This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa File: 5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa (raw, json) Hash identifier: QV6x7t1GNDY1enVK8NGqWm1qI1rxu4buJOSstDWJdT0= Subject key identifier: C1:A4:6F:27:B6:4D:19:3C:FF:B9:D9:AD:D1:27:22:B6:F0:B0:31:FF Certificate issuer: /CN=A91F4EDE/serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Certificate serial: 063B Authority key identifier: AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa Signing time: Thu 04 Dec 2025 21:35:46 +0000 ROA not before: Thu 04 Dec 2025 21:35:46 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 42960 IP address blocks: 103.158.190.0/23 maxlen: 23 103.158.190.0/24 maxlen: 24 103.158.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4EDE, serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Validity Not Before: Dec 4 21:35:46 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6931feb1-6668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:55:b1:eb:cc:d2:3e:02:94:cc:0d:f0:27:07: b7:f8:67:a6:40:ad:61:bf:2b:87:ba:4d:58:ac:66: 43:95:c8:10:93:66:b6:29:75:95:5c:fb:06:bd:a4: 68:c3:82:a5:9a:26:82:bd:9a:ad:24:9b:44:d8:ed: 61:ba:df:ac:50:ba:02:4f:88:bb:95:35:0e:e9:00: 7f:8d:d6:53:42:8c:ff:3e:b1:d3:fa:51:07:1e:b7: 6f:14:16:99:0a:70:94:66:73:d2:da:1d:e2:2f:7b: 28:89:af:3d:5b:79:fe:bc:09:42:e7:75:bd:76:c4: 79:9f:ee:d0:c4:d6:6a:ef:0a:e1:04:d5:84:a8:7f: 09:c2:2d:c9:0b:b7:73:69:6e:a7:bb:48:c2:67:50: 0f:7f:cf:92:62:3a:e6:d2:60:3d:75:00:15:46:5d: a4:c7:d9:ca:5d:cd:93:96:92:e3:ba:d1:7c:40:48: 9d:ac:8a:eb:42:71:fb:bb:08:24:1a:c4:98:c1:1a: 0d:b2:cb:a9:70:55:60:ed:89:a1:f3:ea:66:bc:4b: 87:e9:8d:c3:fc:da:81:6e:fc:02:ae:3c:76:d0:8f: 33:2c:6d:fb:b8:bc:f8:0d:d7:54:c3:80:d0:a5:4e: 3c:05:a6:2e:74:ee:f2:38:09:fb:b7:d8:11:d4:77: dc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A4:6F:27:B6:4D:19:3C:FF:B9:D9:AD:D1:27:22:B6:F0:B0:31:FF X509v3 Authority Key Identifier: keyid:AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.190.0/23 Signature Algorithm: sha256WithRSAEncryption a7:28:cb:2f:9e:08:ac:a3:0b:cf:a9:f8:0f:e6:7a:93:98:f0: a4:ce:a0:f7:00:b1:11:82:ee:aa:39:25:c9:1e:63:14:a5:63: cd:b4:d9:36:8e:10:0e:0b:ac:a6:28:f4:66:5e:a1:fb:8f:ee: f3:8b:1c:63:f7:92:a2:ac:7b:4c:3c:b4:b2:1a:3f:56:78:9a: 6a:52:cd:9d:e1:5b:a8:65:4c:3d:78:a1:52:ed:0e:cc:71:61: 71:4e:3d:c0:7c:64:08:15:6c:73:ac:93:0d:6d:25:7e:67:30: 6c:64:58:e1:37:d1:bb:36:d6:09:45:e5:22:f4:5d:79:f7:2a: 67:60:9b:ec:f0:b4:a9:8c:28:4f:b9:03:e8:89:2e:85:29:a8: 64:79:0b:7f:7c:ea:ff:cb:79:46:13:b1:3f:12:38:92:2d:83: 44:7d:8c:ae:b7:99:f0:92:16:16:61:e4:93:5f:47:c2:1d:60: 25:53:89:da:26:7f:f2:e7:5b:e3:8d:66:61:2b:fb:d0:23:55: d4:f4:6b:b4:1b:d9:ee:ab:15:c8:e4:56:d3:f5:6f:21:3a:78: a7:c3:eb:9c:08:74:77:74:99:83:3c:67:5d:d0:85:4e:93:d3: 0c:d6:74:f6:32:18:be:cf:bb:b5:72:8c:9a:29:98:79:dd:ae: 6a:62:cb:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFREUxMTAvBgNVBAUTKEFBQjg4MUI4MjE0N0MzMDM2QjgwRkM2NzU5MzREQzJF NDZDRTBGN0YwHhcNMjUxMjA0MjEzNTQ2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTMxZmViMS02NjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1Wx68zSPgKUzA3wJwe3+GemQK1hvyuHuk1YrGZDlcgQk2a2KXWVXPsGvaRo w4KlmiaCvZqtJJtE2O1hut+sULoCT4i7lTUO6QB/jdZTQoz/PrHT+lEHHrdvFBaZ CnCUZnPS2h3iL3soia89W3n+vAlC53W9dsR5n+7QxNZq7wrhBNWEqH8Jwi3JC7dz aW6nu0jCZ1APf8+SYjrm0mA9dQAVRl2kx9nKXc2TlpLjutF8QEidrIrrQnH7uwgk GsSYwRoNssupcFVg7Ymh8+pmvEuH6Y3D/NqBbvwCrjx20I8zLG37uLz4DddUw4DQ pU48BaYudO7yOAn7t9gR1HfcTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMGkbye2 TRk8/7nZrdEnIrbwsDH/MB8GA1UdIwQYMBaAFKq4gbghR8MDa4D8Z1k03C5Gzg9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEVERS8yQ0IwMzI1OEJF NzkxMUVCOTUxMThCMTlDNEY5QUUwMi9xcmlCdUNGSHd3TnJnUHhuV1RUY0xrYk9E MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyaUJ1Q0ZId3dOcmdQeG5XVFRjTGtiT0QzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRFREUvMkNCMDMyNThCRTc5MTFFQjk1MTE4QjE5QzRGOUFFMDIvNUE5QkZDM0FC RTdDMTFFQjhCQzI1QzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnr4wDQYJKoZIhvcNAQELBQADggEBAKcoyy+eCKyjC8+p +A/mepOY8KTOoPcAsRGC7qo5JckeYxSlY8202TaOEA4LrKYo9GZeofuP7vOLHGP3 kqKse0w8tLIaP1Z4mmpSzZ3hW6hlTD14oVLtDsxxYXFOPcB8ZAgVbHOskw1tJX5n MGxkWOE30bs21glF5SL0XXn3Kmdgm+zwtKmMKE+5A+iJLoUpqGR5C3986v/LeUYT sT8SOJItg0R9jK63mfCSFhZh5JNfR8IdYCVTidomf/LnW+ONZmEr+9AjVdT0a7Qb 2e6rFcjkVtP1byE6eKfD65wIdHd0mYM8Z13QhU6T0wzWdPYyGL7Pu7VyjJopmHnd rmpiyyA= -----END CERTIFICATE-----Generated at Sat Dec 6 07:30:58 2025 by rpki-client