Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa
File: 876FDB56D90211EFB7CAB32BC4F9AE02.roa (raw, json)
Hash identifier: DTZEySVKmptLoQP1xYVI/+Tbh1Zn7f+tRPTYoStPgOs=
Subject key identifier: C0:02:05:F1:68:FD:79:9A:14:89:A7:24:73:79:67:5F:A1:C4:9F:C3
Certificate issuer: /CN=A916BDA4/serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444
Certificate serial: 19AF
Authority key identifier: 04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa
Signing time: Sun 01 Mar 2026 21:25:44 +0000
ROA not before: Wed 25 Feb 2026 16:30:40 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 14789
IP address blocks: 2400:cb00:41::/48 maxlen: 48
2400:cb00:60::/48 maxlen: 48
2400:cb00:96::/48 maxlen: 48
2400:cb00:127::/48 maxlen: 48
2400:cb00:129::/48 maxlen: 48
2400:cb00:142::/48 maxlen: 48
2400:cb00:161::/48 maxlen: 48
2400:cb00:175::/48 maxlen: 48
2400:cb00:179::/48 maxlen: 48
2400:cb00:187::/48 maxlen: 48
2400:cb00:209::/48 maxlen: 48
2400:cb00:214::/48 maxlen: 48
2400:cb00:226::/48 maxlen: 48
2400:cb00:230::/48 maxlen: 48
2400:cb00:234::/48 maxlen: 48
2400:cb00:245::/48 maxlen: 48
2400:cb00:249::/48 maxlen: 48
2400:cb00:258::/48 maxlen: 48
2400:cb00:292::/48 maxlen: 48
2400:cb00:303::/48 maxlen: 48
2400:cb00:344::/48 maxlen: 48
2400:cb00:347::/48 maxlen: 48
2400:cb00:362::/48 maxlen: 48
2400:cb00:406::/48 maxlen: 48
2400:cb00:435::/48 maxlen: 48
2400:cb00:438::/48 maxlen: 48
2400:cb00:439::/48 maxlen: 48
2400:cb00:450::/48 maxlen: 48
2400:cb00:474::/48 maxlen: 48
2400:cb00:477::/48 maxlen: 48
2400:cb00:480::/48 maxlen: 48
2400:cb00:483::/48 maxlen: 48
2400:cb00:516::/48 maxlen: 48
2400:cb00:526::/48 maxlen: 48
2400:cb00:529::/48 maxlen: 48
2400:cb00:530::/48 maxlen: 48
2400:cb00:540::/48 maxlen: 48
2400:cb00:548::/48 maxlen: 48
2400:cb00:561::/48 maxlen: 48
2400:cb00:566::/48 maxlen: 48
2400:cb00:571::/48 maxlen: 48
2400:cb00:589::/48 maxlen: 48
2400:cb00:596::/48 maxlen: 48
2400:cb00:610::/48 maxlen: 48
2400:cb00:611::/48 maxlen: 48
2400:cb00:613::/48 maxlen: 48
2400:cb00:614::/48 maxlen: 48
2400:cb00:616::/48 maxlen: 48
2400:cb00:621::/48 maxlen: 48
2400:cb00:634::/48 maxlen: 48
2400:cb00:638::/48 maxlen: 48
2400:cb00:640::/48 maxlen: 48
2400:cb00:651::/48 maxlen: 48
2400:cb00:659::/48 maxlen: 48
2400:cb00:661::/48 maxlen: 48
2400:cb00:685::/48 maxlen: 48
2400:cb00:687::/48 maxlen: 48
2400:cb00:695::/48 maxlen: 48
2400:cb00:710::/48 maxlen: 48
2400:cb00:734::/48 maxlen: 48
2400:cb00:738::/48 maxlen: 48
2400:cb00:742::/48 maxlen: 48
2400:cb00:743::/48 maxlen: 48
2400:cb00:746::/48 maxlen: 48
2400:cb00:750::/48 maxlen: 48
2400:cb00:751::/48 maxlen: 48
2400:cb00:754::/48 maxlen: 48
2400:cb00:769::/48 maxlen: 48
2400:cb00:770::/48 maxlen: 48
2400:cb00:771::/48 maxlen: 48
2400:cb00:776::/48 maxlen: 48
2400:cb00:787::/48 maxlen: 48
2400:cb00:791::/48 maxlen: 48
2400:cb00:794::/48 maxlen: 48
2400:cb00:902::/48 maxlen: 48
