This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/08DCBB24DC8011F0AB4C816E3A6F56BC.roa File: 08DCBB24DC8011F0AB4C816E3A6F56BC.roa (raw, json) Hash identifier: WXCmLL//FoCjMGfjt8pRmkTjKi9B4euZO4lNoEtZDGU= Subject key identifier: 4F:51:F7:46:AC:53:7F:B7:EE:8D:D0:04:54:D2:11:0E:62:90:35:AA Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 12F5 Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/08DCBB24DC8011F0AB4C816E3A6F56BC.roa Signing time: Fri 19 Dec 2025 02:11:32 +0000 ROA not before: Fri 19 Dec 2025 02:11:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63930 IP address blocks: 45.119.203.0/24 maxlen: 24 103.60.10.0/24 maxlen: 24 119.161.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4853 (0x12f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Dec 19 02:11:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6944b453-a292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:96:e1:0d:1a:bd:1e:2e:33:4a:59:0c:68:57: 92:db:47:3c:a7:ab:2d:42:1a:7e:88:80:51:13:75: 32:8a:6a:6c:56:25:ae:f5:93:da:24:8f:b9:4c:d8: c1:35:72:47:a8:4e:10:0a:cf:3c:34:2f:1a:e9:3a: ca:7b:9f:9f:0a:ea:9c:5e:f9:c1:8d:da:0f:58:f9: 84:5b:80:e0:15:45:5c:b1:79:a6:4a:1c:36:82:f4: bb:85:59:9c:15:79:31:27:5d:15:c5:bf:b4:66:af: 0b:f7:40:d5:d4:30:25:b0:35:3b:e2:79:9a:4a:a7: e6:c4:c4:2d:c3:88:91:bd:6c:40:ff:43:81:c0:6f: 38:5b:ce:c6:5d:1b:59:7b:15:36:71:89:9b:f2:03: 1a:73:c1:66:a8:c5:ad:fa:69:fd:3f:d9:64:a4:f1: be:3a:1a:f3:0a:54:ac:6f:1f:5a:a9:db:29:81:fa: 1e:87:73:99:21:99:91:34:f5:68:0d:f7:a0:bf:89: ac:f2:b6:0e:ea:12:47:6a:cd:8b:b6:91:20:fb:26: 79:e0:d8:7b:08:4b:4a:a3:d6:30:15:ab:8d:31:25: 98:23:f2:2f:b3:89:76:44:86:b3:7f:97:ca:a5:84: 26:32:59:f0:1e:cf:26:db:83:86:39:d2:48:76:e2: 65:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:51:F7:46:AC:53:7F:B7:EE:8D:D0:04:54:D2:11:0E:62:90:35:AA X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/08DCBB24DC8011F0AB4C816E3A6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.203.0/24 103.60.10.0/24 119.161.100.0/24 Signature Algorithm: sha256WithRSAEncryption bd:19:55:0e:60:4c:fc:4d:a4:a8:2c:e3:74:6d:5c:f7:5d:ae: fe:23:d4:f0:45:5b:26:81:2b:13:4d:bb:9f:ef:aa:76:4b:fe: a1:e5:ad:11:36:41:79:99:b9:c2:69:ad:8f:23:b1:81:05:33: b3:25:76:97:fb:60:99:d5:70:1c:2a:73:c3:9d:d5:1c:43:9a: 69:6f:4d:bb:ef:39:78:e2:3f:d1:79:b6:bc:5a:09:56:4b:47: d7:b3:b0:b6:3b:ad:95:b0:3a:2c:d2:0c:43:0c:38:bc:a3:b8: 01:42:43:2b:3f:87:80:5b:cf:11:f2:51:1a:d0:d1:66:a0:50: 59:c0:f3:bd:bf:33:aa:e3:e2:3d:a9:86:63:9c:2b:96:60:af: 2f:cc:32:1b:65:48:5f:65:d2:bf:82:44:50:1e:c0:16:1f:e6: bb:3a:1f:3e:57:b3:a9:4a:e0:31:26:da:1e:f2:fc:30:d7:82: a2:0a:bb:9f:f6:aa:b1:83:4e:1e:73:18:39:ea:9c:e0:ba:97: 98:50:3d:f1:5f:c7:c2:28:94:ec:3a:85:03:d8:76:95:83:6a: d9:ca:a1:ce:d8:81:4c:e6:87:05:77:20:dc:4d:ac:a6:ef:c8: 56:37:b7:2a:d4:9a:36:55:a9:da:9d:fc:70:a8:22:97:9a:11: c4:c8:de:57 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUxMjE5MDIxMTMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ0YjQ1My1hMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJbhDRq9Hi4zSlkMaFeS20c8p6stQhp+iIBRE3UyimpsViWu9ZPaJI+5TNjB NXJHqE4QCs88NC8a6TrKe5+fCuqcXvnBjdoPWPmEW4DgFUVcsXmmShw2gvS7hVmc FXkxJ10Vxb+0Zq8L90DV1DAlsDU74nmaSqfmxMQtw4iRvWxA/0OBwG84W87GXRtZ exU2cYmb8gMac8FmqMWt+mn9P9lkpPG+OhrzClSsbx9aqdspgfoeh3OZIZmRNPVo Dfegv4ms8rYO6hJHas2LtpEg+yZ54Nh7CEtKo9YwFauNMSWYI/Ivs4l2RIazf5fK pYQmMlnwHs8m24OGOdJIduJlJQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFE9R90as U3+37o3QBFTSEQ5ikDWqMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZFNkEvMUQ2NDMyOEVEMzg3MTFFOEJENzA3NTVDQzRGOUFFMDIvMDhEQ0JCMjRE QzgwMTFGMEFCNEM4MTZFM0E2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtd8sDBABnPAoDBAB3oWQwDQYJKoZIhvcNAQELBQADggEB AL0ZVQ5gTPxNpKgs43RtXPddrv4j1PBFWyaBKxNNu5/vqnZL/qHlrRE2QXmZucJp rY8jsYEFM7Mldpf7YJnVcBwqc8Od1RxDmmlvTbvvOXjiP9F5trxaCVZLR9ezsLY7 rZWwOizSDEMMOLyjuAFCQys/h4BbzxHyURrQ0WagUFnA872/M6rj4j2phmOcK5Zg ry/MMhtlSF9l0r+CRFAewBYf5rs6Hz5Xs6lK4DEm2h7y/DDXgqIKu5/2qrGDTh5z GDnqnOC6l5hQPfFfx8IolOw6hQPYdpWDatnKoc7YgUzmhwV3INxNrKbvyFY3tyrU mjZVqdqd/HCoIpeaEcTI3lc= -----END CERTIFICATE-----Generated at Sat Dec 20 06:33:23 2025 by rpki-client