Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
File: C27C0758916B11EF81BBB521C4F9AE02.roa (raw, json)
Hash identifier: IugrFVsMfQ5flOInvw/LvSXqPFD0ruYcbI2/lqKfFK0=
Subject key identifier: 7E:14:65:CF:BF:B5:90:7E:89:FE:D1:B7:1F:94:07:5B:32:AF:B8:88
Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Certificate serial: 021E
Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
Signing time: Mon 09 Feb 2026 08:55:08 +0000
ROA not before: Mon 09 Feb 2026 08:55:08 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 53813
IP address blocks: 101.2.192.0/24 maxlen: 24
101.2.193.0/24 maxlen: 24
101.2.194.0/24 maxlen: 24
101.2.195.0/24 maxlen: 24
101.2.196.0/24 maxlen: 24
101.2.197.0/24 maxlen: 24
101.2.198.0/24 maxlen: 24
101.2.199.0/24 maxlen: 24
101.2.200.0/24 maxlen: 24
101.2.201.0/24 maxlen: 24
101.2.202.0/23 maxlen: 24
101.2.204.0/23 maxlen: 24
101.2.206.0/24 maxlen: 24
101.2.207.0/24 maxlen: 24
101.2.208.0/24 maxlen: 24
101.2.209.0/24 maxlen: 24
101.2.214.0/24 maxlen: 24
101.2.215.0/24 maxlen: 24
101.2.216.0/23 maxlen: 24
101.2.218.0/23 maxlen: 24
101.2.220.0/23 maxlen: 24
101.2.222.0/23 maxlen: 24
101.2.224.0/23 maxlen: 24
101.2.226.0/23 maxlen: 24
101.2.228.0/23 maxlen: 24
101.2.230.0/23 maxlen: 24
101.2.232.0/23 maxlen: 24
101.2.234.0/23 maxlen: 24
101.2.236.0/23 maxlen: 24
101.2.238.0/23 maxlen: 24
101.2.240.0/24 maxlen: 24
101.2.241.0/24 maxlen: 24
101.2.242.0/23 maxlen: 24
101.2.244.0/23 maxlen: 24
101.2.246.0/24 maxlen: 24
101.2.247.0/24 maxlen: 24
101.2.248.0/23 maxlen: 24
101.2.250.0/24 maxlen: 24
175.107.128.0/23 maxlen: 24
175.107.130.0/23 maxlen: 24
175.107.132.0/23 maxlen: 24
175.107.134.0/24 maxlen: 24
175.107.140.0/23 maxlen: 24
175.107.142.0/23 maxlen: 24
175.107.144.0/23 maxlen: 24
175.107.146.0/23 maxlen: 24
175.107.148.0/23 maxlen: 24
175.107.150.0/23 maxlen: 24
175.107.152.0/23 maxlen: 24
175.107.154.0/23 maxlen: 24
175.107.156.0/23 maxlen: 24
175.107.158.0/23 maxlen: 24
175.107.160.0/23 maxlen: 24
175.107.162.0/23 maxlen: 24
175.107.164.0/23 maxlen: 24
175.107.166.0/23 maxlen: 24
175.107.190.0/24 maxlen: 24
2400:7aa0:1200::/40 maxlen: 48
2400:7aa0:1300::/40 maxlen: 48
2400:7aa0:1400::/40 maxlen: 48
2400:7aa0:1500::/40 maxlen: 48
2400:7aa0:1600::/40 maxlen: 48
2400:7aa0:1700::/40 maxlen: 48
2400:7aa0:1800::/40 maxlen: 48
2400:7aa0:1900::/40 maxlen: 48
2400:7aa0:1a00::/40 maxlen: 48
2400:7aa0:1b00::/40 maxlen: 48
2400:7aa0:1c00::/40 maxlen: 48
2400:7aa0:1d00::/40 maxlen: 40
2400:7aa0:1e00::/40 maxlen: 48
2400:7aa0:1f00::/40 maxlen: 48
2400:7aa0:2200::/40 maxlen: 48
2400:7aa0:2300::/40 maxlen: 48
2400:7aa0:2400::/40 maxlen: 48
2400:7aa0:2500::/40 maxlen: 48
2400:7aa0:2600::/40 maxlen: 48
