This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa File: A7D265605BB411EAB5B9A73BC4F9AE02.roa (raw, json) Hash identifier: mhhZShl5Y7yfZL9fAMr71xIHefsahB4URe/Sx9ZtMPo= Subject key identifier: F5:2A:0B:E5:3C:FB:C8:0B:BF:CE:72:AE:12:5A:F9:6B:65:EE:3E:96 Certificate issuer: /CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Certificate serial: 0AF9 Authority key identifier: EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa Signing time: Tue 30 Dec 2025 19:15:51 +0000 ROA not before: Tue 30 Dec 2025 19:15:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138470 IP address blocks: 103.126.76.0/24 maxlen: 24 103.126.77.0/24 maxlen: 24 103.126.78.0/24 maxlen: 24 103.126.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 18:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B04E3, serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Validity Not Before: Dec 30 19:15:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=695424e7-de20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a7:db:2b:2a:b9:bd:16:cc:89:cb:a1:91:c5: 95:66:1c:d1:69:ef:95:ec:a7:f7:96:fc:19:6b:22: ee:b8:0e:c7:b4:9d:bb:da:a7:64:e4:7c:4a:1b:f2: 1e:86:c6:af:f7:0f:e4:0c:bc:8f:20:97:09:47:04: e1:ee:f9:10:3e:b5:b6:4f:43:15:7d:8e:e4:fe:db: 50:43:7b:35:f4:87:02:86:d6:1e:a5:66:15:3c:fe: 29:79:ab:f8:b6:75:f9:4e:10:5d:a9:47:8b:62:ad: 67:4e:c4:2b:1b:7f:11:aa:a8:16:8a:15:38:6d:54: f2:e4:1c:79:2a:81:14:ae:e0:bc:42:66:be:4d:9b: 0a:8b:07:2c:13:51:31:26:00:fe:d3:40:10:89:8a: 2c:8a:a5:65:03:3c:e9:08:32:61:ff:ed:3f:65:31: 5e:db:5b:0e:6c:81:61:2a:1e:7e:c8:74:42:23:ad: b6:cd:f5:76:29:2f:ca:e7:ac:e6:2e:67:25:2f:a3: e4:e8:fa:70:a0:5e:74:4c:41:1b:0e:3a:64:b2:7a: ae:f2:5a:6b:f6:28:ef:b2:42:8f:4c:2f:72:fc:1c: 01:67:ed:6d:45:b3:66:d0:0c:4d:43:e2:77:f2:91: 0c:ce:fa:0b:d1:3a:b7:84:fd:7d:57:87:d1:35:a5: 86:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:2A:0B:E5:3C:FB:C8:0B:BF:CE:72:AE:12:5A:F9:6B:65:EE:3E:96 X509v3 Authority Key Identifier: keyid:EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.76.0/22 Signature Algorithm: sha256WithRSAEncryption 30:ef:d0:06:d7:c9:a2:0a:bb:90:65:a5:ef:f5:bc:19:e7:01: c2:82:d5:27:21:13:63:12:c7:24:5d:ec:cd:28:6b:f3:4f:fa: dd:75:d9:d2:e4:ff:3d:b8:ee:73:16:ef:66:54:e6:0d:dd:48: d7:5b:d2:6c:99:c4:29:78:42:db:47:76:75:ba:d3:f1:04:70: f9:09:be:be:5e:e1:33:98:65:5c:ae:14:61:f9:a7:71:fd:ba: f7:fb:0e:0f:59:70:e0:b8:d1:f9:8a:c8:b9:8e:8a:56:42:39: 49:dc:eb:79:39:a9:79:e7:ff:b6:38:20:45:73:f0:1f:6d:36: 7a:23:18:73:a4:30:fd:38:bc:eb:85:8f:0c:4d:85:f3:34:5a: 5f:4c:e6:73:bf:37:16:09:a2:a7:ff:4d:64:2c:bc:cc:74:33: 9a:cd:73:2d:91:6b:09:a5:b3:e9:f4:67:ca:4c:e7:02:f8:9c: e1:8c:7c:af:cb:db:b1:03:9f:7a:07:ae:94:4f:f5:e3:05:f2: 76:df:97:52:0e:14:50:71:3c:66:2e:2d:14:d9:e9:bf:5e:27: d7:77:3a:11:7a:73:ca:37:5a:8c:ed:b6:30:9a:ed:e2:e8:85: 00:74:c3:bb:fc:6e:1b:74:b4:a6:b4:08:8a:57:e0:c0:e2:8b: 7e:fd:78:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjA0RTMxMTAvBgNVBAUTKEVDNThCNDM3OEZDQkZGNENCMTI0MUY4MkYzQkNDMEU4 NzJFNEIzOTYwHhcNMjUxMjMwMTkxNTUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU0MjRlNy1kZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqfbKyq5vRbMicuhkcWVZhzRae+V7Kf3lvwZayLuuA7HtJ272qdk5HxKG/Ie hsav9w/kDLyPIJcJRwTh7vkQPrW2T0MVfY7k/ttQQ3s19IcChtYepWYVPP4peav4 tnX5ThBdqUeLYq1nTsQrG38RqqgWihU4bVTy5Bx5KoEUruC8Qma+TZsKiwcsE1Ex JgD+00AQiYosiqVlAzzpCDJh/+0/ZTFe21sObIFhKh5+yHRCI622zfV2KS/K56zm LmclL6Pk6PpwoF50TEEbDjpksnqu8lpr9ijvskKPTC9y/BwBZ+1tRbNm0AxNQ+J3 8pEMzvoL0Tq3hP19V4fRNaWGxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPUqC+U8 +8gLv85yrhJa+Wtl7j6WMB8GA1UdIwQYMBaAFOxYtDePy/9MsSQfgvO8wOhy5LOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDRFMy8xNDgzQkQzNjVC QjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8weXhKQi1DODd6QTZITGtz NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGaTBONF9MXzB5eEpCLUM4N3pBNkhMa3M1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA0RTMvMTQ4M0JEMzY1QkI0MTFFQTg4RDU2NzNCQzRGOUFFMDIvQTdEMjY1NjA1 QkI0MTFFQUI1QjlBNzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfkwwDQYJKoZIhvcNAQELBQADggEBADDv0AbXyaIKu5Bl pe/1vBnnAcKC1SchE2MSxyRd7M0oa/NP+t112dLk/z247nMW72ZU5g3dSNdb0myZ xCl4QttHdnW60/EEcPkJvr5e4TOYZVyuFGH5p3H9uvf7Dg9ZcOC40fmKyLmOilZC OUnc63k5qXnn/7Y4IEVz8B9tNnojGHOkMP04vOuFjwxNhfM0Wl9M5nO/NxYJoqf/ TWQsvMx0M5rNcy2Rawmls+n0Z8pM5wL4nOGMfK/L27EDn3oHrpRP9eMF8nbfl1IO FFBxPGYuLRTZ6b9eJ9d3OhF6c8o3WozttjCa7eLohQB0w7v8bht0tKa0CIpX4MDi i379eCo= -----END CERTIFICATE-----Generated at Mon Jan 12 02:24:18 2026 by rpki-client