Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/755E6B82D21C11EEA166891AC4F9AE02.roa
File: 755E6B82D21C11EEA166891AC4F9AE02.roa (raw, json)
Hash identifier: lBUP0TSzebAFXmoSTqeDqtFMO8rYhPyrBUR141U167M=
Subject key identifier: 71:BE:91:F6:6A:75:48:1E:03:3F:09:44:F4:C6:D3:75:B0:D5:9A:86
Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Certificate serial: 03D3
Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/755E6B82D21C11EEA166891AC4F9AE02.roa
Signing time: Sun 01 Mar 2026 18:13:38 +0000
ROA not before: Wed 03 Sep 2025 03:20:10 +0000
ROA not after: Sat 31 Oct 2026 00:00:00 +0000
asID: 136787
IP address blocks: 43.225.80.0/24 maxlen: 24
43.225.81.0/24 maxlen: 24
43.225.82.0/24 maxlen: 24
43.225.83.0/24 maxlen: 24
45.113.96.0/24 maxlen: 24
45.113.97.0/24 maxlen: 24
45.113.98.0/24 maxlen: 24
45.113.99.0/24 maxlen: 24
45.120.48.0/24 maxlen: 24
45.120.49.0/24 maxlen: 24
45.120.50.0/24 maxlen: 24
45.120.51.0/24 maxlen: 24
103.44.212.0/24 maxlen: 24
103.44.213.0/24 maxlen: 24
103.44.214.0/24 maxlen: 24
103.44.215.0/24 maxlen: 24
103.50.28.0/24 maxlen: 24
103.50.29.0/24 maxlen: 24
103.50.30.0/24 maxlen: 24
103.50.31.0/24 maxlen: 24
103.52.248.0/24 maxlen: 24
103.52.249.0/24 maxlen: 24
103.52.250.0/24 maxlen: 24
103.52.251.0/24 maxlen: 24
103.108.0.0/24 maxlen: 24
103.108.1.0/24 maxlen: 24
103.109.74.0/24 maxlen: 24
103.109.75.0/24 maxlen: 24
103.110.144.0/24 maxlen: 24
103.110.145.0/24 maxlen: 24
103.110.146.0/24 maxlen: 24
103.110.147.0/24 maxlen: 24
103.114.56.0/24 maxlen: 24
103.114.57.0/24 maxlen: 24
103.119.244.0/24 maxlen: 24
103.119.247.0/24 maxlen: 24
103.221.233.0/24 maxlen: 24
139.5.88.0/24 maxlen: 24
139.5.89.0/24 maxlen: 24
139.5.90.0/24 maxlen: 24
139.5.91.0/24 maxlen: 24
160.20.8.0/24 maxlen: 24
160.20.9.0/24 maxlen: 24
160.20.10.0/24 maxlen: 24
160.20.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl
rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 03:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979 (0x3d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Validity
Not Before: Sep 3 03:20:10 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=69a481d2-0024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:82:26:80:0a:b1:1a:e0:26:01:47:10:5b:3c:
0d:6c:75:63:cf:00:be:9e:d1:d5:3a:aa:45:5c:3d:
80:67:92:2a:87:a1:96:fe:2e:99:40:a3:e6:40:76:
8f:26:d3:86:52:4e:4d:3d:ce:54:ef:a0:f9:c9:31:
93:ab:31:45:a3:34:f9:ff:ab:14:c7:6f:b4:c4:dd:
b2:f0:3a:62:cd:c6:22:ae:4c:ce:72:3c:44:50:19:
05:7e:6e:79:6d:57:d7:da:56:47:f6:79:b5:be:7e:
a2:50:84:d6:ac:a7:c5:77:f2:28:0f:ad:f7:b6:c8:
bd:18:9d:03:55:d0:5b:30:bc:86:1f:bb:c2:c5:cb:
6d:01:4b:d5:99:20:6d:85:cf:9b:40:0a:70:ff:c2:
9c:c2:61:97:e4:25:cd:3b:35:a2:3c:d5:71:d3:df:
7e:cc:3c:38:9e:37:72:35:4f:fe:b7:85:7e:7e:af:
76:bb:42:b0:30:26:b7:02:c1:e1:c1:04:bd:30:70:
ab:84:34:f3:be:6c:b8:83:38:9f:54:74:df:49:24:
2f:b4:b3:de:08:98:67:5a:e8:86:b3:a9:4e:1a:17:
28:66:21:1e:7f:70:98:27:b7:6d:eb:82:ac:75:50:
81:b5:4e:8b:0c:63:a9:6d:91:51:64:ab:56:2b:f3:
e3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BE:91:F6:6A:75:48:1E:03:3F:09:44:F4:C6:D3:75:B0:D5:9A:86
X509v3 Authority Key Identifier:
keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/755E6B82D21C11EEA166891AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
43.225.80.0/22
45.113.96.0/22
45.120.48.0/22
103.44.212.0/22
103.50.28.0/22
103.52.248.0/22
103.108.0.0/23
103.109.74.0/23
103.110.144.0/22
103.114.56.0/23
103.119.244.0/24
103.119.247.0/24
103.221.233.0/24
139.5.88.0/22
160.20.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:2e:9b:86:d0:a7:e0:4b:ab:65:b4:d1:b5:e1:41:b4:dd:a4:
e2:c9:e2:55:0b:21:ef:df:95:d5:8e:71:7b:33:5c:dd:60:bc:
d2:1e:68:58:db:cd:1f:bd:59:fc:1b:2e:66:40:8f:5a:37:cd:
cb:c3:50:ad:62:26:81:a9:86:94:df:2a:68:45:e2:a5:03:93:
3b:aa:8e:7a:86:15:f2:5c:4d:eb:8a:b6:b7:8a:41:0e:55:d1:
e4:23:df:24:8a:4d:b8:d6:7a:fc:42:fc:e7:11:09:6b:f3:81:
83:3a:87:b0:84:ae:40:47:59:f9:1c:bb:f1:aa:00:10:b9:b5:
ce:23:07:f6:0a:2c:f5:a5:e5:b9:50:e1:c1:31:4c:fe:68:7c:
32:0c:7b:8a:ac:71:ee:f8:43:e0:b5:f7:81:0d:26:0d:f9:55:
84:26:c8:25:de:7f:56:17:9e:17:a2:53:c3:05:a5:7c:8b:95:
aa:59:4b:42:33:1a:eb:f4:30:0c:90:3e:7b:d9:f5:65:e0:2e:
c9:8c:fb:b3:54:b2:31:f1:a5:c9:b5:64:61:9d:82:2c:2f:c5:
64:f5:8c:00:5e:55:4f:55:a0:fc:8f:ff:84:2b:e9:f4:9f:0e:
6e:71:b6:ee:0e:55:d9:06:44:c2:8c:33:0e:29:d5:fe:ad:3b:
b3:fc:0b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:33:27 2026 by rpki-client