This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/76BF01E88EF511F0BA815369C4F9AE02.roa File: 76BF01E88EF511F0BA815369C4F9AE02.roa (raw, json) Hash identifier: ssG8lhPiBj1FYqjfKHRNsYyiwQohuVUZ8CGXqoj50ac= Subject key identifier: 10:B3:2D:96:01:A1:F8:24:CA:F1:1B:E7:60:6A:8B:E0:45:B4:E2:57 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0CC4 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/76BF01E88EF511F0BA815369C4F9AE02.roa Signing time: Thu 18 Dec 2025 06:03:28 +0000 ROA not before: Thu 18 Dec 2025 06:03:28 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 40605 IP address blocks: 43.249.242.0/24 maxlen: 24 43.250.88.0/24 maxlen: 24 103.12.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3268 (0xcc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Dec 18 06:03:28 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6943992f-48d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:86:6e:32:5d:d3:d8:52:ef:f2:25:d9:95:37: 80:e6:aa:92:9c:25:b9:b0:6d:ac:c9:b3:4c:6d:4b: 09:e6:3b:89:5c:d4:f1:89:52:c1:fb:3b:28:10:f2: f3:03:12:62:a1:91:f0:ab:1a:12:05:4f:2f:34:a0: 57:3a:f4:44:be:08:6f:2a:ae:ed:a3:41:b1:fb:a7: 65:53:fc:39:43:09:63:a3:81:b8:a1:90:05:eb:b2: 6d:b4:17:ab:c9:2c:f2:90:7d:f9:29:4a:5a:69:e9: 6d:8b:43:e3:0a:6a:02:6c:7d:29:b2:1f:18:4b:31: 51:4d:d3:56:97:1e:3c:e9:ef:96:b5:ea:d2:d9:0b: 4e:4a:b9:6f:a7:e0:67:c9:1b:44:68:22:6c:58:9c: e7:d8:3d:2b:20:07:bb:1c:b2:51:3a:b2:4c:1c:9b: 92:18:98:93:f3:8b:52:8d:3c:c0:5a:3e:82:39:48: b1:40:32:93:62:09:6c:d8:7f:7a:1a:57:62:ff:cc: 55:39:38:2f:6f:13:b9:ed:f2:df:d6:58:f3:fa:01: ee:69:2a:ad:56:34:df:9a:90:88:38:64:79:d8:2d: 31:0a:70:0a:82:f4:de:8e:79:2f:7b:9b:fa:3e:96: a0:d0:34:d7:58:98:38:21:5b:8c:be:3c:70:38:0e: d7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B3:2D:96:01:A1:F8:24:CA:F1:1B:E7:60:6A:8B:E0:45:B4:E2:57 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/76BF01E88EF511F0BA815369C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.242.0/24 43.250.88.0/24 103.12.55.0/24 Signature Algorithm: sha256WithRSAEncryption c4:0e:c0:3d:97:c2:f8:58:aa:2b:48:ba:bd:8a:a6:08:3e:de: 27:da:db:a4:6d:0a:e3:21:98:4b:a1:59:3a:ee:d3:d6:03:22: 8f:ed:bf:e8:67:e5:f2:0b:92:44:83:4e:91:29:a9:19:b4:00: 33:63:df:c6:5b:39:be:ee:cc:67:5e:87:36:b7:7d:0b:e1:58: e9:55:c4:1c:f0:ce:53:7c:3c:34:3d:6a:0e:33:be:98:58:91: c8:0b:37:3e:20:9a:94:21:e3:73:fd:1c:3f:12:e7:87:04:db: 52:17:00:fb:dc:e1:42:ae:00:0e:f6:ed:de:95:bb:8a:29:9a: a3:42:a6:3e:35:8c:a3:43:b0:58:64:40:81:74:0f:31:79:8a: 38:3d:68:0a:51:8a:a8:61:fc:5e:e4:d2:76:21:33:30:b2:56: 9a:be:88:5b:84:31:5f:f7:64:5f:3d:85:6e:dc:fe:8a:8e:63: ee:a3:98:d6:80:b1:e8:05:46:df:6f:67:e5:12:4c:86:22:a0: 97:1f:32:65:fc:9d:60:9a:ff:1b:84:19:ae:ba:ee:13:0b:fd: a4:c5:69:ec:ac:1f:1f:74:7a:eb:e0:8b:42:06:48:18:d8:e2: 42:c3:b9:14:28:f7:96:7c:3f:98:6c:47:c3:a5:6b:fc:a3:40: 1a:0f:df:1c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMjE4MDYwMzI4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTQzOTkyZi00OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoZuMl3T2FLv8iXZlTeA5qqSnCW5sG2sybNMbUsJ5juJXNTxiVLB+zsoEPLz AxJioZHwqxoSBU8vNKBXOvREvghvKq7to0Gx+6dlU/w5Qwljo4G4oZAF67JttBer ySzykH35KUpaaelti0PjCmoCbH0psh8YSzFRTdNWlx486e+WterS2QtOSrlvp+Bn yRtEaCJsWJzn2D0rIAe7HLJROrJMHJuSGJiT84tSjTzAWj6COUixQDKTYgls2H96 Gldi/8xVOTgvbxO57fLf1ljz+gHuaSqtVjTfmpCIOGR52C0xCnAKgvTejnkve5v6 Ppag0DTXWJg4IVuMvjxwOA7XLwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBCzLZYB ofgkyvEb52Bqi+BFtOJXMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNzZCRjAxRTg4 RUY1MTFGMEJBODE1MzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr+fIDBAAr+lgDBABnDDcwDQYJKoZIhvcNAQELBQADggEB AMQOwD2XwvhYqitIur2Kpgg+3ifa26RtCuMhmEuhWTru09YDIo/tv+hn5fILkkSD TpEpqRm0ADNj38ZbOb7uzGdehza3fQvhWOlVxBzwzlN8PDQ9ag4zvphYkcgLNz4g mpQh43P9HD8S54cE21IXAPvc4UKuAA727d6Vu4opmqNCpj41jKNDsFhkQIF0DzF5 ijg9aApRiqhh/F7k0nYhMzCyVpq+iFuEMV/3ZF89hW7c/oqOY+6jmNaAsegFRt9v Z+USTIYioJcfMmX8nWCa/xuEGa667hML/aTFaeysHx90euvgi0IGSBjY4kLDuRQo 95Z8P5hsR8Ola/yjQBoP3xw= -----END CERTIFICATE-----Generated at Sat Dec 20 11:36:41 2025 by rpki-client