This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/AB659244056211EBAE3DBC4CC4F9AE02.roa File: AB659244056211EBAE3DBC4CC4F9AE02.roa (raw, json) Hash identifier: QqXjL8VbZxhmEjdSw3N88F3r25OxZYwoIXrT9ON9o2Q= Subject key identifier: A0:36:B7:1C:C3:23:5D:F6:69:55:89:EE:69:05:D2:80:3C:91:BF:76 Certificate issuer: /CN=A91C20AB/serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Certificate serial: 094D Authority key identifier: 1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/AB659244056211EBAE3DBC4CC4F9AE02.roa Signing time: Wed 10 Dec 2025 19:43:32 +0000 ROA not before: Wed 10 Dec 2025 19:43:32 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 19905 IP address blocks: 103.106.117.0/24 maxlen: 24 103.120.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2381 (0x94d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C20AB, serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Validity Not Before: Dec 10 19:43:32 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6939cd64-6ff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cb:1a:b6:08:2d:30:19:36:99:9d:62:2d:77: 0c:db:0e:cf:66:dd:63:e7:c7:9c:57:f4:10:51:c6: 73:cf:d2:64:4d:b7:82:ed:30:d4:e6:a2:35:79:7d: 53:dc:6e:96:de:a1:7a:81:d9:e6:0d:a8:62:4e:79: c8:2c:06:71:4e:a0:55:02:ba:bd:43:7d:47:14:a7: d0:54:d2:32:bb:49:31:73:92:13:b9:5e:d2:eb:21: 01:ad:e3:5f:4f:db:53:92:31:ca:43:8c:cb:f1:fd: e7:e0:8d:10:3a:f1:a9:68:65:02:5a:ac:6f:f8:39: e0:a4:1d:24:9a:5b:17:b4:18:fd:10:34:53:f1:b7: 52:99:27:3a:e5:4e:6c:4c:fd:3d:5b:7d:23:89:d6: 66:04:fc:bc:3f:c2:de:43:39:f0:70:05:5d:13:22: 8c:40:58:99:39:36:12:c6:18:a4:7c:39:86:64:d2: 86:23:1e:21:23:e7:2a:55:be:98:5f:d5:85:e4:4a: 8f:77:c7:60:7c:b5:9f:fa:ae:30:76:47:0a:7d:d1: 4f:ca:88:41:c2:f8:c9:75:1c:1e:3a:bf:74:ba:f1: 89:8c:cc:28:4e:8d:f0:45:3e:a3:f3:77:62:a6:b6: 15:26:64:72:8b:88:45:02:27:4f:32:2a:5c:7f:db: f3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:36:B7:1C:C3:23:5D:F6:69:55:89:EE:69:05:D2:80:3C:91:BF:76 X509v3 Authority Key Identifier: keyid:1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/AB659244056211EBAE3DBC4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.117.0/24 103.120.41.0/24 Signature Algorithm: sha256WithRSAEncryption 85:c1:1a:08:e5:e2:52:46:73:7b:72:15:16:22:38:0e:a5:4d: 98:c3:2c:ab:bf:70:86:2a:cf:d7:65:62:09:3f:84:13:58:52: d6:5e:72:7a:87:90:00:da:65:a5:6c:78:75:c7:13:c7:19:c7: cd:b0:75:c8:4f:cf:e2:36:67:de:d1:ec:8e:20:f9:20:2f:7a: f2:a9:f3:e0:6a:13:f4:76:e5:85:93:d2:01:8b:53:67:65:c8: b9:02:ff:01:61:c6:7a:d2:fe:e0:f2:bf:fd:68:5a:e6:14:dd: 95:eb:03:e7:f3:f0:6e:6b:0a:c6:6b:24:46:31:fa:2f:da:20: 04:1f:1d:70:e7:4a:15:08:66:1d:2b:a1:69:06:2e:31:cf:4b: a0:eb:51:81:1c:bd:99:6c:cb:37:a5:cb:81:10:58:70:ba:84: aa:41:13:9f:7e:3c:fb:60:0a:49:aa:23:df:58:fc:ed:55:e6: 5e:cb:c8:ef:58:ef:30:1a:bd:e2:12:fe:47:b7:dc:0b:79:7c: 23:98:45:4c:b9:83:b4:0d:31:3b:ea:fe:f0:bd:74:44:3b:37: 43:df:ba:c4:40:3b:46:d8:be:fa:f4:19:58:bd:01:7f:7f:7e: e1:71:99:52:0e:57:e0:00:41:54:43:99:5e:32:ee:bb:fe:11: ed:ee:a7:b1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIwQUIxMTAvBgNVBAUTKDFCNTY2REVGNUY3OEUzMTlCRkMwRDE0MDBERTc1NUUy NjRBODJCQkMwHhcNMjUxMjEwMTk0MzMyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTM5Y2Q2NC02ZmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8satggtMBk2mZ1iLXcM2w7PZt1j58ecV/QQUcZzz9JkTbeC7TDU5qI1eX1T 3G6W3qF6gdnmDahiTnnILAZxTqBVArq9Q31HFKfQVNIyu0kxc5ITuV7S6yEBreNf T9tTkjHKQ4zL8f3n4I0QOvGpaGUCWqxv+DngpB0kmlsXtBj9EDRT8bdSmSc65U5s TP09W30jidZmBPy8P8LeQznwcAVdEyKMQFiZOTYSxhikfDmGZNKGIx4hI+cqVb6Y X9WF5EqPd8dgfLWf+q4wdkcKfdFPyohBwvjJdRweOr90uvGJjMwoTo3wRT6j83di prYVJmRyi4hFAidPMipcf9vz+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKA2txzD I132aVWJ7mkF0oA8kb92MB8GA1UdIwQYMBaAFBtWbe9feOMZv8DRQA3nVeJkqCu8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjBBQi82QkU1NTBCMEIw OTMxMUVBOEFGMzE3NUVDNEY5QUUwMi9HMVp0NzE5NDR4bV93TkZBRGVkVjRtU29L N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cxWnQ3MTk0NHhtX3dORkFEZWRWNG1Tb0s3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIwQUIvNkJFNTUwQjBCMDkzMTFFQThBRjMxNzVFQzRGOUFFMDIvQUI2NTkyNDQw NTYyMTFFQkFFM0RCQzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnanUDBABneCkwDQYJKoZIhvcNAQELBQADggEBAIXBGgjl 4lJGc3tyFRYiOA6lTZjDLKu/cIYqz9dlYgk/hBNYUtZecnqHkADaZaVseHXHE8cZ x82wdchPz+I2Z97R7I4g+SAvevKp8+BqE/R25YWT0gGLU2dlyLkC/wFhxnrS/uDy v/1oWuYU3ZXrA+fz8G5rCsZrJEYx+i/aIAQfHXDnShUIZh0roWkGLjHPS6DrUYEc vZlsyzely4EQWHC6hKpBE59+PPtgCkmqI99Y/O1V5l7LyO9Y7zAaveIS/ke33At5 fCOYRUy5g7QNMTvq/vC9dEQ7N0PfusRAO0bYvvr0GVi9AX9/fuFxmVIOV+AAQVRD mV4y7rv+Ee3up7E= -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:43 2025 by rpki-client