This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/C109FFF4FC0511E7BAFB3E48C4F9AE02.roa File: C109FFF4FC0511E7BAFB3E48C4F9AE02.roa (raw, json) Hash identifier: UklyO+zUtTPQ+1U54UPe5WnHbws0xqnE6hJtphNdrmo= Subject key identifier: 4E:F8:56:CC:F1:4D:49:77:14:45:F0:24:43:49:89:B7:68:AB:6A:5E Certificate issuer: /CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Certificate serial: 172E Authority key identifier: 0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/C109FFF4FC0511E7BAFB3E48C4F9AE02.roa Signing time: Thu 18 Dec 2025 17:14:16 +0000 ROA not before: Thu 18 Dec 2025 17:14:16 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 64089 IP address blocks: 45.253.130.0/23 maxlen: 24 103.85.42.0/23 maxlen: 24 103.247.36.0/23 maxlen: 24 2402:5c40:1000::/40 maxlen: 40 2402:5c40:1100::/40 maxlen: 40 2402:5c40:1200::/40 maxlen: 40 2402:5c40:1300::/40 maxlen: 40 2402:5c40:1400::/40 maxlen: 40 2402:5c40:1500::/40 maxlen: 40 2402:5c40:5c00::/40 maxlen: 40 2402:5c40:5c40::/48 maxlen: 48 2402:5c40:5c41::/48 maxlen: 48 2402:5c40:5c42::/48 maxlen: 48 2402:5c40:5c43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5934 (0x172e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8161, serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Validity Not Before: Dec 18 17:14:16 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69443668-2285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2b:5f:bd:3e:c5:51:7b:d9:20:b5:43:79:21: 81:f6:63:ab:a0:4c:f3:dd:c1:dc:30:f6:93:ab:c2: 52:67:96:1d:18:d1:3b:20:57:33:44:57:d6:bb:62: a5:eb:9c:ad:f4:76:04:b5:8f:cb:a2:93:21:61:fc: b9:0e:53:45:01:c5:74:b2:2e:dc:17:79:b6:a8:74: c2:48:61:60:71:a9:26:df:79:49:20:e6:d4:d0:16: e5:4a:8f:19:97:9c:80:35:19:86:2a:ed:ff:ea:af: 57:24:16:1c:60:2b:97:e1:1f:de:2f:f9:63:95:be: 43:ee:95:0e:52:0c:8c:b0:29:95:27:77:c8:7e:9f: 88:a4:58:a6:cd:d1:43:cf:7e:46:4e:fe:b7:73:03: 9d:6d:76:af:7a:9e:ec:20:6f:6b:80:a0:43:6f:cd: 01:38:3b:50:6a:ac:73:ff:8f:54:ad:92:52:80:72: 3b:9b:f2:48:aa:22:07:f2:e5:69:9b:78:3f:03:9e: 2e:bf:6a:fe:7d:a9:bb:86:02:45:4d:fa:22:67:1f: db:98:ee:34:06:0c:f7:47:3e:cf:f4:ea:ef:65:9c: 70:5e:a6:fe:22:f5:3a:c9:c1:27:e5:66:58:ea:17: ec:71:6d:bb:7f:6e:af:e9:8b:0f:40:cf:3d:db:74: 53:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F8:56:CC:F1:4D:49:77:14:45:F0:24:43:49:89:B7:68:AB:6A:5E X509v3 Authority Key Identifier: keyid:0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/C109FFF4FC0511E7BAFB3E48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.253.130.0/23 103.85.42.0/23 103.247.36.0/23 IPv6: 2402:5c40:1000::-2402:5c40:15ff:ffff:ffff:ffff:ffff:ffff 