Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/65519ACC506C11EC99354984C4F9AE02.roa
File: 65519ACC506C11EC99354984C4F9AE02.roa (raw, json)
Hash identifier: RUyuEctg4/Am0QwU2pg5MIeSUn2EMvD6dbv5q2LTMOM=
Subject key identifier: 3A:E6:BB:3A:AA:82:12:D5:CF:6F:50:1D:A2:9F:D9:47:56:B5:63:52
Certificate issuer: /CN=A91D298D/serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF
Certificate serial: 0900
Authority key identifier: FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/65519ACC506C11EC99354984C4F9AE02.roa
Signing time: Thu 12 Feb 2026 20:17:46 +0000
ROA not before: Thu 12 Feb 2026 20:17:46 +0000
ROA not after: Tue 02 Mar 2027 00:00:00 +0000
asID: 59257
IP address blocks: 43.243.132.0/22 maxlen: 24
45.116.232.0/22 maxlen: 24
103.255.4.0/22 maxlen: 22
103.255.4.0/23 maxlen: 24
103.255.6.0/23 maxlen: 24
111.119.168.0/21 maxlen: 24
111.119.176.0/20 maxlen: 20
111.119.176.0/21 maxlen: 21
111.119.176.0/22 maxlen: 24
111.119.180.0/22 maxlen: 24
111.119.184.0/21 maxlen: 21
111.119.184.0/22 maxlen: 24
111.119.188.0/22 maxlen: 24
121.91.32.0/19 maxlen: 24
144.48.0.0/22 maxlen: 24
203.189.224.0/22 maxlen: 24
223.123.0.0/17 maxlen: 24
2402:ad80::/36 maxlen: 36
2402:ad80::/44 maxlen: 48
2402:ad80:10::/44 maxlen: 48
2402:ad80:20::/44 maxlen: 48
2402:ad80:60::/44 maxlen: 48
2402:ad80:70::/44 maxlen: 48
2402:ad80:80::/44 maxlen: 48
2402:ad80:90::/44 maxlen: 48
2402:ad80:a0::/44 maxlen: 48
2402:ad80:b0::/44 maxlen: 48
2402:ad80:f0::/44 maxlen: 48
2402:ad80:100::/44 maxlen: 48
2402:ad80:110::/44 maxlen: 48
2402:ad80:120::/44 maxlen: 48
2402:ad80:130::/44 maxlen: 48
2402:ad80:140::/44 maxlen: 48
2402:ad80:1b0::/44 maxlen: 48
2402:ad80:1f0::/44 maxlen: 48
2402:ad80:1000::/36 maxlen: 36
2402:ad80:2000::/36 maxlen: 36
2402:ad80:3000::/36 maxlen: 36
2402:ad80:4000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl
rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Feb 2026 20:11:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D298D, serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF
Validity
Not Before: Feb 12 20:17:46 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=698e356a-e22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:09:90:a5:7d:ee:37:6b:36:eb:75:53:73:68:
44:77:1a:62:c3:57:30:a2:74:72:32:6f:81:10:bd:
3f:9c:5c:c1:43:86:44:08:3f:ed:4b:47:c6:6f:63:
70:38:30:f4:ba:0d:6e:7b:12:26:6b:2a:96:2e:7e:
46:99:bf:f7:0b:ba:80:48:f3:15:44:2c:a7:f2:02:
14:02:43:db:c7:31:8d:50:e5:e6:db:c4:a9:6a:ad:
db:5b:de:d6:ce:89:62:90:11:38:8d:b0:72:1a:17:
e6:c2:c6:44:cf:dd:d8:53:14:35:03:5d:2c:33:df:
67:7d:07:52:74:81:ba:b4:8f:eb:db:75:16:a8:1a:
6f:81:dd:7e:2d:b3:57:14:6d:5d:10:e4:cc:6c:22:
25:b7:63:7a:ce:3d:38:99:00:de:3a:36:7d:a2:7b:
9e:9a:ae:62:48:d9:dc:e7:71:c8:f9:42:37:94:37:
7d:18:70:e1:7a:2a:ac:37:43:40:73:30:a6:9a:4e:
d9:ee:e9:91:6e:b8:60:f5:f0:3c:f2:8d:ed:c7:0a:
8b:52:3b:f6:7b:21:f8:de:03:e5:95:3b:29:ba:d3:
b2:a3:13:ac:94:e0:8a:6e:31:08:57:bf:76:19:27:
6c:02:0b:0b:f3:b7:45:5d:af:aa:54:b7:94:f5:86:
f4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E6:BB:3A:AA:82:12:D5:CF:6F:50:1D:A2:9F:D9:47:56:B5:63:52
X509v3 Authority Key Identifier:
keyid:FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/65519ACC506C11EC99354984C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.243.132.0/22
45.116.232.0/22
103.255.4.0/22
111.119.168.0-111.119.191.255
121.91.32.0/19
144.48.0.0/22
203.189.224.0/22
223.123.0.0/17
IPv6:
2402:ad80::-2402:ad80:4fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
99:7a:0a:b9:10:2d:24:3d:a4:64:1b:43:f2:c5:ab:54:38:a3:
9d:78:77:8e:04:15:64:8c:22:a0:9d:c2:c9:a0:60:d9:fb:d7:
df:51:99:0e:94:c2:ca:f5:27:c5:7a:52:22:f3:14:b5:f3:98:
cb:2f:97:26:e8:eb:6e:92:36:4a:a6:32:bf:f5:b6:76:5d:d6:
91:42:28:eb:80:a1:7a:45:dc:69:81:18:69:6c:9e:9d:2b:00:
f5:4b:dd:de:ea:11:ee:3e:11:1b:f5:39:1a:76:b4:67:7c:c8:
0e:94:d1:8a:a9:58:aa:65:05:cb:94:de:8c:61:bf:0b:f4:96:
83:15:ca:51:65:bc:8e:8c:0c:a5:d1:8c:35:35:e7:ea:b6:98:
5f:73:d9:23:da:a1:b0:8d:4b:06:27:c5:f7:22:de:77:8e:1e:
ff:cd:80:e6:94:cc:cb:5a:06:c7:53:c6:3e:dd:14:81:a7:37:
8a:97:86:b9:fc:ba:8e:88:49:0a:49:42:6d:4c:0a:47:d9:60:
85:79:3e:51:1e:9d:32:28:b0:bf:25:16:28:ad:1f:58:19:7e:
91:55:68:67:b1:8e:ea:d0:77:9e:1c:ff:fa:08:31:0d:e6:d4:
59:7b:7c:ba:7f:af:76:8a:cb:a2:e5:d0:3b:e8:35:79:8b:54:
f5:59:5a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 23:04:55 2026 by rpki-client