Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/566800AE193C11F094773636C4F9AE02.roa
File: 566800AE193C11F094773636C4F9AE02.roa (raw, json)
Hash identifier: LDxBzmswdwsw+9v/l/93CJjumlDe/PyvRMs7ZjDXsiA=
Subject key identifier: C3:18:5B:67:83:1D:4E:A1:8D:1B:BB:8D:01:64:82:DD:B4:6B:9E:C8
Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial: 0D40
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/566800AE193C11F094773636C4F9AE02.roa
Signing time: Mon 03 Nov 2025 14:16:24 +0000
ROA not before: Mon 03 Nov 2025 14:16:24 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 141030
IP address blocks: 2400:3dc0:41::/48 maxlen: 48
2400:3dc0:42::/48 maxlen: 48
2400:3dc0:44::/48 maxlen: 48
2400:3dc0:47::/48 maxlen: 48
2400:3dc0:48::/48 maxlen: 48
2400:3dc0:4d::/48 maxlen: 48
2400:3dc0:4e::/48 maxlen: 48
2400:3dc0:4f::/48 maxlen: 48
2400:3dc0:50::/48 maxlen: 48
2400:3dc0:51::/48 maxlen: 48
2400:3dc0:52::/48 maxlen: 48
2400:3dc0:53::/48 maxlen: 48
2400:3dc0:54::/48 maxlen: 48
2400:3dc0:55::/48 maxlen: 48
2400:3dc0:59::/48 maxlen: 48
2400:3dc0:5c::/48 maxlen: 48
2400:3dc0:5d::/48 maxlen: 48
2400:3dc0:5f::/48 maxlen: 48
2400:3dc0:63::/48 maxlen: 48
2400:3dc0:65::/48 maxlen: 48
2400:3dc0:66::/48 maxlen: 48
2400:3dc0:67::/48 maxlen: 48
2400:3dc0:6b::/48 maxlen: 48
2400:3dc0:6d::/48 maxlen: 48
2400:3dc0:73::/48 maxlen: 48
2400:3dc0:74::/48 maxlen: 48
2400:3dc0:75::/48 maxlen: 48
2400:3dc0:76::/48 maxlen: 48
2400:3dc0:77::/48 maxlen: 48
2400:3dc0:81::/48 maxlen: 48
2400:3dc0:82::/48 maxlen: 48
2400:3dc0:90::/48 maxlen: 48
2400:3dc0:91::/48 maxlen: 48
2400:3dc0:92::/48 maxlen: 48
2400:3dc0:93::/48 maxlen: 48
2400:3dc0:94::/48 maxlen: 48
2400:3dc0:95::/48 maxlen: 48
2400:3dc0:96::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 14:37:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3392 (0xd40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Validity
Not Before: Nov 3 14:16:24 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=6908b937-a9b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:52:06:9e:03:e9:ba:8c:ea:31:93:81:89:80:
7d:b0:bd:ba:ba:01:01:a6:43:d1:cc:9c:20:6f:55:
f5:5e:95:83:10:8b:9d:7a:aa:e9:0a:f1:eb:e6:57:
cc:e9:16:bc:12:1e:ba:a6:d5:42:42:d3:51:6c:07:
57:6e:fd:94:e1:ef:59:f0:94:51:1d:63:fc:56:fc:
60:ab:f1:7d:a6:60:d4:af:d9:ab:9f:15:70:32:c2:
fe:c6:9e:af:f8:35:98:0d:5f:27:a9:ff:60:d2:6c:
a4:ec:9c:33:99:dd:b2:a6:7e:69:41:b3:fe:23:81:
5f:a7:0f:40:ff:bb:c4:b0:3f:b1:7d:1e:b4:c8:b2:
15:52:59:b2:e7:ba:9c:8d:e3:3d:6f:be:9c:e9:55:
c1:b1:21:2d:4a:ae:5a:93:8b:a1:84:db:8f:64:51:
b4:52:32:07:d7:20:af:81:d1:4c:f9:b2:8d:8a:12:
ca:5f:76:6e:44:f8:1e:fb:aa:58:fc:74:1b:b8:61:
24:24:97:ea:b5:b8:4a:dc:6a:e3:65:19:87:dd:95:
2f:ed:ed:a9:de:b2:ba:ea:98:2d:ff:c4:6b:06:25:
f6:94:aa:6a:34:a1:bd:84:57:d9:d1:01:82:1f:0b:
05:e4:32:ac:bb:f9:bd:bc:6a:83:03:13:a0:0f:a1:
0c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:18:5B:67:83:1D:4E:A1:8D:1B:BB:8D:01:64:82:DD:B4:6B:9E:C8
X509v3 Authority Key Identifier:
keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/566800AE193C11F094773636C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:3dc0:41::-2400:3dc0:42:ffff:ffff:ffff:ffff:ffff
