Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
File: C27C0758916B11EF81BBB521C4F9AE02.roa (raw, json)
Hash identifier: gjlEzPcpt95Koz1B8Laf3MWdcH8rM8YQoA0JWj88zfs=
Subject key identifier: B6:5A:7A:F4:BF:29:AD:27:D4:94:B1:53:6D:53:BD:11:80:A3:90:21
Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Certificate serial: 026A
Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
Signing time: Fri 05 Jun 2026 03:02:37 +0000
ROA not before: Fri 05 Jun 2026 03:02:37 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 53813
IP address blocks: 101.2.192.0/24 maxlen: 24
101.2.193.0/24 maxlen: 24
101.2.194.0/24 maxlen: 24
101.2.195.0/24 maxlen: 24
101.2.196.0/24 maxlen: 24
101.2.197.0/24 maxlen: 24
101.2.198.0/24 maxlen: 24
101.2.199.0/24 maxlen: 24
101.2.200.0/24 maxlen: 24
101.2.201.0/24 maxlen: 24
101.2.202.0/23 maxlen: 24
101.2.204.0/23 maxlen: 24
101.2.206.0/24 maxlen: 24
101.2.207.0/24 maxlen: 24
101.2.208.0/24 maxlen: 24
101.2.209.0/24 maxlen: 24
101.2.214.0/24 maxlen: 24
101.2.215.0/24 maxlen: 24
101.2.216.0/23 maxlen: 24
101.2.218.0/23 maxlen: 24
101.2.220.0/23 maxlen: 24
101.2.222.0/23 maxlen: 24
101.2.224.0/23 maxlen: 24
101.2.226.0/23 maxlen: 24
101.2.228.0/23 maxlen: 24
101.2.230.0/23 maxlen: 24
101.2.232.0/23 maxlen: 24
101.2.234.0/23 maxlen: 24
101.2.236.0/23 maxlen: 24
101.2.238.0/23 maxlen: 24
101.2.240.0/24 maxlen: 24
101.2.241.0/24 maxlen: 24
101.2.242.0/23 maxlen: 24
101.2.244.0/23 maxlen: 24
101.2.246.0/24 maxlen: 24
101.2.247.0/24 maxlen: 24
101.2.248.0/23 maxlen: 24
101.2.250.0/24 maxlen: 24
175.107.128.0/23 maxlen: 24
175.107.130.0/23 maxlen: 24
175.107.132.0/23 maxlen: 24
175.107.134.0/24 maxlen: 24
175.107.136.0/23 maxlen: 24
175.107.138.0/23 maxlen: 24
175.107.140.0/23 maxlen: 24
175.107.142.0/23 maxlen: 24
175.107.144.0/23 maxlen: 24
175.107.146.0/23 maxlen: 24
175.107.148.0/23 maxlen: 24
175.107.150.0/23 maxlen: 24
175.107.152.0/23 maxlen: 24
175.107.154.0/23 maxlen: 24
175.107.156.0/23 maxlen: 24
175.107.158.0/23 maxlen: 24
175.107.160.0/23 maxlen: 24
175.107.162.0/23 maxlen: 24
175.107.164.0/23 maxlen: 24
175.107.166.0/23 maxlen: 24
175.107.170.0/23 maxlen: 24
175.107.172.0/23 maxlen: 24
175.107.174.0/23 maxlen: 24
175.107.176.0/23 maxlen: 24
175.107.178.0/23 maxlen: 24
175.107.184.0/23 maxlen: 24
175.107.186.0/23 maxlen: 24
175.107.190.0/24 maxlen: 24
2400:7aa0:1200::/40 maxlen: 48
2400:7aa0:1300::/40 maxlen: 48
2400:7aa0:1400::/40 maxlen: 48
2400:7aa0:1500::/40 maxlen: 48
