Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/3C30815CABB611ED8370AB5DC4F9AE02.roa
File: 3C30815CABB611ED8370AB5DC4F9AE02.roa (raw, json)
Hash identifier: +ombOhWBZ5bBf3zI5GNmEX21uEaCCajvQbZEo/2j6Mk=
Subject key identifier: 3C:8D:8D:02:07:55:40:F0:59:18:F6:7E:B2:C4:5F:08:53:22:4F:45
Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C
Certificate serial: 0842
Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/3C30815CABB611ED8370AB5DC4F9AE02.roa
Signing time: Wed 14 Jan 2026 13:09:23 +0000
ROA not before: Wed 14 Jan 2026 13:09:23 +0000
ROA not after: Tue 01 Dec 2026 00:00:00 +0000
asID: 140220
IP address blocks: 60.234.7.0/24 maxlen: 24
60.234.8.0/24 maxlen: 24
60.234.10.0/24 maxlen: 24
60.234.11.0/24 maxlen: 24
60.234.12.0/24 maxlen: 24
60.234.13.0/24 maxlen: 24
60.234.14.0/24 maxlen: 24
60.234.15.0/24 maxlen: 24
60.234.31.0/24 maxlen: 24
60.234.32.0/24 maxlen: 24
60.234.33.0/24 maxlen: 24
60.234.39.0/24 maxlen: 24
60.234.40.0/23 maxlen: 24
60.234.46.0/24 maxlen: 24
60.234.50.0/24 maxlen: 24
60.234.51.0/24 maxlen: 24
60.234.52.0/24 maxlen: 24
60.234.53.0/24 maxlen: 24
60.234.63.0/24 maxlen: 24
60.234.68.0/24 maxlen: 24
60.234.72.0/24 maxlen: 24
60.234.73.0/24 maxlen: 24
60.234.75.0/24 maxlen: 24
60.234.82.0/23 maxlen: 24
60.234.84.0/22 maxlen: 24
60.234.88.0/24 maxlen: 24
60.234.89.0/24 maxlen: 24
60.234.90.0/23 maxlen: 24
60.234.92.0/23 maxlen: 24
60.234.94.0/24 maxlen: 24
60.234.95.0/24 maxlen: 24
60.234.96.0/24 maxlen: 24
60.234.98.0/24 maxlen: 24
60.234.99.0/24 maxlen: 24
60.234.100.0/23 maxlen: 24
60.234.102.0/23 maxlen: 24
60.234.104.0/22 maxlen: 24
60.234.108.0/24 maxlen: 24
60.234.109.0/24 maxlen: 24
60.234.110.0/24 maxlen: 24
60.234.111.0/24 maxlen: 24
60.234.112.0/24 maxlen: 24
60.234.113.0/24 maxlen: 24
60.234.114.0/24 maxlen: 24
60.234.115.0/24 maxlen: 24
60.234.116.0/23 maxlen: 24
60.234.118.0/24 maxlen: 24
60.234.119.0/24 maxlen: 24
60.234.120.0/24 maxlen: 24
60.234.121.0/24 maxlen: 24
60.234.122.0/23 maxlen: 24
60.234.124.0/24 maxlen: 24
60.234.125.0/24 maxlen: 24
60.234.126.0/24 maxlen: 24
60.234.127.0/24 maxlen: 24
60.234.128.0/24 maxlen: 24
60.234.129.0/24 maxlen: 24
60.234.130.0/24 maxlen: 24
60.234.131.0/24 maxlen: 24
60.234.132.0/24 maxlen: 24
60.234.133.0/24 maxlen: 24
60.234.134.0/24 maxlen: 24
60.234.135.0/24 maxlen: 24
60.234.136.0/24 maxlen: 24
60.234.137.0/24 maxlen: 24
60.234.138.0/24 maxlen: 24
60.234.139.0/24 maxlen: 24
60.234.140.0/24 maxlen: 24
60.234.141.0/24 maxlen: 24
60.234.142.0/24 maxlen: 24
60.234.143.0/24 maxlen: 24
60.234.144.0/23 maxlen: 24
60.234.146.0/23 maxlen: 24
60.234.148.0/24 maxlen: 24
60.234.149.0/24 maxlen: 24
60.234.150.0/23 maxlen: 24
60.234.152.0/21 maxlen: 24
60.234.160.0/24 maxlen: 24
60.234.161.0/24 maxlen: 24
60.234.162.0/23 maxlen: 24
60.234.164.0/24 maxlen: 24
60.234.165.0/24 maxlen: 24
60.234.166.0/24 maxlen: 24
60.234.167.0/24 maxlen: 24
60.234.168.0/24 maxlen: 24
60.234.169.0/24 maxlen: 24
60.234.170.0/24 maxlen: 24
60.234.171.0/24 maxlen: 24
60.234.172.0/24 maxlen: 24
60.234.173.0/24 maxlen: 24
60.234.174.0/24 maxlen: 24
60.234.175.0/24 maxlen: 24
60.234.176.0/24 maxlen: 24
60.234.178.0/24 maxlen: 24
60.234.181.0/24 maxlen: 24
60.234.182.0/23 maxlen: 24
60.234.184.0/23 maxlen: 24
60.234.186.0/24 maxlen: 24
60.234.187.0/24 maxlen: 24
60.234.188.0/24 maxlen: 24
