Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6F0B8F96B3A511F09EBFA458C4F9AE02.roa
File: 6F0B8F96B3A511F09EBFA458C4F9AE02.roa (raw, json)
Hash identifier: fJeofbejPwgoBFxccMJL6GqQ1vbTTiokcD4pCAjOPqs=
Subject key identifier: 45:8E:81:36:CD:36:4B:51:F8:89:1A:44:63:4F:15:14:FB:50:A6:0E
Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005
Certificate serial: 1AFF
Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6F0B8F96B3A511F09EBFA458C4F9AE02.roa
Signing time: Mon 15 Jun 2026 04:19:46 +0000
ROA not before: Mon 15 Jun 2026 04:19:46 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 9500
IP address blocks: 27.252.0.0/17 maxlen: 17
27.252.128.0/17 maxlen: 17
49.224.0.0/14 maxlen: 14
49.224.64.0/18 maxlen: 18
49.224.192.0/18 maxlen: 18
118.92.0.0/16 maxlen: 16
118.93.0.0/16 maxlen: 16
121.72.0.0/15 maxlen: 15
121.74.0.0/16 maxlen: 16
121.75.0.0/16 maxlen: 16
121.75.176.0/22 maxlen: 22
121.90.0.0/16 maxlen: 16
124.6.192.0/19 maxlen: 19
124.6.198.0/24 maxlen: 24
202.0.32.0/19 maxlen: 19
202.0.33.0/24 maxlen: 24
202.0.34.0/24 maxlen: 24
202.0.35.0/24 maxlen: 24
202.0.36.0/24 maxlen: 24
202.20.76.0/24 maxlen: 24
202.22.16.0/21 maxlen: 21
202.22.24.0/22 maxlen: 22
202.22.28.0/23 maxlen: 23
202.22.30.0/24 maxlen: 24
202.27.69.0/24 maxlen: 24
202.27.92.0/22 maxlen: 22
202.27.100.0/22 maxlen: 22
202.36.72.0/24 maxlen: 24
202.37.56.0/24 maxlen: 24
202.37.136.0/24 maxlen: 24
202.49.180.0/23 maxlen: 23
202.73.192.0/20 maxlen: 20
202.78.128.0/19 maxlen: 22
203.79.64.0/18 maxlen: 18
203.79.68.0/23 maxlen: 23
203.79.116.0/22 maxlen: 22
203.96.192.0/19 maxlen: 19
203.97.136.0/24 maxlen: 24
203.98.0.0/18 maxlen: 18
203.98.42.0/23 maxlen: 23
203.98.42.0/24 maxlen: 24
203.109.128.0/17 maxlen: 17
203.109.143.0/24 maxlen: 24
203.109.179.0/24 maxlen: 24
203.109.183.0/24 maxlen: 24
203.109.247.0/24 maxlen: 24
203.109.253.0/24 maxlen: 24
203.109.255.0/24 maxlen: 24
203.118.128.0/18 maxlen: 18
203.173.128.0/17 maxlen: 17
210.246.0.0/18 maxlen: 18
218.101.64.0/18 maxlen: 18
2001:4400::/30 maxlen: 30
2407:7000::/32 maxlen: 32
2407:7000:f300::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl
rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 22 Jun 2026 01:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6911 (0x1aff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005
Validity
Not Before: Jun 15 04:19:46 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6a2f7d62-76dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c2:54:0b:af:05:9c:28:22:fd:e0:3a:80:bb:
