This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/A2835264049511ECB774BA31C4F9AE02.roa File: A2835264049511ECB774BA31C4F9AE02.roa (raw, json) Hash identifier: S2/qX3ATq6xKaQezRq7XqAbHk77SfeCYExZEp8NfpSc= Subject key identifier: 41:FD:51:64:E7:28:85:A5:10:35:1A:BF:31:82:B0:8A:7D:ED:5B:55 Certificate issuer: /CN=A91FDD88/serialNumber=1410FD8787140FF9976FE9C1FA5844ED5DD1E3C5 Certificate serial: 0581 Authority key identifier: 14:10:FD:87:87:14:0F:F9:97:6F:E9:C1:FA:58:44:ED:5D:D1:E3:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FBD9h4cUD_mXb-nB-lhE7V3R48U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/A2835264049511ECB774BA31C4F9AE02.roa Signing time: Fri 12 Dec 2025 22:39:19 +0000 ROA not before: Fri 12 Dec 2025 22:39:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141389 IP address blocks: 103.158.14.0/24 maxlen: 24 103.158.15.0/24 maxlen: 24 2406:ac40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.crl rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FBD9h4cUD_mXb-nB-lhE7V3R48U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1409 (0x581) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD88, serialNumber=1410FD8787140FF9976FE9C1FA5844ED5DD1E3C5 Validity Not Before: Dec 12 22:39:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=693c9997-5fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:26:64:ae:d7:b1:5c:de:93:40:84:19:16:87: 6d:4a:ef:27:d0:35:5e:67:a0:e7:c3:c5:94:a4:a3: bc:f3:44:0c:ef:4f:9c:d3:53:10:83:fd:3b:81:54: df:06:29:36:8f:41:2c:cc:18:e7:e2:4b:df:ed:1e: 95:7f:6b:61:7d:c3:be:94:3a:2e:a8:ec:f5:8b:74: 98:c9:90:c8:e2:20:b0:29:a3:34:97:a5:c7:a5:18: 74:a0:fe:a4:c4:65:e9:56:53:c7:93:6d:b5:f0:cf: f4:6b:91:d3:bd:73:eb:02:4d:dd:9c:bc:9b:83:36: 3f:7c:cd:db:01:1e:79:14:ca:a6:45:5b:07:8c:3f: 4f:f4:3f:4b:af:22:13:44:92:de:14:01:32:ec:c2: 2e:b0:ff:c1:49:eb:97:c8:c3:1d:72:a1:14:8a:81: 5c:85:4e:d4:dc:26:7c:68:66:41:41:1f:3e:2b:17: 2e:94:6b:11:09:c3:3b:4b:e6:e2:c5:d0:60:11:eb: 35:a5:a8:98:52:a9:22:71:bc:8f:c5:0d:99:f6:8d: 2b:61:bd:23:8c:c7:08:73:9f:df:b7:0e:2d:ed:b9: 1c:5a:22:c6:ea:01:71:4f:e7:f4:2d:2c:33:2f:89: 8b:38:24:f2:d5:a0:3a:5c:cb:f0:02:68:06:f6:0a: 28:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FD:51:64:E7:28:85:A5:10:35:1A:BF:31:82:B0:8A:7D:ED:5B:55 X509v3 Authority Key Identifier: keyid:14:10:FD:87:87:14:0F:F9:97:6F:E9:C1:FA:58:44:ED:5D:D1:E3:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FBD9h4cUD_mXb-nB-lhE7V3R48U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/A2835264049511ECB774BA31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.14.0/23 