This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFBE1/A7E71EF66EA611EAB546B961C4F9AE02/F23D65727CAF11ED87752A6BC4F9AE02.roa File: F23D65727CAF11ED87752A6BC4F9AE02.roa (raw, json) Hash identifier: 0KMFzCuGu1v0hK3kHcYTktNw8X2QSZsfmeH/owyGjh4= Subject key identifier: 60:FB:58:65:CB:57:FC:2F:93:71:15:7D:0A:6F:D8:33:12:7D:8C:72 Certificate issuer: /CN=A91DFBE1/serialNumber=18079EE4398D671BD647FCA82A2794E50A3047BD Certificate serial: 0AA1 Authority key identifier: 18:07:9E:E4:39:8D:67:1B:D6:47:FC:A8:2A:27:94:E5:0A:30:47:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAee5DmNZxvWR_yoKieU5QowR70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFBE1/A7E71EF66EA611EAB546B961C4F9AE02/F23D65727CAF11ED87752A6BC4F9AE02.roa Signing time: Sat 20 Dec 2025 19:16:37 +0000 ROA not before: Sat 20 Dec 2025 19:16:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 40627 IP address blocks: 103.44.68.0/22 maxlen: 24 2400:db60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFBE1/A7E71EF66EA611EAB546B961C4F9AE02/GAee5DmNZxvWR_yoKieU5QowR70.crl rsync://rpki.apnic.net/member_repository/A91DFBE1/A7E71EF66EA611EAB546B961C4F9AE02/GAee5DmNZxvWR_yoKieU5QowR70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAee5DmNZxvWR_yoKieU5QowR70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2721 (0xaa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFBE1, serialNumber=18079EE4398D671BD647FCA82A2794E50A3047BD Validity Not Before: Dec 20 19:16:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6946f615-b0a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:67:ff:58:4b:91:15:b9:ff:87:50:31:84:ac: 96:b4:5b:97:69:fe:fe:5e:d4:10:2b:a6:08:17:84: ce:52:66:63:8f:50:3c:c7:91:c9:8c:b6:11:67:c4: 9d:54:9d:0d:64:f5:a3:4c:e0:96:ad:ef:91:ab:65: b8:bb:2c:8a:de:23:99:8e:f9:ea:85:2a:4d:a0:60: a2:75:4f:c2:26:11:ca:a2:dc:b7:1b:e8:c8:85:ce: 39:10:5f:65:bd:85:65:21:50:c6:9a:3c:f2:f2:e7: 29:02:e3:64:0d:54:89:a4:64:c1:e3:61:80:1f:c7: 7e:98:3d:78:84:af:c7:b6:ab:d4:2c:14:0e:45:49: dd:d5:90:26:43:d4:be:2e:62:08:be:ac:57:5f:11: d9:2a:56:f5:1f:79:58:47:b3:c8:5e:e6:2c:ea:7a: 59:6c:00:0b:53:10:aa:b6:52:fa:c0:77:98:33:10: 83:be:1b:43:5c:29:a7:ca:08:c4:29:bb:6a:30:e7: 07:b3:4b:39:35:7a:e9:6b:ef:e0:66:1d:c0:77:6c: f9:16:4a:8c:41:84:f2:d7:3e:f3:3a:38:a4:77:19: 31:d4:19:85:ee:eb:7a:d9:b0:62:be:4f:d3:91:a1: d7:6f:11:24:a9:4b:f0:6c:9f:89:8c:22:fb:67:91: f6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:FB:58:65:CB:57:FC:2F:93:71:15:7D:0A:6F:D8:33:12:7D:8C:72 X509v3 Authority Key Identifier: keyid:18:07:9E:E4:39:8D:67:1B:D6:47:FC:A8:2A:27:94:E5:0A:30:47:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFBE1/A7E71EF66EA611EAB546B961C4F9AE02/GAee5DmNZxvWR_yoKieU5QowR70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAee5DmNZxvWR_yoKieU5QowR70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFBE1/A7E71EF66EA611EAB546B961C4F9AE02/F23D65727CAF11ED87752A6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.68.0/22 IPv6: 2400:db60::/32 Signature Algorithm: sha256WithRSAEncryption 1d:4d:9b:62:6a:6d:1c:b3:07:de:18:9a:d6:e0:05:ed:52:eb: 06:00:c3:70:5f:6e:26:11:cc:e1:b4:87:9e:5e:1d:75:a1:3a: 46:b8:69:72:48:e1:fa:5a:0d:4c:bb:a4:72:18:2d:ad:5f:26: 9a:bb:52:6b:6c:4c:9b:0a:16:f4:f4:11:21:7d:c7:77:2a:be: 62:5f:92:1b:5d:0a:79:73:31:5d:e0:c7:dc:37:9e:5a:7d:be: 5d:5a:d0:09:d5:ab:1b:c7:d4:d5:d3:39:f2:dd:bf:f5:9e:a7: dd:50:7f:34:95:60:94:6a:ee:99:cd:bc:16:3e:9c:5a:af:f0: 26:5c:09:c4:0c:0b:03:ea:e7:75:e8:fb:4b:b8:bb:20:09:af: 43:14:21:68:20:fc:95:5c:1b:f7:8e:88:fa:fb:95:9f:63:79: b3:61:e3:89:b4:9e:64:3c:ba:e9:fb:73:15:08:d2:52:bc:6e: 97:0b:f9:ce:dc:f6:50:34:16:92:e3:ca:61:41:82:54:6b:18: af:55:fb:b8:22:a3:1a:64:8f:50:9e:ab:d5:2d:d4:bb:97:68: 0e:d7:21:88:0d:b9:19:8c:9e:0c:08:9d:13:3d:62:43:4f:ae: b7:6d:7f:fc:be:a7:f2:e0:fb:5a:49:fa:ea:fd:dd:3d:25:31: 91:80:16:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx REZCRTExMTAvBgNVBAUTKDE4MDc5RUU0Mzk4RDY3MUJENjQ3RkNBODJBMjc5NEU1 MEEzMDQ3QkQwHhcNMjUxMjIwMTkxNjM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTQ2ZjYxNS1iMGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWf/WEuRFbn/h1AxhKyWtFuXaf7+XtQQK6YIF4TOUmZjj1A8x5HJjLYRZ8Sd VJ0NZPWjTOCWre+Rq2W4uyyK3iOZjvnqhSpNoGCidU/CJhHKoty3G+jIhc45EF9l vYVlIVDGmjzy8ucpAuNkDVSJpGTB42GAH8d+mD14hK/HtqvULBQORUnd1ZAmQ9S+ LmIIvqxXXxHZKlb1H3lYR7PIXuYs6npZbAALUxCqtlL6wHeYMxCDvhtDXCmnygjE KbtqMOcHs0s5NXrpa+/gZh3Ad2z5FkqMQYTy1z7zOjikdxkx1BmF7ut62bBivk/T kaHXbxEkqUvwbJ+JjCL7Z5H2zwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGD7WGXL V/wvk3EVfQpv2DMSfYxyMB8GA1UdIwQYMBaAFBgHnuQ5jWcb1kf8qConlOUKMEe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkJFMS9BN0U3MUVGNjZF QTYxMUVBQjU0NkI5NjFDNEY5QUUwMi9HQWVlNURtTlp4dldSX3lvS2llVTVRb3dS NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dBZWU1RG1OWnh2V1JfeW9LaWVVNVFvd1I3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCRTEvQTdFNzFFRjY2RUE2MTFFQUI1NDZCOTYxQzRGOUFFMDIvRjIzRDY1NzI3 Q0FGMTFFRDg3NzUyQTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnLEQwDQQCAAIwBwMFACQA22AwDQYJKoZIhvcNAQELBQAD ggEBAB1Nm2JqbRyzB94YmtbgBe1S6wYAw3BfbiYRzOG0h55eHXWhOka4aXJI4fpa DUy7pHIYLa1fJpq7UmtsTJsKFvT0ESF9x3cqvmJfkhtdCnlzMV3gx9w3nlp9vl1a 0AnVqxvH1NXTOfLdv/Wep91QfzSVYJRq7pnNvBY+nFqv8CZcCcQMCwPq53Xo+0u4 uyAJr0MUIWgg/JVcG/eOiPr7lZ9jebNh44m0nmQ8uun7cxUI0lK8bpcL+c7c9lA0 FpLjymFBglRrGK9V+7gioxpkj1Ceq9Ut1LuXaA7XIYgNuRmMngwInRM9YkNPrrdt f/y+p/Lg+1pJ+ur93T0lMZGAFho= -----END CERTIFICATE-----Generated at Sun Dec 21 01:21:41 2025 by rpki-client