This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/2FEF460CD41D11F09C0AFC45C4F9AE02.roa File: 2FEF460CD41D11F09C0AFC45C4F9AE02.roa (raw, json) Hash identifier: pfaFNjdDoYDKJn2gtwF5CVq3TneelyE5IvrNs164kK0= Subject key identifier: 60:EF:4F:13:DE:CD:56:BD:2E:BD:1A:2E:EE:BC:04:FC:66:5E:B7:18 Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 019A Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/2FEF460CD41D11F09C0AFC45C4F9AE02.roa Signing time: Mon 08 Dec 2025 10:03:47 +0000 ROA not before: Mon 08 Dec 2025 10:03:47 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 24334 IP address blocks: 103.11.88.0/22 maxlen: 22 103.11.88.0/24 maxlen: 24 103.11.89.0/24 maxlen: 24 103.11.90.0/24 maxlen: 24 103.11.91.0/24 maxlen: 24 202.83.240.0/21 maxlen: 21 202.83.240.0/24 maxlen: 24 202.83.241.0/24 maxlen: 24 202.83.242.0/24 maxlen: 24 202.83.243.0/24 maxlen: 24 202.83.244.0/24 maxlen: 24 202.83.245.0/24 maxlen: 24 202.83.246.0/24 maxlen: 24 202.83.247.0/24 maxlen: 24 202.171.208.0/21 maxlen: 21 202.171.208.0/24 maxlen: 24 202.171.209.0/24 maxlen: 24 202.171.210.0/24 maxlen: 24 202.171.211.0/24 maxlen: 24 202.171.212.0/24 maxlen: 24 202.171.213.0/24 maxlen: 24 202.171.214.0/24 maxlen: 24 202.171.215.0/24 maxlen: 24 203.142.88.0/21 maxlen: 21 203.142.88.0/24 maxlen: 24 203.142.89.0/24 maxlen: 24 203.142.90.0/24 maxlen: 24 203.142.91.0/24 maxlen: 24 203.142.92.0/24 maxlen: 24 203.142.93.0/24 maxlen: 24 203.142.94.0/24 maxlen: 24 203.142.95.0/24 maxlen: 24 2404:1a0::/30 maxlen: 32 2404:1a0:1000::/46 maxlen: 46 2404:1a0:1000::/47 maxlen: 47 2404:1a0:1001::/48 maxlen: 48 2404:1a0:1002::/48 maxlen: 48 2404:1a0:2008::/48 maxlen: 48 2404:1a0:fffc::/46 maxlen: 46 2404:1a0:fffc::/47 maxlen: 47 2404:1a0:ffff::/48 maxlen: 48 2404:1a3:1000::/46 maxlen: 46 2404:1a3:1000::/47 maxlen: 47 2404:1a3:1001::/48 maxlen: 48 2404:1a3:fffc::/46 maxlen: 46 2404:1a3:fffc::/47 maxlen: 47 2404:1a3:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A, serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Validity Not Before: Dec 8 10:03:47 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6936a283-6237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1d:91:13:68:ed:47:1d:24:9c:8c:73:ad:9a: 60:1a:0d:a1:ad:7e:8b:e7:3a:03:66:a5:04:36:3b: 22:23:a3:f5:a0:33:29:71:1e:13:e7:e0:94:08:77: b9:75:5f:3b:e2:79:73:dd:af:6a:29:72:01:99:d6: 50:a0:84:ac:ce:1b:6d:e0:52:de:a1:57:4a:2c:e9: 56:fb:e2:87:d1:e7:0b:16:cb:a7:cd:6b:de:c6:af: 5d:83:45:0c:de:9d:31:d5:0c:12:56:d2:30:7a:f8: 40:86:6c:53:64:7e:26:ee:55:dd:da:b0:9f:58:ab: 90:39:e4:00:c9:c8:96:5e:1d:72:5b:d4:a6:a5:d3: d3:04:ff:bf:b1:64:d5:67:da:bf:f2:67:11:bc:59: f2:cc:15:6e:e4:5f:cb:92:4e:1e:3b:cc:8c:2d:48: 2b:1f:a6:bc:97:34:3e:bd:bd:a1:b4:ef:ca:72:04: 65:5d:ef:27:a5:50:92:a1:dc:eb:8d:5a:8f:26:8b: 61:75:8b:31:01:16:9a:c7:03:a0:74:59:ba:11:8f: 39:d4:a5:67:f0:8e:09:e9:5e:51:67:87:db:ae:3d: 