This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/E90A311AB8BE11ED83994B4AC4F9AE02.roa File: E90A311AB8BE11ED83994B4AC4F9AE02.roa (raw, json) Hash identifier: I8QRLy7bWP4fbAGVj59B+J8khscdNsGKDUZD21ickSM= Subject key identifier: 66:69:BA:58:A4:68:15:94:20:67:CA:2B:43:7A:E6:C6:3F:18:DF:BD Certificate issuer: /CN=A91852AB/serialNumber=3366179B2D7C97B8266F9B431804A8C6D2D090EB Certificate serial: 0215 Authority key identifier: 33:66:17:9B:2D:7C:97:B8:26:6F:9B:43:18:04:A8:C6:D2:D0:90:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2YXmy18l7gmb5tDGASoxtLQkOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/E90A311AB8BE11ED83994B4AC4F9AE02.roa Signing time: Wed 17 Dec 2025 02:22:07 +0000 ROA not before: Wed 17 Dec 2025 02:22:07 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 0 IP address blocks: 43.243.21.0/24 maxlen: 24 103.94.93.0/24 maxlen: 24 103.94.95.0/24 maxlen: 24 2001:dee:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/M2YXmy18l7gmb5tDGASoxtLQkOs.crl rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/M2YXmy18l7gmb5tDGASoxtLQkOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2YXmy18l7gmb5tDGASoxtLQkOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91852AB, serialNumber=3366179B2D7C97B8266F9B431804A8C6D2D090EB Validity Not Before: Dec 17 02:22:07 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694213cf-20f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:13:ee:f6:9e:d0:93:9d:75:ae:83:4a:af:83: 8a:af:b2:b6:fe:01:46:5e:76:3a:92:3b:15:43:e0: a1:40:de:1a:e7:d7:51:0a:30:07:a6:02:dd:a5:df: f2:2d:a1:f1:ba:2d:b3:6c:ee:e2:e7:d2:0e:7d:0f: 38:6d:e4:f2:b0:3c:d1:15:a2:c2:53:a2:0e:84:ff: 3f:8a:83:e9:7c:d8:eb:65:a8:ea:7d:ff:ab:c5:8e: 4a:bc:09:a7:92:d5:5e:d0:cc:5b:39:0b:a2:dd:a1: 20:d1:9f:e8:41:c3:a6:cb:57:8b:61:c5:78:03:d5: 06:a1:6f:b2:b2:d7:09:43:fc:3c:cc:82:c9:7e:6f: 7f:19:63:e1:1a:1c:49:5b:49:a7:65:b5:db:42:16: 96:ff:7a:20:4f:e4:b2:be:8d:27:5b:af:a5:07:26: 8c:2a:3c:75:41:00:ec:dd:11:82:4a:87:e2:af:a5: 3b:7e:ee:84:72:43:59:76:af:91:60:23:93:9c:d1: 12:30:55:67:48:09:ce:5d:ad:2c:21:0c:2b:c3:8f: 55:53:f6:cb:01:39:93:a2:ae:39:3c:8f:5f:26:11: 04:17:2c:b4:9a:74:0a:40:ac:6e:46:54:33:9e:ed: 83:db:48:6d:cc:e7:22:34:86:e5:5a:37:e3:55:36: 3d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:69:BA:58:A4:68:15:94:20:67:CA:2B:43:7A:E6:C6:3F:18:DF:BD X509v3 Authority Key Identifier: keyid:33:66:17:9B:2D:7C:97:B8:26:6F:9B:43:18:04:A8:C6:D2:D0:90:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/M2YXmy18l7gmb5tDGASoxtLQkOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2YXmy18l7gmb5tDGASoxtLQkOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91852AB/2B99854EB8B011EDB4AFD35EC4F9AE02/E90A311AB8BE11ED83994B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.21.0/24 