Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/56D3C71687AB11F095613811C4F9AE02.roa
File: 56D3C71687AB11F095613811C4F9AE02.roa (raw, json)
Hash identifier: Mxo0z+ysJoAQdzlHRU4CrtCAa5FpIsW6UR1WiHJTam4=
Subject key identifier: 0D:81:36:FF:D1:8C:FA:73:03:78:73:A8:7A:0D:2B:97:99:FD:04:17
Certificate issuer: /CN=A9115F15/serialNumber=AB535E132884BCA345F7AF6913AB0A397765E7A9
Certificate serial: 07C5
Authority key identifier: AB:53:5E:13:28:84:BC:A3:45:F7:AF:69:13:AB:0A:39:77:65:E7:A9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q1NeEyiEvKNF969pE6sKOXdl56k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/56D3C71687AB11F095613811C4F9AE02.roa
Signing time: Mon 16 Feb 2026 21:18:21 +0000
ROA not before: Mon 16 Feb 2026 21:18:21 +0000
ROA not after: Wed 31 Mar 2027 00:00:00 +0000
asID: 18200
IP address blocks: 43.224.192.0/22 maxlen: 22
43.224.195.0/24 maxlen: 24
61.5.208.0/20 maxlen: 20
61.5.208.0/24 maxlen: 24
101.101.0.0/18 maxlen: 18
103.43.156.0/22 maxlen: 22
114.69.192.0/19 maxlen: 19
114.69.192.0/22 maxlen: 22
114.69.200.0/22 maxlen: 22
114.69.204.0/24 maxlen: 24
114.69.208.0/21 maxlen: 21
114.69.216.0/22 maxlen: 22
180.214.96.0/19 maxlen: 19
180.214.96.0/22 maxlen: 22
202.87.128.0/19 maxlen: 19
202.87.129.0/24 maxlen: 24
202.87.135.0/24 maxlen: 24
202.87.138.0/24 maxlen: 24
202.87.140.0/22 maxlen: 22
202.87.144.0/22 maxlen: 22
202.87.151.0/24 maxlen: 24
202.87.156.0/24 maxlen: 24
2404:2200::/32 maxlen: 32
2404:2200:10::/48 maxlen: 48
2404:2200:17::/48 maxlen: 48
2404:2200:22::/48 maxlen: 48
2404:2200:24::/46 maxlen: 46
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/q1NeEyiEvKNF969pE6sKOXdl56k.crl
rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/q1NeEyiEvKNF969pE6sKOXdl56k.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q1NeEyiEvKNF969pE6sKOXdl56k.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Feb 2026 20:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1989 (0x7c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9115F15, serialNumber=AB535E132884BCA345F7AF6913AB0A397765E7A9
Validity
Not Before: Feb 16 21:18:21 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=6993899d-1648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ac:a2:2b:a0:37:cf:df:ef:03:c3:93:73:5a:
42:70:dc:7a:38:8c:10:87:e2:a4:d1:9e:b6:2a:ee:
de:6a:dd:42:ad:a2:e6:8c:8e:04:e6:b2:9c:08:30:
39:ee:a8:e9:7c:c5:d9:a8:88:e1:cd:9d:c0:59:24:
c7:0e:be:b1:00:a9:4f:83:d5:d3:03:58:30:2f:40:
f7:1a:ae:b7:b5:a2:7e:52:20:9c:ee:be:fd:5d:ed:
22:b6:31:c1:e5:66:83:f5:f9:50:a1:c8:65:89:8c:
23:1c:79:33:0a:61:3d:11:68:9b:c9:68:3e:8f:39:
a7:50:11:a3:f6:4f:6f:61:1a:92:75:11:95:fe:35:
ce:f0:7c:0d:70:39:b0:46:96:c1:09:c0:83:13:77:
70:3f:61:e0:63:39:d9:02:fc:f7:00:bd:d7:2d:28:
29:ca:97:bc:9f:f4:7d:e9:4e:00:84:39:ec:bc:98:
30:d1:33:6c:16:15:4e:68:5c:0c:f1:cb:14:c0:ed:
79:15:cc:01:6c:a1:f0:f0:88:4f:9c:ce:35:38:f8:
dd:6b:81:73:c4:9c:aa:0a:95:f9:8f:94:6d:66:f1:
a7:a7:9f:84:9b:26:46:63:d0:55:4a:09:4e:e3:ca:
5a:ab:37:32:77:ec:60:6c:bf:a3:5c:b6:77:78:a2:
95:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:81:36:FF:D1:8C:FA:73:03:78:73:A8:7A:0D:2B:97:99:FD:04:17
X509v3 Authority Key Identifier:
keyid:AB:53:5E:13:28:84:BC:A3:45:F7:AF:69:13:AB:0A:39:77:65:E7:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/q1NeEyiEvKNF969pE6sKOXdl56k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q1NeEyiEvKNF969pE6sKOXdl56k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/56D3C71687AB11F095613811C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.192.0/22
61.5.208.0/20
101.101.0.0/18
103.43.156.0/22
114.69.192.0/19
180.214.96.0/19
202.87.128.0/19
IPv6:
2404:2200::/32
Signature Algorithm: sha256WithRSAEncryption
65:2b:c0:f1:20:a7:9e:ad:76:43:d9:b7:c8:82:99:75:98:21:
d6:b1:5f:d3:aa:8f:c1:77:33:c8:e9:ef:ab:2e:2f:fa:89:fe:
2d:d6:23:04:0e:bd:4a:01:cf:7e:07:f5:b8:d4:66:b6:db:e0:
ab:50:11:70:7a:b8:d9:09:20:45:90:bc:4b:af:f0:60:5c:b1:
44:11:aa:f9:fe:e1:8a:48:44:a0:f6:9e:99:29:5a:81:4e:d7:
13:95:20:20:43:aa:d9:75:04:49:6f:28:99:92:3a:c2:aa:89:
2b:0e:a3:da:a1:95:aa:ba:6e:da:ec:da:03:a4:ec:01:38:53:
e7:e4:51:a0:7f:33:f4:44:93:b9:9a:66:4e:25:18:39:21:c1:
00:f3:34:90:98:fa:1f:df:34:d2:38:37:87:e2:ea:58:c3:57:
c2:15:a4:ca:bc:b8:43:33:3d:d1:29:60:12:54:32:55:aa:64:
b7:60:63:6e:6a:4c:4a:a2:43:51:e4:02:65:09:05:aa:34:4c:
7f:8d:01:73:3e:1c:09:ac:d0:97:9f:6f:e8:0e:33:80:b2:2c:
f1:fb:47:d8:c9:7e:e6:0d:36:c0:7c:72:c6:23:18:2d:fd:9e:
b7:2e:d8:76:44:c9:27:2d:0b:a1:9a:f7:15:dc:c5:fa:8f:be:
28:67:4a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 04:00:04 2026 by rpki-client