Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/E4E0C13C5EBF11EAB066F050C4F9AE02.roa
File: E4E0C13C5EBF11EAB066F050C4F9AE02.roa (raw, json)
Hash identifier: 6UghKXjMctxYjIWtRaMVWaAv4nqHKd/b7X2ErsqCQxU=
Subject key identifier: 26:42:CA:71:8B:E0:37:1E:72:28:97:96:CC:57:A8:36:DC:9F:95:A9
Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Certificate serial: 290B
Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/E4E0C13C5EBF11EAB066F050C4F9AE02.roa
Signing time: Tue 21 Oct 2025 09:34:13 +0000
ROA not before: Tue 21 Oct 2025 09:34:13 +0000
ROA not after: Tue 01 Dec 2026 00:00:00 +0000
asID: 7629
IP address blocks: 45.118.36.0/22 maxlen: 22
103.1.116.0/22 maxlen: 22
103.1.116.0/23 maxlen: 23
103.1.118.0/23 maxlen: 23
103.233.32.0/22 maxlen: 22
103.233.32.0/23 maxlen: 23
103.233.34.0/23 maxlen: 23
125.5.0.0/16 maxlen: 16
125.5.0.0/18 maxlen: 18
125.5.0.0/20 maxlen: 20
125.5.0.0/21 maxlen: 21
125.5.0.0/22 maxlen: 22
125.5.0.0/23 maxlen: 23
125.5.2.0/23 maxlen: 23
125.5.2.0/24 maxlen: 24
125.5.3.0/24 maxlen: 24
125.5.4.0/23 maxlen: 23
125.5.5.0/24 maxlen: 24
125.5.8.0/21 maxlen: 21
125.5.8.0/22 maxlen: 22
125.5.12.0/24 maxlen: 24
125.5.14.0/23 maxlen: 23
125.5.16.0/20 maxlen: 20
125.5.16.0/21 maxlen: 21
125.5.18.0/24 maxlen: 24
125.5.21.0/24 maxlen: 24
125.5.22.0/23 maxlen: 23
125.5.22.0/24 maxlen: 24
125.5.23.0/24 maxlen: 24
125.5.24.0/21 maxlen: 21
125.5.24.0/23 maxlen: 23
125.5.24.0/24 maxlen: 24
125.5.26.0/23 maxlen: 23
125.5.27.0/24 maxlen: 24
125.5.28.0/22 maxlen: 22
125.5.32.0/19 maxlen: 19
125.5.32.0/20 maxlen: 20
125.5.32.0/21 maxlen: 21
125.5.40.0/21 maxlen: 21
125.5.48.0/20 maxlen: 20
125.5.48.0/21 maxlen: 21
125.5.56.0/21 maxlen: 21
125.5.64.0/18 maxlen: 18
125.5.64.0/19 maxlen: 19
125.5.64.0/20 maxlen: 20
125.5.64.0/21 maxlen: 21
125.5.72.0/21 maxlen: 21
125.5.80.0/20 maxlen: 20
125.5.80.0/21 maxlen: 21
125.5.82.0/24 maxlen: 24
125.5.87.0/24 maxlen: 24
125.5.88.0/21 maxlen: 21
125.5.88.0/23 maxlen: 23
125.5.96.0/19 maxlen: 19
125.5.96.0/20 maxlen: 20
125.5.96.0/21 maxlen: 21
125.5.104.0/21 maxlen: 21
125.5.112.0/20 maxlen: 20
125.5.112.0/21 maxlen: 21
125.5.120.0/21 maxlen: 21
125.5.128.0/17 maxlen: 17
125.5.128.0/19 maxlen: 19
125.5.128.0/20 maxlen: 20
125.5.128.0/21 maxlen: 21
125.5.132.0/22 maxlen: 22
125.5.136.0/21 maxlen: 21
125.5.144.0/20 maxlen: 20
125.5.144.0/21 maxlen: 21
125.5.152.0/21 maxlen: 21
125.5.152.0/23 maxlen: 23
125.5.154.0/23 maxlen: 23
125.5.154.0/24 maxlen: 24
125.5.160.0/20 maxlen: 20
125.5.160.0/21 maxlen: 21
125.5.168.0/21 maxlen: 21
125.5.173.0/24 maxlen: 24
125.5.174.0/23 maxlen: 23
125.5.176.0/20 maxlen: 20
125.5.176.0/21 maxlen: 21
125.5.177.0/24 maxlen: 24
125.5.178.0/23 maxlen: 23
125.5.180.0/22 maxlen: 22
125.5.184.0/21 maxlen: 21
