Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEDF7/DEE2D07C090011EB8523165CC4F9AE02/13901018203F11ECBE18630CC4F9AE02.roa
File: 13901018203F11ECBE18630CC4F9AE02.roa (raw, json)
Hash identifier: wUskAPPCVqddjYoGg4G+0vc+bWX4QO8IFjl2zG0udOM=
Subject key identifier: 68:48:AB:1C:D4:23:88:E0:39:BB:D6:EC:D3:F5:83:0F:BB:90:2D:9C
Certificate issuer: /CN=A91AEDF7/serialNumber=9696C6592C02B503F488D4437CD0AC82C176B376
Certificate serial: 0840
Authority key identifier: 96:96:C6:59:2C:02:B5:03:F4:88:D4:43:7C:D0:AC:82:C1:76:B3:76
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpbGWSwCtQP0iNRDfNCsgsF2s3Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AEDF7/DEE2D07C090011EB8523165CC4F9AE02/13901018203F11ECBE18630CC4F9AE02.roa
Signing time: Sat 14 Feb 2026 21:18:22 +0000
ROA not before: Sat 14 Feb 2026 21:18:22 +0000
ROA not after: Wed 31 Mar 2027 00:00:00 +0000
asID: 55366
IP address blocks: 103.70.172.0/22 maxlen: 23
103.70.172.0/24 maxlen: 24
103.70.173.0/24 maxlen: 24
103.70.174.0/24 maxlen: 24
103.70.175.0/24 maxlen: 24
202.58.229.0/24 maxlen: 24
202.90.38.0/23 maxlen: 23
202.90.38.0/24 maxlen: 24
202.90.39.0/24 maxlen: 24
203.142.223.0/24 maxlen: 24
2406:9c40::/32 maxlen: 40
2406:9c40:1000::/48 maxlen: 48
2406:9c40:1001::/48 maxlen: 48
2406:9c40:1002::/47 maxlen: 47
2406:9c40:1004::/46 maxlen: 46
2406:9c40:1008::/45 maxlen: 45
2406:9c40:1010::/44 maxlen: 44
2406:9c40:1020::/43 maxlen: 43
2406:9c40:1040::/42 maxlen: 42
2406:9c40:1080::/41 maxlen: 41
2406:9c40:2000::/48 maxlen: 48
2406:9c40:2001::/48 maxlen: 48
2406:9c40:2002::/47 maxlen: 47
2406:9c40:2004::/46 maxlen: 46
2406:9c40:2008::/45 maxlen: 45
2406:9c40:2010::/44 maxlen: 44
2406:9c40:2020::/43 maxlen: 43
2406:9c40:2040::/42 maxlen: 42
2406:9c40:2080::/41 maxlen: 41
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AEDF7/DEE2D07C090011EB8523165CC4F9AE02/lpbGWSwCtQP0iNRDfNCsgsF2s3Y.crl
rsync://rpki.apnic.net/member_repository/A91AEDF7/DEE2D07C090011EB8523165CC4F9AE02/lpbGWSwCtQP0iNRDfNCsgsF2s3Y.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpbGWSwCtQP0iNRDfNCsgsF2s3Y.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Feb 2026 20:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2112 (0x840)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AEDF7, serialNumber=9696C6592C02B503F488D4437CD0AC82C176B376
Validity
Not Before: Feb 14 21:18:22 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=6990e69e-db5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:62:95:fa:e2:fc:99:03:4d:55:c1:78:fa:29:
15:34:30:e7:d1:ce:ab:ab:18:c6:1b:c7:98:73:aa:
59:fd:05:32:d8:63:7f:c6:35:bd:3b:f6:95:76:ca:
c7:3b:b2:1f:52:4c:b1:c6:25:5d:3c:94:de:ea:db:
15:8d:77:a4:2f:7e:a8:2f:70:bc:26:a4:89:44:16:
1f:5c:c6:fb:b0:56:79:02:77:ff:9b:1b:66:cf:3c:
1f:c9:77:3a:0f:e3:dd:07:b3:01:f4:8c:ba:64:c0:
5f:c0:3c:7e:21:5d:80:1d:71:e9:38:3e:fb:6b:52:
1a:22:86:56:4e:42:31:ab:4c:06:4c:5e:1c:80:d0:
fe:f2:72:ce:79:3c:ef:25:28:56:3d:0e:2b:61:f4:
57:6a:75:e9:0b:06:00:72:17:dc:39:80:03:d6:b6:
a2:d8:bb:de:9f:49:1c:1f:d6:2e:d7:ef:43:88:76:
b5:08:6e:e2:5c:ef:f7:38:ef:fa:5e:7b:08:ba:ef:
a1:5e:c6:ae:74:e5:b8:0b:95:7c:db:a9:c6:69:4f:
f1:93:e8:df:f1:28:64:bd:e1:9a:58:7d:5e:19:3f:
ef:11:fc:13:93:89:1a:3e:22:18:e8:f9:6b:3a:80:
e7:52:8d:a5:f4:c4:75:8b:c8:a4:83:d3:45:a9:58:
24:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:48:AB:1C:D4:23:88:E0:39:BB:D6:EC:D3:F5:83:0F:BB:90:2D:9C
X509v3 Authority Key Identifier:
keyid:96:96:C6:59:2C:02:B5:03:F4:88:D4:43:7C:D0:AC:82:C1:76:B3:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AEDF7/DEE2D07C090011EB8523165CC4F9AE02/lpbGWSwCtQP0iNRDfNCsgsF2s3Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpbGWSwCtQP0iNRDfNCsgsF2s3Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEDF7/DEE2D07C090011EB8523165CC4F9AE02/13901018203F11ECBE18630CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.70.172.0/22
202.58.229.0/24
202.90.38.0/23
203.142.223.0/24
IPv6:
2406:9c40::/32
Signature Algorithm: sha256WithRSAEncryption
8e:34:e3:69:27:4a:47:40:12:36:83:4a:31:15:82:f2:e9:5e:
19:95:ef:ca:1a:71:41:60:8b:c9:7b:28:bc:76:36:f8:53:ce:
cc:5d:30:8e:59:31:43:cb:20:82:a8:fa:0c:4a:4d:f0:ff:9f:
2f:9e:88:ca:67:9c:4b:b2:7b:0c:1a:7d:c5:51:a4:fc:b5:1a:
ef:74:d4:de:d0:e1:a6:e1:06:e0:37:17:d7:3d:15:d2:41:7c:
2a:65:01:4b:92:4b:ba:59:89:b9:19:44:2c:62:b7:4e:84:0b:
17:15:82:12:4d:42:19:61:7a:9f:ce:c4:8f:51:19:cb:f7:1d:
57:32:35:69:62:21:1b:a9:e0:d5:22:72:8c:b9:44:6e:9f:74:
f2:04:43:6b:01:d5:98:4d:2e:33:74:b2:6f:9c:f5:ce:f5:6c:
8d:92:ea:a9:7d:cb:6d:b4:91:d2:49:87:69:33:58:a3:e0:2b:
24:45:96:32:b6:7d:80:a2:1e:6d:1a:a1:84:b5:0b:28:15:13:
92:8e:28:5b:2d:67:1e:7c:57:95:70:ed:a1:00:59:60:7c:c1:
bb:2c:d5:c7:1a:e9:ce:9a:a6:90:fa:39:88:58:e8:37:9b:66:
e4:b7:e4:74:fe:d5:ab:83:61:8b:04:24:14:93:e9:4e:1e:27:
de:fa:7e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 23:03:10 2026 by rpki-client