2400:3dc0:44::/48
2400:3dc0:47::-2400:3dc0:48:ffff:ffff:ffff:ffff:ffff
2400:3dc0:4d::-2400:3dc0:55:ffff:ffff:ffff:ffff:ffff
2400:3dc0:59::/48
2400:3dc0:5c::/47
2400:3dc0:5f::/48
2400:3dc0:63::/48
2400:3dc0:65::-2400:3dc0:67:ffff:ffff:ffff:ffff:ffff
2400:3dc0:6b::/48
2400:3dc0:6d::/48
2400:3dc0:73::-2400:3dc0:77:ffff:ffff:ffff:ffff:ffff
2400:3dc0:81::-2400:3dc0:82:ffff:ffff:ffff:ffff:ffff
2400:3dc0:90::-2400:3dc0:96:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d2:73:2f:ef:43:3c:aa:09:bc:a7:1f:ad:dd:e9:2a:a8:bd:e3:
dd:fc:c4:19:16:ac:95:6d:d8:94:71:cc:d9:3a:b5:62:e5:fb:
4e:1a:b6:e3:46:f8:39:85:f2:84:85:3c:46:04:72:bc:9e:c3:
f0:13:e3:b2:07:0e:ee:2f:4b:af:d6:de:68:8e:33:68:81:be:
4a:0b:df:6f:1a:e7:1e:7e:ef:15:97:c6:2d:20:71:05:5f:19:
5d:73:65:fd:64:3f:50:d5:cd:0c:4f:f7:65:a8:09:be:49:0b:
7c:16:5d:e6:17:a8:c1:81:af:e6:9f:68:ea:4a:88:c0:39:8b:
36:84:59:c6:7a:c8:5f:91:41:42:a4:e9:fe:e1:26:2b:fe:b2:
80:3d:30:a0:3c:f5:84:4c:8b:36:51:b8:62:8d:37:a1:ea:39:
6f:c4:78:7b:49:99:10:a0:2c:5b:82:9f:b7:b7:68:1a:9f:01:
e9:c4:a8:13:c8:8a:f8:20:22:81:17:08:db:37:bb:be:f3:12:
ac:d3:bf:2c:e2:3e:5e:af:f1:b0:ba:81:d0:ef:80:e2:53:03:
6c:b7:14:87:f1:db:9b:ae:02:7f:04:18:99:6a:31:53:35:85:
24:4a:81:74:5b:85:3b:fb:ff:fb:cf:a9:9e:1e:50:68:21:97:
b3:8b:bd:7f
-----BEGIN CERTIFICATE-----
MIIGOzCCBSOgAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB
RjYyREVGRkQwHhcNMjUxMTAzMTQxNjI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02OTA4YjkzNy1hOWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuFIGngPpuozqMZOBiYB9sL26ugEBpkPRzJwgb1X1XpWDEIudeqrpCvHr5lfM
6Ra8Eh66ptVCQtNRbAdXbv2U4e9Z8JRRHWP8Vvxgq/F9pmDUr9mrnxVwMsL+xp6v
+DWYDV8nqf9g0myk7Jwzmd2ypn5pQbP+I4Ffpw9A/7vEsD+xfR60yLIVUlmy57qc
jeM9b76c6VXBsSEtSq5ak4uhhNuPZFG0UjIH1yCvgdFM+bKNihLKX3ZuRPge+6pY
/HQbuGEkJJfqtbhK3GrjZRmH3ZUv7e2p3rK66pgt/8RrBiX2lKpqNKG9hFfZ0QGC
HwsF5DKsu/m9vGqDAxOgD6EMYQIDAQABo4IDXzCCA1swHQYDVR0OBBYEFMMYW2eD
HU6hjRu7jQFkgt20a57IMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2
QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3
XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUQ3NUMvMkJDNUZENDAwNkMwMTFFQUJDNDNCNzA5QzRGOUFFMDIvNTY2ODAwQUUx
OTNDMTFGMDk0NzczNjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgegGCCsGAQUFBwEHAQH/
BIHYMIHVMIHSBAIAAjCByzASAwcAJAA9wABBAwcAJAA9wABCAwcAJAA9wABEMBID
BwAkAD3AAEcDBwAkAD3AAEgwEgMHACQAPcAATQMHASQAPcAAVAMHACQAPcAAWQMH
ASQAPcAAXAMHACQAPcAAXwMHACQAPcAAYzASAwcAJAA9wABlAwcDJAA9wABgAwcA
JAA9wABrAwcAJAA9wABtMBIDBwAkAD3AAHMDBwMkAD3AAHAwEgMHACQAPcAAgQMH
ACQAPcAAgjASAwcEJAA9wACQAwcAJAA9wACWMA0GCSqGSIb3DQEBCwUAA4IBAQDS
cy/vQzyqCbynH63d6SqovePd/MQZFqyVbdiUcczZOrVi5ftOGrbjRvg5hfKEhTxG
BHK8nsPwE+OyBw7uL0uv1t5ojjNogb5KC99vGucefu8Vl8YtIHEFXxldc2X9ZD9Q
1c0MT/dlqAm+SQt8Fl3mF6jBga/mn2jqSojAOYs2hFnGeshfkUFCpOn+4SYr/rKA
PTCgPPWETIs2UbhijTeh6jlvxHh7SZkQoCxbgp+3t2ganwHpxKgTyIr4ICKBFwjb
N7u+8xKs078s4j5er/GwuoHQ74DiUwNstxSH8dubrgJ/BBiZajFTNYUkSoF0W4U7
+//7z6meHlBoIZezi71/
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:01:38 2025 by rpki-client