Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E49/CBEEAE48D5D511E797CBC37DC4F9AE02/1DA0BF7C7C5911EDB5D8DA67C4F9AE02.roa
File: 1DA0BF7C7C5911EDB5D8DA67C4F9AE02.roa (raw, json)
Hash identifier: hVoTvEB7BDDeyXddXUNSJmE4C2tGoRwPqhb2RyWx5so=
Subject key identifier: 86:68:69:4F:77:75:CE:06:71:5F:07:80:45:65:03:CF:5C:8F:69:26
Certificate issuer: /CN=A9117E49/serialNumber=FC9CC38035DF0FD8B2455E36767E130227F4E87B
Certificate serial: 1834
Authority key identifier: FC:9C:C3:80:35:DF:0F:D8:B2:45:5E:36:76:7E:13:02:27:F4:E8:7B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JzDgDXfD9iyRV42dn4TAif06Hs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9117E49/CBEEAE48D5D511E797CBC37DC4F9AE02/1DA0BF7C7C5911EDB5D8DA67C4F9AE02.roa
Signing time: Mon 04 May 2026 17:19:55 +0000
ROA not before: Mon 04 May 2026 17:19:55 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 58826
IP address blocks: 103.17.180.0/23 maxlen: 24
103.56.208.0/23 maxlen: 24
192.144.80.0/22 maxlen: 22
192.144.80.0/24 maxlen: 24
192.144.81.0/24 maxlen: 24
192.144.82.0/24 maxlen: 24
192.144.83.0/24 maxlen: 24
2402:1d40::/48 maxlen: 48
2402:1d40:1::/48 maxlen: 48
2402:1d40:2::/48 maxlen: 48
2402:1d40:3::/48 maxlen: 48
2402:1d40:4::/48 maxlen: 48
2402:1d40:5::/48 maxlen: 48
2402:1d40:6::/48 maxlen: 48
2402:1d40:7::/48 maxlen: 48
2402:1d40:8::/48 maxlen: 48
2402:1d40:9::/48 maxlen: 48
2402:1d40:a::/48 maxlen: 48
2402:1d40:b::/48 maxlen: 48
2402:1d40:c::/48 maxlen: 48
2402:1d40:d::/48 maxlen: 48
2402:1d40:e::/48 maxlen: 48
2402:1d40:f::/48 maxlen: 48
2402:1d40:10::/48 maxlen: 48
2402:1d40:11::/48 maxlen: 48
2402:1d40:12::/48 maxlen: 48
2402:1d40:13::/48 maxlen: 48
2402:1d40:14::/48 maxlen: 48
2402:1d40:15::/48 maxlen: 48
2402:1d40:16::/48 maxlen: 48
2402:1d40:17::/48 maxlen: 48
2402:1d40:18::/48 maxlen: 48
2402:1d40:19::/48 maxlen: 48
2402:1d40:1a::/48 maxlen: 48
2402:1d40:1b::/48 maxlen: 48
2402:1d40:1c::/48 maxlen: 48
2402:1d40:1d::/48 maxlen: 48
2402:1d40:1e::/48 maxlen: 48
2402:1d40:1f::/48 maxlen: 48
2402:1d40:20::/48 maxlen: 48
2402:1d40:21::/48 maxlen: 48
2402:1d40:22::/48 maxlen: 48
2402:1d40:23::/48 maxlen: 48
2402:1d40:24::/48 maxlen: 48
2402:1d40:25::/48 maxlen: 48
2402:1d40:26::/48 maxlen: 48
2402:1d40:27::/48 maxlen: 48
2402:1d40:28::/48 maxlen: 48
2402:1d40:29::/48 maxlen: 48
2402:1d40:1000::/48 maxlen: 48
2402:1d40:1001::/48 maxlen: 48
2402:1d40:2000::/48 maxlen: 48
2402:1d40:2001::/48 maxlen: 48
2402:1d40:3000::/48 maxlen: 48
2402:1d40:3001::/48 maxlen: 48
2402:1d40:3002::/48 maxlen: 48
2402:1d40:3003::/48 maxlen: 48
2402:1d40:4000::/48 maxlen: 48
2402:1d40:4001::/48 maxlen: 48
2402:1d40:4002::/48 maxlen: 48
2402:1d40:4003::/48 maxlen: 48
2402:1d40:5000::/48 maxlen: 48
2402:1d40:5001::/48 maxlen: 48
2402:1d40:5002::/48 maxlen: 48
2402:1d40:5003::/48 maxlen: 48
2402:1d40:5004::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9117E49/CBEEAE48D5D511E797CBC37DC4F9AE02/_JzDgDXfD9iyRV42dn4TAif06Hs.crl