103.94.93.0/24 103.94.95.0/24 IPv6: 2001:dee:8000::/48 Signature Algorithm: sha256WithRSAEncryption 48:2e:ab:76:ad:f1:ff:11:ac:b0:30:70:a4:28:22:14:c2:dd: 06:75:10:45:c7:7e:14:08:41:1d:04:9e:b2:05:4a:e7:63:40: 7f:36:0b:e1:b5:2d:9a:82:38:c7:b8:7c:4e:b0:23:d2:8c:bd: 3b:86:a6:a2:ba:32:59:c8:38:51:b2:0c:25:a1:22:fd:f1:d0: ea:b0:93:01:91:ed:85:01:a6:8a:4f:bf:a9:32:e1:9a:8f:38: 29:2b:98:67:5b:cf:eb:7c:58:16:9b:39:bd:4b:c3:1d:9f:f4: c1:45:ca:c6:a4:7a:eb:a5:46:c5:a5:ef:2d:5a:19:69:c6:8f: 5f:0e:9f:65:7b:3a:02:54:bc:e9:65:99:d8:1e:37:bd:10:bc: 76:60:9e:c3:fc:ac:93:6f:a1:29:af:c3:ed:7e:bc:d5:ca:46: 27:c3:0c:06:26:62:35:49:8f:92:08:b8:dc:47:9c:36:c9:d1: f4:94:fc:d2:cf:31:4c:56:31:32:c2:ee:36:0d:ba:ae:4f:1a: 8f:45:8c:7c:d6:53:ca:ef:53:a2:28:11:5f:fd:41:83:c3:59: 98:5c:af:63:db:d8:f0:55:c7:e4:23:7a:b1:83:95:de:db:5e: 89:8b:af:9b:b3:a0:9e:fd:be:c2:24:33:8e:12:63:1e:1c:31: 21:7e:e0:0d -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyQUIxMTAvBgNVBAUTKDMzNjYxNzlCMkQ3Qzk3QjgyNjZGOUI0MzE4MDRBOEM2 RDJEMDkwRUIwHhcNMjUxMjE3MDIyMjA3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQyMTNjZi0yMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthPu9p7Qk511roNKr4OKr7K2/gFGXnY6kjsVQ+ChQN4a59dRCjAHpgLdpd/y LaHxui2zbO7i59IOfQ84beTysDzRFaLCU6IOhP8/ioPpfNjrZajqff+rxY5KvAmn ktVe0MxbOQui3aEg0Z/oQcOmy1eLYcV4A9UGoW+ystcJQ/w8zILJfm9/GWPhGhxJ W0mnZbXbQhaW/3ogT+Syvo0nW6+lByaMKjx1QQDs3RGCSofir6U7fu6EckNZdq+R YCOTnNESMFVnSAnOXa0sIQwrw49VU/bLATmToq45PI9fJhEEFyy0mnQKQKxuRlQz nu2D20htzOciNIblWjfjVTY9cQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFGZpulik aBWUIGfKK0N65sY/GN+9MB8GA1UdIwQYMBaAFDNmF5stfJe4Jm+bQxgEqMbS0JDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTJBQi8yQjk5ODU0RUI4 QjAxMUVEQjRBRkQzNUVDNEY5QUUwMi9NMllYbXkxOGw3Z21iNXRER0FTb3h0TFFr T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00yWVhteTE4bDdnbWI1dERHQVNveHRMUWtPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUyQUIvMkI5OTg1NEVCOEIwMTFFREI0QUZEMzVFQzRGOUFFMDIvRTkwQTMxMUFC OEJFMTFFRDgzOTk0QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAAr8xUDBABnXl0DBABnXl8wDwQCAAIwCQMHACABDe6AADAN BgkqhkiG9w0BAQsFAAOCAQEASC6rdq3x/xGssDBwpCgiFMLdBnUQRcd+FAhBHQSe sgVK52NAfzYL4bUtmoI4x7h8TrAj0oy9O4amoroyWcg4UbIMJaEi/fHQ6rCTAZHt hQGmik+/qTLhmo84KSuYZ1vP63xYFps5vUvDHZ/0wUXKxqR666VGxaXvLVoZacaP Xw6fZXs6AlS86WWZ2B43vRC8dmCew/ysk2+hKa/D7X681cpGJ8MMBiZiNUmPkgi4 3EecNsnR9JT80s8xTFYxMsLuNg26rk8aj0WMfNZTyu9ToigRX/1Bg8NZmFyvY9vY 8FXH5CN6sYOV3tteiYuvm7Ognv2+wiQzjhJjHhwxIX7gDQ== -----END CERTIFICATE-----Generated at Mon Dec 22 12:50:04 2025 by rpki-client