Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/665C2DFC1C1511EFB1AF8F28C4F9AE02.roa
File: 665C2DFC1C1511EFB1AF8F28C4F9AE02.roa (raw, json)
Hash identifier: vnjp3g45xD/JyWbrgBdf5PvkEETWIPYJAA0yMEAceN4=
Subject key identifier: 09:EA:86:53:97:D5:93:EA:D0:15:DC:7E:79:69:BA:84:93:40:09:C8
Certificate issuer: /CN=A913E32A/serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543
Certificate serial: 26D2
Authority key identifier: C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/665C2DFC1C1511EFB1AF8F28C4F9AE02.roa
Signing time: Sun 31 May 2026 18:00:23 +0000
ROA not before: Sun 31 May 2026 18:00:23 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 7590
IP address blocks: 203.124.32.0/24 maxlen: 24
203.124.33.0/24 maxlen: 24
203.124.35.0/24 maxlen: 24
203.124.36.0/24 maxlen: 24
203.124.37.0/24 maxlen: 24
203.124.38.0/24 maxlen: 24
203.124.39.0/24 maxlen: 24
203.124.40.0/24 maxlen: 24
203.124.41.0/24 maxlen: 24
203.124.42.0/24 maxlen: 24
203.124.43.0/24 maxlen: 24
203.124.44.0/24 maxlen: 24
203.124.45.0/24 maxlen: 24
203.124.46.0/24 maxlen: 24
203.124.47.0/24 maxlen: 24
203.124.48.0/24 maxlen: 24
203.124.49.0/24 maxlen: 24
203.124.50.0/24 maxlen: 24
203.124.51.0/24 maxlen: 24
203.124.52.0/24 maxlen: 24
203.124.53.0/24 maxlen: 24
203.124.56.0/24 maxlen: 24
203.124.57.0/24 maxlen: 24
203.124.58.0/24 maxlen: 24
203.124.59.0/24 maxlen: 24
203.124.60.0/24 maxlen: 24
203.124.61.0/24 maxlen: 24
203.124.62.0/24 maxlen: 24
203.124.63.0/24 maxlen: 24
210.56.0.0/24 maxlen: 24
210.56.1.0/24 maxlen: 24
210.56.2.0/24 maxlen: 24
210.56.3.0/24 maxlen: 24
210.56.4.0/24 maxlen: 24
210.56.5.0/24 maxlen: 24
210.56.6.0/24 maxlen: 24
210.56.7.0/24 maxlen: 24
210.56.8.0/24 maxlen: 24
210.56.9.0/24 maxlen: 24
210.56.10.0/24 maxlen: 24
210.56.11.0/24 maxlen: 24
210.56.12.0/24 maxlen: 24
210.56.13.0/24 maxlen: 24
210.56.14.0/24 maxlen: 24
210.56.15.0/24 maxlen: 24
210.56.16.0/24 maxlen: 24
210.56.17.0/24 maxlen: 24
210.56.18.0/24 maxlen: 24
210.56.19.0/24 maxlen: 24
210.56.20.0/24 maxlen: 24
210.56.21.0/24 maxlen: 24
210.56.22.0/24 maxlen: 24
210.56.23.0/24 maxlen: 24
210.56.24.0/24 maxlen: 24
210.56.25.0/24 maxlen: 24
210.56.26.0/24 maxlen: 24
210.56.27.0/24 maxlen: 24
210.56.28.0/24 maxlen: 24
210.56.29.0/24 maxlen: 24
210.56.30.0/24 maxlen: 24
210.56.31.0/24 maxlen: 24
2402:1680:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl
rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 17 Jun 2026 15:40:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9938 (0x26d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913E32A, serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543
Validity
Not Before: May 31 18:00:23 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a1c7737-5689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:73:71:d9:80:df:7b:69:33:df:eb:6b:9d:0e:
f9:8f:45:15:2e:5a:d9:13:4e:6f:b4:cd:ff:0c:8b:
88:01:54:82:ce:e5:56:0a:8f:2c:7c:68:de:ab:cb:
5e:74:b0:d4:0e:69:70:fb:e0:26:70:04:ef:c9:b9:
39:81:74:d3:01:01:07:b1:f5:59:83:27:c2:55:c7:
ed:97:45:b6:85:2e:7b:1d:1a:cb:eb:e9:aa:00:51:
74:c2:b8:42:11:fd:d9:69:9e:75:75:0d:48:ad:f1:
a4:af:59:35:9f:9b:c8:ef:b5:22:ca:94:78:19:d7:
3e:c0:b5:a2:75:17:cc:16:fb:be:89:9f:10:2d:df:
a7:c2:f5:a5:5c:bb:54:20:a0:8f:96:c1:dc:6e:1d:
a6:6c:fd:8d:8e:f0:1f:9a:32:80:0d:2c:3a:b7:78:
bf:ae:e9:dc:06:9f:1f:89:58:48:89:36:d2:fe:06:
bb:9f:97:e0:34:cf:54:8f:a3:73:07:96:89:95:7a:
93:e7:14:95:b8:18:8b:f2:72:64:e5:f0:d0:81:c9:
9c:19:00:c1:14:30:55:cf:1d:97:32:5a:70:e0:f5:
19:f7:10:aa:b4:26:fe:9b:db:89:11:1e:b9:a7:a2:
bd:b3:71:2c:14:68:95:a1:ec:9f:76:33:b0:c4:ad:
f9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EA:86:53:97:D5:93:EA:D0:15:DC:7E:79:69:BA:84:93:40:09:C8
X509v3 Authority Key Identifier:
keyid:C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/665C2DFC1C1511EFB1AF8F28C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
203.124.32.0/23
203.124.35.0-203.124.53.255
203.124.56.0/21
210.56.0.0/19
IPv6:
2402:1680:1::/48
Signature Algorithm: sha256WithRSAEncryption
4a:23:b9:d7:c8:e7:7f:06:98:a9:af:32:1f:62:a7:58:b8:2c:
90:2f:e6:c9:71:60:65:50:52:9b:c6:7d:da:7c:90:00:67:bb:
c8:3f:1d:2b:82:07:97:d2:91:cb:c6:c4:20:05:15:16:fb:fe:
32:7c:5c:d4:da:6a:8b:4f:ea:23:cc:3b:be:51:be:63:59:d5:
81:15:1c:61:b0:0e:ca:37:7e:8a:ed:67:f6:ee:cf:8a:2d:5f:
7f:5c:d8:f2:05:6c:4a:9b:ac:87:11:45:62:fe:3e:c8:8c:e4:
94:aa:a3:9c:e5:a4:9f:36:1f:7e:1e:44:d6:14:13:e5:b4:1d:
c3:a9:5a:4c:4c:49:cc:36:f4:66:76:8e:da:5d:06:e7:dd:60:
78:3d:84:f9:d0:d4:64:10:fd:11:4a:80:86:9d:16:b2:88:eb:
ed:4b:7e:5d:8c:ca:5a:1b:e6:10:6b:b3:f4:e8:a7:cc:6b:0a:
c8:6e:19:7a:88:7a:2d:bc:2d:0c:99:3b:86:80:b8:b9:0b:a2:
08:8c:d2:65:53:31:2f:f0:3f:d3:e0:1e:89:18:2f:b6:6a:b7:
31:ff:81:e7:8e:d3:c6:25:42:d0:6d:22:d6:84:c5:d1:eb:d8:
54:3d:43:27:03:f1:0a:32:4b:27:1d:46:a0:8b:c7:d7:a8:3a:
4b:c5:f2:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 17:11:14 2026 by rpki-client