Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
File: C27C0758916B11EF81BBB521C4F9AE02.roa (raw, json)
Hash identifier: 5Si5GeIdxuqBT1xYZ+d9Dw7Ic1Z+TTOvhLVghjci9UI=
Subject key identifier: D9:29:7F:5A:B1:2B:25:62:E8:BB:67:AE:BD:CD:0D:0B:B9:1E:1A:EE
Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Certificate serial: 01C4
Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
Signing time: Wed 29 Oct 2025 01:18:18 +0000
ROA not before: Wed 29 Oct 2025 01:18:18 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 53813
IP address blocks: 101.2.192.0/24 maxlen: 24
101.2.193.0/24 maxlen: 24
101.2.194.0/24 maxlen: 24
101.2.195.0/24 maxlen: 24
101.2.196.0/24 maxlen: 24
101.2.197.0/24 maxlen: 24
101.2.198.0/24 maxlen: 24
101.2.199.0/24 maxlen: 24
101.2.200.0/24 maxlen: 24
101.2.201.0/24 maxlen: 24
101.2.202.0/23 maxlen: 24
101.2.206.0/24 maxlen: 24
101.2.207.0/24 maxlen: 24
101.2.208.0/24 maxlen: 24
101.2.209.0/24 maxlen: 24
101.2.215.0/24 maxlen: 24
101.2.216.0/23 maxlen: 24
101.2.220.0/23 maxlen: 24
101.2.222.0/23 maxlen: 24
101.2.224.0/23 maxlen: 24
101.2.226.0/23 maxlen: 24
101.2.228.0/23 maxlen: 24
101.2.230.0/23 maxlen: 24
101.2.232.0/23 maxlen: 24
101.2.234.0/23 maxlen: 24
101.2.236.0/23 maxlen: 24
101.2.238.0/23 maxlen: 24
101.2.240.0/24 maxlen: 24
101.2.241.0/24 maxlen: 24
175.107.128.0/23 maxlen: 24
175.107.130.0/23 maxlen: 24
175.107.132.0/23 maxlen: 24
175.107.134.0/24 maxlen: 24
175.107.140.0/23 maxlen: 24
175.107.142.0/23 maxlen: 24
175.107.144.0/23 maxlen: 24
175.107.146.0/23 maxlen: 24
175.107.148.0/23 maxlen: 24
175.107.150.0/23 maxlen: 24
175.107.152.0/23 maxlen: 24
175.107.154.0/23 maxlen: 24
175.107.156.0/23 maxlen: 24
175.107.158.0/23 maxlen: 24
175.107.160.0/23 maxlen: 24
175.107.190.0/24 maxlen: 24
2400:7aa0:1200::/40 maxlen: 48
2400:7aa0:1300::/40 maxlen: 48
2400:7aa0:1400::/40 maxlen: 48
2400:7aa0:1500::/40 maxlen: 48
2400:7aa0:1600::/40 maxlen: 48
2400:7aa0:1700::/40 maxlen: 48
2400:7aa0:1800::/40 maxlen: 48
2400:7aa0:1900::/40 maxlen: 48
2400:7aa0:1a00::/40 maxlen: 48
2400:7aa0:1b00::/40 maxlen: 48
2400:7aa0:1c00::/40 maxlen: 48
2400:7aa0:1d00::/40 maxlen: 40
2400:7aa0:1e00::/40 maxlen: 48
2400:7aa0:1f00::/40 maxlen: 48
2400:7aa0:2200::/40 maxlen: 48
2400:7aa0:2300::/40 maxlen: 48
2400:7aa0:2400::/40 maxlen: 48
2400:7aa0:2500::/40 maxlen: 48
2400:7aa0:2600::/40 maxlen: 48
2400:7aa0:2800::/40 maxlen: 48
2400:7aa0:2900::/40 maxlen: 48
2400:7aa0:2c00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 04:36:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452 (0x1c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Validity
Not Before: Oct 29 01:18:18 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=69016b59-6adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:13:f2:d4:8b:0b:31:0f:cc:3e:63:d4:04:60:
22:1a:13:d5:bd:9c:f5:0a:1a:c5:9d:09:27:dd:cf:
b2:62:a8:37:8a:7f:4f:f2:af:ea:1b:4c:db:34:fd:
20:6f:d1:14:82:8e:8f:9a:25:ae:ec:02:5e:86:11:
83:3c:85:df:f1:14:35:a1:22:1a:57:c4:69:4a:28:
f8:a9:7e:cc:19:61:9a:53:45:58:85:f8:b2:ae:ba:
e4:03:6d:01:65:7f:8a:71:d4:10:ce:d1:a2:43:81:
e4:8c:33:75:0b:7b:77:de:0f:49:de:53:2b:0f:79:
14:1f:d4:66:9d:0a:80:05:0e:ff:c7:88:3b:88:e7:
2e:2f:3d:04:69:a0:e1:ab:97:58:72:56:ba:27:6a:
53:a0:9f:f3:99:8c:46:ea:c2:66:e2:30:94:54:91:
9d:23:db:5e:72:2b:ce:df:5e:ca:f6:ef:2d:3b:9f:
