Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
File: B7BC1B76506A11EDBB3A804AC4F9AE02.roa (raw, json)
Hash identifier: Z0VkCYZ1R/4kbKogoS7s0rDtQor1LJugR/SNxu4FzT0=
Subject key identifier: 6A:55:CB:D6:93:42:44:8A:E7:10:96:3C:FC:4A:BE:AE:CB:75:8A:2E
Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Certificate serial: 0811
Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
Signing time: Wed 11 Mar 2026 09:12:44 +0000
ROA not before: Wed 11 Mar 2026 09:12:43 +0000
ROA not after: Wed 31 Mar 2027 00:00:00 +0000
asID: 38166
IP address blocks: 166.81.5.0/24 maxlen: 24
166.81.9.0/24 maxlen: 24
166.81.10.0/24 maxlen: 24
166.81.11.0/24 maxlen: 24
166.81.12.0/24 maxlen: 24
166.81.13.0/24 maxlen: 24
166.81.14.0/24 maxlen: 24
166.81.15.0/24 maxlen: 24
166.81.16.0/24 maxlen: 24
166.81.17.0/24 maxlen: 24
166.81.18.0/24 maxlen: 24
166.81.19.0/24 maxlen: 24
166.81.20.0/24 maxlen: 24
166.81.21.0/24 maxlen: 24
166.81.22.0/24 maxlen: 24
166.81.23.0/24 maxlen: 24
166.81.24.0/24 maxlen: 24
166.81.25.0/24 maxlen: 24
166.81.26.0/24 maxlen: 24
166.81.27.0/24 maxlen: 24
166.81.28.0/24 maxlen: 24
166.81.29.0/24 maxlen: 24
166.81.30.0/24 maxlen: 24
166.81.31.0/24 maxlen: 24
166.81.33.0/24 maxlen: 24
166.81.34.0/24 maxlen: 24
166.81.35.0/24 maxlen: 24
166.81.38.0/24 maxlen: 24
166.81.39.0/24 maxlen: 24
166.81.40.0/24 maxlen: 24
166.81.51.0/24 maxlen: 24
166.81.52.0/24 maxlen: 24
166.81.53.0/24 maxlen: 24
166.81.54.0/24 maxlen: 24
166.81.55.0/24 maxlen: 24
166.81.56.0/24 maxlen: 24
166.81.57.0/24 maxlen: 24
166.81.58.0/24 maxlen: 24
166.81.59.0/24 maxlen: 24
166.81.60.0/24 maxlen: 24
166.81.61.0/24 maxlen: 24
166.81.62.0/24 maxlen: 24
166.81.65.0/24 maxlen: 24
166.81.66.0/24 maxlen: 24
166.81.67.0/24 maxlen: 24
166.81.68.0/24 maxlen: 24
166.81.69.0/24 maxlen: 24
166.81.70.0/24 maxlen: 24
166.81.77.0/24 maxlen: 24
166.81.78.0/24 maxlen: 24
166.81.79.0/24 maxlen: 24
166.81.80.0/24 maxlen: 24
166.81.81.0/24 maxlen: 24
166.81.83.0/24 maxlen: 24
166.81.84.0/24 maxlen: 24
166.81.85.0/24 maxlen: 24
166.81.87.0/24 maxlen: 24
166.81.88.0/24 maxlen: 24
166.81.89.0/24 maxlen: 24
166.81.90.0/24 maxlen: 24
166.81.91.0/24 maxlen: 24
166.81.95.0/24 maxlen: 24
166.81.96.0/24 maxlen: 24
166.81.97.0/24 maxlen: 24
166.81.98.0/24 maxlen: 24
166.81.99.0/24 maxlen: 24
166.81.100.0/24 maxlen: 24
166.81.101.0/24 maxlen: 24
166.81.102.0/24 maxlen: 24
166.81.103.0/24 maxlen: 24
166.81.104.0/24 maxlen: 24
166.81.105.0/24 maxlen: 24
166.81.106.0/24 maxlen: 24
166.81.246.0/24 maxlen: 24
166.81.247.0/24 maxlen: 24
166.81.248.0/24 maxlen: 24
166.81.249.0/24 maxlen: 24