2400:7aa0:2800::/40 maxlen: 48
2400:7aa0:2900::/40 maxlen: 48
2400:7aa0:2b00::/40 maxlen: 48
2400:7aa0:2c00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 05:49:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 542 (0x21e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Validity
Not Before: Feb 9 08:55:08 2026 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=6989a0eb-c131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1f:57:05:55:8f:0d:1c:31:2f:cc:20:8d:41:
e2:a1:71:e9:6e:78:07:2c:3b:fc:4b:b4:44:23:a8:
1a:67:b4:8e:7c:65:36:e1:7d:e9:ed:fd:90:50:63:
f3:6a:20:a2:d9:92:1b:af:62:80:f3:20:27:af:9c:
be:76:e6:0f:b5:1b:12:e9:ef:28:4d:f7:bb:25:9f:
c6:6f:e1:3e:e9:a8:01:20:6d:3a:34:3d:49:12:65:
a8:d6:77:4f:64:48:40:db:4f:9f:db:58:47:ae:0a:
0e:b4:84:78:62:be:10:b5:a8:b7:d3:e4:d3:82:43:
f8:c6:35:ee:1c:63:60:e5:f5:84:4e:af:61:0d:21:
11:bb:77:c0:a4:37:0b:86:46:c9:48:77:37:4b:e0:
5e:86:20:67:b1:d8:c1:ca:4e:e1:68:ab:29:4c:e4:
48:26:4d:35:04:08:b0:71:0d:a6:a6:ab:2c:fd:c9:
b5:34:d5:55:74:54:e1:5a:b2:23:73:63:a4:ee:45:
30:d7:8c:5b:cf:8f:30:89:f8:64:64:2b:86:68:e7:
df:4b:ad:02:88:46:1e:9e:fb:98:62:44:e3:ce:c3:
8b:d5:19:01:ee:b5:7f:52:67:85:71:3f:b7:81:04:
dc:f1:8a:21:85:92:cd:49:4a:ee:fc:31:a1:19:6e:
03:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:14:65:CF:BF:B5:90:7E:89:FE:D1:B7:1F:94:07:5B:32:AF:B8:88
X509v3 Authority Key Identifier:
keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.2.192.0-101.2.209.255
101.2.214.0-101.2.250.255
175.107.128.0-175.107.134.255
175.107.140.0-175.107.167.255
175.107.190.0/24
IPv6:
2400:7aa0:1200::-2400:7aa0:1fff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2200::-2400:7aa0:26ff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2800::/39
2400:7aa0:2b00::-2400:7aa0:2cff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
64:1c:2e:6f:5c:cf:6a:af:3a:a6:d4:42:86:42:a8:67:1f:33:
d7:71:7f:dc:30:48:88:1d:ff:ed:2e:4c:89:0e:2b:cb:68:2f:
b9:09:1c:19:04:79:fb:6d:05:1a:cc:7e:ab:e9:0b:25:7c:89:
e7:1f:50:50:bd:b2:1f:47:57:ef:35:5f:91:f2:c1:72:d3:20:
14:b6:6e:e4:93:95:d6:ae:93:14:77:b2:44:a2:63:31:40:84:
21:ef:de:8f:68:75:ef:9f:72:c7:a6:e6:8c:67:91:62:8a:19:
91:b2:3b:09:ef:1a:b6:da:9b:1f:b8:d2:89:a3:87:2a:b6:87:
70:92:eb:89:2f:02:91:e0:35:0e:00:d0:a6:4a:c4:c6:e8:e7:
c8:88:70:56:cb:04:32:b1:d7:56:8d:fe:2b:82:6f:4f:73:07:
b6:a2:48:1f:bc:7c:be:c0:21:c6:d8:87:03:50:62:60:14:8c:
cf:3d:bb:e6:88:35:e5:8e:9f:dc:87:83:9b:96:90:4c:f6:14:
01:08:60:60:87:f0:ca:40:5b:43:2a:b9:89:17:2f:2b:dd:ff:
c9:30:7d:1e:dd:eb:fe:c1:7a:4a:10:da:d4:a2:74:c7:ba:a2:
ab:20:64:12:0a:c3:6a:d3:f6:b5:57:a8:fc:14:d7:07:9a:48:
6d:e0:7e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:02:27 2026 by rpki-client