This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/E284A4F8B10F11ED8AEF223CC4F9AE02.roa File: E284A4F8B10F11ED8AEF223CC4F9AE02.roa (raw, json) Hash identifier: aofCiOxgu230c2okSE21A+aHeYBi7AAC6o4NTY9wGZ0= Subject key identifier: DC:E9:55:A8:A5:B6:85:2B:AD:A3:01:72:9D:B3:5C:E2:72:19:1C:70 Certificate issuer: /CN=A91F5246/serialNumber=4A188E3187CEC5D36C368C24E94F431D04253B7B Certificate serial: 021E Authority key identifier: 4A:18:8E:31:87:CE:C5:D3:6C:36:8C:24:E9:4F:43:1D:04:25:3B:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShiOMYfOxdNsNowk6U9DHQQlO3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/E284A4F8B10F11ED8AEF223CC4F9AE02.roa Signing time: Mon 01 Dec 2025 01:28:19 +0000 ROA not before: Mon 01 Dec 2025 01:28:18 +0000 ROA not after: Mon 30 Mar 2026 00:00:00 +0000 asID: 150390 IP address blocks: 103.29.180.0/23 maxlen: 24 2001:df1:77c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/ShiOMYfOxdNsNowk6U9DHQQlO3s.crl rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/ShiOMYfOxdNsNowk6U9DHQQlO3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShiOMYfOxdNsNowk6U9DHQQlO3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5246, serialNumber=4A188E3187CEC5D36C368C24E94F431D04253B7B Validity Not Before: Dec 1 01:28:18 2025 GMT Not After : Mar 30 00:00:00 2026 GMT Subject: CN=692cef32-7e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:10:0a:ab:19:fc:66:d5:3a:1d:95:11:55: ce:c0:44:77:9a:ca:da:bc:62:ec:32:16:c2:95:ec: 44:92:70:6c:0d:00:5e:e1:fe:79:4f:51:06:e9:10: 57:1a:af:d9:e0:2c:8f:db:2e:c8:68:96:a9:73:cb: 85:83:8f:26:fa:28:9e:5c:45:10:a8:15:37:7d:83: 01:97:80:3c:b7:3a:18:8f:44:da:be:9d:99:5d:7f: 7d:01:93:bd:c7:8b:8a:1a:9c:80:49:7a:8d:62:a7: f8:eb:b2:5c:cd:b3:2b:de:b1:df:ee:99:be:5e:b2: 29:15:2f:de:a1:f0:52:21:16:79:61:ca:b7:90:a5: 5e:66:e9:1c:9b:f2:44:bd:7e:1c:24:14:eb:3c:00: b8:4e:6d:cb:ba:b6:87:3d:f8:16:c8:72:1c:d0:9f: ac:dc:00:b5:a1:68:ad:d1:1c:fd:5e:59:a0:1a:2b: 80:cc:7e:19:d2:53:03:3f:56:1d:5a:00:8f:e4:00: 6b:ef:53:f6:3d:65:31:a8:6f:ac:b0:b0:ff:17:76: 81:e7:36:2b:d8:94:b2:19:66:45:16:7d:a5:47:f4: 66:99:95:b9:cd:c8:f1:05:b7:49:79:b5:09:bd:91: a5:9b:92:6e:c1:a6:89:b2:8a:3a:1c:fb:4d:8a:bc: a1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E9:55:A8:A5:B6:85:2B:AD:A3:01:72:9D:B3:5C:E2:72:19:1C:70 X509v3 Authority Key Identifier: keyid:4A:18:8E:31:87:CE:C5:D3:6C:36:8C:24:E9:4F:43:1D:04:25:3B:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/ShiOMYfOxdNsNowk6U9DHQQlO3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShiOMYfOxdNsNowk6U9DHQQlO3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5246/38C9708AB10811EDA8854217C4F9AE02/E284A4F8B10F11ED8AEF223CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.180.0/23 