This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01AF/8CB85456BD1F11EBBAFD3D10C4F9AE02/129AA26CBD2111EBA76A3E11C4F9AE02.roa File: 129AA26CBD2111EBA76A3E11C4F9AE02.roa (raw, json) Hash identifier: JJk2KbVj3549xovpohU2S3XzJZf29aYbS1yj8+AIFCE= Subject key identifier: 16:91:D5:76:E5:6A:79:FE:9C:A9:81:20:B1:F4:98:3F:BE:91:99:27 Certificate issuer: /CN=A91E01AF/serialNumber=74480F37C4B65762A8FD81BC7EDBEBDE6C81645F Certificate serial: 0628 Authority key identifier: 74:48:0F:37:C4:B6:57:62:A8:FD:81:BC:7E:DB:EB:DE:6C:81:64:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEgPN8S2V2Ko_YG8ftvr3myBZF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01AF/8CB85456BD1F11EBBAFD3D10C4F9AE02/129AA26CBD2111EBA76A3E11C4F9AE02.roa Signing time: Sat 08 Nov 2025 21:43:47 +0000 ROA not before: Sat 08 Nov 2025 21:43:47 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135345 IP address blocks: 103.125.148.0/24 maxlen: 24 103.125.149.0/24 maxlen: 24 103.125.150.0/24 maxlen: 24 103.125.151.0/24 maxlen: 24 2403:f640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01AF/8CB85456BD1F11EBBAFD3D10C4F9AE02/dEgPN8S2V2Ko_YG8ftvr3myBZF8.crl rsync://rpki.apnic.net/member_repository/A91E01AF/8CB85456BD1F11EBBAFD3D10C4F9AE02/dEgPN8S2V2Ko_YG8ftvr3myBZF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEgPN8S2V2Ko_YG8ftvr3myBZF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 20:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01AF, serialNumber=74480F37C4B65762A8FD81BC7EDBEBDE6C81645F Validity Not Before: Nov 8 21:43:47 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690fb993-a718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:ac:b1:0a:49:99:16:5a:2a:6d:99:f5:37: 4a:1a:09:c7:e5:38:d2:b8:38:12:1b:ed:33:86:c8: 77:1d:8f:67:09:98:02:db:0e:9e:45:1f:c5:4d:36: 16:91:fd:37:88:91:11:9c:1f:8c:a0:cc:4b:bf:c7: 02:a7:14:71:37:2e:91:d5:5c:9d:db:25:e7:0e:4b: f5:ee:80:68:ce:d1:40:c9:75:81:90:aa:43:77:76: 3a:e3:c1:00:30:eb:4b:d8:0c:65:68:e8:9f:0d:0e: 57:b4:fb:e5:47:0e:92:19:91:ab:43:1a:46:92:66: 93:c6:33:59:51:44:1b:69:dd:25:1a:f0:9f:af:23: 43:15:8c:cf:ef:17:15:9d:ce:b9:43:28:01:8e:ef: 84:1b:0b:c7:28:59:c0:ae:f0:f7:4c:15:09:38:57: 70:d7:29:d2:18:27:9f:0e:37:ac:11:f6:4f:c0:87: 5d:9e:27:d4:91:04:f6:96:f5:af:0d:6d:2f:d4:3c: c8:b2:9c:3e:84:e6:48:11:66:88:36:7b:80:7f:b2: 41:ad:b7:65:8c:bb:6c:69:5f:10:51:8f:c3:45:19: 33:f2:e7:3a:fa:0e:6c:94:2a:4f:40:b7:83:ef:ea: ed:e2:43:ce:33:6e:a9:a6:49:06:01:f7:4b:f8:23: d2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:91:D5:76:E5:6A:79:FE:9C:A9:81:20:B1:F4:98:3F:BE:91:99:27 X509v3 Authority Key Identifier: