Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/01BB1B8E7C0411EFB0D29158C4F9AE02.roa
File: 01BB1B8E7C0411EFB0D29158C4F9AE02.roa (raw, json)
Hash identifier: N2vcKNFtLGxyT8sTe3y49B0d1JYFUCTL5/1GRYF7Kfw=
Subject key identifier: 14:B2:00:1E:28:5E:97:F2:ED:0B:37:6A:3E:11:C9:D5:C2:6C:F9:48
Certificate issuer: /CN=A91D298D/serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF
Certificate serial: 08FF
Authority key identifier: FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/01BB1B8E7C0411EFB0D29158C4F9AE02.roa
Signing time: Thu 12 Feb 2026 20:17:45 +0000
ROA not before: Thu 12 Feb 2026 20:17:45 +0000
ROA not after: Tue 02 Mar 2027 00:00:00 +0000
asID: 138423
IP address blocks: 111.119.175.0/24 maxlen: 24
115.42.72.0/21 maxlen: 24
117.134.192.0/19 maxlen: 24
121.91.56.0/23 maxlen: 24
121.91.60.0/23 maxlen: 24
121.91.62.0/23 maxlen: 24
144.48.0.0/22 maxlen: 24
223.123.0.0/24 maxlen: 24
223.123.32.0/24 maxlen: 24
223.123.33.0/24 maxlen: 24
223.123.34.0/24 maxlen: 24
223.123.35.0/24 maxlen: 24
223.123.36.0/24 maxlen: 24
223.123.37.0/24 maxlen: 24
223.123.38.0/24 maxlen: 24
223.123.39.0/24 maxlen: 24
223.123.40.0/24 maxlen: 24
223.123.41.0/24 maxlen: 24
223.123.42.0/24 maxlen: 24
223.123.43.0/24 maxlen: 24
223.123.44.0/24 maxlen: 24
223.123.45.0/24 maxlen: 24
223.123.46.0/24 maxlen: 24
223.123.47.0/24 maxlen: 24
223.123.48.0/24 maxlen: 24
223.123.49.0/24 maxlen: 24
223.123.66.0/24 maxlen: 24
223.123.67.0/24 maxlen: 24
223.123.76.0/24 maxlen: 24
223.123.77.0/24 maxlen: 24
223.123.78.0/23 maxlen: 24
223.123.100.0/23 maxlen: 24
223.123.102.0/23 maxlen: 24
223.123.122.0/23 maxlen: 24
223.123.124.0/23 maxlen: 24
223.123.126.0/23 maxlen: 24
2402:ad80:c0::/44 maxlen: 48
2402:ad80:d0::/44 maxlen: 48
2402:ad80:e0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl
rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Feb 2026 20:11:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2303 (0x8ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D298D, serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF
Validity
Not Before: Feb 12 20:17:45 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=698e3569-ad25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:05:63:52:ca:5c:60:0d:2d:54:44:f2:f8:2a:
6b:fc:f4:f5:32:5b:29:df:21:cd:c5:e8:c2:46:be:
e1:a8:0d:f6:96:a2:8c:fd:79:03:17:f7:1e:03:68:
55:33:14:ae:5b:36:1e:a6:24:8a:d3:35:7e:57:e9:
5c:17:bb:2e:36:41:e7:9b:cc:db:70:3e:b6:9f:c6:
06:79:d9:df:72:dd:4e:bc:76:dc:21:f8:6e:d9:6a:
a5:65:5e:da:bb:54:34:d6:e6:c1:0d:7b:ae:79:66:
24:ac:5a:13:7f:ee:17:81:27:2e:30:8d:92:72:24:
cf:d7:9a:bb:f6:fe:b5:10:90:10:1e:9a:72:2c:6d:
e1:7c:68:f7:58:19:c4:4f:ad:cd:36:0f:6b:9a:53:
47:e5:db:90:49:95:8a:f7:d2:90:77:77:19:ea:c2:
72:07:41:91:12:3b:ff:15:3a:33:41:1c:76:f5:f4:
dd:3d:20:36:a2:b1:38:9b:f1:14:4f:fc:fd:e7:26:
e8:a3:06:77:1c:ed:3f:56:25:2a:d5:dd:a8:0c:8f:
e0:dd:57:a6:b1:30:e4:63:ba:27:aa:bb:25:55:4c:
5f:60:79:a2:dc:05:be:dd:0e:cf:80:dc:ae:1d:b4:
ee:d7:b1:54:48:7b:22:10:8b:a0:6c:f1:00:d9:27:
6c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B2:00:1E:28:5E:97:F2:ED:0B:37:6A:3E:11:C9:D5:C2:6C:F9:48
X509v3 Authority Key Identifier:
keyid:FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/01BB1B8E7C0411EFB0D29158C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.119.175.0/24
115.42.72.0/21
117.134.192.0/19
121.91.56.0/23
121.91.60.0/22
144.48.0.0/22
223.123.0.0/24
223.123.32.0-223.123.49.255
223.123.66.0/23
223.123.76.0/22
223.123.100.0/22
223.123.122.0-223.123.127.255
IPv6:
2402:ad80:c0::-2402:ad80:ef:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b5:a2:76:01:8e:da:9c:91:37:56:ed:4d:b9:72:7e:fb:db:97:
c3:67:40:12:4e:ab:11:07:72:dc:de:73:33:3a:ba:d8:0d:aa:
25:00:4f:6a:13:6f:a9:0a:33:44:3f:d8:dc:6c:7c:bf:fc:eb:
2d:36:31:fc:da:f1:09:0f:40:bd:0b:43:3c:b4:31:b7:6d:c3:
99:a0:fd:5f:8f:05:82:de:68:63:46:dd:91:63:93:3e:7e:e8:
62:ec:2f:2b:1d:de:88:82:2c:53:f6:b7:dc:b6:66:0d:5d:ca:
64:6d:9d:93:be:cb:ff:8b:fc:b0:9b:3c:8b:68:75:93:e9:ce:
85:9d:6b:68:8b:28:bb:0b:ff:4c:a5:b5:0b:4c:44:b7:e8:99:
5d:72:ac:03:9a:ed:c9:82:e8:4c:2b:59:3d:bd:4e:89:a2:8f:
e9:11:2f:63:0c:51:b2:28:71:77:8f:4c:12:e9:b4:1e:ae:0b:
f8:04:45:76:bd:ad:23:da:28:d7:44:1d:cc:7a:a6:bf:fe:0f:
0a:eb:88:a7:1d:c2:08:d2:a2:1f:e7:31:c1:5e:d2:93:2f:be:
93:0e:c1:9d:ac:f9:15:af:83:ce:5a:58:1b:f3:87:35:8d:d2:
1b:33:62:8f:ef:7e:e8:1e:e2:35:83:2d:41:e0:9f:c9:05:35:
d4:ad:52:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 23:05:10 2026 by rpki-client