This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/E9CC4952DBB711F09A595FAD4E641951.roa File: E9CC4952DBB711F09A595FAD4E641951.roa (raw, json) Hash identifier: N8C+RbGZ4TxSn2UCb5i7gkeLR+IHJ44RuRig3WO+cbY= Subject key identifier: E0:E2:BF:EC:8D:3C:CF:AD:2E:40:FB:BA:F8:FE:E3:AB:72:66:E4:D5 Certificate issuer: /CN=A91EAE28/serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Certificate serial: 02 Authority key identifier: DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/E9CC4952DBB711F09A595FAD4E641951.roa Signing time: Thu 18 Dec 2025 02:19:00 +0000 ROA not before: Thu 18 Dec 2025 02:19:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18390 IP address blocks: 203.20.60.0/24 maxlen: 24 203.28.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:03:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE28, serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Validity Not Before: Dec 18 02:19:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69436493-a8b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c8:8c:9a:7f:24:41:51:91:dc:a9:58:27:6f: b4:0e:be:cc:43:9d:6a:97:64:84:57:af:8d:a3:31: 06:e3:97:0a:e1:9e:e2:4a:2a:ef:74:56:90:c8:17: 6c:1e:e7:42:90:33:84:e6:45:c9:9d:3e:79:a5:4e: b7:52:cd:87:bd:c8:aa:a2:a5:2f:9a:35:10:a8:0b: 7b:27:57:ce:51:f2:7a:e4:56:9e:8e:fc:e6:3c:7b: 46:a8:81:32:6a:b2:bc:a3:11:56:56:d9:0e:6a:14: 9a:1c:cf:bf:e1:f3:83:95:da:76:30:7b:e3:e0:ef: 20:57:cc:26:66:aa:bc:3b:d3:10:3b:6b:22:c2:94: 64:8f:1a:b9:8c:57:09:7a:bb:9e:41:27:0e:e2:1e: dc:c6:7a:88:53:25:c8:ac:6c:51:0d:e3:18:d8:00: f6:50:4c:cd:45:6a:ba:93:0a:bb:57:ca:c5:7b:84: e0:12:cd:14:7d:74:71:94:77:92:66:24:78:75:fb: a7:24:33:95:c0:a2:5d:1b:0a:51:e7:75:2c:a6:5d: f7:90:68:d6:17:ef:03:d8:84:f9:f5:92:36:c8:a9: 09:dd:98:ca:71:29:fe:ae:c2:7e:66:63:19:60:4c: bf:f5:bf:4d:67:61:ce:44:6d:f6:11:ef:6d:38:38: 1b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E2:BF:EC:8D:3C:CF:AD:2E:40:FB:BA:F8:FE:E3:AB:72:66:E4:D5 X509v3 Authority Key Identifier: keyid:DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/E9CC4952DBB711F09A595FAD4E641951.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.60.0/24 203.28.113.0/24 Signature Algorithm: sha256WithRSAEncryption 01:02:41:0b:16:a0:04:f4:9d:50:8f:9c:8a:35:c6:b8:c7:c1: 85:25:d7:24:7e:41:cd:53:2e:3b:25:a8:e9:76:c5:17:d1:fc: c9:fa:ca:98:17:f5:be:17:d0:47:28:1b:0e:67:3c:1e:b2:f7: 5a:ec:f4:ce:8d:07:d4:b0:a9:af:c8:0a:81:0b:b4:a0:91:99: c2:88:aa:61:e4:72:2c:56:05:bc:b3:7d:85:45:13:25:a5:a1: 6d:23:3b:a8:77:ef:77:c2:0f:98:7f:e1:48:7f:86:85:0c:9b: cd:23:6b:09:af:80:a9:ae:50:1a:23:02:22:84:e8:76:1b:5a: 29:c1:00:87:8c:42:ee:70:1a:c3:4c:51:eb:8c:5f:db:84:2a: 47:b2:31:2d:8a:d1:e3:37:48:13:3e:ab:3e:cf:4b:fa:20:11: 14:3e:4d:86:34:ab:f1:13:75:c6:9d:a0:61:43:25:e9:c9:de: b6:38:12:f2:51:c9:0f:36:cd:86:37:f2:ba:f1:da:22:22:71: 1b:d1:21:80:c3:c6:d7:9d:ee:9a:d5:48:95:65:1d:1f:b2:0d: 81:94:2f:e9:f3:19:4f:e9:48:57:0c:57:bd:be:72:c2:e8:9b: 72:54:a6:56:f2:40:3a:21:14:76:22:7a:c4:c9:00:2a:9e:e1: f5:9b:f2:2f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF QUUyODExMC8GA1UEBRMoREU4M0M3NkNEQjQ0RjRGNzk0NDcxOTIwMkJFM0FGQTg4 M0QzNDk0RDAeFw0yNTEyMTgwMjE5MDBaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMMDTY5NDM2NDkzLWE4YjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtyIyafyRBUZHcqVgnb7QOvsxDnWqXZIRXr42jMQbjlwrhnuJKKu90VpDIF2we 50KQM4TmRcmdPnmlTrdSzYe9yKqipS+aNRCoC3snV85R8nrkVp6O/OY8e0aogTJq sryjEVZW2Q5qFJocz7/h84OV2nYwe+Pg7yBXzCZmqrw70xA7ayLClGSPGrmMVwl6 u55BJw7iHtzGeohTJcisbFEN4xjYAPZQTM1FarqTCrtXysV7hOASzRR9dHGUd5Jm JHh1+6ckM5XAol0bClHndSymXfeQaNYX7wPYhPn1kjbIqQndmMpxKf6uwn5mYxlg TL/1v01nYc5EbfYR7204OBvHAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU4OK/7I08 z60uQPu6+P7jq3Jm5NUwHwYDVR0jBBgwFoAU3oPHbNtE9PeURxkgK+OvqIPTSU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTI4LzQ3NjA2RUI0REJC NzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBlVVJ4a2dLLU92cUlQVFNV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM29QSGJOdEU5UGVVUnhrZ0stT3ZxSVBUU1UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyOC80NzYwNkVCNERCQjcxMUYwQTBERjkwRjA0RDY0MTk1MS9FOUNDNDk1MkRC QjcxMUYwOUE1OTVGQUQ0RTY0MTk1MS5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAMsUPAMEAMsccTANBgkqhkiG9w0BAQsFAAOCAQEAAQJBCxag BPSdUI+cijXGuMfBhSXXJH5BzVMuOyWo6XbFF9H8yfrKmBf1vhfQRygbDmc8HrL3 Wuz0zo0H1LCpr8gKgQu0oJGZwoiqYeRyLFYFvLN9hUUTJaWhbSM7qHfvd8IPmH/h SH+GhQybzSNrCa+Aqa5QGiMCIoTodhtaKcEAh4xC7nAaw0xR64xf24QqR7IxLYrR 4zdIEz6rPs9L+iARFD5NhjSr8RN1xp2gYUMl6cnetjgS8lHJDzbNhjfyuvHaIiJx G9EhgMPG153umtVIlWUdH7INgZQv6fMZT+lIVwxXvb5ywuibclSmVvJAOiEUdiJ6 xMkAKp7h9ZvyLw== -----END CERTIFICATE-----Generated at Fri Dec 19 22:03:09 2025 by rpki-client