keyid:74:48:0F:37:C4:B6:57:62:A8:FD:81:BC:7E:DB:EB:DE:6C:81:64:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01AF/8CB85456BD1F11EBBAFD3D10C4F9AE02/dEgPN8S2V2Ko_YG8ftvr3myBZF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEgPN8S2V2Ko_YG8ftvr3myBZF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01AF/8CB85456BD1F11EBBAFD3D10C4F9AE02/129AA26CBD2111EBA76A3E11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.148.0/22 IPv6: 2403:f640::/32 Signature Algorithm: sha256WithRSAEncryption 97:9c:d6:b4:0c:3a:1f:29:67:ad:83:f2:7a:69:b2:a4:51:8e: 52:c9:68:50:c1:b7:4a:8a:8c:13:2f:66:65:39:ce:e7:37:21: 0d:01:5f:61:5b:c8:68:3d:fc:41:ff:66:11:b6:1c:d3:45:b8: 51:f5:27:31:45:9f:f5:60:ae:b3:b3:26:05:ac:6f:05:e7:ac: e9:8e:ef:8d:79:96:3c:49:43:1b:f5:7f:ad:99:bc:74:90:39: 03:b5:19:0d:cc:69:63:86:f0:28:7d:9c:6f:53:83:1c:4f:5a: d7:32:f2:85:89:9d:5d:00:14:a8:ca:99:87:d5:08:fd:98:3a: f4:c4:bd:40:bd:13:55:c6:25:d4:71:29:93:ca:5b:31:fb:d1: 96:a3:a3:63:84:c0:3a:71:77:39:1c:90:39:eb:6b:df:66:3e: ff:5f:d7:23:7d:cc:13:78:6d:5e:ea:52:56:a9:f1:c5:c3:3d: 68:cc:40:29:05:1a:2e:bf:0b:11:a3:eb:3a:91:13:73:22:a9: 98:28:5c:62:22:65:47:e5:d0:29:6b:d6:b0:1f:09:b4:c4:57: 18:4f:08:00:ea:63:b4:87:ad:24:5b:c2:c8:ca:b9:59:e7:46: 0f:1d:cf:ed:12:d3:99:ff:dc:6e:46:2c:46:1b:79:90:dc:26: ac:57:3a:fb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQUYxMTAvBgNVBAUTKDc0NDgwRjM3QzRCNjU3NjJBOEZEODFCQzdFREJFQkRF NkM4MTY0NUYwHhcNMjUxMTA4MjE0MzQ3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBmYjk5My1hNzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+SssQpJmRZaKm2Z9TdKGgnH5TjSuDgSG+0zhsh3HY9nCZgC2w6eRR/FTTYW kf03iJERnB+MoMxLv8cCpxRxNy6R1Vyd2yXnDkv17oBoztFAyXWBkKpDd3Y648EA MOtL2AxlaOifDQ5XtPvlRw6SGZGrQxpGkmaTxjNZUUQbad0lGvCfryNDFYzP7xcV nc65QygBju+EGwvHKFnArvD3TBUJOFdw1ynSGCefDjesEfZPwIddnifUkQT2lvWv DW0v1DzIspw+hOZIEWaINnuAf7JBrbdljLtsaV8QUY/DRRkz8uc6+g5slCpPQLeD 7+rt4kPOM26ppkkGAfdL+CPSOwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBaR1Xbl ann+nKmBILH0mD++kZknMB8GA1UdIwQYMBaAFHRIDzfEtldiqP2BvH7b695sgWRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFBRi84Q0I4NTQ1NkJE MUYxMUVCQkFGRDNEMTBDNEY5QUUwMi9kRWdQTjhTMlYyS29fWUc4ZnR2cjNteUJa RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RFZ1BOOFMyVjJLb19ZRzhmdHZyM215QlpGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxQUYvOENCODU0NTZCRDFGMTFFQkJBRkQzRDEwQzRGOUFFMDIvMTI5QUEyNkNC RDIxMTFFQkE3NkEzRTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfZQwDQQCAAIwBwMFACQD9kAwDQYJKoZIhvcNAQELBQAD ggEBAJec1rQMOh8pZ62D8nppsqRRjlLJaFDBt0qKjBMvZmU5zuc3IQ0BX2FbyGg9 /EH/ZhG2HNNFuFH1JzFFn/VgrrOzJgWsbwXnrOmO7415ljxJQxv1f62ZvHSQOQO1 GQ3MaWOG8Ch9nG9TgxxPWtcy8oWJnV0AFKjKmYfVCP2YOvTEvUC9E1XGJdRxKZPK WzH70Zajo2OEwDpxdzkckDnra99mPv9f1yN9zBN4bV7qUlap8cXDPWjMQCkFGi6/ CxGj6zqRE3MiqZgoXGIiZUfl0Clr1rAfCbTEVxhPCADqY7SHrSRbwsjKuVnnRg8d z+0S05n/3G5GLEYbeZDcJqxXOvs= -----END CERTIFICATE-----Generated at Tue Dec 9 00:44:18 2025 by rpki-client