Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/9F12E3A025A511EE87132E45C4F9AE02.roa
File: 9F12E3A025A511EE87132E45C4F9AE02.roa (raw, json)
Hash identifier: Y+E2Zw8cSibO88OVDC2atGI8LaONXqL9mkfjf3pS0hw=
Subject key identifier: 78:60:12:1E:37:B8:F6:03:90:B8:C4:D6:77:D1:D1:3C:27:22:1B:91
Certificate issuer: /CN=A91A495C/serialNumber=78BEDBEDC0459B900C282892F13B1782A9560429
Certificate serial: 0D59
Authority key identifier: 78:BE:DB:ED:C0:45:9B:90:0C:28:28:92:F1:3B:17:82:A9:56:04:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eL7b7cBFm5AMKCiS8TsXgqlWBCk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/9F12E3A025A511EE87132E45C4F9AE02.roa
Signing time: Thu 10 Jul 2025 18:27:40 +0000
ROA not before: Thu 10 Jul 2025 18:27:40 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 137967
IP address blocks: 103.117.192.0/22 maxlen: 22
103.117.192.0/23 maxlen: 23
103.117.192.0/24 maxlen: 24
103.117.193.0/24 maxlen: 24
103.117.194.0/23 maxlen: 23
103.117.194.0/24 maxlen: 24
103.117.195.0/24 maxlen: 24
2403:1e40::/32 maxlen: 36
2403:1e40::/48 maxlen: 48
2403:1e40:100::/48 maxlen: 48
2403:1e40:150::/48 maxlen: 48
2403:1e40:151::/48 maxlen: 48
2403:1e40:152::/48 maxlen: 48
2403:1e40:153::/48 maxlen: 48
2403:1e40:154::/48 maxlen: 48
2403:1e40:168::/48 maxlen: 48
2403:1e40:169::/48 maxlen: 48
2403:1e40:207::/48 maxlen: 48
2403:1e40:1000::/37 maxlen: 40
2403:1e40:1000::/41 maxlen: 48
2403:1e40:1080::/41 maxlen: 48
2403:1e40:1100::/41 maxlen: 48
2403:1e40:1180::/41 maxlen: 48
2403:1e40:1200::/41 maxlen: 48
2403:1e40:1280::/41 maxlen: 48
2403:1e40:1300::/41 maxlen: 48
2403:1e40:1380::/41 maxlen: 48
2403:1e40:1400::/41 maxlen: 48
2403:1e40:1800::/37 maxlen: 40
2403:1e40:1800::/41 maxlen: 48
2403:1e40:1880::/41 maxlen: 45
2403:1e40:1880::/42 maxlen: 48
2403:1e40:18c0::/43 maxlen: 48
2403:1e40:18e0::/44 maxlen: 48
2403:1e40:18f0::/45 maxlen: 48
2403:1e40:18f8::/46 maxlen: 46
2403:1e40:18f8::/47 maxlen: 48
2403:1e40:1a00::/41 maxlen: 48
2403:1e40:1a80::/41 maxlen: 48
2403:1e40:70ff::/48 maxlen: 48
2403:1e40:80ff::/48 maxlen: 48
2403:1e40:90ff::/48 maxlen: 48
2403:1e40:97ff::/48 maxlen: 48
2403:1e40:fffd::/48 maxlen: 48
2403:1e40:fffe::/48 maxlen: 48
2403:1e40:ffff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/eL7b7cBFm5AMKCiS8TsXgqlWBCk.crl
rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/eL7b7cBFm5AMKCiS8TsXgqlWBCk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eL7b7cBFm5AMKCiS8TsXgqlWBCk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 18:05:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3417 (0xd59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A495C, serialNumber=78BEDBEDC0459B900C282892F13B1782A9560429
