This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/5F0B20081CBF11EAA5FCAC86C4F9AE02.roa File: 5F0B20081CBF11EAA5FCAC86C4F9AE02.roa (raw, json) Hash identifier: DbN4DlbT/kzFV586YYQHD1JNHqDZhrvbtplks7czGBk= Subject key identifier: 4F:6E:54:D0:E1:F5:73:F1:13:BE:2C:3A:C2:2B:AD:3B:41:E5:8E:BD Certificate issuer: /CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Certificate serial: 217B Authority key identifier: FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/5F0B20081CBF11EAA5FCAC86C4F9AE02.roa Signing time: Thu 08 Jan 2026 16:13:14 +0000 ROA not before: Thu 08 Jan 2026 16:13:14 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133179 IP address blocks: 103.254.180.0/22 maxlen: 22 103.254.180.0/24 maxlen: 24 103.254.181.0/24 maxlen: 24 103.254.182.0/24 maxlen: 24 103.254.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 15:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8571 (0x217b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C4E, serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Validity Not Before: Jan 8 16:13:14 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=695fd79a-e7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:03:6a:f9:97:3c:15:c2:ef:cb:c6:5d:9b:3a: de:11:e6:10:7e:8f:57:ea:98:a0:fe:12:ed:24:d7: 30:8e:83:96:9e:bc:52:05:da:db:76:35:5e:9f:8b: c7:9f:c1:e2:6b:ee:34:34:86:a7:1c:6a:a8:42:71: 63:c9:93:2f:5e:9b:8b:74:bd:95:7b:66:75:0d:ed: 2f:cb:e4:85:7a:7a:36:c1:c5:d5:fd:7e:f8:aa:25: 6f:22:8e:08:c7:8c:45:68:51:fd:ae:3f:87:e6:be: 85:16:b4:e0:2f:8a:77:bc:07:98:71:a3:5c:33:2a: f0:a1:33:df:a7:38:4f:8d:97:b6:12:9d:7d:19:3f: 8a:93:e0:f9:7c:00:fe:1c:ed:bf:12:30:35:b9:70: 52:57:92:8c:cf:fa:8a:ad:2a:a6:e4:87:93:a2:f5: 50:9d:23:3b:7b:e3:fd:ca:f9:d6:00:12:2f:45:d1: 62:a6:e0:20:c2:5e:60:c5:7f:df:1d:c1:54:e1:29: 4c:f0:e8:04:cb:82:27:fa:e9:ec:39:7d:fc:f9:73: c7:dd:27:ab:c2:e2:ca:29:a8:68:fc:be:35:8b:ab: 77:4c:ca:1e:b5:b5:9d:ec:5e:e4:a5:4d:16:fb:94: 31:4b:8c:13:05:08:f2:a7:24:c5:e4:c4:ca:4d:86: ae:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6E:54:D0:E1:F5:73:F1:13:BE:2C:3A:C2:2B:AD:3B:41:E5:8E:BD X509v3 Authority Key Identifier: keyid:FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/5F0B20081CBF11EAA5FCAC86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.180.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:d5:bc:b2:64:48:7a:69:e9:53:31:a5:fe:1e:9f:e5:f9:05: ad:87:d8:27:70:30:41:07:9a:45:8a:47:f4:94:79:f5:c0:88: 92:09:7e:f5:52:b2:81:f0:4e:f8:cd:ee:4e:c8:60:20:36:de: 35:58:47:e2:5a:eb:78:97:b0:cb:ca:37:8a:79:c3:85:0c:75: 58:be:f2:93:74:a9:ca:83:d7:c2:66:3f:5e:40:d7:dd:0f:b8: bc:d2:79:08:df:19:14:09:ea:98:ef:c0:6e:80:50:18:3a:5f: 56:fa:6d:99:9e:85:55:7f:0f:5a:5c:a4:19:a5:44:5e:18:0b: e2:4e:a3:8e:94:74:c8:f4:25:12:8d:e5:9c:45:cc:99:e4:c4: ee:d9:e7:93:17:e3:e2:70:c6:fb:0b:8b:44:ee:4c:c9:14:5f: cc:66:02:a3:7c:50:47:cf:80:87:6f:94:bf:aa:e8:41:ba:d1: 3c:a4:3f:48:c3:8b:ef:08:97:cf:cc:a9:48:08:1d:c4:46:3f: b5:be:19:9f:e6:cb:a1:72:53:c0:72:05:ad:a9:0b:51:5e:f7: 8b:19:a6:e1:b0:23:4d:a2:b7:37:23:c7:d0:ae:a1:8a:95:f6: 0b:50:1f:e4:10:d3:48:0d:f6:18:77:62:bd:75:b1:1a:15:f7: 95:bc:17:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTZDNEUxMTAvBgNVBAUTKEZGNDMxREY4RTEzQkQ3RkVDNTFFN0I1MzUwN0I0NTM5 QTlGOTY1NjYwHhcNMjYwMTA4MTYxMzE0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmZDc5YS1lN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoANq+Zc8FcLvy8ZdmzreEeYQfo9X6pig/hLtJNcwjoOWnrxSBdrbdjVen4vH n8Hia+40NIanHGqoQnFjyZMvXpuLdL2Ve2Z1De0vy+SFeno2wcXV/X74qiVvIo4I x4xFaFH9rj+H5r6FFrTgL4p3vAeYcaNcMyrwoTPfpzhPjZe2Ep19GT+Kk+D5fAD+ HO2/EjA1uXBSV5KMz/qKrSqm5IeTovVQnSM7e+P9yvnWABIvRdFipuAgwl5gxX/f HcFU4SlM8OgEy4In+unsOX38+XPH3SerwuLKKaho/L41i6t3TMoetbWd7F7kpU0W +5QxS4wTBQjypyTF5MTKTYaufwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE9uVNDh 9XPxE74sOsIrrTtB5Y69MB8GA1UdIwQYMBaAFP9DHfjhO9f+xR57U1B7RTmp+WVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkM0RS8zNDQ4NjUyQ0Yz Q0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFfN0ZIbnRUVUh0Rk9hbjVa V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wTWQtT0U3MV83RkhudFRVSHRGT2FuNVpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZDNEUvMzQ0ODY1MkNGM0NCMTFFNUFFMzY2MDYyQzRGOUFFMDIvNUYwQjIwMDgx Q0JGMTFFQUE1RkNBQzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn/rQwDQYJKoZIhvcNAQELBQADggEBAFvVvLJkSHpp6VMx pf4en+X5Ba2H2CdwMEEHmkWKR/SUefXAiJIJfvVSsoHwTvjN7k7IYCA23jVYR+Ja 63iXsMvKN4p5w4UMdVi+8pN0qcqD18JmP15A190PuLzSeQjfGRQJ6pjvwG6AUBg6 X1b6bZmehVV/D1pcpBmlRF4YC+JOo46UdMj0JRKN5ZxFzJnkxO7Z55MX4+JwxvsL i0TuTMkUX8xmAqN8UEfPgIdvlL+q6EG60TykP0jDi+8Il8/MqUgIHcRGP7W+GZ/m y6FyU8ByBa2pC1Fe94sZpuGwI02itzcjx9CuoYqV9gtQH+QQ00gN9hh3Yr11sRoV 95W8F68= -----END CERTIFICATE-----Generated at Mon Jan 12 15:13:55 2026 by rpki-client