Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/6E0B5938066711EFA1505F46C4F9AE02.roa
File: 6E0B5938066711EFA1505F46C4F9AE02.roa (raw, json)
Hash identifier: FC92AFK040EJiZt9ZtaMaDDZrQtuS6tBbe+7zz+A28Q=
Subject key identifier: 1E:38:B4:53:7D:BB:BE:05:60:9D:B1:6C:B2:29:56:F0:9E:8B:30:DC
Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F
Certificate serial: 13CE
Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/6E0B5938066711EFA1505F46C4F9AE02.roa
Signing time: Sun 01 Mar 2026 18:20:55 +0000
ROA not before: Thu 11 Dec 2025 03:18:28 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 1221
IP address blocks: 1.120.0.0/13 maxlen: 13
1.128.0.0/11 maxlen: 11
58.160.0.0/12 maxlen: 12
60.224.0.0/13 maxlen: 13
61.8.0.0/19 maxlen: 19
61.9.128.0/17 maxlen: 17
101.103.0.0/16 maxlen: 16
101.160.0.0/11 maxlen: 11
103.70.56.0/24 maxlen: 24
103.101.135.0/24 maxlen: 24
103.207.92.0/24 maxlen: 24
110.140.0.0/15 maxlen: 15
110.142.0.0/16 maxlen: 16
110.143.0.0/16 maxlen: 16
110.144.0.0/13 maxlen: 13
120.144.0.0/13 maxlen: 13
120.152.0.0/14 maxlen: 14
120.156.0.0/15 maxlen: 15
120.158.0.0/16 maxlen: 16
121.208.0.0/12 maxlen: 12
123.209.0.0/16 maxlen: 16
123.210.0.0/15 maxlen: 15
124.176.0.0/12 maxlen: 12
125.255.0.0/16 maxlen: 16
202.7.64.0/19 maxlen: 19
202.12.128.0/18 maxlen: 18
202.12.192.0/19 maxlen: 19
202.12.224.0/20 maxlen: 20
202.12.240.0/23 maxlen: 23
202.12.242.0/24 maxlen: 24
203.2.228.0/24 maxlen: 24
203.9.190.0/23 maxlen: 23
203.12.42.0/24 maxlen: 24
203.12.144.0/21 maxlen: 21
203.13.21.0/24 maxlen: 24
203.14.0.0/20 maxlen: 20
203.15.68.0/24 maxlen: 24
203.16.180.0/22 maxlen: 22
203.17.40.0/21 maxlen: 21
203.17.162.0/24 maxlen: 24
203.18.76.0/23 maxlen: 23
203.18.112.0/20 maxlen: 20
203.22.129.0/24 maxlen: 24
203.24.134.0/23 maxlen: 23
203.24.170.0/24 maxlen: 24
203.26.8.0/22 maxlen: 22
203.26.175.0/24 maxlen: 24
203.27.69.0/24 maxlen: 24
203.27.128.0/18 maxlen: 18
203.27.237.0/24 maxlen: 24
203.29.160.0/20 maxlen: 20
203.34.33.0/24 maxlen: 24
203.34.68.0/24 maxlen: 24
203.35.0.0/16 maxlen: 16
203.36.0.0/14 maxlen: 14
203.40.0.0/13 maxlen: 13
203.48.0.0/14 maxlen: 14
203.50.251.0/24 maxlen: 24
203.50.252.0/24 maxlen: 24
203.50.253.0/24 maxlen: 24
203.50.254.0/24 maxlen: 24
203.52.0.0/15 maxlen: 15
203.54.0.0/16 maxlen: 16
203.58.32.0/19 maxlen: 19
203.58.64.0/18 maxlen: 18
203.58.128.0/17 maxlen: 17
203.62.148.0/22 maxlen: 22
203.62.248.0/21 maxlen: 21
203.92.224.0/19 maxlen: 24
203.100.224.0/19 maxlen: 19
203.143.192.0/18 maxlen: 18
203.143.192.0/19 maxlen: 19
203.143.224.0/19 maxlen: 19
210.23.128.0/19 maxlen: 19
2001:df2:b880::/48 maxlen: 48
2001:8000::/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl
rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 00:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5070 (0x13ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916A983, serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F
Validity