Validity
Not Before: Jul 10 18:27:40 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=6870061b-2882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:62:b9:eb:bf:09:69:ba:13:62:f9:36:51:5a:
aa:91:37:47:8c:aa:c0:08:64:a2:a7:0b:44:43:be:
36:bf:fa:b5:05:d1:51:66:bb:9b:a2:29:57:c7:ec:
6d:37:5b:f7:fd:62:54:6b:0b:f2:0c:33:a5:c8:a6:
48:62:2d:4b:36:97:81:9f:b4:15:06:5f:6b:d4:f0:
94:0c:9b:64:2f:6b:03:dd:e2:04:33:7d:86:58:3b:
64:89:9f:5a:c8:80:b6:ce:57:45:9e:21:3f:ca:c1:
c6:c5:98:11:ff:bc:3d:00:86:ca:54:9b:fe:1d:1a:
86:80:45:6d:93:6c:78:18:c5:a1:76:0e:7f:0a:50:
64:57:14:ea:c8:42:e4:6b:1b:9b:f3:a3:b5:f9:a6:
7a:ff:45:77:f5:b9:03:c6:12:b8:43:61:80:e8:58:
78:b0:54:92:91:12:bd:21:8a:c5:6e:5d:b8:9b:c9:
87:31:e4:38:a2:13:58:78:73:9d:be:a6:f9:36:37:
6f:54:83:0e:15:70:22:57:fd:91:01:3e:a5:ea:d6:
b8:54:35:6f:06:ac:f8:3f:32:06:21:d8:20:65:8b:
a5:59:e1:04:22:03:b9:80:f6:60:7a:e6:eb:37:d3:
07:56:ee:29:ab:34:10:ff:9d:91:19:b2:53:7e:6f:
83:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:60:12:1E:37:B8:F6:03:90:B8:C4:D6:77:D1:D1:3C:27:22:1B:91
X509v3 Authority Key Identifier:
keyid:78:BE:DB:ED:C0:45:9B:90:0C:28:28:92:F1:3B:17:82:A9:56:04:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/eL7b7cBFm5AMKCiS8TsXgqlWBCk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eL7b7cBFm5AMKCiS8TsXgqlWBCk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A495C/55918004E2AD11E9B4A27546C4F9AE02/9F12E3A025A511EE87132E45C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.192.0/22
IPv6:
2403:1e40::/32
Signature Algorithm: sha256WithRSAEncryption
a6:0f:46:6b:9d:e9:8d:10:32:06:d8:70:7c:35:94:6a:a0:a5:
96:b0:e2:8c:39:b6:03:8e:5e:ab:67:c4:65:78:d2:1c:98:95:
cb:4f:b9:75:e3:2e:ab:8d:65:1b:74:36:5b:67:d9:34:3a:c6:
70:3e:30:bc:21:75:a6:a6:c2:71:b2:b0:1c:c5:cd:fb:b9:f8:
85:50:39:92:1d:ee:6a:75:5a:2f:20:b3:a4:2f:da:d0:b9:66:
d4:4a:75:6f:78:cf:eb:e3:fa:78:92:c9:b6:df:49:86:46:71:
28:26:54:43:81:23:65:7f:50:bb:56:eb:0a:fc:b9:e3:c0:2a:
5b:95:8e:03:71:b7:91:4b:24:bf:c2:fd:c5:50:23:f4:bd:89:
9d:1d:53:bc:a2:b4:12:04:80:43:24:de:fb:63:02:fb:93:af:
47:3d:83:2f:7c:f2:9a:84:0d:b2:53:8a:3e:1c:90:87:89:4e:
c2:2c:0b:43:0a:8a:0e:13:61:68:70:bd:74:5a:be:aa:64:be:
c6:3a:c7:e2:61:3c:b4:a3:29:dc:b4:0f:25:67:1e:e7:00:6f:
1f:e9:0f:f8:b5:d4:96:95:23:e8:c4:c8:4a:62:42:7a:c8:54:
d7:d7:6a:62:cf:fb:74:01:05:66:54:49:e1:dc:a8:31:74:80:
cd:11:92:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:43:21 2025 by rpki-client