Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/566800AE193C11F094773636C4F9AE02.roa
File: 566800AE193C11F094773636C4F9AE02.roa (raw, json)
Hash identifier: mUGpGWO5NBy5obOMz8h6C8xaIpHllmfKh8FGinzOf+E=
Subject key identifier: 12:EC:01:EB:B1:0A:05:E0:FE:30:C7:10:BE:AF:E0:C4:DF:6C:E4:19
Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial: 0D8C
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/566800AE193C11F094773636C4F9AE02.roa
Signing time: Mon 09 Feb 2026 11:18:48 +0000
ROA not before: Mon 09 Feb 2026 11:18:48 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 141030
IP address blocks: 2400:3dc0:41::/48 maxlen: 48
2400:3dc0:42::/48 maxlen: 48
2400:3dc0:44::/48 maxlen: 48
2400:3dc0:47::/48 maxlen: 48
2400:3dc0:48::/48 maxlen: 48
2400:3dc0:4d::/48 maxlen: 48
2400:3dc0:4e::/48 maxlen: 48
2400:3dc0:4f::/48 maxlen: 48
2400:3dc0:50::/48 maxlen: 48
2400:3dc0:51::/48 maxlen: 48
2400:3dc0:52::/48 maxlen: 48
2400:3dc0:53::/48 maxlen: 48
2400:3dc0:54::/48 maxlen: 48
2400:3dc0:55::/48 maxlen: 48
2400:3dc0:59::/48 maxlen: 48
2400:3dc0:5c::/48 maxlen: 48
2400:3dc0:5d::/48 maxlen: 48
2400:3dc0:5e::/48 maxlen: 48
2400:3dc0:5f::/48 maxlen: 48
2400:3dc0:62::/48 maxlen: 48
2400:3dc0:63::/48 maxlen: 48
2400:3dc0:64::/48 maxlen: 48
2400:3dc0:65::/48 maxlen: 48
2400:3dc0:66::/48 maxlen: 48
2400:3dc0:67::/48 maxlen: 48
2400:3dc0:6b::/48 maxlen: 48
2400:3dc0:6d::/48 maxlen: 48
2400:3dc0:6e::/48 maxlen: 48
2400:3dc0:73::/48 maxlen: 48
2400:3dc0:74::/48 maxlen: 48
2400:3dc0:75::/48 maxlen: 48
2400:3dc0:76::/48 maxlen: 48
2400:3dc0:77::/48 maxlen: 48
2400:3dc0:79::/48 maxlen: 48
2400:3dc0:7a::/48 maxlen: 48
2400:3dc0:81::/48 maxlen: 48
2400:3dc0:82::/48 maxlen: 48
2400:3dc0:90::/48 maxlen: 48
2400:3dc0:91::/48 maxlen: 48
2400:3dc0:92::/48 maxlen: 48
2400:3dc0:93::/48 maxlen: 48
2400:3dc0:94::/48 maxlen: 48
2400:3dc0:95::/48 maxlen: 48
2400:3dc0:96::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Feb 2026 17:58:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3468 (0xd8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Validity
Not Before: Feb 9 11:18:48 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=6989c298-a354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:25:5a:92:d4:b6:f0:af:20:14:54:50:eb:0b:
14:63:ff:c7:82:b2:e7:74:fe:8a:6c:73:b2:12:73:
92:ba:8a:33:97:90:dd:19:a3:b3:f8:ea:e7:54:3b:
e1:a1:b2:f2:bd:60:34:e4:ba:53:32:ea:b0:67:fb:
df:d3:cf:0f:bd:a6:5c:3a:65:4c:38:41:22:74:f9:
c4:66:37:40:06:a5:d8:61:cc:32:83:f9:24:49:f7:
ee:f0:07:b5:bb:c3:c8:41:b1:b7:11:ea:ab:48:71:
03:16:6d:69:48:55:e4:60:ba:b9:26:f7:a4:25:a4:
30:59:eb:8d:db:6c:5c:97:63:b1:27:29:9b:d0:cd:
10:97:ee:c2:35:f1:6f:b6:59:b2:cb:45:15:c2:03:
4c:99:5b:30:26:18:95:86:aa:67:31:55:df:37:ee:
8b:a5:11:18:e7:d6:33:c4:67:66:7e:d2:cc:ef:0d:
00:15:ab:d3:05:ba:2c:7e:d7:1a:21:ce:29:fa:16:
3d:1e:f3:11:81:00:1a:64:47:cb:02:c2:c2:fa:47:
13:ff:b8:d7:26:8a:b7:2e:92:45:1c:e8:c3:51:95:
07:e3:55:0b:3a:d5:2c:c8:b2:a2:36:6d:f8:d3:5a:
9a:8d:23:5f:d7:84:58:d4:5e:e6:b7:c8:10:3d:35:
ec:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:EC:01:EB:B1:0A:05:E0:FE:30:C7:10:BE:AF:E0:C4:DF:6C:E4:19
X509v3 Authority Key Identifier:
keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/566800AE193C11F094773636C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:3dc0:41::-2400:3dc0:42:ffff:ffff:ffff:ffff:ffff
2400:3dc0:44::/48
2400:3dc0:47::-2400:3dc0:48:ffff:ffff:ffff:ffff:ffff
2400:3dc0:4d::-2400:3dc0:55:ffff:ffff:ffff:ffff:ffff
2400:3dc0:59::/48
2400:3dc0:5c::/46
2400:3dc0:62::-2400:3dc0:67:ffff:ffff:ffff:ffff:ffff
2400:3dc0:6b::/48
2400:3dc0:6d::-2400:3dc0:6e:ffff:ffff:ffff:ffff:ffff
2400:3dc0:73::-2400:3dc0:77:ffff:ffff:ffff:ffff:ffff
2400:3dc0:79::-2400:3dc0:7a:ffff:ffff:ffff:ffff:ffff
2400:3dc0:81::-2400:3dc0:82:ffff:ffff:ffff:ffff:ffff
2400:3dc0:90::-2400:3dc0:96:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
37:6e:e1:2f:aa:44:90:55:a9:0c:92:7c:77:26:48:d2:66:6b:
c3:31:56:63:21:c6:c9:02:8e:c5:59:6d:95:24:30:4b:90:af:
b3:14:ac:e9:c7:a6:0e:11:00:6c:de:78:f0:bd:77:d7:07:ac:
64:4c:95:76:43:64:16:bc:68:82:07:0d:32:56:67:e8:30:96:
42:ea:8b:7b:9c:a4:ae:1e:39:b3:35:19:8c:76:a8:a6:f6:1e:
d8:1c:52:f9:0e:7c:56:19:05:55:40:34:0a:35:92:70:e7:9c:
13:ca:05:16:2a:f3:da:42:6a:b0:c7:9b:bf:63:ec:aa:6d:c0:
e8:f0:65:eb:f5:9a:eb:f7:f4:3b:3d:8c:18:27:79:2d:ff:e2:
c3:c4:5f:a2:28:3c:06:32:4b:ec:c3:43:26:c2:af:de:10:a6:
06:1c:a9:c8:16:55:59:d4:f8:b9:5c:a2:a0:11:8a:e7:b6:34:
98:32:b5:3c:fa:a3:ac:61:4e:aa:52:16:d8:a0:df:df:25:a9:
e4:19:2d:67:bf:84:49:21:0f:ea:5d:b1:bd:7a:e9:c7:99:bd:
fb:af:fa:fa:42:4c:7c:da:22:07:18:26:89:cd:e6:10:6f:c5:
25:de:35:b5:6f:ba:63:0a:c8:2b:51:b3:b4:d1:ed:d4:1a:2f:
66:ee:02:00
-----BEGIN CERTIFICATE-----
MIIGSDCCBTCgAwIBAgICDYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB
RjYyREVGRkQwHhcNMjYwMjA5MTExODQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDDA02OTg5YzI5OC1hMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsSVaktS28K8gFFRQ6wsUY//HgrLndP6KbHOyEnOSuoozl5DdGaOz+OrnVDvh
obLyvWA05LpTMuqwZ/vf088PvaZcOmVMOEEidPnEZjdABqXYYcwyg/kkSffu8Ae1
u8PIQbG3EeqrSHEDFm1pSFXkYLq5JvekJaQwWeuN22xcl2OxJymb0M0Ql+7CNfFv
tlmyy0UVwgNMmVswJhiVhqpnMVXfN+6LpREY59YzxGdmftLM7w0AFavTBbosftca
Ic4p+hY9HvMRgQAaZEfLAsLC+kcT/7jXJoq3LpJFHOjDUZUH41ULOtUsyLKiNm34
01qajSNf14RY1F7mt8gQPTXs5QIDAQABo4IDbDCCA2gwHQYDVR0OBBYEFBLsAeux
CgXg/jDHEL6v4MTfbOQZMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2
QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3
XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUQ3NUMvMkJDNUZENDAwNkMwMTFFQUJDNDNCNzA5QzRGOUFFMDIvNTY2ODAwQUUx
OTNDMTFGMDk0NzczNjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgfUGCCsGAQUFBwEHAQH/
BIHlMIHiMIHfBAIAAjCB2DASAwcAJAA9wABBAwcAJAA9wABCAwcAJAA9wABEMBID
BwAkAD3AAEcDBwAkAD3AAEgwEgMHACQAPcAATQMHASQAPcAAVAMHACQAPcAAWQMH
AiQAPcAAXDASAwcBJAA9wABiAwcDJAA9wABgAwcAJAA9wABrMBIDBwAkAD3AAG0D
BwAkAD3AAG4wEgMHACQAPcAAcwMHAyQAPcAAcDASAwcAJAA9wAB5AwcAJAA9wAB6
MBIDBwAkAD3AAIEDBwAkAD3AAIIwEgMHBCQAPcAAkAMHACQAPcAAljANBgkqhkiG
9w0BAQsFAAOCAQEAN27hL6pEkFWpDJJ8dyZI0mZrwzFWYyHGyQKOxVltlSQwS5Cv
sxSs6cemDhEAbN548L131wesZEyVdkNkFrxoggcNMlZn6DCWQuqLe5ykrh45szUZ
jHaopvYe2BxS+Q58VhkFVUA0CjWScOecE8oFFirz2kJqsMebv2Psqm3A6PBl6/Wa
6/f0Oz2MGCd5Lf/iw8Rfoig8BjJL7MNDJsKv3hCmBhypyBZVWdT4uVyioBGK57Y0
mDK1PPqjrGFOqlIW2KDf3yWp5BktZ7+ESSEP6l2xvXrpx5m9+6/6+kJMfNoiBxgm
ic3mEG/FJd41tW+6YwrIK1GztNHt1BovZu4CAA==
-----END CERTIFICATE-----
Generated at Fri Feb 20 01:34:50 2026 by rpki-client