2402:5c40:5c00::/40 Signature Algorithm: sha256WithRSAEncryption ab:1c:5b:7e:8a:d7:a0:bb:bd:c6:85:9c:ed:69:45:23:f7:8c: 58:5e:97:fe:2b:e1:cf:e0:32:d2:95:84:a9:7f:1d:e1:9a:30: 9c:2e:0a:81:ca:7d:b1:fd:ef:e3:fe:c8:60:b5:f4:22:52:9c: 99:04:b6:d5:c5:de:2f:55:e9:db:99:d8:77:02:83:fb:f7:ac: 14:b3:e4:bd:fe:fc:6d:64:e2:0d:ca:e3:69:ea:47:f7:cf:aa: a7:5d:05:87:05:31:6d:5c:b2:b6:ef:6b:99:1c:09:23:b5:63: 71:d1:97:4c:3d:d7:cf:53:bf:0f:10:ed:43:23:f4:a3:e2:09: 4b:51:9d:e9:50:03:db:20:c8:c6:7b:c2:c7:36:f1:77:64:68: ae:25:5d:f4:f0:f2:db:84:62:0f:91:f8:f3:4d:6f:13:a9:bb: 74:fb:19:fd:f1:93:c7:3d:b0:6f:00:96:c5:4a:80:ba:36:e3: b2:cb:79:b0:9e:6d:1c:7c:14:ba:fa:46:49:94:32:e8:a4:03: b7:2b:3c:c7:64:96:3b:5d:86:f1:50:ad:65:10:80:d7:34:37: 5c:b6:bb:f9:c5:6e:c8:4a:87:ee:44:f6:ea:9f:ab:22:f3:46: 50:62:ac:63:c5:1d:02:7b:45:90:d4:8b:1a:94:df:f4:41:de: a0:b4:15:74 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICFy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTgxNjExMTAvBgNVBAUTKDBGMEJDRUUxNUFEQjZENTdEMDJDRDA0QjQ1MjIzQUI4 MDY2QTU0NUQwHhcNMjUxMjE4MTcxNDE2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0MzY2OC0yMjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtytfvT7FUXvZILVDeSGB9mOroEzz3cHcMPaTq8JSZ5YdGNE7IFczRFfWu2Kl 65yt9HYEtY/LopMhYfy5DlNFAcV0si7cF3m2qHTCSGFgcakm33lJIObU0BblSo8Z l5yANRmGKu3/6q9XJBYcYCuX4R/eL/ljlb5D7pUOUgyMsCmVJ3fIfp+IpFimzdFD z35GTv63cwOdbXavep7sIG9rgKBDb80BODtQaqxz/49UrZJSgHI7m/JIqiIH8uVp m3g/A54uv2r+fam7hgJFTfoiZx/bmO40Bgz3Rz7P9OrvZZxwXqb+IvU6ycEn5WZY 6hfscW27f26v6YsPQM8923RTPwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFE74Vszx TUl3FEXwJENJibdoq2peMB8GA1UdIwQYMBaAFA8LzuFa221X0CzQS0UiOrgGalRd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODE2MS82NzA2MTJCMEZB NjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJWZlFMTkJMUlNJNnVBWnFW RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R3dk80VnJiYlZmUUxOQkxSU0k2dUFacVZGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgxNjEvNjcwNjEyQjBGQTY0MTFFN0E0QzI2OTNFQzRGOUFFMDIvQzEwOUZGRjRG QzA1MTFFN0JBRkIzRTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MBgEAgABMBIDBAEt/YIDBAFnVSoDBAFn9yQwIAQCAAIwGjAQAwYEJAJcQBAD BgEkAlxAFAMGACQCXEBcMA0GCSqGSIb3DQEBCwUAA4IBAQCrHFt+itegu73GhZzt aUUj94xYXpf+K+HP4DLSlYSpfx3hmjCcLgqByn2x/e/j/shgtfQiUpyZBLbVxd4v Venbmdh3AoP796wUs+S9/vxtZOINyuNp6kf3z6qnXQWHBTFtXLK272uZHAkjtWNx 0ZdMPdfPU78PEO1DI/Sj4glLUZ3pUAPbIMjGe8LHNvF3ZGiuJV308PLbhGIPkfjz TW8Tqbt0+xn98ZPHPbBvAJbFSoC6NuOyy3mwnm0cfBS6+kZJlDLopAO3KzzHZJY7 XYbxUK1lEIDXNDdctrv5xW7ISofuRPbqn6si80ZQYqxjxR0Ce0WQ1IsalN/0Qd6g tBV0 -----END CERTIFICATE-----Generated at Sat Dec 20 00:16:03 2025 by rpki-client