2400:7aa0:1600::/40 maxlen: 48
2400:7aa0:1700::/40 maxlen: 48
2400:7aa0:1800::/40 maxlen: 48
2400:7aa0:1900::/40 maxlen: 48
2400:7aa0:1a00::/40 maxlen: 48
2400:7aa0:1b00::/40 maxlen: 48
2400:7aa0:1c00::/40 maxlen: 48
2400:7aa0:1d00::/40 maxlen: 40
2400:7aa0:1e00::/40 maxlen: 48
2400:7aa0:1f00::/40 maxlen: 48
2400:7aa0:2200::/40 maxlen: 48
2400:7aa0:2300::/40 maxlen: 48
2400:7aa0:2400::/40 maxlen: 48
2400:7aa0:2500::/40 maxlen: 48
2400:7aa0:2600::/40 maxlen: 48
2400:7aa0:2800::/40 maxlen: 48
2400:7aa0:2900::/40 maxlen: 48
2400:7aa0:2b00::/40 maxlen: 48
2400:7aa0:2c00::/40 maxlen: 48
2400:7aa0:2e00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 04:13:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 618 (0x26a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Validity
Not Before: Jun 5 03:02:37 2026 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=6a223c4d-9aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:89:61:78:0c:e6:cc:20:01:43:e8:49:ab:2b:
d1:0e:14:9f:f4:98:8d:13:4f:f9:d2:c5:b5:68:fc:
b8:37:68:a1:64:34:87:75:c2:3a:ce:d7:2f:aa:08:
26:0d:56:7e:fa:5f:12:a2:4d:22:3b:84:e4:c4:ae:
54:1b:8a:73:cd:8e:82:94:ec:f7:26:30:5d:70:51:
20:8d:9a:83:3c:7d:98:ad:3e:18:99:29:80:86:0b:
c2:38:b9:a3:a3:f1:d4:73:d8:31:2a:30:db:83:93:
99:04:a6:c5:b5:1b:55:a4:3f:72:07:3f:cf:e1:0d:
5b:79:44:a8:6d:05:c2:35:9c:95:a4:4e:8a:3d:89:
1c:68:aa:d3:8e:3b:8c:aa:f5:98:68:90:4e:71:8c:
36:c1:0d:74:6a:eb:ee:c2:a0:75:f7:0d:5d:88:39:
06:5c:62:89:d9:11:58:66:6d:79:43:9e:62:5e:5f:
b2:04:63:6d:8c:fc:cf:36:ad:1b:5a:62:d0:90:33:
33:50:44:cd:0f:5c:c7:bf:1e:d9:c1:58:50:9c:a7:
53:99:b4:82:1f:c1:8f:04:48:fa:5f:d5:2f:90:ce:
1b:37:58:4c:8d:fc:3f:54:2c:64:2e:58:25:a6:d9:
9a:5a:8c:db:22:12:6f:7d:90:f6:99:45:75:cc:41:
5d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5A:7A:F4:BF:29:AD:27:D4:94:B1:53:6D:53:BD:11:80:A3:90:21
X509v3 Authority Key Identifier:
keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
101.2.192.0-101.2.209.255
101.2.214.0-101.2.250.255
175.107.128.0-175.107.134.255
175.107.136.0-175.107.167.255
175.107.170.0-175.107.179.255
175.107.184.0/22
175.107.190.0/24
IPv6:
2400:7aa0:1200::-2400:7aa0:1fff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2200::-2400:7aa0:26ff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2800::/39
2400:7aa0:2b00::-2400:7aa0:2cff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2e00::/40
Signature Algorithm: sha256WithRSAEncryption
