EA8A795583C4F9AE02.roa File: 35831FCE937011EA8A795583C4F9AE02.roa (raw, json) Hash identifier: 3DHcqdykxpveA6BtUxrmHjjMMoGMVeRc0Hl6/VGMoXo= Subject key identifier: E4:E7:76:D4:4D:0F:70:63:71:13:EC:FC:CA:F0:B6:2E:29:42:70:FB Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 09FC Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/35831FCE937011EA8A795583C4F9AE02.roa Signing time: Fri 30 Jan 2026 20:16:43 +0000 ROA not before: Fri 30 Jan 2026 20:16:43 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 32242 IP address blocks: 103.6.4.0/24 maxlen: 24 103.6.5.0/24 maxlen: 24 103.6.6.0/24 maxlen: 24 103.6.7.0/24 maxlen: 24 113.20.20.0/24 maxlen: 24 113.20.21.0/24 maxlen: 24 113.20.22.0/24 maxlen: 24 113.20.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Feb 2026 19:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Jan 30 20:16:43 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697d11ab-f608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6b:fd:ba:8e:9c:fb:6e:28:48:85:4e:27:f2: 5a:1e:f4:75:44:00:1d:7b:3d:8b:58:63:52:2c:f4: 60:b7:b7:ad:e0:8a:aa:c1:90:7b:eb:83:08:6c:b6: 13:8c:7f:e8:8b:73:83:a7:db:d7:41:83:00:ef:3b: 5b:a2:1d:08:ea:f9:bf:64:47:84:14:65:e0:14:63: b3:06:17:db:e4:cc:bd:a6:8d:d0:20:a8:72:59:8a: 12:5b:db:5a:fc:10:ae:60:14:cf:47:fb:2a:ac:5b: c3:af:5b:3d:5e:6c:89:33:d0:8b:91:d1:48:b3:ba: 73:83:b7:4f:79:e6:2f:ea:a1:05:c0:d2:7d:10:6a: e1:30:0b:ff:46:04:a8:35:1a:4a:fb:db:34:9a:23: 35:d4:a8:aa:08:50:91:ea:d5:f1:41:8b:0f:1b:c8: c8:78:28:15:67:20:57:cd:27:3e:3c:a1:17:9b:14: 70:b2:54:35:57:c1:30:a7:27:8f:18:24:09:50:c7: ad:a4:25:76:6f:fa:f4:17:6c:c4:bc:d0:8c:33:79: 08:8e:dd:f9:7c:64:26:a8:c4:85:21:f6:40:21:7e: 89:ed:69:0d:4f:26:d8:de:82:35:a1:73:c3:41:46: 7d:e7:25:2a:92:37:46:1a:b5:68:c5:c2:f6:89:c7: c6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E7:76:D4:4D:0F:70:63:71:13:EC:FC:CA:F0:B6:2E:29:42:70:FB X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/35831FCE937011EA8A795583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.4.0/22 113.20.20.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:3b:05:90:88:a2:42:85:6c:ba:b1:e3:7f:dc:4b:9f:fc:60: 7c:e3:55:74:27:da:fc:50:be:93:f1:72:6e:35:fe:af:e2:f1: d5:12:f3:4e:a6:a9:53:67:ea:65:40:9a:57:16:50:1f:a1:20: 63:06:9f:09:92:8a:cc:9d:16:9c:2c:68:22:97:c6:c5:29:21: 6d:44:47:f3:0a:68:b0:fb:e7:eb:a2:7f:b0:4b:b7:44:84:39: fd:ba:b1:88:5e:b4:c8:bc:2d:ba:eb:5b:54:cd:08:7f:49:1c: 8e:5c:ca:3f:63:33:43:91:9c:91:7b:53:45:da:af:0c:a0:ff: 6b:10:ad:47:9d:05:7b:20:17:a3:66:44:97:ea:9f:2f:15:a2: 50:0f:48:2b:c1:6c:95:89:3d:a3:b5:43:f0:50:87:58:8c:68: 32:2a:00:1d:84:72:86:2a:91:f9:c0:bc:80:31:cf:3c:53:91: e6:ef:36:63:63:22:f7:c8:d6:42:3f:0a:6f:7f:8b:82:ea:28: 69:6d:ec:31:1f:80:bd:cc:d5:3f:24:fa:34:fa:09:ee:13:44: 46:6d:4b:34:f0:7b:9b:f6:10:fe:e2:84:bc:88:b9:04:d3:3a: e7:ff:ff:7f:e8:e2:a3:e6:62:37:d4:07:27:4d:65:08:85:1d: bb:9e:a1:56 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjYwMTMwMjAxNjQzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdkMTFhYi1mNjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmv9uo6c+24oSIVOJ/JaHvR1RAAdez2LWGNSLPRgt7et4IqqwZB764MIbLYT jH/oi3ODp9vXQYMA7ztboh0I6vm/ZEeEFGXgFGOzBhfb5My9po3QIKhyWYoSW9ta /BCuYBTPR/sqrFvDr1s9XmyJM9CLkdFIs7pzg7dPeeYv6qEFwNJ9EGrhMAv/RgSo NRpK+9s0miM11KiqCFCR6tXxQYsPG8jIeCgVZyBXzSc+PKEXmxRwslQ1V8EwpyeP GCQJUMetpCV2b/r0F2zEvNCMM3kIjt35fGQmqMSFIfZAIX6J7WkNTybY3oI1oXPD QUZ95yUqkjdGGrVoxcL2icfGQwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOTndtRN D3BjcRPs/Mrwti4pQnD7MB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNGRUIvQ0IyQzMzRTY5MzZFMTFFQUE1RTU2QjdFQzRGOUFFMDIvMzU4MzFGQ0U5 MzcwMTFFQThBNzk1NTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnBgQDBAJxFBQwDQYJKoZIhvcNAQELBQADggEBAD87BZCI okKFbLqx43/cS5/8YHzjVXQn2vxQvpPxcm41/q/i8dUS806mqVNn6mVAmlcWUB+h IGMGnwmSisydFpwsaCKXxsUpIW1ER/MKaLD75+uif7BLt0SEOf26sYhetMi8Lbrr W1TNCH9JHI5cyj9jM0ORnJF7U0Xarwyg/2sQrUedBXsgF6NmRJfqny8VolAPSCvB bJWJPaO1Q/BQh1iMaDIqAB2EcoYqkfnAvIAxzzxTkebvNmNjIvfI1kI/Cm9/i4Lq KGlt7DEfgL3M1T8k+jT6Ce4TREZtSzTwe5v2EP7ihLyIuQTTOuf//3/o4qPmYjfU BydNZQiFHbueoVY= -----END CERTIFICATE-----Generated at Thu Feb 12 18:43:58 2026 by rpki-client