This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json) Hash identifier: PzsvazERKDbDseIO0naKb4CMgscIJtKuKlWw3QvWiU4= Subject key identifier: 3E:20:20:47:67:84:41:41:FD:43:A2:34:33:15:58:A3:1F:02:34:E9 Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Certificate serial: 108143C1098B493BB68E9EF7C5A5E296D6A0167E Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa Signing time: Sat 20 Dec 2025 12:00:01 +0000 ROA not before: Sat 20 Dec 2025 11:55:01 +0000 ROA not after: Sat 19 Dec 2026 12:00:01 +0000 asID: 45163 IP address blocks: 203.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 05:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:81:43:c1:09:8b:49:3b:b6:8e:9e:f7:c5:a5:e2:96:d6:a0:16:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1 Validity Not Before: Dec 20 11:55:01 2025 GMT Not After : Dec 19 12:00:01 2026 GMT Subject: CN=3E20204767844141FD43A234331558A31F0234E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:86:3f:80:ab:f8:e0:49:ff:7b:58:1e:9f:b8: 33:87:79:87:25:bc:ba:52:d2:7d:d1:01:a5:77:76: 46:2f:74:5c:56:42:f6:1c:0f:cc:be:51:a6:fd:5f: b9:ba:c5:54:45:17:41:38:c2:5f:d0:e7:b7:9a:8c: c1:69:54:4f:b6:b2:4e:48:bf:e6:69:b1:47:67:aa: 56:23:09:9a:d6:c8:4b:05:c4:24:e2:fa:b8:f3:b8: e7:94:98:7b:87:14:b3:85:e8:85:da:cd:b2:57:97: 92:54:a5:0c:b4:29:6e:49:4c:c0:82:cd:42:e3:df: 99:83:27:8c:45:fe:55:05:97:ca:45:3d:1e:c9:29: 7e:1a:4f:40:98:6a:db:a3:1b:c5:ed:ec:fa:5c:3e: 63:ab:f8:e1:e4:19:53:22:5c:20:05:55:5a:69:86: 98:38:30:cb:c9:45:88:8a:6c:34:8d:9f:cb:eb:e7: 82:16:0b:e3:9c:be:99:06:fb:13:35:b7:30:52:37: 6d:1e:82:67:53:25:d0:7e:56:ab:dc:41:56:91:c8: 29:5f:54:fa:da:99:22:ec:6a:07:0a:42:30:9a:3c: 22:ae:f4:28:7d:b0:99:2f:72:69:d9:52:b4:c3:41: 28:b0:99:aa:0d:ed:61:75:64:40:a5:a1:89:eb:4d: c7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:20:20:47:67:84:41:41:FD:43:A2:34:33:15:58:A3:1F:02:34:E9 X509v3 Authority Key Identifier: keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption ab:af:db:51:fb:98:35:e7:ea:a1:dd:26:db:04:80:fa:d2:a0: 7b:17:ce:0c:a7:c1:30:16:6e:03:d1:ae:f2:d0:44:9d:78:bf: cb:fc:82:e7:ff:07:f4:66:80:54:0f:9f:ec:d2:ef:34:91:c4: 11:b1:55:04:26:b8:c0:d6:e7:ac:a9:61:46:73:88:22:52:72: 2f:c6:f0:f1:8c:47:8a:65:df:81:43:64:53:7d:7a:ec:9c:e3: 9c:fb:b1:3c:3a:b3:f2:8e:84:76:91:36:af:05:79:e5:45:51: 77:50:7e:90:63:35:27:75:43:5c:f7:32:ee:d8:8c:3c:d5:10: 4b:8f:cd:01:af:30:c9:f5:4d:66:f9:a3:72:c0:e5:df:03:07: fa:4a:6f:84:2b:56:3f:83:27:74:d1:29:d7:f8:a2:2a:b4:bd: 4d:e1:13:7c:c9:0a:9b:b0:31:28:a2:05:0c:61:60:2f:d0:54: 48:a2:60:94:a1:c6:5c:bc:cf:43:72:d3:25:67:99:28:5b:24: ea:7d:3b:66:46:11:6a:18:8f:94:c7:ec:34:52:38:4b:8b:ec: ec:22:de:09:80:69:1e:59:cc:6a:e5:e1:48:00:25:00:22:61: 5b:d8:b8:da:f1:23:36:93:18:30:41:7b:10:14:5f:81:55:61: df:b3:0c:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUEIFDwQmLSTu2jp73xaXiltagFn4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3 REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MTIyMDExNTUwMVoX DTI2MTIxOTEyMDAwMVowMzExMC8GA1UEAxMoM0UyMDIwNDc2Nzg0NDE0MUZENDNB MjM0MzMxNTU4QTMxRjAyMzRFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANaGP4Cr+OBJ/3tYHp+4M4d5hyW8ulLSfdEBpXd2Ri90XFZC9hwPzL5Rpv1f ubrFVEUXQTjCX9Dnt5qMwWlUT7ayTki/5mmxR2eqViMJmtbISwXEJOL6uPO455SY e4cUs4XohdrNsleXklSlDLQpbklMwILNQuPfmYMnjEX+VQWXykU9HskpfhpPQJhq 26Mbxe3s+lw+Y6v44eQZUyJcIAVVWmmGmDgwy8lFiIpsNI2fy+vnghYL45y+mQb7 EzW3MFI3bR6CZ1Ml0H5Wq9xBVpHIKV9U+tqZIuxqBwpCMJo8Iq70KH2wmS9yadlS tMNBKLCZqg3tYXVkQKWhietNx0UCAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQ+ICBH Z4RBQf1DojQzFVijHwI06TAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM 4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAq6/bUfuY Nefqod0m2wSA+tKgexfODKfBMBZuA9Gu8tBEnXi/y/yC5/8H9GaAVA+f7NLvNJHE EbFVBCa4wNbnrKlhRnOIIlJyL8bw8YxHimXfgUNkU3167JzjnPuxPDqz8o6EdpE2 rwV55UVRd1B+kGM1J3VDXPcy7tiMPNUQS4/NAa8wyfVNZvmjcsDl3wMH+kpvhCtW P4MndNEp1/iiKrS9TeETfMkKm7AxKKIFDGFgL9BUSKJglKHGXLzPQ3LTJWeZKFsk 6n07ZkYRahiPlMfsNFI4S4vs7CLeCYBpHlnMauXhSAAlACJhW9i42vEjNpMYMEF7 EBRfgVVh37MMqA== -----END CERTIFICATE-----Generated at Sun Dec 21 18:18:56 2025 by rpki-client