This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/491FFA9A177011ECA96DF680C4F9AE02.roa File: 491FFA9A177011ECA96DF680C4F9AE02.roa (raw, json) Hash identifier: 7HMY0VAKzttuQ0fRp6AzkKm6fjk8O3uYxQqvsqTSq24= Subject key identifier: 34:1D:E7:D0:BF:C4:C5:BA:FA:C6:32:B2:AD:13:0C:69:26:A5:B6:87 Certificate issuer: /CN=A91ED3AE/serialNumber=19B9A52CC902503ECDE302BD0247747EA9193B60 Certificate serial: 0564 Authority key identifier: 19:B9:A5:2C:C9:02:50:3E:CD:E3:02:BD:02:47:74:7E:A9:19:3B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GbmlLMkCUD7N4wK9Akd0fqkZO2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/491FFA9A177011ECA96DF680C4F9AE02.roa Signing time: Wed 31 Dec 2025 23:18:57 +0000 ROA not before: Wed 31 Dec 2025 23:18:57 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 131242 IP address blocks: 103.173.90.0/23 maxlen: 23 103.173.90.0/24 maxlen: 24 103.173.91.0/24 maxlen: 24 2001:df7:9380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/GbmlLMkCUD7N4wK9Akd0fqkZO2A.crl rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/GbmlLMkCUD7N4wK9Akd0fqkZO2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GbmlLMkCUD7N4wK9Akd0fqkZO2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 Jan 2026 22:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1380 (0x564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED3AE, serialNumber=19B9A52CC902503ECDE302BD0247747EA9193B60 Validity Not Before: Dec 31 23:18:57 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6955af61-d0c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:58:18:3d:57:1d:30:9b:3c:98:3f:06:1f:b9: a9:c4:ff:bb:95:6c:16:0d:7f:fb:1e:dd:33:7a:68: c4:6c:df:a9:eb:f0:cf:b8:86:af:24:99:4f:df:ec: 83:8c:8c:de:92:5e:60:a3:45:52:fa:26:1e:c2:b1: 67:f5:ad:aa:d4:df:4d:e1:57:91:47:c7:d9:35:1a: 10:15:58:16:d3:97:ab:01:ac:6c:70:88:fa:7a:94: 26:12:25:4e:a9:e6:a6:a2:77:6a:40:a9:c6:a6:03: e2:b0:c4:d9:33:3a:ee:11:fd:33:44:b1:05:1c:5d: 74:bf:4f:2c:a9:d9:46:29:c0:aa:61:a8:af:6d:f8: ec:60:23:b8:a7:31:0f:41:84:d1:23:6d:a4:64:85: 02:e4:e9:9d:6d:39:aa:30:09:25:dd:6d:34:c2:40: df:74:e2:39:97:1d:8b:d4:d4:af:ca:0f:ae:8e:8d: 42:ce:56:73:6a:2d:b1:57:b7:eb:07:3c:03:99:80: c2:a3:83:df:b8:70:39:d4:e9:f2:78:9c:57:9f:d6: 21:e9:31:61:31:fd:a5:51:bb:c9:07:fd:21:f0:a2: bc:8f:d8:cb:f6:df:66:e3:7a:ed:b9:7e:83:1e:09: e9:67:c0:af:d2:81:ce:9d:57:83:6b:38:02:87:0c: 25:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1D:E7:D0:BF:C4:C5:BA:FA:C6:32:B2:AD:13:0C:69:26:A5:B6:87 X509v3 Authority Key Identifier: