Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/CC92F19EEF1811ED96D1F733C4F9AE02.roa
File: CC92F19EEF1811ED96D1F733C4F9AE02.roa (raw, json)
Hash identifier: YYKNLXbT4c8w/zZ4Ejz/LauwnbaIpRXOPSCxNJCfPm0=
Subject key identifier: E4:4D:1B:E3:09:AC:53:E8:1B:FD:ED:65:44:E3:DC:7B:72:87:68:20
Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653
Certificate serial: 13D7
Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/CC92F19EEF1811ED96D1F733C4F9AE02.roa
Signing time: Sun 01 Mar 2026 18:33:47 +0000
ROA not before: Thu 14 Aug 2025 17:26:52 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 9874
IP address blocks: 27.54.0.0/18 maxlen: 24
61.8.235.0/24 maxlen: 24
61.8.236.0/24 maxlen: 24
101.127.200.0/22 maxlen: 24
101.127.204.0/23 maxlen: 24
113.10.64.0/18 maxlen: 24
122.11.150.0/23 maxlen: 24
122.11.152.0/21 maxlen: 24
122.11.169.0/24 maxlen: 24
122.11.170.0/23 maxlen: 24
122.11.172.0/24 maxlen: 24
122.11.216.0/24 maxlen: 24
122.11.217.0/24 maxlen: 24
122.11.218.0/24 maxlen: 24
122.11.219.0/24 maxlen: 24
124.155.192.0/19 maxlen: 24
171.0.0.0/15 maxlen: 15
171.0.0.0/16 maxlen: 24
171.1.0.0/16 maxlen: 24
171.207.0.0/16 maxlen: 24
183.90.0.0/19 maxlen: 24
183.90.32.0/21 maxlen: 24
183.90.32.0/24 maxlen: 24
183.90.33.0/24 maxlen: 24
183.90.34.0/24 maxlen: 24
183.90.36.0/24 maxlen: 24
183.90.37.0/24 maxlen: 24
183.90.38.0/24 maxlen: 24
183.90.40.0/24 maxlen: 24
203.116.22.0/24 maxlen: 24
203.116.107.0/24 maxlen: 24
203.116.116.0/24 maxlen: 24
203.116.119.0/24 maxlen: 24
203.116.133.0/24 maxlen: 24
203.116.149.0/24 maxlen: 24
203.116.150.0/24 maxlen: 24
203.116.181.0/24 maxlen: 24
203.116.211.0/24 maxlen: 24
203.116.222.0/24 maxlen: 24
203.117.40.0/23 maxlen: 24
203.117.56.0/21 maxlen: 24
203.117.246.0/24 maxlen: 24
203.117.247.0/24 maxlen: 24
203.117.248.0/22 maxlen: 24
203.117.252.0/23 maxlen: 24
2406:3000:8:4030::/60 maxlen: 60
2406:3002:20::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl
rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 17 Mar 2026 16:59:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5079 (0x13d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91402DC, serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653
Validity
Not Before: Aug 14 17:26:52 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=69a4868a-1600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:95:2e:d9:c1:eb:6f:30:1f:99:4b:8c:1d:9f:
7f:ad:ae:91:6e:45:6b:24:28:2f:2c:d8:e4:b7:ad:
82:d8:01:d4:27:bb:8a:40:df:db:cf:97:b5:80:31:
43:14:4e:4d:00:8e:9c:cb:e4:2f:6f:47:53:2b:7f:
77:1f:91:ac:56:fb:1c:8f:5b:94:fa:59:09:96:ef:
31:46:0b:b6:29:42:9f:4f:12:a1:d3:db:bd:80:a8:
d6:b5:82:cb:8e:31:28:33:74:2b:b3:28:08:17:f0:
61:e0:3c:22:46:b3:1f:9f:72:83:68:e1:6f:6c:be:
8d:17:dc:fb:c4:79:90:8d:73:f9:26:38:c9:10:b9:
7b:9a:7e:b2:e0:ba:64:d0:1f:a8:e4:5c:da:a4:e8:
c8:9a:38:96:c7:87:9c:f6:89:01:5a:bb:8c:8d:bd:
eb:c0:a5:19:f1:1b:69:32:49:89:0d:48:f7:24:ee:
5f:5b:92:9f:f6:87:5a:0d:4a:cd:68:82:88:7a:e4:
12:f8:c3:f8:c0:a7:e4:96:f7:03:ff:08:85:9c:7a:
82:d0:d0:fd:5f:0b:fe:1b:f2:82:a6:95:72:35:88:
af:eb:33:62:e6:f2:24:3b:1a:c5:45:0d:aa:63:36:
bf:62:b2:bf:6b:67:97:6c:9f:10:9a:41:97:a5:e3:
40:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4D:1B:E3:09:AC:53:E8:1B:FD:ED:65:44:E3:DC:7B:72:87:68:20
X509v3 Authority Key Identifier:
keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/CC92F19EEF1811ED96D1F733C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
27.54.0.0/18
61.8.235.0-61.8.236.255
101.127.200.0-101.127.205.255
113.10.64.0/18
122.11.150.0-122.11.159.255
122.11.169.0-122.11.172.255
122.11.216.0/22
124.155.192.0/19
171.0.0.0/15
171.207.0.0/16
183.90.0.0-183.90.40.255
203.116.22.0/24
203.116.107.0/24
203.116.116.0/24
203.116.119.0/24
203.116.133.0/24
203.116.149.0-203.116.150.255
203.116.181.0/24
203.116.211.0/24
203.116.222.0/24
203.117.40.0/23
203.117.56.0/21
203.117.246.0-203.117.253.255
IPv6:
2406:3000:8:4030::/60
2406:3002:20::/48
Signature Algorithm: sha256WithRSAEncryption
cf:e3:58:f6:75:a4:f7:ba:da:da:4c:44:32:0f:7d:6a:ad:f8:
0c:e0:3e:3e:46:af:ea:72:90:d3:0e:eb:e0:e6:8d:be:49:0a:
d0:5b:6f:32:d6:b4:b6:60:24:3b:6f:1b:e0:75:3c:f9:be:60:
d2:36:49:46:ae:11:b6:0c:0c:80:01:59:3b:31:d0:17:a3:d5:
83:6b:83:e9:09:dd:d4:31:93:b1:6a:b4:65:c3:63:43:e1:b0:
36:bd:dd:0d:ea:12:b6:08:b5:24:d7:b0:df:b0:3b:de:32:af:
e4:c1:54:bf:52:a0:bd:76:5c:63:67:7e:54:0a:68:e5:4a:b6:
79:9c:20:93:fa:67:36:cf:5f:f9:8e:e9:d0:58:68:83:a5:b8:
a2:6b:72:5d:10:ba:a3:bf:9b:2d:ed:19:f5:cf:f7:d9:2b:5f:
17:54:aa:99:85:d4:aa:e5:cf:0e:02:c3:ca:4d:3c:92:00:9b:
84:20:4d:d1:18:f0:f0:28:86:a1:54:b2:35:c2:e1:ea:6a:71:
9e:5d:a4:84:17:40:2d:93:7f:fc:34:91:4b:7c:ea:33:11:3e:
af:5a:f4:b2:02:16:59:d1:ba:d2:ba:95:3e:7c:61:d5:2a:d4:
7c:39:3f:16:2d:19:90:9d:15:1c:4c:63:e1:b0:e6:d1:06:ce:
65:dd:63:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 11 13:26:50 2026 by rpki-client