76:f0:d5:36:e7:81:b0:cb:a5:9f:7b:47:e4:25:90:
78:7b:09:f1:c2:3f:b1:16:ef:c4:44:de:c8:a9:31:
e2:27:6d:ca:81:87:69:69:98:bb:9d:63:b5:ff:32:
88:31:28:54:55:dc:4e:36:de:62:89:67:ef:0a:56:
8d:fe:4e:ca:c7:63:3d:85:eb:91:3c:5b:e0:f5:ec:
f3:54:9b:15:b3:48:58:27:2d:89:6d:5f:36:ab:5c:
74:45:ff:ed:32:8c:65:12:62:1f:f9:cc:6b:84:b3:
0d:21:b5:a5:df:98:18:34:62:4c:a1:2f:45:19:48:
c5:6e:60:c8:4b:5e:8d:0d:2a:43:d4:cb:75:f9:30:
e6:76:a1:7a:5a:71:da:7b:c1:65:2c:c1:cb:31:90:
b0:80:80:91:53:7f:42:17:a1:08:31:c9:8c:b8:77:
af:77:7a:22:21:6d:4b:f3:d1:ca:ac:82:cc:ea:1c:
2b:2a:b6:c7:32:1e:4e:d2:f5:3b:29:f4:88:4d:b7:
a7:ef:43:2a:a7:d4:b2:c2:64:4a:8f:d2:79:8e:f1:
3f:d8:79:59:cc:95:de:e8:bc:7e:2a:0d:4d:f7:29:
5d:8d:c9:20:4c:63:34:75:e0:99:1a:09:ad:ea:48:
8d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:8E:81:36:CD:36:4B:51:F8:89:1A:44:63:4F:15:14:FB:50:A6:0E
X509v3 Authority Key Identifier:
keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6F0B8F96B3A511F09EBFA458C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
27.252.0.0/16
49.224.0.0/14
118.92.0.0/15
121.72.0.0/14
121.90.0.0/16
124.6.192.0/19
202.0.32.0/19
202.20.76.0/24
202.22.16.0-202.22.30.255
202.27.69.0/24
202.27.92.0/22
202.27.100.0/22
202.36.72.0/24
202.37.56.0/24
202.37.136.0/24
202.49.180.0/23
202.73.192.0/20
202.78.128.0/19
203.79.64.0/18
203.96.192.0/19
203.97.136.0/24
203.98.0.0/18
203.109.128.0/17
203.118.128.0/18
203.173.128.0/17
210.246.0.0/18
218.101.64.0/18
IPv6:
2001:4400::/30
2407:7000::/32
Signature Algorithm: sha256WithRSAEncryption
44:66:72:18:48:68:5a:1c:80:f2:db:6c:3a:0a:66:dc:6f:01:
05:b8:ca:8b:01:0e:7a:c4:f8:7f:24:84:75:2c:79:92:7b:42:
b9:30:95:92:86:74:89:55:19:c2:77:51:36:6b:06:b8:3f:b5:
7c:df:eb:76:58:51:23:4b:1f:5c:48:fa:86:71:f4:04:85:35:
88:fb:4b:97:ec:61:bb:df:18:48:27:4d:b9:29:e6:83:ba:a3:
16:01:fd:71:ee:5c:b4:aa:99:c7:b5:54:71:ff:fd:6a:f1:6c:
c3:6a:14:ea:60:36:f6:85:e4:04:0d:59:45:bc:8b:64:1d:40:
11:f8:ec:3d:a6:91:2a:64:dc:c0:aa:30:2a:9d:cf:bc:55:01:
b5:55:81:2b:f6:d6:64:3f:8c:44:f6:3a:6f:15:bb:3c:3f:12:
34:03:20:47:9a:98:fc:a4:79:36:91:ff:43:68:62:5f:bf:b0:
eb:ed:36:ec:3b:0d:2a:20:ef:69:69:b1:e8:60:85:0b:2e:14:
d0:fd:59:07:ed:f6:75:6a:86:b2:72:37:e8:df:93:c6:0e:17:
1d:b7:49:9a:0e:c9:72:a8:7a:51:1f:45:ce:0f:70:34:8a:c9:
12:6a:01:3f:f0:e7:5a:7b:55:b5:11:ad:26:80:d1:2f:d1:78:
35:58:1e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 19:08:01 2026 by rpki-client