Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/AA7E3F9017A211F1926DA6A3313D8C67.roa
File: AA7E3F9017A211F1926DA6A3313D8C67.roa (raw, json)
Hash identifier: L48creEngMJJ5TkDliX9ZnYTWQwzYlG+Qdxsr0lywoc=
Subject key identifier: C9:D1:4E:F8:77:E9:DB:3A:B2:C9:6E:26:22:E2:16:97:F9:97:93:58
Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D
Certificate serial: 3610
Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/AA7E3F9017A211F1926DA6A3313D8C67.roa
Signing time: Wed 04 Mar 2026 08:18:04 +0000
ROA not before: Wed 04 Mar 2026 08:18:04 +0000
ROA not after: Sat 01 May 2027 00:00:00 +0000
asID: 55423
IP address blocks: 58.82.128.0/18 maxlen: 18
58.82.128.0/21 maxlen: 24
58.82.136.0/21 maxlen: 24
58.82.144.0/21 maxlen: 24
58.82.152.0/21 maxlen: 24
58.82.160.0/20 maxlen: 20
58.82.160.0/21 maxlen: 24
58.82.168.0/21 maxlen: 24
58.82.176.0/20 maxlen: 20
58.82.176.0/21 maxlen: 23
58.82.176.0/23 maxlen: 24
58.82.179.0/24 maxlen: 24
58.82.180.0/22 maxlen: 24
58.82.184.0/21 maxlen: 21
58.82.184.0/24 maxlen: 24
103.247.60.0/22 maxlen: 24
182.50.80.0/22 maxlen: 22
182.50.80.0/24 maxlen: 24
182.50.83.0/24 maxlen: 24
182.50.86.0/24 maxlen: 24
182.50.88.0/22 maxlen: 22
182.50.88.0/24 maxlen: 24
203.130.129.80/28 maxlen: 28
203.130.131.240/28 maxlen: 28
203.130.140.0/24 maxlen: 24
203.130.152.0/24 maxlen: 24
203.147.6.0/24 maxlen: 24
203.147.26.0/24 maxlen: 24
203.147.30.0/23 maxlen: 23
203.147.46.0/23 maxlen: 23
203.147.46.0/24 maxlen: 24
203.147.47.0/24 maxlen: 24
203.156.0.0/22 maxlen: 22
203.156.8.0/21 maxlen: 21
203.156.9.0/24 maxlen: 24
203.156.16.0/24 maxlen: 24
203.156.24.0/24 maxlen: 24
203.156.25.0/24 maxlen: 24
203.156.26.0/24 maxlen: 24
203.156.27.0/24 maxlen: 24
203.156.28.0/24 maxlen: 24
203.156.31.0/24 maxlen: 24
203.156.40.0/22 maxlen: 22
203.156.46.0/23 maxlen: 23
203.156.48.0/23 maxlen: 23
203.156.51.0/24 maxlen: 24
203.156.52.0/24 maxlen: 24
203.156.57.0/24 maxlen: 24
203.156.59.0/24 maxlen: 24
203.156.60.0/24 maxlen: 24
203.156.61.0/24 maxlen: 24
203.156.62.0/24 maxlen: 24
203.156.64.0/24 maxlen: 24
203.156.96.0/23 maxlen: 23
203.156.102.0/23 maxlen: 23
203.156.108.0/24 maxlen: 24
203.156.109.0/24 maxlen: 24
203.156.110.0/23 maxlen: 23
203.156.110.0/24 maxlen: 24
203.156.111.0/24 maxlen: 24
203.156.112.0/24 maxlen: 24
203.156.113.0/24 maxlen: 24
203.156.114.0/23 maxlen: 23
203.156.119.0/24 maxlen: 24
203.156.120.0/21 maxlen: 21
203.156.143.0/24 maxlen: 24
203.156.150.0/24 maxlen: 24
203.156.176.0/23 maxlen: 23
203.156.183.0/24 maxlen: 24
2404:4a00:1::/64 maxlen: 64
2404:4a00:2::/64 maxlen: 64
2404:4a00:3::/64 maxlen: 64
2404:4a00:4::/64 maxlen: 64
2404:4a00:1000::/48 maxlen: 48
2404:4a00:2094::/48 maxlen: 48
2404:4a00:5542::/48 maxlen: 48
2404:4a00:5542:3::/64 maxlen: 64
2404:4a00:5542:3a1::/64 maxlen: 64
2404:4a00:5542:3001::/64 maxlen: 64
2404:4a00:5542:3002::/64 maxlen: 64
2404:4a00:5542:3003::/64 maxlen: 64
2404:4a00:6000::/64 maxlen: 64
2404:4a00:6500::/64 maxlen: 64
2404:4a00:6501::/64 maxlen: 64
2404:4a00:6a00::/64 maxlen: 64
2404:4a00:7000::/64 maxlen: 64