0a:e5:a6:fb:85:43:b1:ab:db:7c:c8:6c:01:8e:ff: be:fd:42:ef:a1:24:6d:40:9f:de:4e:54:2f:59:28: 28:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:EF:4F:13:DE:CD:56:BD:2E:BD:1A:2E:EE:BC:04:FC:66:5E:B7:18 X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/2FEF460CD41D11F09C0AFC45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.88.0/22 202.83.240.0/21 202.171.208.0/21 203.142.88.0/21 IPv6: 2404:1a0::/30 Signature Algorithm: sha256WithRSAEncryption 9f:b9:27:ff:1e:4f:dd:5c:0f:b5:9a:b0:eb:ed:1c:c8:2c:0b: e3:dc:41:9c:ea:0a:4a:76:77:06:1c:00:9a:a0:fb:85:db:e0: 4b:25:f3:64:ff:c3:db:29:88:88:f6:3d:a2:b0:89:c3:2e:0f: ef:6a:1e:8d:13:f2:c5:6a:70:56:2b:d1:6e:f3:b6:94:bb:5a: ee:66:39:28:a5:8f:49:a7:95:dd:87:f6:1d:7c:5e:6c:ad:37: 11:9d:20:e8:be:b3:3c:ba:18:3f:dc:cb:37:49:68:89:7b:7d: 0c:58:b5:e8:66:66:22:11:6b:8b:7c:6e:ce:57:bd:1e:a4:e2: b1:5d:59:09:94:72:d9:8d:ed:44:ef:22:e1:c1:97:5d:ae:f0: 63:4a:b6:17:0b:5f:db:13:d4:03:8b:ca:04:66:7b:10:20:ea: f1:63:1b:22:33:f3:89:b7:5f:98:d8:48:3f:aa:a9:0f:b4:ae: 2f:db:d8:2f:33:83:99:c1:b4:f0:b8:db:22:11:da:7f:8b:10: e5:8b:a4:ff:f4:98:c7:0b:55:4a:0f:72:67:e1:e1:4d:e6:c3: c8:3b:77:62:e7:40:67:01:41:ea:16:50:59:79:09:df:de:79: c0:4d:e9:f1:7a:dd:54:f8:5a:55:f9:bb:22:9c:18:63:70:9f: 7e:24:8b:5d -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNkExMTAvBgNVBAUTKDBGMTdGMzdEQkM5NDg0RDk2RTFBMEFCQzc4QTRGOUNB Q0Q1RURBOEEwHhcNMjUxMjA4MTAwMzQ3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM2YTI4My02MjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzh2RE2jtRx0knIxzrZpgGg2hrX6L5zoDZqUENjsiI6P1oDMpcR4T5+CUCHe5 dV874nlz3a9qKXIBmdZQoISszhtt4FLeoVdKLOlW++KH0ecLFsunzWvexq9dg0UM 3p0x1QwSVtIwevhAhmxTZH4m7lXd2rCfWKuQOeQAyciWXh1yW9SmpdPTBP+/sWTV Z9q/8mcRvFnyzBVu5F/Lkk4eO8yMLUgrH6a8lzQ+vb2htO/KcgRlXe8npVCSodzr jVqPJothdYsxARaaxwOgdFm6EY851KVn8I4J6V5RZ4fbrj0K5ab7hUOxq9t8yGwB jv++/ULvoSRtQJ/eTlQvWSgobQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFGDvTxPe zVa9Lr0aLu68BPxmXrcYMB8GA1UdIwQYMBaAFA8X8328lITZbhoKvHik+crNXtqK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2QS9CQkMyRjc3NkQx RjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhObHVHZ3E4ZUtUNXlzMWUy b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAzNkEvQkJDMkY3NzZEMUYxMTFFRTg2MDUxQTYxQzRGOUFFMDIvMkZFRjQ2MENE NDFEMTFGMDlDMEFGQzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnC1gDBAPKU/ADBAPKq9ADBAPLjlgwDQQCAAIwBwMFAiQE AaAwDQYJKoZIhvcNAQELBQADggEBAJ+5J/8eT91cD7WasOvtHMgsC+PcQZzqCkp2 dwYcAJqg+4Xb4Esl82T/w9spiIj2PaKwicMuD+9qHo0T8sVqcFYr0W7ztpS7Wu5m OSilj0mnld2H9h18XmytNxGdIOi+szy6GD/cyzdJaIl7fQxYtehmZiIRa4t8bs5X vR6k4rFdWQmUctmN7UTvIuHBl12u8GNKthcLX9sT1AOLygRmexAg6vFjGyIz84m3 X5jYSD+qqQ+0ri/b2C8zg5nBtPC42yIR2n+LEOWLpP/0mMcLVUoPcmfh4U3mw8g7 d2LnQGcBQeoWUFl5Cd/eecBN6fF63VT4WlX5uyKcGGNwn34ki10= -----END CERTIFICATE-----Generated at Fri Dec 19 18:59:04 2025 by rpki-client