Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/6657C8D243B911E9AE253437C4F9AE02.roa
File: 6657C8D243B911E9AE253437C4F9AE02.roa (raw, json)
Hash identifier: TwYATUTcZOqT2PE79Ayni601C0ew8QPNyjOGtV30Eds=
Subject key identifier: ED:8B:88:C6:5A:1C:BD:D9:4E:CA:8F:C8:A7:16:CC:2B:79:7D:11:23
Certificate issuer: /CN=A916CE83/serialNumber=B066E241050C38C349CB25D44014450F4F5018AE
Certificate serial: 10D8
Authority key identifier: B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/6657C8D243B911E9AE253437C4F9AE02.roa
Signing time: Sun 01 Mar 2026 16:26:45 +0000
ROA not before: Mon 16 Feb 2026 17:15:00 +0000
ROA not after: Sat 01 May 2027 00:00:00 +0000
asID: 138600
IP address blocks: 103.134.56.0/22 maxlen: 22
103.134.56.0/23 maxlen: 23
103.134.56.0/24 maxlen: 24
103.134.57.0/24 maxlen: 24
103.134.58.0/23 maxlen: 23
103.134.58.0/24 maxlen: 24
103.134.59.0/24 maxlen: 24
2401:84e0::/32 maxlen: 32
2401:84e0:2::/48 maxlen: 48
2401:84e0:3::/48 maxlen: 48
2401:84e0:4::/48 maxlen: 48
2401:84e0:5::/48 maxlen: 48
2401:84e0:6::/48 maxlen: 48
2401:84e0:7::/48 maxlen: 48
2401:84e0:8::/48 maxlen: 48
2401:84e0:9::/48 maxlen: 48
2401:84e0:a::/48 maxlen: 48
2401:84e0:b::/48 maxlen: 48
2401:84e0:c::/48 maxlen: 48
2401:84e0:d::/48 maxlen: 48
2401:84e0:e::/48 maxlen: 48
2401:84e0:f::/48 maxlen: 48
2401:84e0:10::/48 maxlen: 48
2401:84e0:11::/48 maxlen: 48
2401:84e0:12::/48 maxlen: 48
2401:84e0:13::/48 maxlen: 48
2401:84e0:14::/48 maxlen: 48
2401:84e0:15::/48 maxlen: 48
2401:84e0:16::/48 maxlen: 48
2401:84e0:17::/48 maxlen: 48
2401:84e0:18::/48 maxlen: 48
2401:84e0:19::/48 maxlen: 48
2401:84e0:1a::/48 maxlen: 48
2401:84e0:1b::/48 maxlen: 48
2401:84e0:1c::/48 maxlen: 48
2401:84e0:1d::/48 maxlen: 48
2401:84e0:1e::/48 maxlen: 48
2401:84e0:1f::/48 maxlen: 48
2401:84e0:20::/48 maxlen: 48
2401:84e0:21::/48 maxlen: 48
2401:84e0:22::/48 maxlen: 48
2401:84e0:23::/48 maxlen: 48
2401:84e0:24::/48 maxlen: 48
2401:84e0:25::/48 maxlen: 48
2401:84e0:26::/48 maxlen: 48
2401:84e0:27::/48 maxlen: 48
2401:84e0:28::/48 maxlen: 48
2401:84e0:29::/48 maxlen: 48
2401:84e0:2a::/48 maxlen: 48
2401:84e0:2b::/48 maxlen: 48
2401:84e0:2c::/48 maxlen: 48
2401:84e0:2d::/48 maxlen: 48
2401:84e0:2e::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.crl
rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 00:37:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4312 (0x10d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916CE83, serialNumber=B066E241050C38C349CB25D44014450F4F5018AE
Validity
Not Before: Feb 16 17:15:00 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=69a468c5-6781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2e:52:89:4f:2b:1a:84:5d:52:87:21:2e:84:
32:e4:1e:8d:63:47:a9:dd:ff:ef:f2:1c:8c:51:b4:
1b:3e:08:90:9b:69:30:ce:c0:58:d6:7b:c8:ae:65:
c3:55:f7:54:3d:5b:e9:a1:48:45:e9:36:e1:8b:2e:
5e:e7:99:b1:af:3a:ac:9a:90:c2:13:98:a0:76:0a:
ef:4d:57:c7:5a:bd:e0:d2:d9:c7:0d:fd:f2:be:e3:
b1:e2:ad:ca:d0:32:06:df:f6:6c:a8:c0:ca:a0:f2:
97:93:65:40:94:28:3c:9e:0f:a6:e5:ab:b5:72:04:
94:93:ad:1f:97:f7:a8:eb:48:78:a1:e4:9a:0e:7d:
af:9b:c8:42:c3:06:05:14:e6:6f:c4:74:82:c6:51:
8c:b6:e9:47:6b:a7:8c:39:84:0e:d3:47:6e:dc:de:
5c:c6:1b:2c:9e:4c:2a:b5:c7:12:99:8c:02:47:ff:
5c:e8:f3:9d:5e:b7:a9:27:22:6e:80:bd:ac:cf:56:
d3:2a:e5:37:cb:7a:1b:90:cd:ac:fe:21:a5:f8:c4:
36:cb:a5:8e:c2:5f:95:1c:a4:fb:d4:55:1e:c6:1b:
29:d3:e8:90:70:b5:c4:5b:68:7c:d8:2f:18:a5:d1:
e0:46:1a:c4:ea:05:11:17:5e:cd:0e:a2:80:cb:03:
08:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:8B:88:C6:5A:1C:BD:D9:4E:CA:8F:C8:A7:16:CC:2B:79:7D:11:23
X509v3 Authority Key Identifier:
keyid:B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/6657C8D243B911E9AE253437C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.134.56.0/22
IPv6:
2401:84e0::/32
Signature Algorithm: sha256WithRSAEncryption
84:f7:ba:35:65:11:e1:16:4e:35:0f:f2:0e:69:b1:ca:08:e5:
1d:ec:30:7b:f9:a0:1e:3c:8f:0e:59:18:34:cf:18:e5:fe:2d:
3e:ca:a9:55:0e:75:f3:ad:ab:d6:d5:5b:99:87:94:83:16:77:
9f:fb:b3:1c:4a:82:81:07:f6:ac:d8:62:6a:e7:68:ec:b2:56:
52:5a:ae:8f:37:93:5d:73:e2:a4:e3:59:f0:80:dc:a4:76:16:
98:89:78:24:14:b2:72:73:f6:7d:5a:4e:ad:81:ea:3f:b1:a9:
cd:11:83:f1:21:bf:9c:d8:ae:6f:04:f7:c4:a1:69:12:79:38:
1a:85:c5:c2:3f:cb:aa:6e:9a:04:71:63:91:3f:a4:56:db:05:
fc:51:71:5a:a1:29:37:89:f4:8f:01:bf:27:6e:5e:fb:ed:90:
3d:05:c8:46:3e:d4:98:aa:9f:aa:ef:4f:5b:26:c3:36:e9:04:
c4:b3:1e:3d:27:a4:ba:68:1f:10:80:20:55:9c:eb:36:a5:a9:
9a:ac:f5:1a:d8:91:8c:48:71:9c:c9:9f:5c:b5:da:63:5b:c8:
b7:61:5d:9c:28:51:23:ef:8d:e1:e6:1d:f1:02:ed:69:c9:73:
66:f4:ef:12:65:db:02:c3:1c:a4:2d:d8:5c:93:e5:65:af:3b:
e0:ba:02:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:17:02 2026 by rpki-client