This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/97BB54A2070E11EA80718B7BC4F9AE02.roa File: 97BB54A2070E11EA80718B7BC4F9AE02.roa (raw, json) Hash identifier: g9kZ/c7cRus6rbNYtniMmEapAwclmbrsRNQqATLDHO0= Subject key identifier: 16:69:F9:9D:0E:D3:F0:74:41:09:92:3B:91:AF:A8:86:B6:26:7E:EF Certificate issuer: /CN=A91D50FB/serialNumber=D4CF5F096736F24EA2410792A603CDBADD827DCD Certificate serial: 0CAB Authority key identifier: D4:CF:5F:09:67:36:F2:4E:A2:41:07:92:A6:03:CD:BA:DD:82:7D:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1M9fCWc28k6iQQeSpgPNut2Cfc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/97BB54A2070E11EA80718B7BC4F9AE02.roa Signing time: Fri 12 Dec 2025 18:15:14 +0000 ROA not before: Fri 12 Dec 2025 18:15:14 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138382 IP address blocks: 103.124.32.0/22 maxlen: 24 2403:d8c0::/32 maxlen: 40 2403:d8c0::/48 maxlen: 48 2403:d8c0:1::/48 maxlen: 48 2403:d8c0:2::/48 maxlen: 48 2403:d8c0:3::/48 maxlen: 48 2403:d8c0:4::/48 maxlen: 48 2403:d8c0:5::/48 maxlen: 48 2403:d8c0:6::/48 maxlen: 48 2403:d8c0:7::/48 maxlen: 48 2403:d8c0:8::/48 maxlen: 48 2403:d8c0:9::/48 maxlen: 48 2403:d8c0:a::/48 maxlen: 48 2403:d8c0:b::/48 maxlen: 48 2403:d8c0:c::/48 maxlen: 48 2403:d8c0:d::/48 maxlen: 48 2403:d8c0:e::/48 maxlen: 48 2403:d8c0:f::/48 maxlen: 48 2403:d8c0:10::/48 maxlen: 48 2403:d8c0:11::/48 maxlen: 48 2403:d8c0:12::/48 maxlen: 48 2403:d8c0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/1M9fCWc28k6iQQeSpgPNut2Cfc0.crl rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/1M9fCWc28k6iQQeSpgPNut2Cfc0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1M9fCWc28k6iQQeSpgPNut2Cfc0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50FB, serialNumber=D4CF5F096736F24EA2410792A603CDBADD827DCD Validity Not Before: Dec 12 18:15:14 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=693c5bb2-3dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fa:0e:3a:fd:48:37:c0:15:c4:a1:0f:ed:dc: e8:9c:2c:76:19:b4:41:26:69:92:4c:96:1c:63:9f: a3:49:09:4f:5e:a7:40:9d:07:17:c0:89:0c:40:fb: 8b:19:e8:3c:66:35:be:2a:a6:31:c6:37:1f:21:b4: a8:66:17:fb:75:fb:ac:96:e4:87:a3:18:65:39:17: c9:07:10:10:47:42:6e:61:c8:49:23:68:d4:66:2e: bf:50:5b:69:e6:41:8e:cd:c4:39:d6:a7:05:b9:31: cc:ad:1a:8e:09:ce:ed:51:fd:db:67:0a:d9:e0:ea: c7:2e:08:5c:03:df:44:80:39:8e:d1:df:33:9f:7b: 7c:89:0b:89:44:5f:ba:7d:9e:b0:50:ed:fe:c1:5f: cd:fc:04:6f:e6:da:99:33:b2:95:d0:70:8b:ff:48: 24:41:22:fd:32:26:9e:a7:36:a5:01:26:07:41:16: 47:9d:b1:c2:ab:fc:19:04:19:bb:0d:fe:76:63:7b: 88:5f:50:81:a4:45:12:bf:f0:d0:1b:10:c5:5d:35: 55:1c:4c:1f:8a:f7:ec:42:b1:4e:2f:60:da:5d:17: ce:03:97:b5:36:06:fc:8e:49:a5:bc:f2:3c:7f:c7: 0d:66:b6:14:5c:02:0c:a5:36:82:66:5b:9c:a0:32: 5e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:69:F9:9D:0E:D3:F0:74:41:09:92:3B:91:AF:A8:86:B6:26:7E:EF X509v3 Authority