IPv6: 2001:df1:77c0::/48 Signature Algorithm: sha256WithRSAEncryption 8c:d3:b2:d5:07:4b:d5:5c:26:e2:10:af:57:47:a8:2a:70:37: 81:d1:b2:10:42:35:ab:ca:5f:6c:b4:1c:8b:cd:fd:05:f2:94: cf:e8:bf:ce:41:4a:b8:6d:dc:5a:22:2d:c8:26:da:aa:8d:86: 5d:0b:67:28:bd:39:e1:2a:ba:7e:f6:39:f6:d5:f6:5d:76:b1: a2:19:74:db:cb:2b:6e:da:2e:89:a5:83:6e:91:7c:e2:7d:cd: 88:70:18:7f:89:0e:a9:69:a4:d5:4c:aa:82:6e:55:e9:bf:b1: b9:a9:79:16:ed:50:e9:be:bd:3f:e3:3f:05:ae:21:d1:b1:95: db:12:b2:2f:97:66:44:e1:8d:aa:b1:27:fa:0b:62:82:5d:d5: 0d:dd:14:49:52:d0:e2:dd:17:df:66:1a:20:d7:98:5d:0e:80: 22:6b:98:1c:4b:3b:f5:57:d1:d8:78:93:9f:55:25:af:91:71: 3f:91:97:52:10:31:ce:6c:25:56:3a:f9:7b:b5:65:1a:ac:e1: 00:d0:e7:76:41:31:6d:81:ec:7f:d6:99:8d:51:b7:5f:90:9a: 1f:2f:26:68:2f:d3:9b:f9:d6:df:45:25:80:05:ce:30:3a:bf: e8:d4:85:89:d9:d6:fa:b3:dc:ee:5e:63:05:4e:52:58:8e:24: 17:4c:28:27 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyNDYxMTAvBgNVBAUTKDRBMTg4RTMxODdDRUM1RDM2QzM2OEMyNEU5NEY0MzFE MDQyNTNCN0IwHhcNMjUxMjAxMDEyODE4WhcNMjYwMzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTJjZWYzMi03ZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6IQCqsZ/GbVOh2VEVXOwER3msravGLsMhbClexEknBsDQBe4f55T1EG6RBX Gq/Z4CyP2y7IaJapc8uFg48m+iieXEUQqBU3fYMBl4A8tzoYj0Tavp2ZXX99AZO9 x4uKGpyASXqNYqf467JczbMr3rHf7pm+XrIpFS/eofBSIRZ5Ycq3kKVeZukcm/JE vX4cJBTrPAC4Tm3LuraHPfgWyHIc0J+s3AC1oWit0Rz9XlmgGiuAzH4Z0lMDP1Yd WgCP5ABr71P2PWUxqG+ssLD/F3aB5zYr2JSyGWZFFn2lR/RmmZW5zcjxBbdJebUJ vZGlm5JuwaaJsoo6HPtNiryh9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNzpVail toUrraMBcp2zXOJyGRxwMB8GA1UdIwQYMBaAFEoYjjGHzsXTbDaMJOlPQx0EJTt7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI0Ni8zOEM5NzA4QUIx MDgxMUVEQTg4NTQyMTdDNEY5QUUwMi9TaGlPTVlmT3hkTnNOb3drNlU5REhRUWxP M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoaU9NWWZPeGROc05vd2s2VTlESFFRbE8zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyNDYvMzhDOTcwOEFCMTA4MTFFREE4ODU0MjE3QzRGOUFFMDIvRTI4NEE0RjhC MTBGMTFFRDhBRUYyMjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHbQwDwQCAAIwCQMHACABDfF3wDANBgkqhkiG9w0BAQsF AAOCAQEAjNOy1QdL1Vwm4hCvV0eoKnA3gdGyEEI1q8pfbLQci839BfKUz+i/zkFK uG3cWiItyCbaqo2GXQtnKL054Sq6fvY59tX2XXaxohl028srbtouiaWDbpF84n3N iHAYf4kOqWmk1Uyqgm5V6b+xual5Fu1Q6b69P+M/Ba4h0bGV2xKyL5dmROGNqrEn +gtigl3VDd0USVLQ4t0X32YaINeYXQ6AImuYHEs79VfR2HiTn1Ulr5FxP5GXUhAx zmwlVjr5e7VlGqzhANDndkExbYHsf9aZjVG3X5CaHy8maC/Tm/nW30UlgAXOMDq/ 6NSFidnW+rPc7l5jBU5SWI4kF0woJw== -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:49 2025 by rpki-client