Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
File: C27C0758916B11EF81BBB521C4F9AE02.roa (raw, json)
Hash identifier: abharEjIfA3WUpusM3l0odIFy++JviAq7RA/eFf1Q3M=
Subject key identifier: AA:FB:CF:80:86:AE:2F:4D:8D:07:69:69:13:5C:D7:ED:2C:16:27:33
Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Certificate serial: 022F
Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
Signing time: Sun 01 Mar 2026 18:55:53 +0000
ROA not before: Mon 09 Feb 2026 08:55:08 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 53813
IP address blocks: 101.2.192.0/24 maxlen: 24
101.2.193.0/24 maxlen: 24
101.2.194.0/24 maxlen: 24
101.2.195.0/24 maxlen: 24
101.2.196.0/24 maxlen: 24
101.2.197.0/24 maxlen: 24
101.2.198.0/24 maxlen: 24
101.2.199.0/24 maxlen: 24
101.2.200.0/24 maxlen: 24
101.2.201.0/24 maxlen: 24
101.2.202.0/23 maxlen: 24
101.2.204.0/23 maxlen: 24
101.2.206.0/24 maxlen: 24
101.2.207.0/24 maxlen: 24
101.2.208.0/24 maxlen: 24
101.2.209.0/24 maxlen: 24
101.2.214.0/24 maxlen: 24
101.2.215.0/24 maxlen: 24
101.2.216.0/23 maxlen: 24
101.2.218.0/23 maxlen: 24
101.2.220.0/23 maxlen: 24
101.2.222.0/23 maxlen: 24
101.2.224.0/23 maxlen: 24
101.2.226.0/23 maxlen: 24
101.2.228.0/23 maxlen: 24
101.2.230.0/23 maxlen: 24
101.2.232.0/23 maxlen: 24
101.2.234.0/23 maxlen: 24
101.2.236.0/23 maxlen: 24
101.2.238.0/23 maxlen: 24
101.2.240.0/24 maxlen: 24
101.2.241.0/24 maxlen: 24
101.2.242.0/23 maxlen: 24
101.2.244.0/23 maxlen: 24
101.2.246.0/24 maxlen: 24
101.2.247.0/24 maxlen: 24
101.2.248.0/23 maxlen: 24
101.2.250.0/24 maxlen: 24
175.107.128.0/23 maxlen: 24
175.107.130.0/23 maxlen: 24
175.107.132.0/23 maxlen: 24
175.107.134.0/24 maxlen: 24
175.107.140.0/23 maxlen: 24
175.107.142.0/23 maxlen: 24
175.107.144.0/23 maxlen: 24
175.107.146.0/23 maxlen: 24
175.107.148.0/23 maxlen: 24
175.107.150.0/23 maxlen: 24
175.107.152.0/23 maxlen: 24
175.107.154.0/23 maxlen: 24
175.107.156.0/23 maxlen: 24
175.107.158.0/23 maxlen: 24
175.107.160.0/23 maxlen: 24
175.107.162.0/23 maxlen: 24
175.107.164.0/23 maxlen: 24
175.107.166.0/23 maxlen: 24
175.107.190.0/24 maxlen: 24
2400:7aa0:1200::/40 maxlen: 48
2400:7aa0:1300::/40 maxlen: 48
2400:7aa0:1400::/40 maxlen: 48
2400:7aa0:1500::/40 maxlen: 48
2400:7aa0:1600::/40 maxlen: 48
2400:7aa0:1700::/40 maxlen: 48
2400:7aa0:1800::/40 maxlen: 48
2400:7aa0:1900::/40 maxlen: 48
2400:7aa0:1a00::/40 maxlen: 48
2400:7aa0:1b00::/40 maxlen: 48
2400:7aa0:1c00::/40 maxlen: 48
2400:7aa0:1d00::/40 maxlen: 40
2400:7aa0:1e00::/40 maxlen: 48
2400:7aa0:1f00::/40 maxlen: 48
2400:7aa0:2200::/40 maxlen: 48
2400:7aa0:2300::/40 maxlen: 48
2400:7aa0:2400::/40 maxlen: 48
2400:7aa0:2500::/40 maxlen: 48
2400:7aa0:2600::/40 maxlen: 48
2400:7aa0:2800::/40 maxlen: 48
