This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json) Hash identifier: 2f17q/yXFdCT2L+3cvUBOaAyIHRSOVChjJcG9rpXoYE= Subject key identifier: 49:D0:6F:2C:1A:27:0A:B9:54:78:49:E5:AD:19:69:A6:47:96:6F:E0 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 611609E1C1FA61B6C12608100204A06E61E5D79D Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa Signing time: Fri 12 Dec 2025 00:00:01 +0000 ROA not before: Thu 11 Dec 2025 23:55:01 +0000 ROA not after: Fri 11 Dec 2026 00:00:01 +0000 asID: 24021 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 01:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:16:09:e1:c1:fa:61:b6:c1:26:08:10:02:04:a0:6e:61:e5:d7:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Dec 11 23:55:01 2025 GMT Not After : Dec 11 00:00:01 2026 GMT Subject: CN=49D06F2C1A270AB9547849E5AD1969A647966FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:f8:df:2f:c8:f1:ff:24:e4:62:81:2b:85: 7a:f3:77:ad:95:0a:84:ff:f8:98:e6:99:15:b2:e9: 94:94:40:21:df:f4:5e:b1:ee:a8:bd:b4:87:87:da: 7a:c2:ad:9e:43:d5:55:fe:5a:03:53:cc:b8:43:09: ea:b9:6f:62:50:8f:d4:5d:4a:ff:56:18:63:ef:b5: eb:56:72:a0:61:c3:2e:f2:89:2c:40:2f:b8:02:66: 09:76:b2:55:63:63:e0:f0:b5:9c:1b:21:23:4c:53: 34:66:7d:1d:c7:d6:d7:c6:00:e0:28:4d:53:3f:0b: 5a:ad:f1:39:9c:60:cc:75:3f:d3:05:f4:c9:d6:c5: 02:0b:72:db:79:6a:e7:df:18:47:ec:48:bc:91:4c: 83:9e:d0:3c:d1:98:e7:e0:e1:8a:52:51:f1:4d:fa: 4f:e5:ec:8b:ab:ca:cc:62:fc:b2:39:f4:a4:3b:13: 25:26:00:dd:62:3e:53:fd:8f:b3:c0:f7:b0:ae:c3: ce:09:22:e5:3c:75:5e:94:89:b2:b3:bd:fe:88:ed: 2e:6c:2b:b4:ee:22:dd:94:0d:e8:e3:72:cb:12:a9: 17:07:68:88:c3:ee:84:e0:18:8a:3c:d4:f9:4c:ce: b8:56:ef:a8:5c:ac:e8:98:41:60:bc:7a:54:6c:98: 8c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D0:6F:2C:1A:27:0A:B9:54:78:49:E5:AD:19:69:A6:47:96:6F:E0 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:d0:84:15:98:fe:0d:6e:75:ba:c5:4a:32:41:68:ff:fa:f7: 2a:0b:5b:77:c9:ce:b0:d7:0f:0a:44:c4:36:69:e1:c9:8d:86: 3f:6e:9c:d4:24:1b:1c:84:84:f9:18:f9:16:c7:5d:6e:48:2c: e8:6a:b5:79:12:0e:e5:7a:b8:5d:18:8b:b2:5d:99:e9:ba:10: 17:0d:a4:f1:1a:e0:65:6a:ee:e6:f6:db:41:99:32:85:2e:77: fc:37:89:83:54:6e:3f:78:23:34:2f:9f:9a:d7:9c:5e:5f:e4: 7f:9c:f3:e6:4f:15:1c:ae:11:b7:58:a8:02:d4:3a:a3:b4:60: c3:8f:da:26:c6:0c:94:50:a7:99:aa:ce:29:22:ec:21:31:8e: b9:04:1b:d8:3f:d3:31:1d:c9:cb:dc:8e:28:ba:0b:83:74:d7: 41:7f:22:db:07:23:f4:e3:c6:70:27:86:73:d3:53:00:67:e2: 8e:41:4e:e9:08:36:75:0f:c7:54:e2:73:ee:d4:12:90:53:bf: ba:9e:10:bc:a4:a8:cb:45:ff:f1:4f:7d:dd:da:98:d2:2a:d4: 10:9e:2c:0a:38:71:76:58:76:40:03:31:a5:55:ff:43:4a:9e: f0:72:ca:d6:20:db:88:24:a1:85:7e:7f:7b:9e:7f:a5:49:22: bf:cb:28:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUYRYJ4cH6YbbBJggQAgSgbmHl150wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MTIxMTIzNTUwMVoX DTI2MTIxMTAwMDAwMVowMzExMC8GA1UEAxMoNDlEMDZGMkMxQTI3MEFCOTU0Nzg0 OUU1QUQxOTY5QTY0Nzk2NkZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvf+N8vyPH/JORigSuFevN3rZUKhP/4mOaZFbLplJRAId/0XrHuqL20h4fa esKtnkPVVf5aA1PMuEMJ6rlvYlCP1F1K/1YYY++161ZyoGHDLvKJLEAvuAJmCXay VWNj4PC1nBshI0xTNGZ9HcfW18YA4ChNUz8LWq3xOZxgzHU/0wX0ydbFAgty23lq 598YR+xIvJFMg57QPNGY5+DhilJR8U36T+Xsi6vKzGL8sjn0pDsTJSYA3WI+U/2P s8D3sK7Dzgki5Tx1XpSJsrO9/ojtLmwrtO4i3ZQN6ONyyxKpFwdoiMPuhOAYijzU +UzOuFbvqFys6JhBYLx6VGyYjCcCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRJ0G8s GicKuVR4SeWtGWmmR5Zv4DAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIz NDMwMzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAW9CEFZj+ DW51usVKMkFo//r3Kgtbd8nOsNcPCkTENmnhyY2GP26c1CQbHISE+Rj5Fsddbkgs 6Gq1eRIO5Xq4XRiLsl2Z6boQFw2k8RrgZWru5vbbQZkyhS53/DeJg1RuP3gjNC+f mtecXl/kf5zz5k8VHK4Rt1ioAtQ6o7Rgw4/aJsYMlFCnmarOKSLsITGOuQQb2D/T MR3Jy9yOKLoLg3TXQX8i2wcj9OPGcCeGc9NTAGfijkFO6Qg2dQ/HVOJz7tQSkFO/ up4QvKSoy0X/8U993dqY0irUEJ4sCjhxdlh2QAMxpVX/Q0qe8HLK1iDbiCShhX5/ e55/pUkiv8soaA== -----END CERTIFICATE-----Generated at Fri Dec 12 11:06:09 2025 by rpki-client