This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/0CCA3D6CBAC811F0A07AB13AC4F9AE02.roa File: 0CCA3D6CBAC811F0A07AB13AC4F9AE02.roa (raw, json) Hash identifier: Gi6BvoClFViNTiv1Hq0/BTjIo9K1YPpcXbYAILrQRJ4= Subject key identifier: 09:DB:F3:F5:C3:1A:30:37:6A:E3:A8:F6:08:18:1A:DF:59:BD:48:0E Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0BDD Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/0CCA3D6CBAC811F0A07AB13AC4F9AE02.roa Signing time: Tue 02 Dec 2025 18:50:39 +0000 ROA not before: Tue 02 Dec 2025 18:50:39 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 5065 IP address blocks: 103.23.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Dec 2 18:50:39 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=692f34ff-b017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:34:e7:82:69:a1:03:b7:0d:76:cd:4d:04:8f: 40:ad:42:9b:0a:38:73:fd:64:7e:cc:22:69:13:f4: db:8a:49:a5:37:d5:8c:cc:b1:28:9e:e3:dd:24:24: 06:4f:d7:bf:5a:bb:8e:73:34:43:3c:87:d6:8b:74: ea:08:24:8f:cc:4d:23:3a:00:91:c7:da:35:5c:a1: 3a:ef:76:e3:af:0c:3b:08:b8:51:22:be:c5:a2:17: 24:78:44:0b:73:cd:83:5a:a2:bc:08:96:05:bf:99: 02:b3:7b:1c:d0:3f:e8:c7:f2:0a:b5:83:61:38:29: 3c:35:39:c0:9f:1b:44:d0:0d:cc:33:3f:be:a6:91: 6d:c7:3c:c6:b8:43:78:b9:34:1a:b2:aa:18:17:b7: cb:18:a9:91:de:49:98:3d:0f:cb:55:9d:0b:2e:ac: c7:d7:77:ec:a9:f2:8c:b7:a1:ce:c7:22:36:92:94: a9:87:5c:dd:61:04:5c:09:f0:c7:d9:8c:7a:42:19: ab:5c:0e:e0:ec:37:f5:89:5c:c8:f5:e5:df:99:a2: eb:e0:94:55:48:8a:7b:7e:5d:08:ba:b3:38:79:c7: 35:73:57:ea:75:d8:79:86:70:3f:b1:fa:ee:1a:89: 58:93:42:da:5b:84:8c:56:6e:cb:9b:1b:1f:f7:f5: 79:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DB:F3:F5:C3:1A:30:37:6A:E3:A8:F6:08:18:1A:DF:59:BD:48:0E X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/0CCA3D6CBAC811F0A07AB13AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.131.0/24 Signature Algorithm: sha256WithRSAEncryption 58:22:15:6b:c6:a0:41:36:80:77:a0:34:e6:24:42:c2:64:50: c1:47:f7:f2:c2:dd:e6:1c:bf:f1:c5:ec:c0:c2:79:94:20:b6: b8:89:0e:c1:41:3f:e0:1b:39:8b:8f:4f:60:9d:52:94:b8:33: 52:6b:57:e8:18:4a:98:6c:fb:d3:71:ae:84:e1:b5:a6:b7:04: 98:b4:a3:63:ae:e6:51:e1:40:52:e9:60:bc:41:50:df:8a:f6: 0a:39:ff:6e:73:3d:98:c6:bb:3f:a9:f2:26:d1:fe:cc:1b:f4: ae:c6:7a:73:2e:f0:8f:94:11:f0:e7:1d:45:d6:80:55:5b:55: 67:bf:6a:b4:35:a4:a0:20:fc:b5:7f:51:ea:27:aa:9e:b5:d6: 22:98:d6:1e:2e:c5:0f:4c:2d:38:4e:6c:fc:13:69:fa:0c:c1: e0:25:6f:e6:df:8f:68:90:d0:ee:0f:54:69:5c:22:95:d4:04: 88:18:da:e4:04:f4:73:78:7b:f4:e8:29:49:5d:52:cd:3d:78: 2a:ec:25:fa:64:04:90:bd:7b:f6:6e:48:97:8a:0e:6e:9a:23: 09:7e:20:e7:0d:a7:7b:37:32:a5:81:8b:78:f5:f6:bd:2f:3a: ed:76:6e:dc:c4:09:a7:14:2e:c6:10:8b:14:c1:cb:17:92:c8: 9a:85:0e:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUxMjAyMTg1MDM5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJmMzRmZi1iMDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszTngmmhA7cNds1NBI9ArUKbCjhz/WR+zCJpE/TbikmlN9WMzLEonuPdJCQG T9e/WruOczRDPIfWi3TqCCSPzE0jOgCRx9o1XKE673bjrww7CLhRIr7FohckeEQL c82DWqK8CJYFv5kCs3sc0D/ox/IKtYNhOCk8NTnAnxtE0A3MMz++ppFtxzzGuEN4 uTQasqoYF7fLGKmR3kmYPQ/LVZ0LLqzH13fsqfKMt6HOxyI2kpSph1zdYQRcCfDH 2Yx6QhmrXA7g7Df1iVzI9eXfmaLr4JRVSIp7fl0IurM4ecc1c1fqddh5hnA/sfru GolYk0LaW4SMVm7Lmxsf9/V5qQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAnb8/XD GjA3auOo9ggYGt9ZvUgOMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvMENDQTNENkNC QUM4MTFGMEEwN0FCMTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF4MwDQYJKoZIhvcNAQELBQADggEBAFgiFWvGoEE2gHeg NOYkQsJkUMFH9/LC3eYcv/HF7MDCeZQgtriJDsFBP+AbOYuPT2CdUpS4M1JrV+gY Sphs+9NxroThtaa3BJi0o2Ou5lHhQFLpYLxBUN+K9go5/25zPZjGuz+p8ibR/swb 9K7GenMu8I+UEfDnHUXWgFVbVWe/arQ1pKAg/LV/Ueonqp611iKY1h4uxQ9MLThO bPwTafoMweAlb+bfj2iQ0O4PVGlcIpXUBIgY2uQE9HN4e/ToKUldUs09eCrsJfpk BJC9e/ZuSJeKDm6aIwl+IOcNp3s3MqWBi3j19r0vOu12btzECacULsYQixTByxeS yJqFDr8= -----END CERTIFICATE-----Generated at Fri Dec 5 04:25:51 2025 by rpki-client