2400:7aa0:2900::/40 maxlen: 48
2400:7aa0:2b00::/40 maxlen: 48
2400:7aa0:2c00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 18 Mar 2026 03:42:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 559 (0x22f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E
Validity
Not Before: Feb 9 08:55:08 2026 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=69a48bb9-3c9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0e:f9:af:db:60:c0:a6:18:3d:26:36:cc:43:
b0:58:6d:97:1a:8f:10:db:c6:9d:af:a5:82:d7:2c:
08:5a:35:34:a5:5a:47:b8:c9:6a:db:56:a1:c5:fb:
ce:25:16:e9:e3:9e:ee:78:25:23:72:34:ea:a6:09:
ad:55:82:77:20:98:60:43:64:da:c5:0c:37:b7:f9:
d1:ed:8d:5c:8c:05:4e:5c:21:57:55:3e:5f:c7:d4:
b1:c3:12:cf:f0:e8:c3:78:45:48:1e:3f:a0:e7:a0:
71:c2:1a:5a:cd:65:b2:94:82:4a:17:f9:37:04:db:
e0:8a:cb:b4:76:55:80:d8:4c:10:fc:28:45:c8:37:
60:67:9a:82:db:98:8c:7a:a0:97:a1:5b:b5:69:b1:
4f:bf:31:ad:53:4d:bf:ff:65:79:f1:de:f7:ea:4c:
2b:c7:b9:0a:2d:59:d8:de:f5:34:aa:16:f6:d3:69:
b2:cc:c8:c4:68:c6:55:79:87:d1:48:20:ba:44:1f:
ed:e0:f7:3f:6a:3d:74:63:ee:2e:c6:6b:47:38:fc:
63:97:e7:c0:77:53:76:61:c4:82:42:ff:e1:0a:4c:
94:d7:ea:1d:fe:56:2f:5b:d0:d3:13:52:5a:7f:b3:
f6:b1:c1:8e:3d:46:a1:63:22:01:1f:f1:4a:e7:19:
d5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FB:CF:80:86:AE:2F:4D:8D:07:69:69:13:5C:D7:ED:2C:16:27:33
X509v3 Authority Key Identifier:
keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/C27C0758916B11EF81BBB521C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
101.2.192.0-101.2.209.255
101.2.214.0-101.2.250.255
175.107.128.0-175.107.134.255
175.107.140.0-175.107.167.255
175.107.190.0/24
IPv6:
2400:7aa0:1200::-2400:7aa0:1fff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2200::-2400:7aa0:26ff:ffff:ffff:ffff:ffff:ffff
2400:7aa0:2800::/39
2400:7aa0:2b00::-2400:7aa0:2cff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
71:fa:51:de:ad:e9:d4:ba:d7:26:fb:70:6a:f1:39:a6:28:84:
e2:b9:fe:01:e3:e1:50:64:0b:28:e7:61:eb:9e:ca:6e:2c:ba:
fb:8d:7c:0e:9d:96:90:64:27:b7:b9:3b:d0:fc:7d:ac:1f:cc:
75:a2:c8:31:62:17:21:51:a1:bf:e4:47:05:3c:ab:a3:dd:c6:
86:4b:67:c5:2e:af:9e:2b:10:94:b6:f1:9c:b4:ec:83:d2:a3:
b3:0d:d5:54:71:b3:85:e1:da:f6:74:ed:c4:59:28:48:ee:74:
ee:c9:99:2d:9e:b7:62:53:dd:8f:63:4a:0b:0a:e0:17:fa:3c:
0f:17:40:2e:2d:f3:cf:f1:96:42:11:45:f4:19:af:97:83:a5:
e6:e2:92:dc:99:24:d9:e3:9b:09:b0:66:2f:24:1a:2e:c1:99:
59:3e:ba:47:42:b2:40:c3:ef:15:46:32:fd:d0:cf:8b:ef:0f:
9a:5d:98:76:ff:dc:70:b5:d5:ce:ef:08:05:7d:d6:1d:49:90:
19:a3:9b:94:61:88:2a:95:a0:cf:4a:2c:ac:63:01:e8:8a:88:
3b:5c:2c:db:38:b5:07:8e:b5:0a:c5:29:3d:33:df:35:9a:85:
d2:fd:d9:bd:f9:fe:ba:bf:e1:a0:97:bd:31:1f:1b:fe:2f:4a:
5f:72:fd:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 17:17:38 2026 by rpki-client