IPv6: 2406:ac40::/32 Signature Algorithm: sha256WithRSAEncryption 0d:18:09:b1:6f:fc:01:b9:36:be:ee:ed:5b:dd:4a:00:02:74: 8b:9c:1a:20:ef:36:e1:68:07:6e:b6:17:3f:01:fb:af:de:fb: 6d:42:b9:e7:3a:ba:4d:5f:19:6b:60:ad:9d:d0:d2:f1:a4:01: 64:06:34:65:4f:72:40:98:eb:c3:f6:6b:f3:1f:2b:ac:6c:86: 94:ac:34:e4:e8:29:9f:a4:05:bd:76:d9:fd:5d:ff:02:46:1a: 1a:ff:af:6c:3b:8d:31:18:12:f0:54:cb:c6:6c:90:01:0b:8d: 8d:b9:c8:56:87:e1:e7:df:f9:a5:b5:91:1c:32:cd:ff:37:4b: f0:62:9a:be:27:dc:2c:29:89:6d:88:22:b5:89:e2:1e:94:34: f3:65:ee:63:86:8b:0a:ea:c8:c8:81:23:68:55:68:13:80:c7: 17:ef:cf:5b:b7:8f:9f:bd:35:90:32:6c:04:2f:c4:2b:6c:c0: 8e:1b:2a:23:72:00:4e:94:69:89:77:e1:1a:ea:d4:49:bb:56: 9c:73:d6:fd:9d:57:b3:22:2e:34:34:0c:ff:ab:cd:a5:99:d0: 5c:e3:da:7e:13:7d:3a:a9:ed:da:c6:e3:24:4a:e6:56:99:1f: 00:98:fa:c8:5d:06:da:d6:2e:df:19:e4:a6:c4:30:b8:a2:0d: 59:ca:2a:8b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkREODgxMTAvBgNVBAUTKDE0MTBGRDg3ODcxNDBGRjk5NzZGRTlDMUZBNTg0NEVE NUREMUUzQzUwHhcNMjUxMjEyMjIzOTE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTNjOTk5Ny01ZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SZkrtexXN6TQIQZFodtSu8n0DVeZ6Dnw8WUpKO880QM70+c01MQg/07gVTf Bik2j0EszBjn4kvf7R6Vf2thfcO+lDouqOz1i3SYyZDI4iCwKaM0l6XHpRh0oP6k xGXpVlPHk2218M/0a5HTvXPrAk3dnLybgzY/fM3bAR55FMqmRVsHjD9P9D9LryIT RJLeFAEy7MIusP/BSeuXyMMdcqEUioFchU7U3CZ8aGZBQR8+KxculGsRCcM7S+bi xdBgEes1paiYUqkicbyPxQ2Z9o0rYb0jjMcIc5/ftw4t7bkcWiLG6gFxT+f0LSwz L4mLOCTy1aA6XMvwAmgG9goojQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEH9UWTn KIWlEDUavzGCsIp97VtVMB8GA1UdIwQYMBaAFBQQ/YeHFA/5l2/pwfpYRO1d0ePF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ4OC9DODIzNkFDMjA0 OTAxMUVDOENDMUEzODZDNEY5QUUwMi9GQkQ5aDRjVURfbVhiLW5CLWxoRTdWM1I0 OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZCRDloNGNVRF9tWGItbkItbGhFN1YzUjQ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkREODgvQzgyMzZBQzIwNDkwMTFFQzhDQzFBMzg2QzRGOUFFMDIvQTI4MzUyNjQw NDk1MTFFQ0I3NzRCQTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnng4wDQQCAAIwBwMFACQGrEAwDQYJKoZIhvcNAQELBQAD ggEBAA0YCbFv/AG5Nr7u7VvdSgACdIucGiDvNuFoB262Fz8B+6/e+21Cuec6uk1f GWtgrZ3Q0vGkAWQGNGVPckCY68P2a/MfK6xshpSsNOToKZ+kBb122f1d/wJGGhr/ r2w7jTEYEvBUy8ZskAELjY25yFaH4eff+aW1kRwyzf83S/Bimr4n3CwpiW2IIrWJ 4h6UNPNl7mOGiwrqyMiBI2hVaBOAxxfvz1u3j5+9NZAybAQvxCtswI4bKiNyAE6U aYl34Rrq1Em7Vpxz1v2dV7MiLjQ0DP+rzaWZ0Fzj2n4TfTqp7drG4yRK5laZHwCY +shdBtrWLt8Z5KbEMLiiDVnKKos= -----END CERTIFICATE-----Generated at Mon Dec 22 07:06:19 2025 by rpki-client