2400:cb00:909::/48 maxlen: 48
2400:cb00:924::/48 maxlen: 48
2400:cb00:934::/48 maxlen: 48
2400:cb00:946::/48 maxlen: 48
2400:cb00:954::/48 maxlen: 48
2400:cb00:968::/48 maxlen: 48
2400:cb00:969::/48 maxlen: 48
2400:cb00:970::/48 maxlen: 48
2400:cb00:1015::/48 maxlen: 48
2400:cb00:1018::/48 maxlen: 48
2400:cb00:1043::/48 maxlen: 48
2400:cb00:1044::/48 maxlen: 48
2400:cb00:1051::/48 maxlen: 48
2400:cb00:1052::/48 maxlen: 48
2400:cb00:1059::/48 maxlen: 48
2400:cb00:1060::/48 maxlen: 48
2400:cb00:1062::/48 maxlen: 48
2400:cb00:1095::/48 maxlen: 48
2400:cb00:1096::/48 maxlen: 48
2400:cb00:1171::/48 maxlen: 48
2400:cb00:1172::/48 maxlen: 48
2400:cb00:1182::/48 maxlen: 48
2400:cb00:1185::/48 maxlen: 48
2400:cb00:1224::/48 maxlen: 48
2400:cb00:1225::/48 maxlen: 48
2400:cb00:1227::/48 maxlen: 48
2400:cb00:1236::/48 maxlen: 48
2400:cb00:1237::/48 maxlen: 48
2400:cb00:1240::/48 maxlen: 48
2400:cb00:1241::/48 maxlen: 48
2400:cb00:1265::/48 maxlen: 48
2400:cb00:1271::/48 maxlen: 48
2400:cb00:1280::/48 maxlen: 48
2400:cb00:1283::/48 maxlen: 48
2400:cb00:c950::/48 maxlen: 48
2400:cb00:c951::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl
rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 02:18:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6575 (0x19af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916BDA4, serialNumber=04E6C9249EE348DCF764DF0B9A40D3E854066444
Validity
Not Before: Feb 25 16:30:40 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69a4aed7-7909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:02:19:6b:87:f9:3e:cd:05:19:ca:d0:28:ca:
51:f7:3f:2f:14:41:33:df:79:a5:01:a9:44:87:eb:
09:bc:ba:e8:7d:8d:01:53:c4:cf:0c:51:9e:72:c4:
b2:4e:50:c8:df:a7:94:b5:46:f1:11:04:ec:db:ac:
4f:38:be:07:9b:82:14:b9:d9:f0:2e:d2:32:df:fe:
7d:ee:d9:b1:dd:fa:2c:70:95:42:72:5c:7a:e1:84:
9e:63:dc:0a:0b:47:76:5c:83:c3:26:5c:ea:2d:b9:
02:70:9b:1f:00:ab:a3:91:45:4b:22:db:89:76:ca:
cb:81:aa:92:7c:3a:99:d4:55:5e:2c:ec:da:75:b8:
e4:52:47:de:29:44:cb:1b:50:d0:56:da:17:8f:62:
5d:27:dd:93:6c:40:f3:3f:55:92:d0:9b:cd:ab:77:
ea:00:e6:b1:b6:14:e4:41:4d:86:05:21:d0:17:c1:
4b:e9:7b:75:39:99:73:72:2e:e5:df:56:cb:8e:b7:
21:08:e2:4e:68:3c:71:3c:98:d6:16:3a:fb:5c:a0:
67:69:5e:18:9c:21:29:c2:be:ef:e1:48:6d:12:50:
ea:9d:93:1e:72:20:5a:df:9b:b6:81:e6:57:63:24:
a9:90:12:76:57:ea:35:28:dd:3e:e3:44:8f:f3:97:
6d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:02:05:F1:68:FD:79:9A:14:89:A7:24:73:79:67:5F:A1:C4:9F:C3
X509v3 Authority Key Identifier:
keyid:04:E6:C9:24:9E:E3:48:DC:F7:64:DF:0B:9A:40:D3:E8:54:06:64:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BObJJJ7jSNz3ZN8LmkDT6FQGZEQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BDA4/1EC702BCF1A711E890F06650C4F9AE02/876FDB56D90211EFB7CAB32BC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv6:
2400:cb00:41::/48
2400:cb00:60::/48
2400:cb00:96::/48
2400:cb00:127::/48
