This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/5741EB0A159311EFA0CC790BC4F9AE02.roa File: 5741EB0A159311EFA0CC790BC4F9AE02.roa (raw, json) Hash identifier: 6KnYqtU5eDGuSaPKMnhRfcXUWukIQCJpgFhNSz5ECjE= Subject key identifier: FD:0B:EA:A7:13:E0:61:BA:DC:6D:3F:7D:E2:D9:F5:9E:8F:D3:0E:78 Certificate issuer: /CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Certificate serial: E5 Authority key identifier: DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/5741EB0A159311EFA0CC790BC4F9AE02.roa Signing time: Fri 01 Aug 2025 07:11:46 +0000 ROA not before: Fri 01 Aug 2025 07:11:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136399 IP address blocks: 103.160.10.0/23 maxlen: 23 2401:a020::/32 maxlen: 32 Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1511, serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Validity Not Before: Aug 1 07:11:46 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688c68b2-b54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:64:61:c6:3a:a5:8c:87:18:f8:20:f1:25:9b: 54:56:29:65:bc:80:37:5e:8d:6a:b6:b2:f7:5a:51: 4e:87:e1:04:6b:3c:65:5f:ed:75:b1:70:8a:27:42: 2f:d9:9c:ba:40:a7:b6:0d:4c:98:7f:d4:e9:9c:ac: c8:99:f5:52:19:43:89:f2:0e:78:80:33:7a:f8:34: c9:e2:0b:e2:a3:2e:88:a3:8a:a9:47:66:92:47:ff: a8:fa:e3:23:f5:6c:32:09:54:5f:a6:11:53:72:06: 96:b6:1d:24:df:01:a7:e0:40:09:30:b8:e5:3d:44: c4:d4:e4:e3:3a:bd:1a:48:a3:6e:56:dd:50:da:25: d4:83:44:c2:79:c3:95:56:bc:51:3d:47:25:e8:85: dd:0b:f7:1e:0a:3b:4c:e6:4b:ca:6a:82:f0:a7:8d: d7:05:4b:18:18:cb:91:83:97:d4:f8:28:a1:71:14: 9e:33:95:ee:43:3a:b9:e2:64:7e:4f:90:d2:aa:11: 4a:8f:05:8f:1c:fe:b2:72:c0:42:5f:70:02:4e:05: 84:d7:bb:4a:fd:3a:62:4e:0f:65:57:7d:9a:fa:53: 29:5f:3f:32:45:ad:75:bc:88:0f:85:d7:3d:d6:63: e8:3a:ea:65:d2:f3:c5:b5:79:34:59:f6:19:92:13: 4b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:0B:EA:A7:13:E0:61:BA:DC:6D:3F:7D:E2:D9:F5:9E:8F:D3:0E:78 X509v3 Authority Key Identifier: keyid:DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/5741EB0A159311EFA0CC790BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.10.0/23 IPv6: 2401:a020::/32 Signature Algorithm: sha256WithRSAEncryption bd:49:eb:64:c4:ab:7a:0a:96:32:af:be:e8:17:f6:09:b5:85: 8b:a6:6c:8c:e7:ff:1a:79:ea:7c:20:03:fd:92:bc:a5:a7:c6: bb:49:3c:b7:19:fe:9c:21:43:33:38:f1:3e:7f:ae:06:62:e9: f8:07:7b:c0:47:0c:3d:6e:33:8f:ad:26:d6:bf:c4:1f:fa:a7: d4:d8:88:a4:1f:36:73:52:01:81:d4:b4:6c:b4:2e:46:77:7a: 47:5a:b1:00:8e:03:9e:91:c9:5f:86:d6:27:a9:48:c8:7a:09: c0:d7:83:59:3c:a2:e5:d5:d9:03:b1:f2:26:fd:93:2d:69:7e: 18:fb:22:5e:b3:1b:ba:34:78:6b:aa:c1:bd:75:10:90:19:65: 34:c0:29:18:e3:b1:3c:7a:ab:0e:4b:5e:f2:08:fb:4a:22:82: 0d:13:8a:3d:0f:f9:a2:f3:d4:6a:c4:00:19:29:fa:60:6e:22: 1c:4a:05:19:47:f1:fd:2b:54:f4:1c:73:55:b4:55:5b:0c:0f: b5:27:49:a6:13:9a:2b:9a:72:d6:6c:7e:ad:4f:09:8a:19:ce: 7e:6f:4a:61:c8:5e:c5:48:5d:31:78:f8:5f:8e:32:dc:22:31: 9e:80:bb:90:b2:de:cc:c1:61:bf:d0:f9:af:39:ac:c7:7c:9c: a3:38:4f:19 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE1MTExMTAvBgNVBAUTKERCREJCNzdGQjgxNDVFOUQ0NDg2MDc0RkI3M0VGODRE NTQ4RUE2MjIwHhcNMjUwODAxMDcxMTQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNjhiMi1iNTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGRhxjqljIcY+CDxJZtUVillvIA3Xo1qtrL3WlFOh+EEazxlX+11sXCKJ0Iv 2Zy6QKe2DUyYf9TpnKzImfVSGUOJ8g54gDN6+DTJ4gvioy6Io4qpR2aSR/+o+uMj 9WwyCVRfphFTcgaWth0k3wGn4EAJMLjlPUTE1OTjOr0aSKNuVt1Q2iXUg0TCecOV VrxRPUcl6IXdC/ceCjtM5kvKaoLwp43XBUsYGMuRg5fU+CihcRSeM5XuQzq54mR+ T5DSqhFKjwWPHP6ycsBCX3ACTgWE17tK/TpiTg9lV32a+lMpXz8yRa11vIgPhdc9 1mPoOupl0vPFtXk0WfYZkhNL5wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP0L6qcT 4GG63G0/feLZ9Z6P0w54MB8GA1UdIwQYMBaAFNvbt3+4FF6dRIYHT7c++E1UjqYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTUxMS84RDM0MzIzQzEz RjgxMUVGQTM4NENFMjNDNEY5QUUwMi8yOXUzZjdnVVhwMUVoZ2RQdHo3NFRWU09w aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI5dTNmN2dVWHAxRWhnZFB0ejc0VFZTT3BpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE1MTEvOEQzNDMyM0MxM0Y4MTFFRkEzODRDRTIzQzRGOUFFMDIvNTc0MUVCMEEx NTkzMTFFRkEwQ0M3OTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnoAowDQQCAAIwBwMFACQBoCAwDQYJKoZIhvcNAQELBQAD ggEBAL1J62TEq3oKljKvvugX9gm1hYumbIzn/xp56nwgA/2SvKWnxrtJPLcZ/pwh QzM48T5/rgZi6fgHe8BHDD1uM4+tJta/xB/6p9TYiKQfNnNSAYHUtGy0LkZ3ekda sQCOA56RyV+G1iepSMh6CcDXg1k8ouXV2QOx8ib9ky1pfhj7Il6zG7o0eGuqwb11 EJAZZTTAKRjjsTx6qw5LXvII+0oigg0Tij0P+aLz1GrEABkp+mBuIhxKBRlH8f0r VPQcc1W0VVsMD7UnSaYTmiuactZsfq1PCYoZzn5vSmHIXsVIXTF4+F+OMtwiMZ6A u5Cy3szBYb/Q+a85rMd8nKM4Txk= -----END CERTIFICATE-----Generated at Wed Dec 31 11:55:19 2025 by rpki-client