17:4c:bd:60:78:31:5f:33:7e:29:0f:13:8c:bf:51:ec:b4:38:
e3:01:c8:a6:37:a7:74:3d:bf:22:c2:c9:d1:22:75:cb:ea:a5:
7a:8b:87:ad:93:5e:1b:cb:70:5a:f2:5b:44:53:84:e2:ac:d2:
a8:30:28:b5:86:9a:2f:fd:01:7a:e3:e2:7f:ef:b8:96:01:86:
f8:f4:8e:28:df:89:26:e4:68:17:02:c9:1e:ab:e3:7e:20:8b:
3f:d5:10:c2:64:16:63:58:c7:d2:22:b1:dd:9d:b4:e6:8f:65:
ee:fe:f4:26:a9:0c:0a:9d:fa:38:b2:a8:56:df:bb:2d:7b:3f:
42:6b:ec:bb:35:93:e8:dd:1f:bf:b4:6b:51:55:7f:45:b8:5f:
a3:5a:4b:99:8e:7f:3e:37:95:55:30:e7:00:ea:42:30:09:c2:
96:1e:ab:44:60:b8:83:e7:f8:e1:d9:a9:94:fa:75:ee:58:db:
88:da:bb:5a:23:cd:63:c2:ca:5c:d3:09:83:4b:de:94:15:32:
fa:37:ec:3f:e2:52:0c:5c:e7:60:35:46:8f:4e:2d:4c:04:40:
64:cb:b9:57:5f:e4:48:0c:73:0b:e1:df:cf:16:e2:ec:a0:2b:
02:d8:e7:78:e6:1b:54:09:fd:47:33:3e:ff:ec:41:ea:8f:33:
e6:93:13:25
-----BEGIN CERTIFICATE-----
MIIF2TCCBMGgAwIBAgICAmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1
M0NDMDgxMkUwHhcNMjYwNjA1MDMwMjM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTIyM2M0ZC05YWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA44lheAzmzCABQ+hJqyvRDhSf9JiNE0/50sW1aPy4N2ihZDSHdcI6ztcvqggm
DVZ++l8Sok0iO4TkxK5UG4pzzY6ClOz3JjBdcFEgjZqDPH2YrT4YmSmAhgvCOLmj
o/HUc9gxKjDbg5OZBKbFtRtVpD9yBz/P4Q1beUSobQXCNZyVpE6KPYkcaKrTjjuM
qvWYaJBOcYw2wQ10auvuwqB19w1diDkGXGKJ2RFYZm15Q55iXl+yBGNtjPzPNq0b
WmLQkDMzUETND1zHvx7ZwVhQnKdTmbSCH8GPBEj6X9UvkM4bN1hMjfw/VCxkLlgl
ptmaWozbIhJvfZD2mUV1zEFd2wIDAQABo4IC/TCCAvkwHQYDVR0OBBYEFLZaevS/
Ka0n1JSxU21TvRGAo5AhMB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC
QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn
UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTcxNjkvNkI3Rjk5M0NFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvQzI3QzA3NTg5
MTZCMTFFRjgxQkJCNTIxQzRGOUFFMDIucm9hMIG7BggrBgEFBQcBBwEB/wSBqzCB
qDBYBAIAATBSMAwDBAZlAsADBAFlAtAwDAMEAWUC1gMEAGUC+jAMAwQHr2uAAwQA
r2uGMAwDBAOva4gDBAOva6AwDAMEAa9rqgMEAq9rsAMEAq9ruAMEAK9rvjBMBAIA
AjBGMBADBgEkAHqgEgMGBSQAeqAAMBADBgEkAHqgIgMGACQAeqAmAwYBJAB6oCgw
EAMGACQAeqArAwYAJAB6oCwDBgAkAHqgLjANBgkqhkiG9w0BAQsFAAOCAQEAF0y9
YHgxXzN+KQ8TjL9R7LQ44wHIpjendD2/IsLJ0SJ1y+qleouHrZNeG8twWvJbRFOE
4qzSqDAotYaaL/0BeuPif++4lgGG+PSOKN+JJuRoFwLJHqvjfiCLP9UQwmQWY1jH
0iKx3Z205o9l7v70JqkMCp36OLKoVt+7LXs/QmvsuzWT6N0fv7RrUVV/Rbhfo1pL
mY5/PjeVVTDnAOpCMAnClh6rRGC4g+f44dmplPp17ljbiNq7WiPNY8LKXNMJg0ve
lBUy+jfsP+JSDFznYDVGj04tTARAZMu5V1/kSAxzC+Hfzxbi7KArAtjneOYbVAn9
RzM+/+xB6o8z5pMTJQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 17:50:22 2026 by rpki-client