This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa File: 7147D9D69D9811F09B4CDC3EC4F9AE02.roa (raw, json) Hash identifier: oNP9L15nUO24KDdECoBWgZVvP9V1VrSvKgwt8tTOxA8= Subject key identifier: 81:C3:E5:B1:5A:C1:8D:A8:0B:C6:7A:9A:ED:03:77:C1:D3:2E:47:C5 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0BF3 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa Signing time: Wed 07 Jan 2026 07:58:51 +0000 ROA not before: Wed 07 Jan 2026 07:58:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23532 IP address blocks: 43.239.104.0/24 maxlen: 24 43.239.105.0/24 maxlen: 24 45.124.204.0/24 maxlen: 24 45.124.205.0/24 maxlen: 24 45.124.206.0/24 maxlen: 24 45.124.207.0/24 maxlen: 24 103.25.100.0/24 maxlen: 24 103.25.101.0/24 maxlen: 24 103.25.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 18:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Jan 7 07:58:51 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695e123b-b31e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:09:bb:fb:ae:7e:35:4c:5d:c5:3c:15:8a:9b: fc:d7:88:be:c0:72:30:55:ed:a4:f4:38:dc:5d:61: d2:97:e9:55:c7:dd:14:c8:8f:e0:33:f5:7d:ae:e0: e9:ff:55:3f:b0:3a:59:a5:a2:4c:f7:fb:02:f9:b2: 89:ef:b7:ec:42:2e:19:08:fa:2f:d6:37:7a:a5:8c: 36:e4:74:93:1d:0a:e9:9e:4f:ef:b1:b5:53:39:26: 62:5e:5b:01:71:62:f9:08:1e:a1:3c:1e:57:34:4b: 8d:45:df:87:ff:f3:98:75:42:03:07:84:57:22:49: f5:e7:8e:cf:36:0c:5d:87:cd:56:ef:7e:24:e5:25: 45:bf:99:e1:61:7c:5b:b1:63:e1:90:49:9c:23:52: 74:b3:8d:0b:da:c2:0b:d7:16:9a:4d:77:c8:57:47: 3f:ab:56:06:3e:71:67:3d:fe:39:94:ec:47:ac:f5: 80:9a:19:2f:2c:ef:fb:cc:82:42:fe:42:bc:44:b2: a1:56:64:7f:fa:ee:49:80:15:ba:9a:2d:56:09:4c: bc:7d:be:95:92:42:ff:85:7d:a6:c8:23:b0:01:34: 96:c3:68:81:7f:33:d7:5f:66:ce:95:a5:db:3b:47: 27:29:5c:3e:34:eb:92:f7:12:c6:da:09:ac:33:84: 14:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C3:E5:B1:5A:C1:8D:A8:0B:C6:7A:9A:ED:03:77:C1:D3:2E:47:C5 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.104.0/23 45.124.204.0/22 103.25.100.0/22 Signature Algorithm: sha256WithRSAEncryption c0:a0:0c:65:db:68:ab:90:fd:ce:26:c2:f7:0b:05:95:b0:f6: 9c:36:51:77:6c:c4:08:ac:2f:cd:0d:ef:9a:e7:24:b8:a8:6d: 91:3a:d0:09:6f:e1:11:c9:b9:c3:6f:fa:d0:8f:e4:f9:3e:27: 56:1f:9c:ab:d5:02:08:c1:e6:68:1f:80:83:86:38:1e:d7:72: f6:c6:15:7b:ff:87:de:8e:76:ae:41:e4:ca:5b:a2:ef:67:13: c9:8f:65:50:c2:3b:d8:8c:6b:25:cf:d5:4b:43:9a:63:5f:89: f8:e9:a4:6c:03:9a:ba:2f:09:72:8f:55:64:4f:7b:f8:3d:3f: 90:0c:8a:fc:77:7b:1d:f9:d7:0c:fa:6c:f2:43:7b:42:63:47: c0:a7:df:8d:83:c0:76:b3:a4:9a:b9:e9:f4:8b:b4:1f:49:01: 8a:92:3e:37:69:53:57:ff:3c:eb:25:fb:33:52:d5:31:73:8c: d5:91:e3:72:13:31:be:48:94:e1:63:7e:c9:68:c4:c2:f5:68: 22:fc:d3:b3:68:96:c3:04:52:40:74:fb:87:17:22:4a:c8:81: ff:2f:9c:ce:b2:9e:f0:25:ac:96:8d:8d:54:62:66:34:a4:0a: fa:7d:ee:d7:25:ec:7e:ab:9e:45:76:1f:9a:68:31:c6:f8:79: a2:bd:60:f4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjYwMTA3MDc1ODUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVlMTIzYi1iMzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogm7+65+NUxdxTwVipv814i+wHIwVe2k9DjcXWHSl+lVx90UyI/gM/V9ruDp /1U/sDpZpaJM9/sC+bKJ77fsQi4ZCPov1jd6pYw25HSTHQrpnk/vsbVTOSZiXlsB cWL5CB6hPB5XNEuNRd+H//OYdUIDB4RXIkn1547PNgxdh81W734k5SVFv5nhYXxb sWPhkEmcI1J0s40L2sIL1xaaTXfIV0c/q1YGPnFnPf45lOxHrPWAmhkvLO/7zIJC /kK8RLKhVmR/+u5JgBW6mi1WCUy8fb6VkkL/hX2myCOwATSWw2iBfzPXX2bOlaXb O0cnKVw+NOuS9xLG2gmsM4QUdQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIHD5bFa wY2oC8Z6mu0Dd8HTLkfFMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvNzE0N0Q5RDY5 RDk4MTFGMDlCNENEQzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEr72gDBAItfMwDBAJnGWQwDQYJKoZIhvcNAQELBQADggEB AMCgDGXbaKuQ/c4mwvcLBZWw9pw2UXdsxAisL80N75rnJLiobZE60Alv4RHJucNv +tCP5Pk+J1YfnKvVAgjB5mgfgIOGOB7XcvbGFXv/h96Odq5B5Mpbou9nE8mPZVDC O9iMayXP1UtDmmNfifjppGwDmrovCXKPVWRPe/g9P5AMivx3ex351wz6bPJDe0Jj R8Cn342DwHazpJq56fSLtB9JAYqSPjdpU1f/POsl+zNS1TFzjNWR43ITMb5IlOFj fsloxML1aCL807NolsMEUkB0+4cXIkrIgf8vnM6ynvAlrJaNjVRiZjSkCvp97tcl 7H6rnkV2H5poMcb4eaK9YPQ= -----END CERTIFICATE-----Generated at Wed Jan 21 08:41:13 2026 by rpki-client