keyid:19:B9:A5:2C:C9:02:50:3E:CD:E3:02:BD:02:47:74:7E:A9:19:3B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/GbmlLMkCUD7N4wK9Akd0fqkZO2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GbmlLMkCUD7N4wK9Akd0fqkZO2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/491FFA9A177011ECA96DF680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.90.0/23 IPv6: 2001:df7:9380::/48 Signature Algorithm: sha256WithRSAEncryption ae:c4:7c:bb:0b:31:e8:a2:32:fc:02:c0:45:b3:ec:3d:7d:18: 05:cf:67:57:0b:15:f8:4a:0e:ff:c0:c8:f2:5d:43:df:a8:15: a8:f4:70:43:35:da:88:09:55:55:c7:25:cc:f8:55:aa:53:f9: e4:65:bf:9f:d7:7e:77:7a:5b:18:34:82:81:fc:86:b5:0e:57: 34:0b:c0:19:8d:2d:af:a9:9f:5f:c7:ef:6e:3b:ce:94:9e:64: 45:18:fd:28:17:6a:99:43:1c:a7:17:ab:69:f5:20:ed:58:7f: 87:c8:79:b2:3b:da:fc:cb:2e:90:fb:58:94:ad:01:bf:9f:76: b2:bc:cc:57:0b:b4:a2:d7:34:61:e6:31:39:fc:6d:0b:66:57: 52:9e:18:7c:d6:5b:83:27:e4:dd:83:92:89:f3:e9:b7:ab:d1: a9:df:18:b8:c5:ca:59:1f:e6:13:70:e9:15:1e:cf:30:3f:12: 55:b7:ee:17:e8:8c:19:d9:e7:2d:75:58:7b:20:f0:89:b6:e0: ff:9e:d5:6b:8c:76:42:7c:25:20:ad:9f:40:73:30:bc:d3:92: 0e:fb:e6:46:36:a1:03:24:80:ca:43:41:e2:f5:45:a9:df:3e: d5:f9:67:32:54:3d:8e:04:fd:c8:26:76:ef:0f:a4:b9:1d:e2: f7:46:f8:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RUQzQUUxMTAvBgNVBAUTKDE5QjlBNTJDQzkwMjUwM0VDREUzMDJCRDAyNDc3NDdF QTkxOTNCNjAwHhcNMjUxMjMxMjMxODU3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1YWY2MS1kMGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFgYPVcdMJs8mD8GH7mpxP+7lWwWDX/7Ht0zemjEbN+p6/DPuIavJJlP3+yD jIzekl5go0VS+iYewrFn9a2q1N9N4VeRR8fZNRoQFVgW05erAaxscIj6epQmEiVO qeamondqQKnGpgPisMTZMzruEf0zRLEFHF10v08sqdlGKcCqYaivbfjsYCO4pzEP QYTRI22kZIUC5OmdbTmqMAkl3W00wkDfdOI5lx2L1NSvyg+ujo1CzlZzai2xV7fr BzwDmYDCo4PfuHA51OnyeJxXn9Yh6TFhMf2lUbvJB/0h8KK8j9jL9t9m43rtuX6D HgnpZ8Cv0oHOnVeDazgChwwlxQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDQd59C/ xMW6+sYysq0TDGkmpbaHMB8GA1UdIwQYMBaAFBm5pSzJAlA+zeMCvQJHdH6pGTtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDNBRS80MTEyQ0I1ODE3 NjUxMUVDOEIxNkEzNzFDNEY5QUUwMi9HYm1sTE1rQ1VEN040d0s5QWtkMGZxa1pP MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dibWxMTWtDVUQ3TjR3SzlBa2QwZnFrWk8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQzQUUvNDExMkNCNTgxNzY1MTFFQzhCMTZBMzcxQzRGOUFFMDIvNDkxRkZBOUEx NzcwMTFFQ0E5NkRGNjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrVowDwQCAAIwCQMHACABDfeTgDANBgkqhkiG9w0BAQsF AAOCAQEArsR8uwsx6KIy/ALARbPsPX0YBc9nVwsV+EoO/8DI8l1D36gVqPRwQzXa iAlVVcclzPhVqlP55GW/n9d+d3pbGDSCgfyGtQ5XNAvAGY0tr6mfX8fvbjvOlJ5k RRj9KBdqmUMcpxerafUg7Vh/h8h5sjva/MsukPtYlK0Bv592srzMVwu0otc0YeYx OfxtC2ZXUp4YfNZbgyfk3YOSifPpt6vRqd8YuMXKWR/mE3DpFR7PMD8SVbfuF+iM GdnnLXVYeyDwibbg/57Va4x2QnwlIK2fQHMwvNOSDvvmRjahAySAykNB4vVFqd8+ 1flnMlQ9jgT9yCZ27w+kuR3i90b4WA== -----END CERTIFICATE-----Generated at Sat Jan 3 04:18:11 2026 by rpki-client