125.5.192.0/19 maxlen: 19
125.5.192.0/20 maxlen: 20
125.5.192.0/21 maxlen: 21
125.5.195.0/24 maxlen: 24
125.5.200.0/21 maxlen: 21
125.5.200.0/23 maxlen: 23
125.5.201.0/24 maxlen: 24
125.5.204.0/22 maxlen: 22
125.5.208.0/20 maxlen: 20
125.5.208.0/21 maxlen: 21
125.5.209.0/24 maxlen: 24
125.5.210.0/24 maxlen: 24
125.5.211.0/24 maxlen: 24
125.5.212.0/24 maxlen: 24
125.5.213.0/24 maxlen: 24
125.5.216.0/21 maxlen: 21
125.5.224.0/19 maxlen: 19
125.5.224.0/20 maxlen: 20
125.5.224.0/21 maxlen: 21
125.5.224.0/24 maxlen: 24
125.5.232.0/21 maxlen: 21
125.5.240.0/20 maxlen: 20
125.5.240.0/21 maxlen: 21
125.5.240.0/23 maxlen: 23
125.5.244.0/24 maxlen: 24
125.5.248.0/21 maxlen: 21
125.5.251.0/24 maxlen: 24
125.5.252.0/22 maxlen: 22
202.57.64.0/18 maxlen: 18
202.57.64.0/19 maxlen: 19
202.57.64.0/20 maxlen: 20
202.57.64.0/21 maxlen: 21
202.57.72.0/21 maxlen: 21
202.57.80.0/20 maxlen: 20
202.57.80.0/21 maxlen: 21
202.57.88.0/21 maxlen: 21
202.57.96.0/19 maxlen: 19
202.57.96.0/21 maxlen: 21
202.57.96.0/24 maxlen: 24
202.57.102.0/23 maxlen: 23
202.57.104.0/21 maxlen: 21
202.57.104.0/22 maxlen: 22
202.57.108.0/23 maxlen: 23
202.57.111.0/24 maxlen: 24
202.57.112.0/21 maxlen: 21
202.57.114.0/23 maxlen: 23
202.57.116.0/22 maxlen: 22
202.57.119.0/24 maxlen: 24
202.57.120.0/21 maxlen: 21
202.57.120.0/22 maxlen: 22
202.57.124.0/23 maxlen: 23
202.57.127.0/24 maxlen: 24
202.163.192.0/18 maxlen: 18
202.163.192.0/21 maxlen: 21
202.163.200.0/21 maxlen: 21
202.163.200.0/22 maxlen: 22
202.163.204.0/22 maxlen: 22
202.163.208.0/21 maxlen: 21
202.163.216.0/21 maxlen: 21
202.163.216.0/22 maxlen: 22
202.163.220.0/22 maxlen: 22
202.163.224.0/21 maxlen: 21
202.163.232.0/21 maxlen: 21
202.163.240.0/21 maxlen: 21
202.163.248.0/21 maxlen: 21
203.131.64.0/18 maxlen: 18
203.131.64.0/19 maxlen: 19
203.131.64.0/20 maxlen: 20
203.131.64.0/21 maxlen: 21
203.131.72.0/21 maxlen: 21
203.131.80.0/20 maxlen: 20
203.131.96.0/19 maxlen: 19
203.131.96.0/20 maxlen: 20
203.131.112.0/20 maxlen: 20
203.131.128.0/18 maxlen: 18
203.131.128.0/19 maxlen: 19
203.131.128.0/20 maxlen: 20
203.131.144.0/20 maxlen: 20
203.131.160.0/19 maxlen: 19
203.131.160.0/20 maxlen: 20
203.131.176.0/20 maxlen: 20
203.172.0.0/19 maxlen: 19
203.172.0.0/20 maxlen: 20
203.172.0.0/21 maxlen: 21
203.172.8.0/21 maxlen: 21
203.172.16.0/20 maxlen: 20
203.172.16.0/21 maxlen: 21
203.172.24.0/21 maxlen: 21
222.126.0.0/17 maxlen: 17
222.126.0.0/18 maxlen: 18
222.126.0.0/20 maxlen: 20
222.126.16.0/20 maxlen: 20
222.126.32.0/20 maxlen: 20
222.126.48.0/20 maxlen: 20
222.126.64.0/20 maxlen: 20
222.126.80.0/20 maxlen: 20
222.126.96.0/20 maxlen: 20
222.126.97.0/24 maxlen: 24
222.126.98.0/23 maxlen: 23
222.126.100.0/22 maxlen: 22
222.126.104.0/21 maxlen: 21
222.126.112.0/20 maxlen: 20
2404:d8::/33 maxlen: 33
