This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1D231FDEBDD511F0BAEEED5AC4F9AE02.roa File: 1D231FDEBDD511F0BAEEED5AC4F9AE02.roa (raw, json) Hash identifier: lrkgKWCaSIvYhyF8gUErxhcQH+uKoN3Vep+MLcWyShM= Subject key identifier: 23:B4:30:A4:4F:24:1F:BA:EA:12:E5:45:AC:BF:CD:6C:97:FC:AA:17 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0CB9 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1D231FDEBDD511F0BAEEED5AC4F9AE02.roa Signing time: Tue 16 Dec 2025 00:44:33 +0000 ROA not before: Tue 16 Dec 2025 00:44:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 23532 IP address blocks: 43.246.129.0/24 maxlen: 24 103.26.164.0/24 maxlen: 24 103.244.211.0/24 maxlen: 24 160.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3257 (0xcb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Dec 16 00:44:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6940ab71-f065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:24:59:a1:64:cb:91:8c:1a:7c:48:f8:2e:9b: 3b:c6:e1:77:ce:6c:87:8c:6d:fb:b1:4a:10:f7:5f: ec:d4:8f:4d:71:2f:9c:49:9a:de:69:45:93:9b:79: 67:eb:1c:c3:23:01:d0:ea:85:82:b3:07:dc:0c:07: cb:c9:9c:6a:c2:cd:cd:e7:c4:c5:25:cd:9d:6a:7d: b5:16:e6:03:fc:c5:1e:51:41:22:18:e3:bb:70:e6: 90:f7:3b:ec:4c:cb:93:89:11:35:6c:05:67:15:b7: b0:df:2d:b1:a8:02:eb:1c:d2:f1:66:68:8f:0e:db: de:fd:f8:ee:2b:3e:75:1f:22:60:7a:24:ee:31:ae: d6:cc:69:f3:46:96:7e:5d:a0:26:10:2f:a3:00:2b: ac:74:38:e1:1d:25:90:58:08:ae:e1:88:35:67:3c: 4e:7b:8b:aa:11:33:5d:db:31:45:ba:6c:7e:ba:0c: 69:b4:4d:69:c3:1c:fc:0c:56:e3:50:b9:af:58:fa: fa:e4:3f:ca:20:ae:19:c1:6d:7f:35:96:35:45:eb: 7b:4a:d6:8d:45:27:10:e6:ac:a1:73:cb:0d:b4:c4: 06:6b:33:ca:cd:30:1f:e0:a7:21:41:a9:23:e4:7d: 92:03:a2:64:54:34:95:bc:fa:1c:74:89:21:9a:99: 92:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B4:30:A4:4F:24:1F:BA:EA:12:E5:45:AC:BF:CD:6C:97:FC:AA:17 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/1D231FDEBDD511F0BAEEED5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.129.0/24 103.26.164.0/24 103.244.211.0/24 160.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:5e:ff:4d:5f:e3:0a:76:6f:16:d1:21:3c:7a:8c:d1:9a:e9: a9:2e:05:08:14:48:80:aa:c5:92:18:53:27:5c:de:50:84:52: 16:f1:df:67:34:45:4d:ef:c0:31:ac:f5:7a:5f:34:2f:e7:a4: 52:ba:55:37:4d:f9:74:a8:e0:d0:e4:3e:88:5d:9b:93:26:76: f8:a9:9e:61:c2:e1:fd:01:d6:c7:41:cb:33:5d:6a:1b:41:87: c6:d1:1a:4c:99:90:a3:f5:f3:e4:fe:17:84:07:5d:56:92:da: 64:70:c0:63:94:a7:c0:10:7d:f2:ef:5c:71:ca:6c:39:0b:9a: b6:ca:ab:bc:f7:5e:10:a3:c5:0d:a3:57:49:11:48:30:de:5b: 50:28:11:1a:c2:47:2c:36:1d:a3:28:31:80:8e:f0:67:69:43: 4e:f1:9e:5f:28:eb:65:cb:6f:90:79:78:2e:50:36:11:23:7c: f5:b2:5b:a5:31:cc:72:c6:87:29:f8:75:96:db:e8:f3:d8:dd: c1:bc:bb:eb:7f:7e:62:8a:cc:be:18:6e:63:25:24:f2:21:b4: 2e:7d:ed:96:c9:b5:80:34:61:f1:99:a9:4c:98:38:e8:38:f3: 79:70:84:cd:2b:02:b2:31:a5:7b:65:cd:6b:09:93:6c:a2:a1: 67:3f:51:17 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICDLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMjE2MDA0NDMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTQwYWI3MS1mMDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCRZoWTLkYwafEj4Lps7xuF3zmyHjG37sUoQ91/s1I9NcS+cSZreaUWTm3ln 6xzDIwHQ6oWCswfcDAfLyZxqws3N58TFJc2dan21FuYD/MUeUUEiGOO7cOaQ9zvs TMuTiRE1bAVnFbew3y2xqALrHNLxZmiPDtve/fjuKz51HyJgeiTuMa7WzGnzRpZ+ XaAmEC+jACusdDjhHSWQWAiu4Yg1ZzxOe4uqETNd2zFFumx+ugxptE1pwxz8DFbj ULmvWPr65D/KIK4ZwW1/NZY1Ret7StaNRScQ5qyhc8sNtMQGazPKzTAf4KchQakj 5H2SA6JkVDSVvPocdIkhmpmSvQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFCO0MKRP JB+66hLlRay/zWyX/KoXMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvMUQyMzFGREVC REQ1MTFGMEJBRUVFRDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr9oEDBABnGqQDBABn9NMDBACgFC0wDQYJKoZIhvcNAQEL BQADggEBACte/01f4wp2bxbRITx6jNGa6akuBQgUSICqxZIYUydc3lCEUhbx32c0 RU3vwDGs9XpfNC/npFK6VTdN+XSo4NDkPohdm5MmdvipnmHC4f0B1sdByzNdahtB h8bRGkyZkKP18+T+F4QHXVaS2mRwwGOUp8AQffLvXHHKbDkLmrbKq7z3XhCjxQ2j V0kRSDDeW1AoERrCRyw2HaMoMYCO8GdpQ07xnl8o62XLb5B5eC5QNhEjfPWyW6Ux zHLGhyn4dZbb6PPY3cG8u+t/fmKKzL4YbmMlJPIhtC597ZbJtYA0YfGZqUyYOOg4 83lwhM0rArIxpXtlzWsJk2yioWc/URc= -----END CERTIFICATE-----Generated at Sat Dec 20 01:04:06 2025 by rpki-client