66:87:31:3d:36:d8:ca:51:16:01:95:7f:f8:0c:9f:
82:0e:0e:70:24:b2:f7:d6:94:01:9c:43:63:ef:78:
2b:a7:34:c0:40:13:2b:08:36:d3:34:92:97:d1:bd:
02:27:2c:38:d7:5f:e6:2a:2e:9c:c4:66:e6:d8:59:
08:07:2f:a7:7d:e7:4f:ff:f7:5b:d5:46:7e:16:6a:
20:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:29:7F:5A:B1:2B:25:62:E8:BB:67:AE:BD:CD:0D:0B:B9:1E:1A:EE
X509v3 Authority Key Identifier:
keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.2.192.0-101.2.203.255
101.2.206.0-101.2.209.255
101.2.215.0-101.2.217.255
101.2.220.0-101.2.241.255
175.107.128.0-175.107.134.255
175.107.140.0-175.107.161.255
175.107.190.0/24
IPv6:
2400:7aa0:1200::-2400:7aa0:1fff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2200::-2400:7aa0:26ff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2800::/39
2400:7aa0:2c00::/40
Signature Algorithm: sha256WithRSAEncryption
76:ba:9d:b9:7e:9a:89:28:a1:56:5d:3c:fd:69:fb:5c:57:3d:
61:fd:56:09:d2:98:a0:09:85:9e:69:8a:c9:9f:db:31:8c:62:
bb:9d:87:ba:4a:4a:27:14:ba:be:80:01:16:75:92:a2:1c:72:
70:dd:58:e1:39:5e:06:54:25:e2:b2:85:bc:bd:44:d1:29:e4:
90:28:f5:7a:75:cf:13:30:94:14:23:aa:3f:d0:2f:d0:4f:db:
01:6d:b7:4e:a1:52:35:bc:96:3d:5a:d0:89:1a:bb:ab:16:d1:
b7:62:e1:84:9d:a2:b1:82:9b:73:9d:a2:18:23:2d:ed:e9:aa:
fe:1b:fa:1c:de:1f:f7:6d:e1:e0:62:55:01:34:a5:8a:05:e5:
cc:61:d4:f7:1d:5e:3f:40:9a:13:51:7f:f9:03:03:bf:b3:10:
96:64:ce:06:fb:d4:7b:a6:08:18:fb:bf:19:70:a4:6b:3d:a5:
fc:d2:37:19:11:de:69:eb:c5:c0:56:b9:64:62:25:63:51:12:
39:f0:de:61:53:e1:50:30:6a:51:d2:3d:07:72:fe:0c:e1:81:
54:79:1a:52:de:c1:5d:5b:e2:6a:28:8b:57:37:cf:11:a2:fc:
b9:f6:c9:77:e3:89:be:c7:dc:47:81:9d:8f:62:11:73:e5:0a:
03:a7:e8:5c
-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1
M0NDMDgxMkUwHhcNMjUxMDI5MDExODE4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02OTAxNmI1OS02YWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtBPy1IsLMQ/MPmPUBGAiGhPVvZz1ChrFnQkn3c+yYqg3in9P8q/qG0zbNP0g
b9EUgo6PmiWu7AJehhGDPIXf8RQ1oSIaV8RpSij4qX7MGWGaU0VYhfiyrrrkA20B
ZX+KcdQQztGiQ4HkjDN1C3t33g9J3lMrD3kUH9RmnQqABQ7/x4g7iOcuLz0EaaDh
q5dYcla6J2pToJ/zmYxG6sJm4jCUVJGdI9tecivO317K9u8tO59mhzE9NtjKURYB
lX/4DJ+CDg5wJLL31pQBnENj73grpzTAQBMrCDbTNJKX0b0CJyw411/mKi6cxGbm
2FkIBy+nfedP//db1UZ+FmogjQIDAQABo4IDKDCCAyQwHQYDVR0OBBYEFNkpf1qx
KyVi6Ltnrr3NDQu5HhruMB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC
QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn
UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTcxNjkvNkI3Rjk5M0NFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvQzI3QzA3NTg5
MTZCMTFFRjgxQkJCNTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgbEGCCsGAQUFBwEHAQH/
BIGhMIGeMGAEAgABMFowDAMEBmUCwAMEAmUCyDAMAwQBZQLOAwQBZQLQMAwDBABl
AtcDBAFlAtgwDAMEAmUC3AMEAWUC8DAMAwQHr2uAAwQAr2uGMAwDBAKva4wDBAGv
a6ADBACva74wOgQCAAIwNDAQAwYBJAB6oBIDBgUkAHqgADAQAwYBJAB6oCIDBgAk
AHqgJgMGASQAeqAoAwYAJAB6oCwwDQYJKoZIhvcNAQELBQADggEBAHa6nbl+moko
oVZdPP1p+1xXPWH9VgnSmKAJhZ5pismf2zGMYrudh7pKSicUur6AARZ1kqIccnDd
WOE5XgZUJeKyhby9RNEp5JAo9Xp1zxMwlBQjqj/QL9BP2wFtt06hUjW8lj1a0Ika
u6sW0bdi4YSdorGCm3OdohgjLe3pqv4b+hzeH/dt4eBiVQE0pYoF5cxh1PcdXj9A
mhNRf/kDA7+zEJZkzgb71HumCBj7vxlwpGs9pfzSNxkR3mnrxcBWuWRiJWNREjnw
3mFT4VAwalHSPQdy/gzhgVR5GlLewV1b4mooi1c3zxGi/Ln2yXfjib7H3EeBnY9i
EXPlCgOn6Fw=
-----END CERTIFICATE-----
Generated at Wed Nov 5 02:17:21 2025 by rpki-client