This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/504C179A3CDE11EAB553996BC4F9AE02.roa File: 504C179A3CDE11EAB553996BC4F9AE02.roa (raw, json) Hash identifier: uSqH9qtpAVAXCb4X+qWkkmNSMbMvUCIUkN3meWM7mGQ= Subject key identifier: 38:60:6A:44:19:4E:B2:23:45:35:5E:45:E7:62:9D:77:28:4D:00:C4 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0C86 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/504C179A3CDE11EAB553996BC4F9AE02.roa Signing time: Wed 24 Dec 2025 18:16:12 +0000 ROA not before: Wed 24 Dec 2025 18:16:12 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138412 IP address blocks: 103.124.248.0/23 maxlen: 23 103.124.248.0/24 maxlen: 24 103.124.249.0/24 maxlen: 24 103.124.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 18:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3206 (0xc86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Dec 24 18:16:12 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=694c2dec-24e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:20:9c:cf:39:4b:97:84:4e:8b:b4:9e:ef:5c: 7f:94:d1:7c:6f:7a:5e:f6:51:f9:a0:b0:b7:ac:5a: 12:93:d9:c4:d1:1c:78:95:c5:a2:b8:f9:da:9a:e2: ac:a8:2b:41:ac:65:3a:9b:4d:76:36:25:a5:23:9f: bc:ca:c5:2c:07:f9:fb:48:00:17:3a:f8:48:f7:02: 47:ce:11:b5:8d:a5:22:b7:89:9f:a4:35:60:01:77: bc:1a:e4:3e:04:d9:c9:ff:89:ba:e7:16:56:91:32: f6:db:8a:cb:dd:76:23:15:50:35:ef:d5:cb:7b:bf: 9f:ab:c4:27:a6:e0:54:7e:cb:81:81:31:43:df:b5: 63:dc:67:e9:6a:15:1e:f0:0d:c8:ba:23:d5:e8:9f: e5:1d:2d:ff:73:3a:f8:de:3c:d2:72:ae:85:0b:a4: 06:68:e5:6f:46:80:10:68:ca:cd:bf:36:df:f7:60: f8:23:ed:57:23:63:83:3f:f0:7f:96:0f:d0:c8:0d: 72:91:6e:7d:4a:bb:a2:13:be:8b:70:58:b4:3e:66: 62:a6:cd:8a:60:86:1d:5d:50:5f:c6:4e:6e:37:58: 8f:80:1f:13:1f:ec:e4:ab:79:82:5c:1d:bf:ed:e4: 1b:fa:d2:8b:e6:a0:56:0f:3c:28:fe:5f:9b:32:45: 88:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:60:6A:44:19:4E:B2:23:45:35:5E:45:E7:62:9D:77:28:4D:00:C4 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/504C179A3CDE11EAB553996BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.248.0/22 Signature Algorithm: sha256WithRSAEncryption 43:fc:23:30:72:c1:26:59:be:e6:6d:ec:e9:4f:96:dd:39:60: f0:bb:a3:b5:15:8f:d3:68:8f:fb:1e:d3:dd:1f:51:a7:79:cc: 17:b1:cd:9c:c2:25:ac:d2:ea:01:ee:a9:6c:4f:0d:df:1b:4b: 27:9d:1f:73:fd:ca:1d:8f:21:08:3b:11:d3:c4:36:ee:28:e5: 57:76:bf:b1:47:9f:b9:ca:a0:f2:66:26:38:a7:64:89:37:ed: 80:5e:cd:9a:10:51:1a:71:f0:48:42:8c:8f:72:33:df:6f:2b: b3:0d:be:9a:2a:2e:b3:6d:c7:56:29:02:d9:ee:bb:68:06:26: 4e:16:fa:d3:c2:97:ba:e4:82:d2:e9:2d:7e:87:4d:56:bc:24: 3f:a5:e2:3f:7d:76:d3:09:cf:3b:f8:06:6b:7b:d8:60:af:a3: c3:93:ae:8c:3a:6e:08:84:99:8d:02:cd:6f:f1:f8:d7:d7:97: 15:40:8c:57:04:2e:f3:bf:9a:b2:8b:d1:38:3c:63:73:36:99: 8b:23:33:83:59:78:12:a7:1f:06:c9:41:65:72:30:2a:a5:41: 3b:c5:10:23:05:82:16:7c:c4:bb:c0:6e:1a:0f:b0:87:98:01: d4:50:a1:25:e3:5b:68:d6:37:5a:70:fe:d1:79:a8:5f:14:53: 35:52:ad:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUxMjI0MTgxNjEyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTRjMmRlYy0yNGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSCczzlLl4ROi7Se71x/lNF8b3pe9lH5oLC3rFoSk9nE0Rx4lcWiuPnamuKs qCtBrGU6m012NiWlI5+8ysUsB/n7SAAXOvhI9wJHzhG1jaUit4mfpDVgAXe8GuQ+ BNnJ/4m65xZWkTL224rL3XYjFVA179XLe7+fq8QnpuBUfsuBgTFD37Vj3GfpahUe 8A3IuiPV6J/lHS3/czr43jzScq6FC6QGaOVvRoAQaMrNvzbf92D4I+1XI2ODP/B/ lg/QyA1ykW59SruiE76LcFi0PmZips2KYIYdXVBfxk5uN1iPgB8TH+zkq3mCXB2/ 7eQb+tKL5qBWDzwo/l+bMkWIqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDhgakQZ TrIjRTVeRedinXcoTQDEMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJFODcvQTlGM0M2RUUxMjlGMTFFQUFCMjcyMDJGQzRGOUFFMDIvNTA0QzE3OUEz Q0RFMTFFQUI1NTM5OTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfPgwDQYJKoZIhvcNAQELBQADggEBAEP8IzBywSZZvuZt 7OlPlt05YPC7o7UVj9Noj/se090fUad5zBexzZzCJazS6gHuqWxPDd8bSyedH3P9 yh2PIQg7EdPENu4o5Vd2v7FHn7nKoPJmJjinZIk37YBezZoQURpx8EhCjI9yM99v K7MNvpoqLrNtx1YpAtnuu2gGJk4W+tPCl7rkgtLpLX6HTVa8JD+l4j99dtMJzzv4 Bmt72GCvo8OTrow6bgiEmY0CzW/x+NfXlxVAjFcELvO/mrKL0Tg8Y3M2mYsjM4NZ eBKnHwbJQWVyMCqlQTvFECMFghZ8xLvAbhoPsIeYAdRQoSXjW2jWN1pw/tF5qF8U UzVSre4= -----END CERTIFICATE-----Generated at Thu Dec 25 05:15:36 2025 by rpki-client