2400:cb00:129::/48
2400:cb00:142::/48
2400:cb00:161::/48
2400:cb00:175::/48
2400:cb00:179::/48
2400:cb00:187::/48
2400:cb00:209::/48
2400:cb00:214::/48
2400:cb00:226::/48
2400:cb00:230::/48
2400:cb00:234::/48
2400:cb00:245::/48
2400:cb00:249::/48
2400:cb00:258::/48
2400:cb00:292::/48
2400:cb00:303::/48
2400:cb00:344::/48
2400:cb00:347::/48
2400:cb00:362::/48
2400:cb00:406::/48
2400:cb00:435::/48
2400:cb00:438::/47
2400:cb00:450::/48
2400:cb00:474::/48
2400:cb00:477::/48
2400:cb00:480::/48
2400:cb00:483::/48
2400:cb00:516::/48
2400:cb00:526::/48
2400:cb00:529::/48
2400:cb00:530::/48
2400:cb00:540::/48
2400:cb00:548::/48
2400:cb00:561::/48
2400:cb00:566::/48
2400:cb00:571::/48
2400:cb00:589::/48
2400:cb00:596::/48
2400:cb00:610::/47
2400:cb00:613::-2400:cb00:614:ffff:ffff:ffff:ffff:ffff
2400:cb00:616::/48
2400:cb00:621::/48
2400:cb00:634::/48
2400:cb00:638::/48
2400:cb00:640::/48
2400:cb00:651::/48
2400:cb00:659::/48
2400:cb00:661::/48
2400:cb00:685::/48
2400:cb00:687::/48
2400:cb00:695::/48
2400:cb00:710::/48
2400:cb00:734::/48
2400:cb00:738::/48
2400:cb00:742::/47
2400:cb00:746::/48
2400:cb00:750::/47
2400:cb00:754::/48
2400:cb00:769::/48
2400:cb00:770::/47
2400:cb00:776::/48
2400:cb00:787::/48
2400:cb00:791::/48
2400:cb00:794::/48
2400:cb00:902::/48
2400:cb00:909::/48
2400:cb00:924::/48
2400:cb00:934::/48
2400:cb00:946::/48
2400:cb00:954::/48
2400:cb00:968::/47
2400:cb00:970::/48
2400:cb00:1015::/48
2400:cb00:1018::/48
2400:cb00:1043::-2400:cb00:1044:ffff:ffff:ffff:ffff:ffff
2400:cb00:1051::-2400:cb00:1052:ffff:ffff:ffff:ffff:ffff
2400:cb00:1059::/48
2400:cb00:1060::/48
2400:cb00:1062::/48
2400:cb00:1095::-2400:cb00:1096:ffff:ffff:ffff:ffff:ffff
2400:cb00:1171::-2400:cb00:1172:ffff:ffff:ffff:ffff:ffff
2400:cb00:1182::/48
2400:cb00:1185::/48
2400:cb00:1224::/47
2400:cb00:1227::/48
2400:cb00:1236::/47
2400:cb00:1240::/47
2400:cb00:1265::/48
2400:cb00:1271::/48
2400:cb00:1280::/48
2400:cb00:1283::/48
2400:cb00:c950::/47
Signature Algorithm: sha256WithRSAEncryption
a6:a7:28:c4:0b:35:9e:d4:a9:22:29:e2:ca:71:0c:2b:0f:a2:
af:8f:a2:00:bd:7a:08:c3:5c:05:2f:4c:85:78:9c:3f:66:0f:
01:2f:b3:c0:44:18:2f:53:62:e1:5a:88:f1:66:81:db:d5:02:
1c:3e:fe:cc:57:7a:19:fc:ab:f0:61:b6:38:39:5b:ff:df:86:
2a:3b:c6:a2:9f:bd:b4:57:bf:a5:78:b6:84:da:04:35:55:21:
4d:cb:1c:1b:2f:5b:1a:73:7f:a5:4f:c5:15:51:bf:b6:7f:a6:
16:3d:4b:79:99:68:22:32:8b:f1:c9:03:33:33:c3:60:74:4d:
7e:00:1e:94:c4:5c:b3:fb:c0:11:01:b4:67:99:77:92:41:9d:
df:16:ee:76:5c:f0:20:45:ae:bb:b1:2d:bd:ae:9c:9c:37:38:
15:b9:77:0a:b3:46:dd:de:1f:09:00:76:9c:f5:8f:bb:8a:fe:
99:c4:9b:a3:5d:e2:71:e3:f6:6d:71:c5:66:28:50:61:74:c2:
6f:56:0d:c6:64:61:de:82:11:bd:21:a7:13:31:17:7a:c5:09:
f4:ba:bd:f8:26:9f:77:cb:45:cc:af:26:69:d1:1a:aa:b7:4a:
95:35:89:05:26:46:df:1c:92:bc:aa:ab:03:61:2c:2c:f7:0b:
a9:b0:fd:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:13:36 2026 by rpki-client