rsync://rpki.apnic.net/member_repository/A9117E49/CBEEAE48D5D511E797CBC37DC4F9AE02/_JzDgDXfD9iyRV42dn4TAif06Hs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JzDgDXfD9iyRV42dn4TAif06Hs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 27 May 2026 16:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6196 (0x1834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9117E49, serialNumber=FC9CC38035DF0FD8B2455E36767E130227F4E87B
Validity
Not Before: May 4 17:19:55 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69f8d53b-b121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a8:b6:e7:62:b5:a5:e2:ba:68:f3:a6:b3:9f:
b0:b4:e5:86:67:56:4d:67:dd:ad:03:0f:bf:67:df:
a9:b3:d3:4b:3c:89:09:2e:25:7a:d9:7e:7b:88:53:
0e:b0:5e:fd:34:27:66:8c:67:ae:1e:3f:d2:4e:b1:
a7:4d:83:58:c6:b8:6d:a2:1d:20:68:e1:79:d7:17:
38:c6:d0:05:68:61:e7:9e:3f:2e:f3:57:90:8c:f0:
7d:0c:bd:36:ff:bb:fc:65:66:d8:38:36:0f:ee:94:
a0:40:4d:0a:20:96:a7:31:35:9c:9e:e3:6f:89:e8:
36:e4:63:87:71:50:76:f7:44:2b:c0:3c:90:29:e9:
af:8a:7c:0e:f2:b5:fd:28:47:0b:18:54:91:d7:78:
94:64:0c:b7:23:01:27:ff:e9:56:e8:ef:52:40:cf:
5f:48:c7:98:d2:81:17:8a:4d:f9:45:31:f6:df:7c:
1e:18:0f:98:04:55:cd:c6:75:1a:82:8c:2c:33:cb:
3d:80:e3:30:e6:4c:78:c8:08:cf:44:dc:5d:3b:df:
35:d4:8a:ca:6b:ae:0b:d7:2d:7e:08:4e:9f:10:ca:
08:df:46:b0:59:24:c5:87:13:37:0f:85:8f:fb:42:
a6:46:ea:37:64:32:8b:56:b1:41:50:61:80:d1:82:
e9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:68:69:4F:77:75:CE:06:71:5F:07:80:45:65:03:CF:5C:8F:69:26
X509v3 Authority Key Identifier:
keyid:FC:9C:C3:80:35:DF:0F:D8:B2:45:5E:36:76:7E:13:02:27:F4:E8:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9117E49/CBEEAE48D5D511E797CBC37DC4F9AE02/_JzDgDXfD9iyRV42dn4TAif06Hs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JzDgDXfD9iyRV42dn4TAif06Hs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E49/CBEEAE48D5D511E797CBC37DC4F9AE02/1DA0BF7C7C5911EDB5D8DA67C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.17.180.0/23
103.56.208.0/23
192.144.80.0/22
IPv6:
2402:1d40::-2402:1d40:29:ffff:ffff:ffff:ffff:ffff
2402:1d40:1000::/47
2402:1d40:2000::/47
2402:1d40:3000::/46
2402:1d40:4000::/46
2402:1d40:5000::-2402:1d40:5004:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
41:e5:89:21:d6:1a:10:3d:53:fa:5a:97:cf:73:b9:cc:7e:a2:
e7:4b:09:6c:f6:62:5b:fd:e2:09:91:e9:f0:9c:61:02:f4:cc:
6c:72:27:80:70:98:ff:4a:fe:4b:6a:a1:43:0e:a5:b1:ba:ee:
78:eb:2c:4f:fd:9b:f6:c2:84:9a:2a:5b:74:28:cf:52:08:59:
6e:e4:de:10:75:54:4b:b0:31:f9:97:68:ff:3e:4b:41:31:45:
4a:85:ce:fa:49:e2:e6:91:49:e0:5a:2b:b1:b3:e4:32:8e:17:
1d:41:f4:00:11:03:da:8c:01:3f:73:d7:6a:6d:ff:96:13:cc:
4b:66:17:ea:3b:6c:ef:a3:9c:a2:93:e9:d3:30:c1:38:b6:c4:
1d:6d:63:1f:cb:39:46:48:6d:07:e0:ea:9c:a5:0a:3b:5f:e7:
1c:fd:b1:a4:55:c2:18:a0:97:f9:a8:00:a2:0d:93:d8:a4:b4:
ce:0a:d3:e9:e1:8d:ea:23:d6:87:4e:b1:0a:23:be:2c:07:cf:
b2:25:7c:8a:d3:ff:a0:ea:eb:e4:5d:6c:e3:19:fc:9b:15:bd:
bf:0c:c4:45:ab:04:12:9c:85:0c:7d:71:2a:c6:ea:af:12:71:
78:3a:30:35:03:46:f1:81:05:c6:6d:c8:7d:6c:50:90:f9:4d:
0e:03:cf:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 11:38:27 2026 by rpki-client