This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/09534036847011F0A17FCE63C4F9AE02.roa File: 09534036847011F0A17FCE63C4F9AE02.roa (raw, json) Hash identifier: 4HABm9FL7YYXAbfONU2LHji+P8ymes9kV9ZPH4Vzup8= Subject key identifier: BE:79:BA:3B:C0:8E:29:59:82:64:9E:96:F8:E2:EE:F7:BB:CA:CC:9A Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0BD4 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/09534036847011F0A17FCE63C4F9AE02.roa Signing time: Tue 02 Dec 2025 18:50:30 +0000 ROA not before: Tue 02 Dec 2025 18:50:30 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 142622 IP address blocks: 103.244.220.0/24 maxlen: 24 103.244.222.0/24 maxlen: 24 103.244.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3028 (0xbd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Dec 2 18:50:30 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692f34f5-ccf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a3:22:55:e3:b3:42:6d:95:bd:32:69:2d:44: da:6f:b6:22:a8:5b:5c:6d:86:f9:8e:1d:87:ac:28: 8a:e5:91:98:cc:bb:5d:0b:23:a2:3a:cd:03:e5:1e: 9a:df:c8:17:27:0b:47:81:9d:64:8c:76:26:0e:30: f1:19:37:77:34:72:1c:ac:9d:b9:9e:a1:5e:73:91: d8:f0:93:7b:e7:53:98:06:5b:3e:b0:0f:be:97:7c: 81:05:36:d3:c5:5c:6c:10:ef:bf:93:e9:4d:98:c9: de:92:91:af:ce:7b:48:f6:f6:9d:7e:87:8d:ab:b5: 7f:cf:d8:65:87:98:6e:17:38:9d:59:02:82:b8:65: c2:0a:2b:dd:a0:77:ef:38:da:f8:07:43:c5:45:5c: 6b:99:af:52:b0:dd:c7:f8:e8:c5:eb:8f:79:b7:00: 28:46:9c:0e:3d:77:9d:8c:4b:40:2d:ae:ed:88:8e: 7d:7d:4f:d6:2f:89:61:ee:cb:86:d5:6f:92:a9:d9: e3:12:ed:d5:78:bc:1e:76:1c:9d:53:4a:0c:5d:a6: cf:14:de:52:04:f7:87:c2:1d:15:dc:f6:77:12:5b: 11:2d:c8:f4:ff:f1:e4:fe:6b:03:46:20:4b:32:e8: 39:82:1d:dc:5b:a5:8f:03:a2:93:e6:82:47:4d:fb: 0a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:79:BA:3B:C0:8E:29:59:82:64:9E:96:F8:E2:EE:F7:BB:CA:CC:9A X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/09534036847011F0A17FCE63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.220.0/24 103.244.222.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:37:c1:3e:83:ac:0d:74:e8:a7:fc:aa:c8:24:d7:72:6c:d3: 64:03:a7:32:76:d9:c8:82:2f:d7:48:aa:4e:40:fd:c6:6f:95: bc:20:65:e3:57:63:83:33:b1:7f:6d:c0:ef:d9:40:34:17:c2: 05:ff:62:a4:2f:01:9e:55:88:bd:65:c3:a7:03:4c:d5:0b:08: 75:9a:d4:0e:26:85:5a:28:33:45:ce:10:5e:9f:08:0d:fa:fa: 35:c8:03:e3:ad:99:a9:8a:6f:bf:1c:08:ec:f5:8a:8d:1b:52: fd:8f:cc:ff:91:f1:86:93:c0:73:5d:db:e5:26:7a:06:84:c7: 7a:44:30:f3:4f:35:90:e5:b6:21:a8:b4:4f:15:8e:b7:0e:5a: a9:a8:f9:eb:8c:44:54:fe:c4:5b:92:28:9a:08:ee:79:20:3a: 6d:64:61:63:e4:48:0a:dc:94:ff:95:93:8e:e8:ec:35:0c:86: c5:87:6f:39:c0:02:51:20:ad:e9:4e:69:53:e5:91:4e:a1:c1: b1:75:27:0a:4e:3f:6a:1d:21:c0:20:3d:c1:df:db:7c:5f:3d: 3c:a5:65:cf:7b:5b:ea:dc:c5:4f:ea:cf:01:e3:36:ba:9b:25: 82:f0:be:0b:e1:61:a8:9e:1b:35:82:b5:e3:f5:a7:30:de:c9: 68:56:07:b0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUxMjAyMTg1MDMwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmMzRmNS1jY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqMiVeOzQm2VvTJpLUTab7YiqFtcbYb5jh2HrCiK5ZGYzLtdCyOiOs0D5R6a 38gXJwtHgZ1kjHYmDjDxGTd3NHIcrJ25nqFec5HY8JN751OYBls+sA++l3yBBTbT xVxsEO+/k+lNmMnekpGvzntI9vadfoeNq7V/z9hlh5huFzidWQKCuGXCCivdoHfv ONr4B0PFRVxrma9SsN3H+OjF6495twAoRpwOPXedjEtALa7tiI59fU/WL4lh7suG 1W+SqdnjEu3VeLwedhydU0oMXabPFN5SBPeHwh0V3PZ3ElsRLcj0//Hk/msDRiBL Mug5gh3cW6WPA6KT5oJHTfsKSwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFL55ujvA jilZgmSelvji7ve7ysyaMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvMDk1MzQwMzY4 NDcwMTFGMEExN0ZDRTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn9NwDBAFn9N4wDQYJKoZIhvcNAQELBQADggEBAF43wT6D rA106Kf8qsgk13Js02QDpzJ22ciCL9dIqk5A/cZvlbwgZeNXY4MzsX9twO/ZQDQX wgX/YqQvAZ5ViL1lw6cDTNULCHWa1A4mhVooM0XOEF6fCA36+jXIA+OtmamKb78c COz1io0bUv2PzP+R8YaTwHNd2+UmegaEx3pEMPNPNZDltiGotE8VjrcOWqmo+euM RFT+xFuSKJoI7nkgOm1kYWPkSArclP+Vk47o7DUMhsWHbznAAlEgrelOaVPlkU6h wbF1JwpOP2odIcAgPcHf23xfPTylZc97W+rcxU/qzwHjNrqbJYLwvgvhYaieGzWC teP1pzDeyWhWB7A= -----END CERTIFICATE-----Generated at Sun Dec 7 06:23:55 2025 by rpki-client