This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/28D36892B09411EAA964465EC4F9AE02.roa File: 28D36892B09411EAA964465EC4F9AE02.roa (raw, json) Hash identifier: 2b2aTZYDOmhxY6SSvMkJJGQRUxlhWtKkCxy8cICIbBU= Subject key identifier: 4B:A2:25:83:92:F5:07:0E:17:F0:AA:25:28:E5:7C:5F:D6:D3:2D:7D Certificate issuer: /CN=A91C20AB/serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Certificate serial: 094B Authority key identifier: 1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/28D36892B09411EAA964465EC4F9AE02.roa Signing time: Wed 10 Dec 2025 19:43:31 +0000 ROA not before: Wed 10 Dec 2025 19:43:31 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137269 IP address blocks: 103.106.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2379 (0x94b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C20AB, serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Validity Not Before: Dec 10 19:43:31 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6939cd62-8e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:1d:68:ff:e6:82:b8:ab:52:12:7f:b9:90: a3:41:50:e0:5a:9b:0b:65:73:2c:dc:6f:3c:b1:f7: f0:75:41:6c:f9:73:41:5e:c1:06:68:ea:d3:6c:39: d5:d6:11:26:53:99:bc:b6:9b:85:f6:be:ec:48:11: b3:fb:21:94:fd:2f:a3:3d:00:6e:82:46:27:60:1d: 67:ca:a2:45:97:85:df:e9:d5:6c:77:91:f1:0e:56: 58:93:fe:5b:54:19:d3:9a:07:22:9d:ec:cc:82:8e: d8:e0:24:52:b2:00:b0:07:d1:b8:c0:a1:f2:11:36: 4e:23:12:cb:6d:51:90:26:c1:fb:90:41:2d:4b:e7: 47:79:cc:9b:d6:ec:30:e7:67:52:11:34:89:15:ab: 62:39:6b:84:cb:84:61:c4:8e:20:17:ab:d2:ad:ff: 12:8b:e4:79:1c:98:22:cb:6e:f2:73:03:59:df:e5: 07:d6:b0:de:7c:05:0b:54:5f:47:94:11:50:b6:9b: cb:3d:ba:65:ae:52:f5:b4:e2:5e:31:c7:97:ef:20: 91:d2:aa:cd:b5:e3:69:af:e6:a6:cb:14:c3:de:86: 9d:b3:41:00:65:6d:1d:33:e2:42:40:be:cd:da:ef: 80:b9:2c:07:09:eb:3e:07:13:f9:f9:9a:29:84:17: 3a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A2:25:83:92:F5:07:0E:17:F0:AA:25:28:E5:7C:5F:D6:D3:2D:7D X509v3 Authority Key Identifier: keyid:1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/28D36892B09411EAA964465EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.117.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:f2:98:bb:86:b4:c0:b8:e1:5b:09:97:2a:13:44:85:8c:eb: 04:58:72:31:71:29:dd:24:52:70:fc:86:62:0f:3f:68:fa:a2: 92:1c:6b:c5:8f:5b:58:1a:f3:c3:3e:7a:cc:8c:cb:e9:6f:52: b7:00:f6:c6:30:df:f8:73:b2:91:88:63:66:02:fa:b2:84:64: 83:b3:fb:0b:2b:5c:87:53:af:32:e4:47:9b:ac:8d:8a:e0:7a: be:59:96:c0:01:e2:77:5a:b9:96:2a:d5:a0:63:02:f4:96:96: a2:79:12:09:b2:04:80:30:86:91:40:4e:c1:42:3b:b7:a8:fb: cf:38:3c:93:9d:9b:63:ac:35:18:7f:b4:de:34:36:ef:37:95: 62:4d:13:89:d4:be:37:68:19:fc:30:e1:e2:2a:b0:3a:d3:43: f1:46:e8:1e:fb:c2:35:80:5e:02:33:bd:49:cc:ef:c9:b5:de: 8a:a5:78:1d:cd:a2:16:00:00:09:31:b0:55:56:a4:fa:90:12: 49:80:2d:4d:26:c4:67:11:e3:2e:d8:86:34:29:70:37:44:0d: ae:39:78:5f:cc:66:5d:e6:4d:ed:45:f5:de:a7:d1:67:29:39: ea:c1:c3:54:5e:99:8e:b5:42:19:d0:2d:40:59:b0:c6:e4:39: a1:d1:a2:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIwQUIxMTAvBgNVBAUTKDFCNTY2REVGNUY3OEUzMTlCRkMwRDE0MDBERTc1NUUy NjRBODJCQkMwHhcNMjUxMjEwMTk0MzMxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5Y2Q2Mi04ZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva8daP/mgrirUhJ/uZCjQVDgWpsLZXMs3G88sffwdUFs+XNBXsEGaOrTbDnV 1hEmU5m8tpuF9r7sSBGz+yGU/S+jPQBugkYnYB1nyqJFl4Xf6dVsd5HxDlZYk/5b VBnTmgcinezMgo7Y4CRSsgCwB9G4wKHyETZOIxLLbVGQJsH7kEEtS+dHecyb1uww 52dSETSJFatiOWuEy4RhxI4gF6vSrf8Si+R5HJgiy27ycwNZ3+UH1rDefAULVF9H lBFQtpvLPbplrlL1tOJeMceX7yCR0qrNteNpr+amyxTD3oads0EAZW0dM+JCQL7N 2u+AuSwHCes+BxP5+ZophBc6HQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEuiJYOS 9QcOF/CqJSjlfF/W0y19MB8GA1UdIwQYMBaAFBtWbe9feOMZv8DRQA3nVeJkqCu8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjBBQi82QkU1NTBCMEIw OTMxMUVBOEFGMzE3NUVDNEY5QUUwMi9HMVp0NzE5NDR4bV93TkZBRGVkVjRtU29L N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cxWnQ3MTk0NHhtX3dORkFEZWRWNG1Tb0s3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIwQUIvNkJFNTUwQjBCMDkzMTFFQThBRjMxNzVFQzRGOUFFMDIvMjhEMzY4OTJC MDk0MTFFQUE5NjQ0NjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnanUwDQYJKoZIhvcNAQELBQADggEBAHrymLuGtMC44VsJ lyoTRIWM6wRYcjFxKd0kUnD8hmIPP2j6opIca8WPW1ga88M+esyMy+lvUrcA9sYw 3/hzspGIY2YC+rKEZIOz+wsrXIdTrzLkR5usjYrger5ZlsAB4ndauZYq1aBjAvSW lqJ5EgmyBIAwhpFATsFCO7eo+884PJOdm2OsNRh/tN40Nu83lWJNE4nUvjdoGfww 4eIqsDrTQ/FG6B77wjWAXgIzvUnM78m13oqleB3NohYAAAkxsFVWpPqQEkmALU0m xGcR4y7YhjQpcDdEDa45eF/MZl3mTe1F9d6n0WcpOerBw1RemY61QhnQLUBZsMbk OaHRohI= -----END CERTIFICATE-----Generated at Sat Dec 20 05:18:17 2025 by rpki-client