60.234.189.0/24 maxlen: 24
60.234.190.0/24 maxlen: 24
60.234.191.0/24 maxlen: 24
60.234.192.0/24 maxlen: 24
60.234.193.0/24 maxlen: 24
60.234.194.0/23 maxlen: 24
60.234.196.0/23 maxlen: 24
60.234.198.0/23 maxlen: 24
60.234.201.0/24 maxlen: 24
60.234.202.0/23 maxlen: 24
60.234.204.0/24 maxlen: 24
60.234.205.0/24 maxlen: 24
60.234.206.0/24 maxlen: 24
60.234.207.0/24 maxlen: 24
60.234.208.0/20 maxlen: 24
60.234.224.0/19 maxlen: 24
121.98.32.0/24 maxlen: 24
121.98.124.0/23 maxlen: 24
202.127.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl
rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Feb 2026 21:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2114 (0x842)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91406AA, serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C
Validity
Not Before: Jan 14 13:09:23 2026 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=69679583-fba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6b:19:60:2d:81:d1:ce:e9:a3:8f:7a:a5:cf:
68:56:ce:10:74:0f:42:17:8b:8e:2f:69:2f:6e:c1:
b3:12:27:8c:46:78:5a:c5:5d:0f:b3:12:60:a1:54:
77:f3:d3:7b:9b:bd:6c:7a:c9:0d:c9:30:62:79:c2:
2a:d6:4b:00:a0:39:9d:41:08:7d:2a:c9:2e:4d:4a:
6a:b2:5b:7c:21:45:b0:a3:fd:dd:2a:f4:16:a6:e5:
11:c8:70:f0:2e:39:ba:88:83:47:29:ba:6f:a6:36:
3b:45:64:fa:c7:13:5f:db:8a:0c:a0:4d:bb:36:f7:
b2:33:cc:b5:92:f2:ed:6a:6f:ce:87:a3:32:d9:4b:
1b:1e:7c:0b:4e:9d:95:61:42:98:c6:0e:5d:63:65:
0c:d6:b4:18:8c:15:9b:99:a7:83:4f:2d:2c:0d:37:
23:08:78:62:07:57:7a:c6:ac:e5:44:e0:1f:f3:fe:
9c:17:de:3f:72:af:e2:a5:f4:74:ec:ca:b5:0d:8d:
a5:d8:8b:5a:60:7d:10:ce:b4:03:94:52:ae:25:b7:
b1:f2:21:ee:92:69:22:ad:db:22:b3:50:5a:db:56:
d8:0a:ca:b2:da:86:2e:0c:b8:c7:39:c9:06:8e:9c:
e1:0b:e5:2c:bf:8a:9f:aa:cb:44:7d:73:7a:fe:17:
45:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:8D:8D:02:07:55:40:F0:59:18:F6:7E:B2:C4:5F:08:53:22:4F:45
X509v3 Authority Key Identifier:
keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/3C30815CABB611ED8370AB5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
60.234.7.0-60.234.8.255
60.234.10.0-60.234.15.255
60.234.31.0-60.234.33.255
60.234.39.0-60.234.41.255
60.234.46.0/24
60.234.50.0-60.234.53.255
60.234.63.0/24
60.234.68.0/24
60.234.72.0/23
60.234.75.0/24
60.234.82.0-60.234.96.255
60.234.98.0-60.234.176.255
60.234.178.0/24
60.234.181.0-60.234.199.255
60.234.201.0-60.234.255.255
121.98.32.0/24
121.98.124.0/23
202.127.8.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:3f:eb:ca:f8:f5:28:41:fa:4f:08:dc:fd:03:82:56:26:a9:
bd:67:64:b8:18:a5:b5:5f:88:8c:0c:bd:23:09:6e:91:c6:ba:
17:5f:c5:29:36:6f:30:4c:89:c4:70:09:66:68:ea:ae:65:53:
3f:a3:7a:e1:cf:5b:f7:d7:f7:0a:be:af:d8:f3:96:91:28:64:
a4:3b:64:a6:21:77:5d:cf:77:23:76:6b:a6:2b:ce:33:a3:88:
a0:68:46:3d:0a:f1:5d:21:e5:f6:c7:40:d4:f3:1c:4b:a9:41:
e9:cf:84:4e:84:7f:53:61:46:09:9c:d5:97:4f:23:5e:cf:a3:
67:f8:8f:0b:2e:39:28:26:68:d8:45:02:e9:c4:eb:cf:de:d9:
33:98:05:49:1e:24:c4:cc:be:91:e2:fc:7a:19:38:51:e0:dd:
74:be:a5:56:ae:c1:d0:a0:f2:d8:c7:83:a8:e7:17:42:2b:a7:
30:a8:d8:fd:23:9e:86:19:d8:9b:be:76:6a:b2:77:93:86:24:
b2:52:33:aa:c3:c3:34:f0:e9:a8:ae:3b:e1:cc:4e:cb:4a:0f:
1d:0e:15:e7:c2:df:e6:1b:1d:6c:fa:4d:90:1e:c1:e1:db:da:
f8:30:0f:f4:a4:ff:21:e8:d9:df:91:04:bf:90:af:2d:9e:bd:
1a:6b:65:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 01:39:38 2026 by rpki-client