Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/81C0C29CB0F311E5AB30F151C4F9AE02.roa
File: 81C0C29CB0F311E5AB30F151C4F9AE02.roa (raw, json)
Hash identifier: 7bvxWWKxdudrEG3VLjxzRBWxm9dGLRepmUJeS7hFSrM=
Subject key identifier: 4F:EE:0F:B6:CD:D2:18:07:AA:5A:9D:DF:0B:1C:E9:35:2B:A5:76:5A
Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950
Certificate serial: 2549
Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/81C0C29CB0F311E5AB30F151C4F9AE02.roa
Signing time: Mon 30 Mar 2026 16:18:54 +0000
ROA not before: Mon 30 Mar 2026 16:18:54 +0000
ROA not after: Sat 01 May 2027 00:00:00 +0000
asID: 9911
IP address blocks: 202.176.192.0/19 maxlen: 19
202.176.192.0/24 maxlen: 24
202.176.193.0/24 maxlen: 24
202.176.194.0/24 maxlen: 24
202.176.195.0/24 maxlen: 24
202.176.196.0/24 maxlen: 24
202.176.197.0/24 maxlen: 24
202.176.198.0/24 maxlen: 24
202.176.199.0/24 maxlen: 24
202.176.200.0/24 maxlen: 24
202.176.201.0/24 maxlen: 24
202.176.202.0/24 maxlen: 24
202.176.203.0/24 maxlen: 24
202.176.204.0/24 maxlen: 24
202.176.205.0/24 maxlen: 24
202.176.206.0/24 maxlen: 24
202.176.207.0/24 maxlen: 24
202.176.208.0/24 maxlen: 24
202.176.209.0/24 maxlen: 24
202.176.210.0/24 maxlen: 24
202.176.211.0/24 maxlen: 24
202.176.212.0/24 maxlen: 24
202.176.213.0/24 maxlen: 24
202.176.214.0/24 maxlen: 24
202.176.215.0/24 maxlen: 24
202.176.216.0/24 maxlen: 24
202.176.217.0/24 maxlen: 24
202.176.218.0/24 maxlen: 24
202.176.219.0/24 maxlen: 24
202.176.220.0/24 maxlen: 24
202.176.221.0/24 maxlen: 24
202.176.222.0/24 maxlen: 24
202.176.223.0/24 maxlen: 24
203.208.224.0/19 maxlen: 19
203.208.224.0/24 maxlen: 24
203.208.225.0/24 maxlen: 24
203.208.226.0/24 maxlen: 24
203.208.227.0/24 maxlen: 24
203.208.228.0/24 maxlen: 24
203.208.229.0/24 maxlen: 24
203.208.230.0/24 maxlen: 24
203.208.231.0/24 maxlen: 24
203.208.232.0/24 maxlen: 24
203.208.233.0/24 maxlen: 24
203.208.234.0/24 maxlen: 24
203.208.235.0/24 maxlen: 24
203.208.236.0/24 maxlen: 24
203.208.237.0/24 maxlen: 24
203.208.238.0/24 maxlen: 24
203.208.239.0/24 maxlen: 24
203.208.240.0/24 maxlen: 24
203.208.241.0/24 maxlen: 24
203.208.242.0/24 maxlen: 24
203.208.243.0/24 maxlen: 24
203.208.244.0/24 maxlen: 24
203.208.245.0/24 maxlen: 24
203.208.246.0/24 maxlen: 24
203.208.247.0/24 maxlen: 24
203.208.248.0/24 maxlen: 24
203.208.249.0/24 maxlen: 24
203.208.250.0/24 maxlen: 24
203.208.251.0/24 maxlen: 24
203.208.252.0/24 maxlen: 24
203.208.253.0/24 maxlen: 24
203.208.254.0/24 maxlen: 24
203.208.255.0/24 maxlen: 24
2404:5800::/32 maxlen: 32
2404:5800::/40 maxlen: 40
2404:5800:100::/48 maxlen: 48
2404:5800:101::/48 maxlen: 48
2404:5800:102::/48 maxlen: 48
2404:5800:103::/48 maxlen: 48
2404:5800:104::/46 maxlen: 46
2404:5800:104::/48 maxlen: 48
2404:5800:105::/48 maxlen: 48
2404:5800:106::/48 maxlen: 48
2404:5800:107::/48 maxlen: 48
