This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49567968D07011F0A2852929C4F9AE02.roa File: 49567968D07011F0A2852929C4F9AE02.roa (raw, json) Hash identifier: 32ULBhF47Wu+g3ofbfkEPtVora5aWd6s3xj3+KA4vWE= Subject key identifier: 07:82:6C:96:B4:E9:44:22:DA:86:61:85:D2:A9:BA:67:D1:C9:D3:47 Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Certificate serial: 221B Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49567968D07011F0A2852929C4F9AE02.roa Signing time: Fri 30 Jan 2026 16:13:41 +0000 ROA not before: Fri 30 Jan 2026 16:13:41 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 198949 IP address blocks: 43.245.52.0/22 maxlen: 24 203.17.36.0/24 maxlen: 24 203.170.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Feb 2026 02:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8731 (0x221b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3794, serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Validity Not Before: Jan 30 16:13:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697cd8b5-64bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:03:57:1d:f1:fc:97:f5:cb:54:13:53:1c:a7: a4:5a:55:e1:21:7c:44:ef:70:55:f1:37:0d:fb:d5: f5:2d:c9:03:5b:e5:d0:6e:a1:59:4f:c6:6f:37:b3: 1a:7c:92:db:40:3e:08:59:f8:51:dc:e2:de:05:76: d4:f7:bc:6a:6e:bf:e2:28:15:5f:e0:0f:ef:66:60: a0:2b:cb:c3:63:bf:3d:9a:e0:e7:2b:31:54:99:07: 88:cf:8c:45:b4:cc:d6:1c:ea:c0:e5:89:22:62:3a: f9:3a:b1:9a:57:3e:86:cc:91:26:63:74:77:cc:9c: b0:06:27:3a:a2:99:91:95:5b:c6:cd:e4:04:86:01: 2f:78:22:9f:f8:6e:f5:97:eb:c2:39:22:f9:df:95: 6c:64:e0:03:9f:f7:a8:a0:93:83:5f:9a:e5:a5:be: 0d:07:94:4b:5a:4c:6d:0f:5f:dd:6c:b8:60:87:c0: d9:4e:fb:e8:1a:2c:47:bf:b5:bb:b7:24:7a:a9:ef: 3b:31:2e:03:98:9f:70:a9:d5:07:62:9f:70:14:c1: fd:8a:95:a9:9a:58:ec:cd:da:bd:fd:ef:89:2d:d8: 50:c1:14:14:2c:c8:1f:a6:cc:ad:33:fc:cc:ef:50: cc:25:1c:3b:76:7c:96:a5:1b:ad:7f:4a:af:76:1b: 52:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:82:6C:96:B4:E9:44:22:DA:86:61:85:D2:A9:BA:67:D1:C9:D3:47 X509v3 Authority Key Identifier: keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/49567968D07011F0A2852929C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.52.0/22 203.17.36.0/24 203.170.80.0/21 Signature Algorithm: sha256WithRSAEncryption 24:2a:de:7a:14:e6:77:0f:ed:fd:a9:6f:4d:81:ae:9d:b2:80: ec:6f:b8:38:eb:17:99:6a:90:e4:b7:50:9b:04:cb:02:29:4f: 9d:a1:99:c1:1e:e8:83:16:38:26:15:67:4a:b1:0d:92:f5:2e: e9:03:a5:c5:ab:b4:3e:a6:0e:65:83:9f:f2:c3:98:5e:39:c8: 1a:38:db:37:8b:cb:ed:04:ec:98:d4:d5:fe:fe:a3:12:3a:4d: 07:e5:13:24:e2:58:e8:88:ed:09:d5:d3:db:38:e9:42:e0:d8: 97:27:57:29:39:e6:25:76:ce:9e:71:20:99:56:9a:80:28:2c: 48:8a:6d:dc:d0:cf:88:56:a0:3c:82:e8:29:8f:06:2e:05:e0: af:4e:f5:2a:4d:4a:94:c7:de:2b:4a:52:cf:ae:8d:f4:ff:e8: d8:8c:4b:2b:74:45:32:46:c0:75:f6:0b:02:ed:15:87:8a:24: f4:4a:fb:63:a9:b1:61:44:5d:25:0a:5a:33:e7:c1:fd:87:38: a1:6f:b8:d9:4e:de:d8:cd:61:46:87:76:32:b7:c9:83:d7:7c: d9:b1:78:cd:7b:ea:e6:53:dc:fa:1a:01:93:d2:7f:a4:96:43: 68:ee:65:a9:b9:49:4f:67:80:c0:87:ce:9f:53:19:5a:8b:4b: f5:1b:1c:99 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICIhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDM3OTQxMTAvBgNVBAUTKDMwRTU4OTI4OEVCNjUwMDI1MTBDODc3QjQ2NkFCRTE5 NzUzQkRCQ0UwHhcNMjYwMTMwMTYxMzQxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdjZDhiNS02NGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzANXHfH8l/XLVBNTHKekWlXhIXxE73BV8TcN+9X1LckDW+XQbqFZT8ZvN7Ma fJLbQD4IWfhR3OLeBXbU97xqbr/iKBVf4A/vZmCgK8vDY789muDnKzFUmQeIz4xF tMzWHOrA5YkiYjr5OrGaVz6GzJEmY3R3zJywBic6opmRlVvGzeQEhgEveCKf+G71 l+vCOSL535VsZOADn/eooJODX5rlpb4NB5RLWkxtD1/dbLhgh8DZTvvoGixHv7W7 tyR6qe87MS4DmJ9wqdUHYp9wFMH9ipWpmljszdq9/e+JLdhQwRQULMgfpsytM/zM 71DMJRw7dnyWpRutf0qvdhtS4QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAeCbJa0 6UQi2oZhhdKpumfRydNHMB8GA1UdIwQYMBaAFDDliSiOtlACUQyHe0Zqvhl1O9vO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzc5NC8yMEZFNTYxNkU5 OEYxMUU1QTNERERDNjZDNEY5QUUwMi9NT1dKS0k2MlVBSlJESWQ3Um1xLUdYVTcy ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PV0pLSTYyVUFKUkRJZDdSbXEtR1hVNzI4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3OTQvMjBGRTU2MTZFOThGMTFFNUEzREREQzY2QzRGOUFFMDIvNDk1Njc5NjhE MDcwMTFGMEEyODUyOTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr9TQDBADLESQDBAPLqlAwDQYJKoZIhvcNAQELBQADggEB ACQq3noU5ncP7f2pb02Brp2ygOxvuDjrF5lqkOS3UJsEywIpT52hmcEe6IMWOCYV Z0qxDZL1LukDpcWrtD6mDmWDn/LDmF45yBo42zeLy+0E7JjU1f7+oxI6TQflEyTi WOiI7QnV09s46ULg2JcnVyk55iV2zp5xIJlWmoAoLEiKbdzQz4hWoDyC6CmPBi4F 4K9O9SpNSpTH3itKUs+ujfT/6NiMSyt0RTJGwHX2CwLtFYeKJPRK+2OpsWFEXSUK WjPnwf2HOKFvuNlO3tjNYUaHdjK3yYPXfNmxeM176uZT3PoaAZPSf6SWQ2juZam5 SU9ngMCHzp9TGVqLS/UbHJk= -----END CERTIFICATE-----Generated at Thu Feb 5 05:58:26 2026 by rpki-client