This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/17D3C6A89B2611EC8880303EC4F9AE02.roa File: 17D3C6A89B2611EC8880303EC4F9AE02.roa (raw, json) Hash identifier: vdnC+qFt4udVq1B1izXx0+o2/X3aQtQham+DUqTDpDA= Subject key identifier: 5B:99:0E:5A:FF:E3:3B:D0:79:32:47:69:6C:A6:0F:D5:99:66:62:C0 Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 0431 Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/17D3C6A89B2611EC8880303EC4F9AE02.roa Signing time: Sun 21 Dec 2025 00:20:40 +0000 ROA not before: Sun 21 Dec 2025 00:20:40 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 6453 IP address blocks: 103.82.176.0/24 maxlen: 24 103.82.177.0/24 maxlen: 24 103.82.178.0/24 maxlen: 24 103.82.179.0/24 maxlen: 24 2400:8740:1000::/48 maxlen: 48 2400:8740:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 23:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D, serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: Dec 21 00:20:40 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69473d58-cf23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:77:d2:39:97:29:28:8f:8e:f1:dc:dd:3f:52: 6e:87:39:ea:12:4b:da:73:8c:3a:35:06:f6:ef:cb: da:f9:77:eb:f9:70:56:78:9d:5a:da:f6:ab:4f:34: 2f:95:49:9d:25:4a:01:60:59:03:ae:a1:73:89:8f: 9f:0b:c1:04:9a:61:de:20:63:06:ec:52:d3:a3:b1: db:30:d7:64:e4:6b:d1:8a:93:80:4d:ed:c6:3b:a5: 66:a1:3f:e1:71:5a:8d:b3:31:4d:2e:8f:60:88:f4: 94:7d:65:2a:ee:90:dc:5e:01:d5:80:7b:5c:fb:0f: f1:71:47:15:d0:a7:e4:33:92:b0:a3:37:78:3f:bc: 47:c0:1f:30:22:e7:ab:ec:d4:d1:70:8e:79:6b:ba: 09:87:e4:84:a2:04:c9:01:3d:ff:ac:25:a4:44:78: a5:6a:42:e5:55:b4:08:e1:52:0b:9b:17:13:99:19: ba:af:e8:31:5e:d1:df:6f:0a:40:d0:48:e7:4f:40: b8:d3:53:ff:dd:7e:21:1d:3b:65:45:3b:f7:1e:dd: ad:f9:1b:6c:c2:b3:42:16:03:ee:48:a1:12:d4:f5: 48:9d:3a:fe:3a:6a:f5:fb:90:9e:fb:14:68:e2:99: 05:79:9f:c3:9a:b2:d5:52:87:ca:11:c1:09:88:35: ea:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:99:0E:5A:FF:E3:3B:D0:79:32:47:69:6C:A6:0F:D5:99:66:62:C0 X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/17D3C6A89B2611EC8880303EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.176.0/22 IPv6: 2400:8740:1000::/48 2400:8740:2000::/48 Signature Algorithm: sha256WithRSAEncryption df:8a:24:56:f7:ab:52:69:d2:f6:78:41:a1:18:89:52:31:5f: ef:e2:84:89:fa:a4:53:e6:4f:5a:51:b7:eb:a6:86:35:38:b0: 37:da:b1:8a:24:65:4d:50:b7:be:0c:2f:26:a3:54:cd:55:6b: 7d:87:39:40:d8:ca:43:35:f7:25:8c:ee:ff:d0:23:72:ca:ff: 98:ad:08:47:d9:66:50:8a:63:c4:9c:69:69:dc:42:f0:31:70: 55:3d:41:32:3d:b4:e9:2a:1a:30:fb:1d:00:08:db:0e:f6:fa: d6:8d:15:1a:12:cb:00:53:5e:45:75:a9:3a:78:a6:05:2b:ea: f3:4d:f6:3a:98:7a:56:c6:ae:53:1d:c9:0e:da:06:5a:27:9a: 49:e6:96:7a:b4:52:83:9c:36:f2:87:38:7d:33:84:64:24:3c: e9:4f:d4:35:2c:66:75:b6:8b:48:dd:6e:3d:f3:83:6c:a1:88: 8d:cf:79:d0:d2:6b:09:6e:37:70:10:8e:25:02:b0:c3:c8:c9: a1:13:9e:d6:7c:f7:2d:6d:b6:d2:27:dd:45:00:bb:d0:e4:22: 83:fb:e7:7a:3b:cb:2a:7c:c3:d5:5f:45:88:6f:cc:b0:39:4d: 2a:1b:7e:25:19:51:4a:a0:11:bb:d6:da:9b:ca:8e:db:57:7f: 6a:61:8c:ba -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjUxMjIxMDAyMDQwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ3M2Q1OC1jZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43fSOZcpKI+O8dzdP1JuhznqEkvac4w6NQb278va+Xfr+XBWeJ1a2varTzQv lUmdJUoBYFkDrqFziY+fC8EEmmHeIGMG7FLTo7HbMNdk5GvRipOATe3GO6VmoT/h cVqNszFNLo9giPSUfWUq7pDcXgHVgHtc+w/xcUcV0KfkM5Kwozd4P7xHwB8wIuer 7NTRcI55a7oJh+SEogTJAT3/rCWkRHilakLlVbQI4VILmxcTmRm6r+gxXtHfbwpA 0EjnT0C401P/3X4hHTtlRTv3Ht2t+RtswrNCFgPuSKES1PVInTr+Omr1+5Ce+xRo 4pkFeZ/DmrLVUofKEcEJiDXqzQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFFuZDlr/ 4zvQeTJHaWymD9WZZmLAMB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVGMkQvQ0Q2RDZFNTY5ODkyMTFFQzhGOTM1NzNCQzRGOUFFMDIvMTdEM0M2QTg5 QjI2MTFFQzg4ODAzMDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJnUrAwGAQCAAIwEgMHACQAh0AQAAMHACQAh0AgADANBgkq hkiG9w0BAQsFAAOCAQEA34okVverUmnS9nhBoRiJUjFf7+KEifqkU+ZPWlG366aG NTiwN9qxiiRlTVC3vgwvJqNUzVVrfYc5QNjKQzX3JYzu/9Ajcsr/mK0IR9lmUIpj xJxpadxC8DFwVT1BMj206SoaMPsdAAjbDvb61o0VGhLLAFNeRXWpOnimBSvq8032 Oph6VsauUx3JDtoGWieaSeaWerRSg5w28oc4fTOEZCQ86U/UNSxmdbaLSN1uPfOD bKGIjc950NJrCW43cBCOJQKww8jJoROe1nz3LW220ifdRQC70OQig/vnejvLKnzD 1V9FiG/MsDlNKht+JRlRSqARu9bam8qO21d/amGMug== -----END CERTIFICATE-----Generated at Wed Jan 21 13:20:32 2026 by rpki-client