2404:5800:108::/45 maxlen: 45
2404:5800:110::/44 maxlen: 44
2404:5800:120::/43 maxlen: 43
2404:5800:140::/42 maxlen: 42
2404:5800:180::/41 maxlen: 41
2404:5800:200::/39 maxlen: 39
2404:5800:400::/38 maxlen: 38
2404:5800:800::/37 maxlen: 37
2404:5800:1000::/36 maxlen: 36
2404:5800:2000::/35 maxlen: 35
2404:5800:4000::/34 maxlen: 34
2404:5800:8000::/33 maxlen: 33
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl
rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Apr 2026 15:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9545 (0x2549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950
Validity
Not Before: Mar 30 16:18:54 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=69caa26e-5672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:cc:b5:34:01:ad:e0:b6:da:56:8d:3b:42:70:
c8:7c:4f:27:87:82:61:2b:70:12:b2:a8:33:7f:da:
88:2f:29:a3:4e:39:81:f6:84:dc:f4:e9:3d:b9:f2:
11:32:23:a7:db:07:98:5f:63:62:55:19:df:67:79:
d0:86:8b:75:a4:28:b4:41:34:22:0e:91:e3:07:54:
89:4d:9f:61:ea:e0:9b:bf:83:a9:0f:35:68:1e:b3:
35:55:67:a6:21:5c:ed:b3:f9:d1:d3:28:d0:26:6e:
ff:6d:46:a7:0d:f2:2c:35:d1:16:7a:db:b9:fd:87:
2f:b6:8d:80:95:6f:22:8a:2a:88:2a:f4:8c:61:33:
30:28:39:55:04:f4:d2:9e:de:88:2d:59:86:d8:f4:
f9:ec:fd:f5:85:3c:62:62:cb:63:b4:cf:82:1c:0e:
a4:46:5d:72:44:b4:cf:a1:44:33:6f:23:70:13:5a:
45:26:25:c7:35:95:63:5e:7b:e0:61:a8:b4:47:08:
f9:40:ed:b9:0b:e1:5f:d4:34:82:25:a7:85:f8:fd:
a3:b7:77:46:3d:75:27:22:6c:4e:c7:6b:9c:8d:ff:
03:99:30:5f:1e:6a:ef:46:22:5f:76:37:15:4c:83:
fa:f5:c0:bb:29:25:e1:2c:33:d3:11:d8:df:48:e0:
72:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EE:0F:B6:CD:D2:18:07:AA:5A:9D:DF:0B:1C:E9:35:2B:A5:76:5A
X509v3 Authority Key Identifier:
keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/81C0C29CB0F311E5AB30F151C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
202.176.192.0/19
203.208.224.0/19
IPv6:
2404:5800::/32
Signature Algorithm: sha256WithRSAEncryption
01:da:6e:cf:e3:cf:e5:68:a9:ba:3c:c4:36:7e:5a:62:5d:f8:
d2:5b:f8:6b:1f:2c:d4:8f:75:eb:6c:73:e0:2c:f3:bd:eb:26:
f9:4c:e0:80:15:3f:f5:ca:67:65:88:90:06:7e:56:c4:ae:67:
b6:86:31:08:d3:93:07:a7:be:86:5f:f3:a7:dd:61:fd:a5:64:
7a:f2:10:fe:62:66:9d:c4:81:1f:b2:28:08:92:df:68:75:af:
47:54:06:5e:bf:87:9a:4e:ba:29:b0:cc:11:7c:b3:31:05:56:
1b:70:0d:3b:45:68:4a:95:83:8c:d6:a3:8f:6a:16:ea:6e:97:
0e:ea:1e:6c:94:37:7d:1f:d4:50:90:1f:93:f2:66:d0:2b:e3:
52:f5:5b:85:9a:db:14:44:95:86:2f:47:70:df:98:54:10:f1:
ad:25:7b:f1:35:3c:d9:ec:89:0d:ee:56:ac:94:95:2c:39:8a:
4e:c6:29:77:79:92:0b:28:b0:9c:3f:4f:ec:4e:8b:6a:0e:f5:
eb:73:7f:c4:3d:a2:73:f6:3d:67:d0:90:b7:1a:d0:56:0e:c8:
88:26:29:7f:e3:ba:ea:b4:fd:7d:39:0f:72:56:69:f6:86:44:
81:75:8b:36:27:b6:ad:01:cd:52:58:5c:c2:13:93:25:93:ea:
fe:d1:80:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:00:30 2026 by rpki-client