This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa File: 33EB881ED9A011F08EC1CA9167D3641D.roa (raw, json) Hash identifier: 9y0iXHRShul2Weaui/QHA5FE1MQsTrAU5mMVd8q+b7Q= Subject key identifier: FB:96:A7:97:72:A0:09:A4:58:C3:73:96:05:9D:A7:BE:CA:26:2F:27 Certificate issuer: /CN=A91F3256/serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Certificate serial: 02 Authority key identifier: 37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa Signing time: Mon 15 Dec 2025 10:24:14 +0000 ROA not before: Mon 15 Dec 2025 10:24:14 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152194 IP address blocks: 43.243.28.0/22 maxlen: 24 103.230.240.0/22 maxlen: 24 2401:8b80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 10:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3256, serialNumber=37CD9BB086EF0AF5A32BD885474686806D9096FB Validity Not Before: Dec 15 10:24:14 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=693fe1ce-8d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:72:91:64:1e:4b:01:ac:a3:be:a9:46:ab:44: 39:fa:b0:9c:09:3a:0b:1d:2b:97:7b:01:6c:48:e5: 4c:e7:2c:df:19:10:79:3f:8e:74:7d:ae:3c:de:5d: 86:e7:45:96:af:bc:dd:93:a1:5c:19:a5:af:d1:21: ac:d2:bb:f2:65:7a:10:9f:60:1a:fb:49:68:80:ad: 6a:ce:63:ce:8d:cc:3d:36:75:f7:1d:fa:1d:ba:87: 3c:2f:10:b3:4b:b5:e6:d7:4c:68:77:00:29:c5:d6: 27:4f:7b:9a:28:dc:9c:d8:6a:37:43:f5:3b:23:3a: 3d:63:0e:e7:2d:26:74:37:d5:d5:7e:2c:de:93:25: c2:3d:20:b8:7e:9b:33:af:13:73:4e:8f:03:1d:1c: 4d:f6:71:f5:4d:2f:62:48:0f:0e:a7:31:ff:25:72: 00:b2:2b:43:0d:f7:37:8d:05:a1:5c:f6:54:fe:e6: 31:82:17:d0:56:f9:1d:cc:0f:65:08:a6:c1:ac:ab: a0:22:c2:e9:31:fd:a4:24:af:fe:6e:f7:c5:70:6e: 45:6f:3d:8c:ed:a0:65:cc:a1:54:f3:93:fb:0c:8c: b5:63:98:d9:0c:05:bb:11:59:41:8d:5d:f6:47:04: 1e:4b:91:f1:10:a9:ca:9e:3e:9a:6e:c4:5c:1c:08: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:96:A7:97:72:A0:09:A4:58:C3:73:96:05:9D:A7:BE:CA:26:2F:27 X509v3 Authority Key Identifier: keyid:37:CD:9B:B0:86:EF:0A:F5:A3:2B:D8:85:47:46:86:80:6D:90:96:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/N82bsIbvCvWjK9iFR0aGgG2Qlvs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N82bsIbvCvWjK9iFR0aGgG2Qlvs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3256/1B55D738D99F11F097EFBEF966D3641D/33EB881ED9A011F08EC1CA9167D3641D.