This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa File: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (raw, json) Hash identifier: fMXoiRh607T1jSC9KZpE1UKghQnNh7LQid1KP9KwKXQ= Subject key identifier: 07:D0:8F:4C:53:34:B1:25:FC:E2:D8:D5:A7:F4:63:6E:1E:EB:29:DE Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: C5 Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa Signing time: Mon 15 Dec 2025 02:55:53 +0000 ROA not before: Mon 15 Dec 2025 02:55:53 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 151660 IP address blocks: 103.158.243.0/24 maxlen: 24 2401:dc20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: Dec 15 02:55:53 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=693f78b8-4279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:1e:5b:97:80:74:48:67:13:36:e2:53:1e: 34:89:90:f5:cf:6a:05:56:30:bd:bc:d5:7a:a7:70: 84:b5:8a:5a:4c:75:d2:9e:4c:bb:00:ca:40:e1:75: d2:0e:c9:8f:07:92:08:f9:65:c4:38:0d:ca:3f:ba: f1:b0:93:34:69:14:81:f5:78:99:de:5b:a3:91:ca: a7:36:5d:2d:b1:a3:75:fb:fe:44:73:7a:a2:63:f0: 18:ad:06:24:ea:9e:cc:8b:39:58:9a:36:62:ab:13: 5d:3e:ac:70:df:2f:77:c6:c0:39:46:41:d4:9a:92: b8:b1:11:74:19:ff:b6:36:48:1d:70:19:b2:e4:47: 29:c8:eb:d6:7d:d5:95:bc:71:e2:86:6c:9f:3a:bb: 9e:ec:20:34:a2:e6:b0:e8:2b:85:80:b7:96:07:a6: f7:02:b9:df:c4:b1:08:7c:f1:ae:12:6b:d4:42:cb: 12:d7:2a:08:7c:6c:36:6c:d4:3f:1e:16:36:f8:9a: c2:2e:47:36:50:40:9f:3a:d6:49:59:4d:80:92:1d: f6:57:3e:d8:af:26:57:52:f4:f8:05:d9:0d:7d:c7: cd:60:1c:5e:fd:c3:e5:9e:e2:1f:3b:91:a6:9e:60: de:db:84:8a:d3:8a:00:e7:aa:e2:23:3f:17:0a:37: ac:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D0:8F:4C:53:34:B1:25:FC:E2:D8:D5:A7:F4:63:6E:1E:EB:29:DE X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.243.0/24 IPv6: 2401:dc20::/32 Signature Algorithm: sha256WithRSAEncryption ca:f9:a3:b3:b3:3c:31:b8:4f:19:bf:08:e6:25:31:2b:42:77: 05:f2:fa:72:df:44:c9:41:fe:ce:44:00:e3:f1:b2:7a:88:22: 8e:8b:ea:18:c0:cc:bf:44:0e:ca:93:ba:aa:76:69:73:47:f8: db:04:7d:76:ff:4e:91:58:0e:9b:2f:b1:47:15:25:82:bf:1e: 32:a5:cd:4f:cc:4c:b5:7f:69:48:9c:3b:11:90:52:43:69:37: 37:a5:6a:8f:4d:5e:01:06:8a:bb:7d:61:44:f8:01:1c:ed:79: b4:20:08:fd:6c:9e:8f:5c:a1:91:31:a5:de:39:9e:25:1f:11: 0c:6a:36:14:c4:45:52:91:03:ef:1b:46:ea:69:eb:04:4f:ff: 68:42:e2:df:80:6d:ab:25:ad:b8:00:9f:63:86:7c:78:b4:e6: d3:43:8b:c4:ba:48:24:ab:4b:f6:e8:ff:d3:27:9b:32:4f:be: ad:f0:bc:25:9c:e7:e1:b4:af:ce:15:c3:fa:d2:1c:2f:50:47: 53:b4:34:99:8e:7f:b4:7c:cf:13:78:4e:e4:33:81:f8:d0:76: c3:ed:9f:52:ec:61:58:bd:38:27:d2:0f:ae:3b:a5:62:00:05: 39:59:ab:4a:c7:03:87:1f:fd:3f:27:ac:59:a9:2d:3c:09:9d: c9:52:79:bf -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKEIxQkExODY4QkE3Q0VCOTRDREQ2NEYwNTc0MTM5QTAx QTUwQjkwRDUwHhcNMjUxMjE1MDI1NTUzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNmNzhiOC00Mjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWMeW5eAdEhnEzbiUx40iZD1z2oFVjC9vNV6p3CEtYpaTHXSnky7AMpA4XXS DsmPB5II+WXEOA3KP7rxsJM0aRSB9XiZ3lujkcqnNl0tsaN1+/5Ec3qiY/AYrQYk 6p7MizlYmjZiqxNdPqxw3y93xsA5RkHUmpK4sRF0Gf+2NkgdcBmy5EcpyOvWfdWV vHHihmyfOrue7CA0ouaw6CuFgLeWB6b3ArnfxLEIfPGuEmvUQssS1yoIfGw2bNQ/ HhY2+JrCLkc2UECfOtZJWU2Akh32Vz7YryZXUvT4BdkNfcfNYBxe/cPlnuIfO5Gm nmDe24SK04oA56riIz8XCjeshwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAfQj0xT NLEl/OLY1af0Y24e6yneMB8GA1UdIwQYMBaAFLG6GGi6fOuUzdZPBXQTmgGlC5DV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8xMTRFN0RCQUIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9zYm9ZYUxwODY1VE4xazhGZEJPYUFhVUxr TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYyMzMvMTE0RTdEQkFCMzc4MTFFRjg4MzIyQjBGQzRGOUFFMDIvMzg2RkQ0RkNC MzdEMTFFRjhENkVBRjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnnvMwDQQCAAIwBwMFACQB3CAwDQYJKoZIhvcNAQELBQAD ggEBAMr5o7OzPDG4Txm/COYlMStCdwXy+nLfRMlB/s5EAOPxsnqIIo6L6hjAzL9E DsqTuqp2aXNH+NsEfXb/TpFYDpsvsUcVJYK/HjKlzU/MTLV/aUicOxGQUkNpNzel ao9NXgEGirt9YUT4ARztebQgCP1sno9coZExpd45niUfEQxqNhTERVKRA+8bRupp 6wRP/2hC4t+AbaslrbgAn2OGfHi05tNDi8S6SCSrS/bo/9MnmzJPvq3wvCWc5+G0 r84Vw/rSHC9QR1O0NJmOf7R8zxN4TuQzgfjQdsPtn1LsYVi9OCfSD647pWIABTlZ q0rHA4cf/T8nrFmpLTwJnclSeb8= -----END CERTIFICATE-----Generated at Fri Dec 19 22:40:53 2025 by rpki-client