This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/59094990960811ECA04A0086C4F9AE02/39574A98960D11ECAAC81D60C4F9AE02.roa File: 39574A98960D11ECAAC81D60C4F9AE02.roa (raw, json) Hash identifier: XHc1dhpX7haJHAKy33sEPcQZqIDszCFHxQHHfnH+Its= Subject key identifier: C1:D3:54:80:45:C0:EE:9B:50:9C:6D:41:56:07:6F:04:E8:8F:9E:85 Certificate issuer: /CN=A91E504E/serialNumber=A3F272752EC5D9E129E4DFCA080B88D39B794944 Certificate serial: 0434 Authority key identifier: A3:F2:72:75:2E:C5:D9:E1:29:E4:DF:CA:08:0B:88:D3:9B:79:49:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o_JydS7F2eEp5N_KCAuI05t5SUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/59094990960811ECA04A0086C4F9AE02/39574A98960D11ECAAC81D60C4F9AE02.roa Signing time: Wed 07 Jan 2026 11:55:45 +0000 ROA not before: Wed 07 Jan 2026 11:55:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133199 IP address blocks: 43.225.44.0/24 maxlen: 24 43.225.45.0/24 maxlen: 24 43.225.46.0/24 maxlen: 24 43.225.47.0/24 maxlen: 24 43.240.28.0/22 maxlen: 22 43.240.28.0/24 maxlen: 24 43.240.29.0/24 maxlen: 24 43.240.30.0/24 maxlen: 24 43.240.31.0/24 maxlen: 24 43.242.32.0/22 maxlen: 22 43.242.32.0/24 maxlen: 24 43.242.33.0/24 maxlen: 24 43.242.34.0/24 maxlen: 24 43.242.35.0/24 maxlen: 24 45.119.96.0/24 maxlen: 24 45.119.97.0/24 maxlen: 24 45.119.98.0/24 maxlen: 24 45.119.99.0/24 maxlen: 24 103.44.28.0/24 maxlen: 24 103.44.29.0/24 maxlen: 24 103.44.30.0/24 maxlen: 24 103.44.31.0/24 maxlen: 24 103.59.144.0/24 maxlen: 24 103.59.145.0/24 maxlen: 24 103.59.146.0/24 maxlen: 24 103.59.147.0/24 maxlen: 24 103.249.108.0/24 maxlen: 24 103.249.109.0/24 maxlen: 24 103.249.110.0/24 maxlen: 24 103.249.111.0/24 maxlen: 24 103.254.148.0/24 maxlen: 24 103.254.149.0/24 maxlen: 24 103.254.150.0/24 maxlen: 24 103.254.151.0/24 maxlen: 24 2404:da80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/59094990960811ECA04A0086C4F9AE02/o_JydS7F2eEp5N_KCAuI05t5SUQ.crl rsync://rpki.apnic.net/member_repository/A91E504E/59094990960811ECA04A0086C4F9AE02/o_JydS7F2eEp5N_KCAuI05t5SUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o_JydS7F2eEp5N_KCAuI05t5SUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Feb 2026 23:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=A3F272752EC5D9E129E4DFCA080B88D39B794944 Validity Not Before: Jan 7 11:55:45 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=695e49c1-e96b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:33:74:8a:b9:78:ac:fa:fa:48:fc:ef:1b:cf: 1f:2b:8c:a3:35:cc:24:8a:a8:8c:3a:89:44:1e:20: 81:35:9c:39:88:23:b3:b1:e3:fe:3d:b7:8b:68:b0: a4:bf:65:70:5d:ad:5e:fb:36:55:42:15:ef:6c:2c: e8:f2:f9:eb:5b:3a:06:f6:8d:6b:d0:b2:dd:6b:0d: b4:8a:a0:b5:a2:9d:96:a5:ed:2b:d7:16:ef:2d:e9: 11:a6:20:86:0d:b0:e5:bd:f2:5b:a9:b9:02:f9:1c: f8:da:56:11:d0:8f:c4:96:5f:02:f4:af:3c:9f:6e: e4:2d:e8:ca:be:7c:19:5b:d7:c4:00:96:bc:02:ea: 37:9c:3b:b5:01:6d:1a:4b:d3:d2:82:1b:22:49:fb: a8:9c:9d:37:e7:ad:58:5e:d5:90:3e:46:1a:e8:07: b0:44:8f:7d:9b:35:da:14:53:e3:ac:5a:66:ff:c8: 51:9f:29:cb:15:59:e2:7c:89:ec:bd:4a:3c:52:1d: 96:9a:3f:31:e2:2a:b0:2a:20:07:cf:65:00:6b:e0: ae:e2:97:c9:55:bd:06:04:0e:65:e5:41:ce:2d:73: a0:87:3e:80:e9:48:d0:f3:b0:d8:45:7d:5c:68:62: e6:80:8c:2a:78:48:25:87:c4:e8:b3:4b:27:4b:f7: 68:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D3:54:80:45:C0:EE:9B:50:9C:6D:41:56:07:6F:04:E8:8F:9E:85 X509v3 Authority Key Identifier: keyid:A3:F2:72:75:2E:C5:D9:E1:29:E4:DF:CA:08:0B:88:D3:9B:79:49:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/59094990960811ECA04A0086C4F9AE02/o_JydS7F2eEp5N_KCAuI05t5SUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o_JydS7F2eEp5N_KCAuI05t5SUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/59094990960811ECA04A0086C4F9AE02/39574A98960D11ECAAC81D60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.44.0/22 43.240.28.0/22 43.242.32.0/22 45.119.96.0/22 103.44.28.0/22 103.59.144.0/22 103.249.108.0/22 103.254.148.0/22 IPv6: 2404:da80::/32 Signature Algorithm: sha256WithRSAEncryption 42:6c:8c:4b:d2:25:69:92:53:70:fd:7f:f8:6c:c7:e6:c1:7a: 0e:67:d4:47:db:7d:49:f3:2f:ba:f6:49:73:c3:9f:17:3a:97: fb:08:76:97:ba:00:cc:8a:eb:d8:d2:24:1f:a3:95:df:10:21: fd:db:26:8a:0e:d6:fd:9f:4c:a3:b8:63:47:52:4d:e8:4f:36: 93:f5:dd:1f:6e:29:b6:2f:91:31:b4:19:b4:ee:b2:59:e7:b4: 20:ac:61:22:3a:1c:9d:13:ec:c4:b4:7e:ea:d9:56:12:58:49: 37:1a:d5:90:23:1b:f8:43:4a:e2:c2:4f:45:06:87:08:26:9b: f4:28:25:e8:32:0e:21:1c:9b:09:80:30:61:88:11:e7:93:78: d1:37:c5:1f:72:f9:73:1c:37:b2:9f:ae:e4:05:cc:67:c3:ce: c5:13:a4:ef:f2:24:e0:3b:38:8a:e6:15:3f:c2:72:d6:0e:36: 1b:66:7d:73:b1:21:7a:82:76:5f:0a:d3:cf:10:87:f1:28:ee: ab:97:23:21:33:86:59:16:bb:f0:57:f9:51:f6:db:a9:68:d4: 20:82:05:a0:f0:5a:ab:fe:62:d1:9a:7d:55:35:2d:98:30:1b: 23:d2:c9:b5:8c:fa:e4:1c:ef:f6:e6:bf:b2:58:25:66:ea:1a: d2:16:92:63 -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTUwNEUxMTAvBgNVBAUTKEEzRjI3Mjc1MkVDNUQ5RTEyOUU0REZDQTA4MEI4OEQz OUI3OTQ5NDQwHhcNMjYwMTA3MTE1NTQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVlNDljMS1lOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzN0irl4rPr6SPzvG88fK4yjNcwkiqiMOolEHiCBNZw5iCOzseP+PbeLaLCk v2VwXa1e+zZVQhXvbCzo8vnrWzoG9o1r0LLdaw20iqC1op2Wpe0r1xbvLekRpiCG DbDlvfJbqbkC+Rz42lYR0I/Ell8C9K88n27kLejKvnwZW9fEAJa8Auo3nDu1AW0a S9PSghsiSfuonJ03561YXtWQPkYa6AewRI99mzXaFFPjrFpm/8hRnynLFVnifIns vUo8Uh2Wmj8x4iqwKiAHz2UAa+Cu4pfJVb0GBA5l5UHOLXOghz6A6UjQ87DYRX1c aGLmgIwqeEglh8Tos0snS/do2QIDAQABo4ICzjCCAsowHQYDVR0OBBYEFMHTVIBF wO6bUJxtQVYHbwToj56FMB8GA1UdIwQYMBaAFKPycnUuxdnhKeTfyggLiNObeUlE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS81OTA5NDk5MDk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi9vX0p5ZFM3RjJlRXA1Tl9LQ0F1STA1dDVT VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29fSnlkUzdGMmVFcDVOX0tDQXVJMDV0NVNVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNTkwOTQ5OTA5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMzk1NzRBOTg5 NjBEMTFFQ0FBQzgxRDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBAIr4SwDBAIr8BwDBAIr8iADBAItd2ADBAJnLBwDBAJnO5AD BAJn+WwDBAJn/pQwDQQCAAIwBwMFACQE2oAwDQYJKoZIhvcNAQELBQADggEBAEJs jEvSJWmSU3D9f/hsx+bBeg5n1EfbfUnzL7r2SXPDnxc6l/sIdpe6AMyK69jSJB+j ld8QIf3bJooO1v2fTKO4Y0dSTehPNpP13R9uKbYvkTG0GbTuslnntCCsYSI6HJ0T 7MS0furZVhJYSTca1ZAjG/hDSuLCT0UGhwgmm/QoJegyDiEcmwmAMGGIEeeTeNE3 xR9y+XMcN7KfruQFzGfDzsUTpO/yJOA7OIrmFT/CctYONhtmfXOxIXqCdl8K088Q h/Eo7quXIyEzhlkWu/BX+VH226lo1CCCBaDwWqv+YtGafVU1LZgwGyPSybWM+uQc 7/bmv7JYJWbqGtIWkmM= -----END CERTIFICATE-----Generated at Wed Feb 4 07:02:31 2026 by rpki-client