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.28.0/22 103.230.240.0/22 IPv6: 2401:8b80::/32 Signature Algorithm: sha256WithRSAEncryption a8:d2:4b:af:a3:8c:8f:00:b2:1c:1a:4a:24:1e:d4:00:11:53: d8:78:49:65:9e:ce:36:1f:49:00:45:7c:35:f7:5d:17:fa:c5: 8f:13:36:ae:15:21:c6:8f:ce:81:56:f9:a0:36:e5:a3:95:99: e6:d7:67:5f:46:78:cb:41:7b:25:4c:86:11:6d:21:ba:b1:a1: 1b:82:8d:ff:cd:a8:af:62:2b:40:c5:ec:65:08:66:21:6f:26: 5b:48:34:5a:91:a2:cd:76:ac:11:8b:6e:8d:24:f6:06:b1:2e: 80:54:83:1b:48:9d:28:eb:6a:79:ba:a8:28:db:c7:67:93:45: 49:07:f9:5e:17:ae:dc:fe:61:7d:95:b4:fc:cc:f1:e4:88:ea: bb:13:03:aa:13:8b:3b:68:8f:73:13:16:66:0c:11:60:9e:c5: 18:82:51:96:11:31:fc:f2:22:e6:00:39:8b:a3:24:e5:bd:a9: f5:cb:72:e9:a9:c5:25:6b:0a:00:4a:3d:5e:7f:78:93:c7:3b: 55:06:7e:99:8e:db:dc:eb:c8:0f:d1:09:10:0c:9f:fc:c3:be: 71:3a:50:b0:45:b9:f7:10:f5:af:da:d8:34:e0:bf:ba:96:9c: 2d:ac:3c:53:db:aa:b3:d9:5c:81:a3:e2:c4:70:1d:76:28:ea: cb:70:70:71 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzI1NjExMC8GA1UEBRMoMzdDRDlCQjA4NkVGMEFGNUEzMkJEODg1NDc0Njg2ODA2 RDkwOTZGQjAeFw0yNTEyMTUxMDI0MTRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5M2ZlMWNlLThkODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVcpFkHksBrKO+qUarRDn6sJwJOgsdK5d7AWxI5UznLN8ZEHk/jnR9rjzeXYbn RZavvN2ToVwZpa/RIazSu/JlehCfYBr7SWiArWrOY86NzD02dfcd+h26hzwvELNL tebXTGh3ACnF1idPe5oo3JzYajdD9TsjOj1jDuctJnQ31dV+LN6TJcI9ILh+mzOv E3NOjwMdHE32cfVNL2JIDw6nMf8lcgCyK0MN9zeNBaFc9lT+5jGCF9BW+R3MD2UI psGsq6Aiwukx/aQkr/5u98VwbkVvPYztoGXMoVTzk/sMjLVjmNkMBbsRWUGNXfZH BB5LkfEQqcqePppuxFwcCIjFAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQU+5anl3Kg CaRYw3OWBZ2nvsomLycwHwYDVR0jBBgwFoAUN82bsIbvCvWjK9iFR0aGgG2Qlvsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzMjU2LzFCNTVENzM4RDk5 RjExRjA5N0VGQkVGOTY2RDM2NDFEL044MmJzSWJ2Q3ZXaks5aUZSMGFHZ0cyUWx2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjgyYnNJYnZDdldqSzlpRlIwYUdnRzJRbHZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzI1Ni8xQjU1RDczOEQ5OUYxMUYwOTdFRkJFRjk2NkQzNjQxRC8zM0VCODgxRUQ5 QTAxMUYwOEVDMUNBOTE2N0QzNjQxRC5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAivzHAMEAmfm8DANBAIAAjAHAwUAJAGLgDANBgkqhkiG9w0B AQsFAAOCAQEAqNJLr6OMjwCyHBpKJB7UABFT2HhJZZ7ONh9JAEV8NfddF/rFjxM2 rhUhxo/OgVb5oDblo5WZ5tdnX0Z4y0F7JUyGEW0hurGhG4KN/82or2IrQMXsZQhm IW8mW0g0WpGizXasEYtujST2BrEugFSDG0idKOtqebqoKNvHZ5NFSQf5Xheu3P5h fZW0/Mzx5IjquxMDqhOLO2iPcxMWZgwRYJ7FGIJRlhEx/PIi5gA5i6Mk5b2p9cty 6anFJWsKAEo9Xn94k8c7VQZ+mY7b3OvID9EJEAyf/MO+cTpQsEW59xD1r9rYNOC/ upacLaw8U9uqs9lcgaPixHAddijqy3BwcQ== -----END CERTIFICATE-----Generated at Thu Dec 18 02:09:10 2025 by rpki-client