This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa File: 7147D9D69D9811F09B4CDC3EC4F9AE02.roa (raw, json) Hash identifier: 8PpxbJ2p3xDLjxPc3RJQsXINShrWx+HqVCRqLcM12lA= Subject key identifier: 94:2D:76:61:96:B4:33:6C:6A:F7:C6:D8:27:E6:7C:2A:10:B0:E6:88 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0BC3 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa Signing time: Mon 10 Nov 2025 02:02:46 +0000 ROA not before: Mon 10 Nov 2025 02:02:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23532 IP address blocks: 45.124.204.0/24 maxlen: 24 45.124.205.0/24 maxlen: 24 45.124.206.0/24 maxlen: 24 45.124.207.0/24 maxlen: 24 103.25.100.0/24 maxlen: 24 103.25.101.0/24 maxlen: 24 103.25.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 18:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Nov 10 02:02:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=691147c5-4244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:33:3f:51:15:fa:04:d0:aa:e1:a2:eb:01:0e: 9e:6f:78:f9:58:b2:b5:c9:22:11:c9:01:3f:91:08: ba:94:5d:e6:51:a0:a4:af:2d:80:2c:3a:7d:fe:90: b4:32:f4:eb:a0:4a:2a:a2:ae:e6:d2:b6:08:16:c1: 97:dd:30:36:9f:0b:a4:e8:d6:e2:5f:e3:c8:12:ae: 79:67:e5:5f:98:20:89:7f:34:a2:ef:4e:1e:1b:6a: 80:ba:2c:a2:cc:60:1f:fa:86:c4:f5:16:9b:01:da: aa:dd:c3:db:60:65:e8:5f:48:56:b6:34:6c:77:0e: 5f:78:08:8d:83:5a:93:5c:af:65:a8:f7:e9:4f:d5: 32:e4:2d:8c:b2:41:8e:69:bd:e8:cf:fa:a4:57:a4: c0:bd:ed:10:9b:ea:de:41:e5:32:cc:54:c0:f2:ea: 4a:c7:c5:9f:54:e7:98:94:69:88:81:7b:9c:34:37: cf:ac:34:cf:e6:5c:5a:cc:d0:cb:e0:72:18:55:e0: bd:5c:d4:5a:ea:b1:41:b2:05:3e:a9:ce:83:0b:fd: d9:fb:c6:7f:1e:6d:ab:b9:69:2c:3e:9e:31:e2:c7: 43:ec:d6:7f:3c:c0:93:76:df:e9:50:6a:58:0b:ee: be:d1:9e:5e:93:81:10:4a:4e:ad:e0:3c:27:ab:2a: b5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:2D:76:61:96:B4:33:6C:6A:F7:C6:D8:27:E6:7C:2A:10:B0:E6:88 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.204.0/22 103.25.100.0/22 Signature Algorithm: sha256WithRSAEncryption 81:aa:60:4c:fb:ed:f5:08:9f:f8:7a:08:a8:2f:13:99:e4:65: 0d:47:3e:14:a9:45:5c:de:ad:2b:68:1e:21:66:e8:dc:8c:31: 5d:75:f3:4e:8f:21:0f:a9:6c:01:80:1f:36:36:16:62:5b:90: 75:f4:65:28:21:90:b5:1c:d3:b9:c2:63:85:f0:09:05:25:8e: d4:b4:11:60:61:36:ab:1b:bc:a5:6b:05:95:e0:28:af:53:f0: 5b:bc:13:f8:fc:0c:07:7a:53:64:ed:98:26:5c:e6:65:52:b9: 63:4f:73:ac:e2:89:32:56:3e:18:36:1e:73:71:c8:9b:d5:59: cb:ee:4e:36:19:7e:37:bb:c9:bf:b1:69:67:7c:d6:cf:0b:60: 9d:aa:39:fc:e4:ff:ce:ee:78:6a:f6:f7:18:05:13:ac:b4:15: a2:d5:94:88:f8:a9:8b:8e:27:13:3f:ac:0b:d6:d8:7a:b8:bd: 9d:bb:81:c7:cf:66:60:19:e5:c0:cc:db:ce:70:d2:3e:9d:a6: e5:d4:1d:97:f4:6c:01:30:b8:15:1a:4a:42:32:fe:01:69:a0: 31:ac:e7:e6:7d:a3:77:16:8b:97:b7:ab:06:3b:c1:6b:2c:b6: 1d:b3:3b:a2:1a:a6:f8:f1:fc:b8:2c:ec:eb:33:5d:cd:e0:24: db:9f:47:31 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUxMTEwMDIwMjQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTExNDdjNS00MjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6TM/URX6BNCq4aLrAQ6eb3j5WLK1ySIRyQE/kQi6lF3mUaCkry2ALDp9/pC0 MvTroEoqoq7m0rYIFsGX3TA2nwuk6NbiX+PIEq55Z+VfmCCJfzSi704eG2qAuiyi zGAf+obE9RabAdqq3cPbYGXoX0hWtjRsdw5feAiNg1qTXK9lqPfpT9Uy5C2MskGO ab3oz/qkV6TAve0Qm+reQeUyzFTA8upKx8WfVOeYlGmIgXucNDfPrDTP5lxazNDL 4HIYVeC9XNRa6rFBsgU+qc6DC/3Z+8Z/Hm2ruWksPp4x4sdD7NZ/PMCTdt/pUGpY C+6+0Z5ek4EQSk6t4Dwnqyq1dQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJQtdmGW tDNsavfG2CfmfCoQsOaIMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvNzE0N0Q5RDY5 RDk4MTFGMDlCNENEQzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfMwDBAJnGWQwDQYJKoZIhvcNAQELBQADggEBAIGqYEz7 7fUIn/h6CKgvE5nkZQ1HPhSpRVzerStoHiFm6NyMMV11806PIQ+pbAGAHzY2FmJb kHX0ZSghkLUc07nCY4XwCQUljtS0EWBhNqsbvKVrBZXgKK9T8Fu8E/j8DAd6U2Tt mCZc5mVSuWNPc6ziiTJWPhg2HnNxyJvVWcvuTjYZfje7yb+xaWd81s8LYJ2qOfzk /87ueGr29xgFE6y0FaLVlIj4qYuOJxM/rAvW2Hq4vZ27gcfPZmAZ5cDM285w0j6d puXUHZf0bAEwuBUaSkIy/gFpoDGs5+Z9o3cWi5e3qwY7wWssth2zO6Iapvjx/Lgs 7OszXc3gJNufRzE= -----END CERTIFICATE-----Generated at Sat Nov 29 08:52:41 2025 by rpki-client