This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/97F461E0C8CB11F0BFB08139C4F9AE02.roa File: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (raw, json) Hash identifier: gzKLnHGUVNhUy122xbHjkwFinEFr8S05RyLytJ6eVXI= Subject key identifier: D4:23:2F:98:67:AA:C8:EB:36:2E:E0:EB:0B:AC:32:13:08:F0:F9:20 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3543 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/97F461E0C8CB11F0BFB08139C4F9AE02.roa Signing time: Mon 24 Nov 2025 00:22:00 +0000 ROA not before: Mon 24 Nov 2025 00:22:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38077 IP address blocks: 103.112.36.0/22 maxlen: 24 180.189.160.0/20 maxlen: 24 2405:1f00::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13635 (0x3543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Nov 24 00:22:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6923a528-d843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ec:bb:17:30:bb:68:74:8d:89:f4:43:5a:59: 1d:40:df:e0:10:08:ac:af:e2:73:d3:e4:51:9a:55: f7:dc:8f:5a:2e:5a:64:91:1e:51:df:9f:73:8a:5e: 35:4d:1a:7a:f4:04:1f:57:f9:2e:88:8f:51:65:8a: 41:b5:7d:d3:49:71:4b:d4:1e:42:17:46:76:6f:6f: 6e:90:95:09:d9:63:47:2b:95:48:51:6e:53:59:78: 21:32:6f:b1:b5:08:e5:c8:ff:4e:0a:84:86:0f:8b: 7b:1d:a8:89:7b:8a:fa:b7:34:d6:44:88:ce:44:4a: 0c:09:44:3f:32:39:c3:59:79:82:07:80:bb:db:47: 21:5e:d8:5b:af:13:d3:f5:64:fd:fa:e3:b7:95:73: e1:ae:43:e5:6a:fd:16:b9:c6:3f:30:89:c5:88:a5: c2:8d:35:ab:8a:e3:ff:d6:d5:32:9b:a3:24:c3:5b: 94:dc:aa:f9:0d:de:a5:3c:86:d5:74:00:d8:2e:50: 39:81:5e:4e:e5:e9:94:93:25:6d:68:d5:3c:43:33: e2:fe:8c:1c:87:74:af:09:17:53:a8:c1:53:14:e3: c9:23:b5:3f:1d:bc:78:fc:5b:6a:22:b3:8e:eb:52: e2:d6:9e:47:20:2b:78:16:1c:00:a7:5a:b5:33:26: e3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:23:2F:98:67:AA:C8:EB:36:2E:E0:EB:0B:AC:32:13:08:F0:F9:20 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/97F461E0C8CB11F0BFB08139C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.36.0/22 180.189.160.0/20 IPv6: 2405:1f00::/32 Signature Algorithm: sha256WithRSAEncryption 42:91:86:a0:89:3c:8a:19:ce:1d:e0:a4:11:c2:d9:13:71:5d: 53:89:cb:d6:5f:f9:68:3e:94:d4:11:88:a8:75:06:59:07:af: b1:ae:f3:e8:ce:a5:94:d1:13:af:10:58:39:ed:2e:d3:82:7e: d6:39:cc:56:bd:c3:68:f1:39:f9:67:65:0d:d8:71:50:a1:e4: f0:5c:10:83:70:57:91:b0:82:25:d1:2e:36:cd:f0:65:7f:04: 82:88:44:3f:f5:31:dd:f4:5b:ab:4f:77:f1:ef:7d:e1:94:85: f6:d4:19:a8:68:35:cc:70:2a:6f:6d:ee:30:c4:7d:88:d2:81: 72:1e:56:e7:8e:53:08:92:13:b4:2c:de:cf:7b:99:cd:c4:4f: 6c:5c:19:4a:99:41:a4:7c:aa:ff:bb:22:7f:08:dc:e5:5d:95: af:58:e7:ab:be:94:06:06:af:8a:a7:0a:c1:31:d7:7e:b0:bf: bd:b5:0a:51:48:df:bc:83:5e:f9:a4:c8:15:4c:8c:bc:93:5f: 2d:41:f8:b1:d9:fd:aa:ab:fc:e4:8b:4a:25:3f:40:a3:c8:60: 8d:bf:d5:9b:fa:9a:d7:3b:ff:d4:12:6a:3f:3b:19:85:df:e5: 90:84:93:7d:b4:45:1a:e1:6b:2c:5a:60:71:07:25:71:18:ee: 1f:af:ea:cf -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUxMTI0MDAyMjAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTIzYTUyOC1kODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuy7FzC7aHSNifRDWlkdQN/gEAisr+Jz0+RRmlX33I9aLlpkkR5R359zil41 TRp69AQfV/kuiI9RZYpBtX3TSXFL1B5CF0Z2b29ukJUJ2WNHK5VIUW5TWXghMm+x tQjlyP9OCoSGD4t7HaiJe4r6tzTWRIjOREoMCUQ/MjnDWXmCB4C720chXthbrxPT 9WT9+uO3lXPhrkPlav0WucY/MInFiKXCjTWriuP/1tUym6Mkw1uU3Kr5Dd6lPIbV dADYLlA5gV5O5emUkyVtaNU8QzPi/owch3SvCRdTqMFTFOPJI7U/Hbx4/FtqIrOO 61Li1p5HICt4FhwAp1q1MybjKwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNQjL5hn qsjrNi7g6wusMhMI8PkgMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThEMjIvMjUyNjk3OTgxRDkyMTFFMkI2MThDQUY0MDhCMDJDRDIvOTdGNDYxRTBD OENCMTFGMEJGQjA4MTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJncCQDBAS0vaAwDQQCAAIwBwMFACQFHwAwDQYJKoZIhvcN AQELBQADggEBAEKRhqCJPIoZzh3gpBHC2RNxXVOJy9Zf+Wg+lNQRiKh1BlkHr7Gu 8+jOpZTRE68QWDntLtOCftY5zFa9w2jxOflnZQ3YcVCh5PBcEINwV5GwgiXRLjbN 8GV/BIKIRD/1Md30W6tPd/HvfeGUhfbUGahoNcxwKm9t7jDEfYjSgXIeVueOUwiS E7Qs3s97mc3ET2xcGUqZQaR8qv+7In8I3OVdla9Y56u+lAYGr4qnCsEx136wv721 ClFI37yDXvmkyBVMjLyTXy1B+LHZ/aqr/OSLSiU/QKPIYI2/1Zv6mtc7/9QSaj87 GYXf5ZCEk320RRrhayxaYHEHJXEY7h+v6s8= -----END CERTIFICATE-----Generated at Fri Dec 19 22:03:48 2025 by rpki-client