2404:d8::/36 maxlen: 36
2404:d8:8000::/34 maxlen: 34
2404:d8:9000::/36 maxlen: 36
2404:d8:a000::/36 maxlen: 36
2404:d8:a001::/48 maxlen: 48
2404:d8:c000::/36 maxlen: 36
2404:d8:d000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl
rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 31 Oct 2025 15:59:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10507 (0x290b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Validity
Not Before: Oct 21 09:34:13 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=68f75395-2e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:37:93:20:96:c0:c0:0d:24:df:ac:3e:06:ea:
d1:9f:b1:19:a9:0c:9f:45:c3:2f:61:43:da:4f:c3:
25:56:f6:8f:5d:b0:7f:33:74:69:57:06:43:65:ff:
88:f8:f9:5b:1a:b1:04:80:19:7e:24:b7:c5:0a:94:
92:30:d5:6d:f2:69:1f:3f:67:b7:37:aa:5c:25:c4:
a1:ef:eb:97:19:64:2d:26:11:ce:e3:2b:79:1a:2d:
60:26:27:40:02:11:5d:80:d7:2f:b4:79:ac:f6:c9:
25:4e:60:08:f2:59:c4:84:82:b8:97:1e:96:99:19:
75:71:d7:55:d7:83:33:22:f5:1a:43:72:31:3a:31:
fa:ac:82:3c:0f:5c:de:69:54:37:02:f5:9c:58:19:
b1:a9:02:e3:c2:e4:8a:56:be:23:c9:cd:11:99:d4:
3b:34:81:52:82:a7:88:56:79:cc:aa:78:cf:17:a8:
c8:44:37:9d:92:80:51:b3:8c:26:c0:65:e5:73:a9:
82:35:34:8e:05:cd:2d:2d:1d:2d:06:6a:9f:39:32:
ad:1e:5b:a4:69:d9:91:5c:92:3f:84:25:55:c3:64:
07:cf:10:9e:98:99:c6:1d:71:ba:a3:7b:fe:67:74:
7c:86:16:91:e8:0f:56:b5:33:69:97:08:de:7a:4f:
a3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:42:CA:71:8B:E0:37:1E:72:28:97:96:CC:57:A8:36:DC:9F:95:A9
X509v3 Authority Key Identifier:
keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/E4E0C13C5EBF11EAB066F050C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.118.36.0/22
103.1.116.0/22
103.233.32.0/22
125.5.0.0/16
202.57.64.0/18
202.163.192.0/18
203.131.64.0-203.131.191.255
203.172.0.0/19
222.126.0.0/17
IPv6:
2404:d8::-2404:d8:dfff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5e:4a:43:aa:49:cd:76:8f:74:5e:51:1b:9d:29:d7:88:f0:f8:
32:2b:d4:e7:f2:9a:0f:f9:08:51:58:6a:db:79:52:fe:31:24:
28:08:e0:b8:d8:1e:92:00:4f:77:32:ce:61:71:08:8c:2d:9a:
fc:d2:16:f3:1d:e1:74:21:4d:e0:bc:70:09:39:e2:04:9b:cc:
05:8b:9b:0d:2b:68:56:fa:1e:78:16:e1:80:b0:26:76:8d:76:
7c:09:d1:42:90:6d:d7:85:7f:da:3c:6f:04:fe:c3:41:38:5c:
56:08:d3:58:b0:f9:69:07:46:d5:55:16:06:31:44:c7:c0:33:
83:4b:d8:2e:25:2c:b3:1e:7d:cb:da:ea:2e:f8:e3:98:23:2c:
dd:0e:07:6b:a6:90:02:50:03:8f:2c:d5:8a:f1:88:11:c9:61:
53:d4:ac:5a:9a:e0:f0:0b:56:d4:71:56:80:a2:7a:32:32:5c:
ab:9a:e7:10:51:be:df:96:9f:5d:a2:37:26:28:40:91:3d:4e:
0c:c5:cf:3d:ac:de:ff:d6:7f:de:df:73:47:5e:c7:06:42:26:
bb:7c:ba:dd:50:f1:ad:00:65:3a:fd:2f:ee:dd:4a:f4:4e:5a:
27:2f:f7:5b:86:ca:8d:d0:b4:76:69:88:90:ff:f6:56:a8:6b:
33:89:cf:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 20:14:22 2025 by rpki-client