166.81.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl
rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 31 Mar 2026 21:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2065 (0x811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC31B, serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Validity
Not Before: Mar 11 09:12:43 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=69b1320b-26c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:77:d1:4e:ed:9b:ba:2c:6f:5c:be:6e:ef:50:
f8:23:ea:02:49:28:b4:61:34:bb:79:84:4c:c0:6f:
4d:63:fa:29:b0:bc:98:9e:55:fe:73:a1:18:24:bf:
a9:9a:af:70:dc:58:f6:1a:8a:fa:7c:59:ec:0e:e6:
67:63:ce:25:d7:b9:b2:5e:19:f1:64:16:22:67:fd:
3d:47:bf:21:bf:99:40:e6:d8:e3:2b:93:4c:e7:25:
d8:54:e3:49:e7:33:48:ba:bf:38:7c:02:f5:04:ae:
96:37:7d:f6:59:d9:0b:03:6b:8e:e2:e7:78:a4:3b:
69:8a:55:9c:a4:6e:86:7f:5f:d0:8b:04:6d:b5:0b:
ae:9a:ad:dd:94:52:8f:f2:81:fd:85:8e:fd:01:ee:
8c:8d:28:b6:73:6f:54:c8:7b:e2:7f:f7:da:f1:ad:
bb:24:69:46:e3:dc:49:29:e7:21:5a:62:8e:e5:62:
9a:5a:cb:5d:25:61:bb:03:bf:17:33:e3:de:21:a4:
78:db:37:b7:64:4e:8c:6d:0b:20:17:be:48:c9:26:
30:51:9a:75:91:a5:89:4a:9c:d6:7d:34:ed:57:6c:
dd:b0:61:24:0d:b0:09:4c:01:1f:19:2b:4f:20:b2:
85:ea:25:b8:52:5f:d9:b7:4b:64:3d:62:78:77:9f:
f9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:55:CB:D6:93:42:44:8A:E7:10:96:3C:FC:4A:BE:AE:CB:75:8A:2E
X509v3 Authority Key Identifier:
keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
166.81.5.0/24
166.81.9.0-166.81.31.255
166.81.33.0-166.81.35.255
166.81.38.0-166.81.40.255
166.81.51.0-166.81.62.255
166.81.65.0-166.81.70.255
166.81.77.0-166.81.81.255
166.81.83.0-166.81.85.255
166.81.87.0-166.81.91.255
166.81.95.0-166.81.106.255
166.81.246.0-166.81.250.255
Signature Algorithm: sha256WithRSAEncryption
1c:94:b4:f4:f3:80:0e:e7:1c:02:f4:79:8d:ee:e6:66:93:68:
27:da:75:86:32:40:76:f4:de:42:40:91:2a:bc:09:e3:ba:d2:
b6:f1:94:00:91:fa:7f:ad:c1:cf:78:c1:b5:91:62:8d:6d:48:
f0:2a:5c:f9:64:89:bb:b0:83:6f:4c:cc:d1:6c:78:7d:95:b9:
e7:5c:9c:56:87:68:2f:78:e5:6c:52:de:97:6f:55:1f:af:2e:
3d:65:cc:2a:6e:a2:22:17:f1:f3:53:64:69:a0:1d:65:ea:63:
1f:c9:09:c8:42:a5:98:60:b9:87:5f:08:10:df:52:41:7e:80:
b9:31:f6:31:a2:bc:6a:77:67:e1:66:88:02:ed:a4:dc:10:a4:
63:9c:00:da:05:8d:c8:f8:cf:84:c6:67:6d:a1:48:be:96:aa:
88:ab:c4:ad:e3:2f:df:59:25:e8:8e:f0:c9:b6:9c:9b:61:2d:
ce:74:e4:8a:92:15:eb:73:60:68:84:b8:33:87:76:90:9a:54:
3c:fb:86:2c:83:a8:38:64:29:29:e2:84:3c:99:e5:59:23:93:
0d:87:c7:8d:e8:1c:5a:10:f3:b3:33:33:02:2f:d4:c3:4a:53:
51:17:c5:6e:bc:b6:8b:44:65:65:a2:7f:dd:45:5f:6b:9f:bc:
e2:a7:cc:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:59:12 2026 by rpki-client