Not Before: Dec 11 03:18:28 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=69a48387-d8b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2c:b4:fa:ab:71:84:d0:33:7e:f7:1f:bf:41:
11:42:b3:84:10:66:d4:ec:23:e1:8e:b7:fe:14:a1:
55:1f:ad:d4:be:82:4a:35:9c:1a:bf:7b:f1:4a:2b:
7f:e6:22:c2:fe:33:bd:97:3c:9e:ce:be:61:fd:01:
fc:2d:60:92:a2:c9:b8:cc:31:9c:0f:f9:db:f2:19:
27:22:71:94:32:3e:f2:94:a2:1b:4e:ac:5f:41:a0:
2c:f1:f4:5f:fb:30:23:57:db:61:9c:6e:20:da:cd:
60:92:7e:23:80:fd:b4:3f:23:56:22:6b:c0:63:74:
0e:f1:99:cf:f9:e1:1a:52:2f:3f:c0:b3:57:72:21:
2f:cf:e6:2a:b1:5a:c8:0b:57:05:14:3e:3d:0c:78:
15:a3:a7:c4:d5:c8:96:75:bb:bf:e1:a4:3a:28:fe:
36:20:57:ef:f3:ff:73:60:41:bc:fe:45:71:57:10:
6c:cb:37:b5:4c:42:ec:82:01:44:92:cb:d3:76:b3:
cd:06:96:19:46:c1:da:43:d8:be:cb:dd:28:29:9d:
e5:80:3e:af:9f:cd:1a:b8:1a:5e:8b:51:2a:8b:a7:
91:95:8f:49:5a:65:72:d9:04:19:27:fd:02:46:c7:
74:bb:7e:53:4f:3a:4d:ab:f2:34:6b:88:e4:6e:27:
31:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:38:B4:53:7D:BB:BE:05:60:9D:B1:6C:B2:29:56:F0:9E:8B:30:DC
X509v3 Authority Key Identifier:
keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/6E0B5938066711EFA1505F46C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
1.120.0.0-1.159.255.255
58.160.0.0/12
60.224.0.0/13
61.8.0.0/19
61.9.128.0/17
101.103.0.0/16
101.160.0.0/11
103.70.56.0/24
103.101.135.0/24
103.207.92.0/24
110.140.0.0-110.151.255.255
120.144.0.0-120.158.255.255
121.208.0.0/12
123.209.0.0-123.211.255.255
124.176.0.0/12
125.255.0.0/16
202.7.64.0/19
202.12.128.0-202.12.242.255
203.2.228.0/24
203.9.190.0/23
203.12.42.0/24
203.12.144.0/21
203.13.21.0/24
203.14.0.0/20
203.15.68.0/24
203.16.180.0/22
203.17.40.0/21
203.17.162.0/24
203.18.76.0/23
203.18.112.0/20
203.22.129.0/24
203.24.134.0/23
203.24.170.0/24
203.26.8.0/22
203.26.175.0/24
203.27.69.0/24
203.27.128.0/18
203.27.237.0/24
203.29.160.0/20
203.34.33.0/24
203.34.68.0/24
203.35.0.0-203.54.255.255
203.58.32.0-203.58.255.255
203.62.148.0/22
203.62.248.0/21
203.92.224.0/19
203.100.224.0/19
203.143.192.0/18
210.23.128.0/19
IPv6:
2001:df2:b880::/48
2001:8000::/20
Signature Algorithm: sha256WithRSAEncryption
9c:45:46:1f:68:7b:c0:d9:6b:fe:21:0c:ce:54:ed:53:08:c6:
83:ca:70:e6:ec:cd:08:ad:26:ef:93:fd:a2:67:67:9c:26:f3:
b7:ac:d8:57:28:9a:a3:d5:6f:c9:a6:d3:4f:02:95:a7:ac:bf:
7c:4e:15:19:95:9b:d1:fc:61:e8:44:01:5f:46:f3:42:d5:c3:
22:00:9a:25:6e:5b:37:b8:0e:49:14:fd:11:b8:8d:5a:ed:ce:
03:a4:9b:1c:1b:db:8e:8c:6e:2d:ee:cf:db:29:3b:a4:1c:d9:
ea:e4:46:84:ba:d5:44:3a:da:f6:4e:5f:3e:ac:cc:e8:0f:7e:
c0:6a:62:e9:f2:77:ff:87:c1:b4:18:8b:68:88:51:05:3c:2f:
18:f5:c6:95:be:e2:69:ae:d6:e6:aa:f9:a0:35:42:02:ff:0e:
48:df:fe:06:b0:bb:0a:94:fb:c3:f0:b8:fa:1e:32:b8:39:66:
1e:d6:db:ca:8f:81:37:e9:a3:c1:5e:b7:ff:86:2f:2f:62:5c:
90:0f:40:5d:0b:65:27:45:8c:30:0e:78:83:fc:a0:8d:60:0b:
39:db:f2:ed:31:86:4b:b1:bf:ac:d9:65:08:53:c1:3a:81:19:
01:89:8d:83:6d:7c:31:02:b1:9e:3b:b4:11:00:2c:33:1d:d0:
c4:59:8b:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:21:26 2026 by rpki-client