Key Identifier: keyid:D4:CF:5F:09:67:36:F2:4E:A2:41:07:92:A6:03:CD:BA:DD:82:7D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/1M9fCWc28k6iQQeSpgPNut2Cfc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1M9fCWc28k6iQQeSpgPNut2Cfc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/97BB54A2070E11EA80718B7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.32.0/22 IPv6: 2403:d8c0::/32 Signature Algorithm: sha256WithRSAEncryption 19:a8:8f:48:af:8e:88:b6:9c:a0:82:76:95:5f:ac:f7:95:42: 88:45:89:dd:38:72:e2:bf:45:14:7e:e2:4c:d1:90:43:de:d7: 0f:4d:47:51:20:d0:1d:4a:47:11:c5:cb:79:80:46:bd:01:35: 1f:7c:1a:20:a3:59:75:0d:90:a3:1c:28:75:69:55:9a:31:93: 9f:d2:97:01:fa:9e:a9:53:cd:6a:1f:90:54:66:b7:9d:d6:0f: 60:01:96:d8:56:5c:70:0e:69:91:56:2b:7b:44:3c:e7:1f:27: aa:be:c4:45:7b:6e:a9:d5:49:07:17:48:e8:32:fa:3f:6f:30: c1:be:f3:f0:da:b3:9d:f6:0d:ee:21:a7:4f:02:6b:da:43:c9: b3:74:01:29:eb:11:e4:f4:8f:52:74:5d:c7:72:1d:0e:bf:19: 9f:35:57:c4:80:59:5e:7f:35:cb:38:6d:8a:4e:d1:2c:dd:98: ac:fc:20:3d:b1:3e:a0:95:0e:0a:3b:7a:01:57:6e:7e:55:22: 09:b2:ff:12:81:ee:8d:9f:9e:e2:89:35:8c:92:50:6f:05:01: ec:77:2a:42:4f:b7:2c:4e:a5:4f:1d:1c:a0:56:f8:5a:3f:12: 84:ac:ab:f2:be:75:20:80:ed:da:c0:82:07:dd:56:e6:75:c0: 92:9f:5a:2a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwRkIxMTAvBgNVBAUTKEQ0Q0Y1RjA5NjczNkYyNEVBMjQxMDc5MkE2MDNDREJB REQ4MjdEQ0QwHhcNMjUxMjEyMTgxNTE0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjNWJiMi0zZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/oOOv1IN8AVxKEP7dzonCx2GbRBJmmSTJYcY5+jSQlPXqdAnQcXwIkMQPuL Geg8ZjW+KqYxxjcfIbSoZhf7dfusluSHoxhlORfJBxAQR0JuYchJI2jUZi6/UFtp 5kGOzcQ51qcFuTHMrRqOCc7tUf3bZwrZ4OrHLghcA99EgDmO0d8zn3t8iQuJRF+6 fZ6wUO3+wV/N/ARv5tqZM7KV0HCL/0gkQSL9MiaepzalASYHQRZHnbHCq/wZBBm7 Df52Y3uIX1CBpEUSv/DQGxDFXTVVHEwfivfsQrFOL2DaXRfOA5e1Ngb8jkmlvPI8 f8cNZrYUXAIMpTaCZlucoDJe8wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBZp+Z0O 0/B0QQmSO5GvqIa2Jn7vMB8GA1UdIwQYMBaAFNTPXwlnNvJOokEHkqYDzbrdgn3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBGQi8yNTdCQjJDNDA3 MEUxMUVBQTYxMzcyN0JDNEY5QUUwMi8xTTlmQ1djMjhrNmlRUWVTcGdQTnV0MkNm YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFNOWZDV2MyOGs2aVFRZVNwZ1BOdXQyQ2ZjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUwRkIvMjU3QkIyQzQwNzBFMTFFQUE2MTM3MjdCQzRGOUFFMDIvOTdCQjU0QTIw NzBFMTFFQTgwNzE4QjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfCAwDQQCAAIwBwMFACQD2MAwDQYJKoZIhvcNAQELBQAD ggEBABmoj0ivjoi2nKCCdpVfrPeVQohFid04cuK/RRR+4kzRkEPe1w9NR1Eg0B1K RxHFy3mARr0BNR98GiCjWXUNkKMcKHVpVZoxk5/SlwH6nqlTzWofkFRmt53WD2AB lthWXHAOaZFWK3tEPOcfJ6q+xEV7bqnVSQcXSOgy+j9vMMG+8/Das532De4hp08C a9pDybN0ASnrEeT0j1J0XcdyHQ6/GZ81V8SAWV5/Ncs4bYpO0SzdmKz8ID2xPqCV Dgo7egFXbn5VIgmy/xKB7o2fnuKJNYySUG8FAex3KkJPtyxOpU8dHKBW+Fo/EoSs q/K+dSCA7drAggfdVuZ1wJKfWio= -----END CERTIFICATE-----Generated at Wed Dec 24 21:24:31 2025 by rpki-client