2404:4a00:7500::/64 maxlen: 64
2404:4a00:7a00::/64 maxlen: 64
2404:4a00:8000::/64 maxlen: 64
2404:4a00:8500::/64 maxlen: 64
2404:4a00:8a00::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl
rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 13 Mar 2026 14:54:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13840 (0x3610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914781A, serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D
Validity
Not Before: Mar 4 08:18:04 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=69a7eabc-2331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:25:6f:f9:5d:7c:a1:fc:3f:b0:58:fc:a9:e2:
9c:25:e5:26:7a:c2:4c:31:7a:ba:ab:26:66:74:4a:
54:b8:eb:db:2f:b1:2c:02:5c:3d:37:c9:0d:23:3f:
01:03:fc:af:5a:ed:17:2c:f8:ee:a6:d9:91:aa:a7:
4f:c7:7c:18:b7:4a:44:27:c6:4b:f3:54:85:5a:19:
52:c9:bc:17:4d:6c:e6:f3:2e:f0:75:ca:a6:8f:1d:
72:3a:1d:70:76:a4:a2:84:38:2b:0b:26:10:cd:fb:
45:bd:4d:d5:df:a8:8d:b7:a0:51:3c:e9:55:99:65:
8f:3e:6f:71:db:0e:e1:cd:d8:47:71:45:3c:5c:93:
4f:76:05:33:23:1c:c0:48:17:8e:ac:14:a1:e7:e7:
be:44:9e:24:6d:23:9d:50:bb:10:08:77:9d:8d:71:
e6:9a:09:5d:ac:7a:f0:cc:ad:02:6b:23:9b:7f:83:
f8:c7:a1:4b:fa:b8:9a:c5:4e:db:0e:c6:79:6a:20:
3b:9d:2d:e8:0d:49:cb:34:86:36:05:35:da:a7:c5:
60:a6:31:0d:db:36:27:3d:00:67:21:15:73:71:d6:
b4:e2:c9:0e:48:19:4e:57:53:b2:da:c1:ab:2e:48:
2d:34:5c:44:57:2c:ec:ea:3a:36:42:61:5d:73:2f:
3c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D1:4E:F8:77:E9:DB:3A:B2:C9:6E:26:22:E2:16:97:F9:97:93:58
X509v3 Authority Key Identifier:
keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/AA7E3F9017A211F1926DA6A3313D8C67.roa
sbgp-ipAddrBlock: critical
IPv4:
58.82.128.0/18
103.247.60.0/22
182.50.80.0/22
182.50.86.0/24
182.50.88.0/22
203.130.129.80/28
203.130.131.240/28
203.130.140.0/24
203.130.152.0/24
203.147.6.0/24
203.147.26.0/24
203.147.30.0/23
203.147.46.0/23
203.156.0.0/22
203.156.8.0-203.156.16.255
203.156.24.0-203.156.28.255
203.156.31.0/24
203.156.40.0/22
203.156.46.0-203.156.49.255
203.156.51.0-203.156.52.255
203.156.57.0/24
203.156.59.0-203.156.62.255
203.156.64.0/24
203.156.96.0/23
203.156.102.0/23
203.156.108.0-203.156.115.255
203.156.119.0-203.156.127.255
203.156.143.0/24
203.156.150.0/24
203.156.176.0/23
203.156.183.0/24
IPv6:
2404:4a00:1::/64
2404:4a00:2::/64
2404:4a00:3::/64
2404:4a00:4::/64
2404:4a00:1000::/48
2404:4a00:2094::/48
2404:4a00:5542::/48
2404:4a00:6000::/64
2404:4a00:6500::/64
2404:4a00:6501::/64
2404:4a00:6a00::/64
2404:4a00:7000::/64
2404:4a00:7500::/64
2404:4a00:7a00::/64
2404:4a00:8000::/64
2404:4a00:8500::/64
2404:4a00:8a00::/64
Signature Algorithm: sha256WithRSAEncryption
c7:79:63:ef:f3:61:ff:27:95:1d:d4:9d:b8:3e:a8:5c:6f:e5:
15:1d:fb:41:a4:2a:0a:4c:ce:49:ae:2a:33:84:6d:e8:72:38:
2b:9b:3f:98:2a:46:d3:2c:05:b1:91:62:4a:9c:cb:6a:75:63:
bc:75:ad:79:7f:0a:a5:ff:b4:b9:e7:33:da:57:15:8d:24:5a:
38:ad:f7:8c:75:14:bf:a0:df:e1:2c:97:d0:2b:36:09:c8:22:
94:3b:c7:69:bc:c0:24:4c:e1:55:18:22:7e:b6:ab:58:9d:e5:
dd:f1:11:d3:f1:22:57:86:95:25:16:5f:64:82:19:8f:85:de:
0c:4d:a3:b8:04:36:d8:5e:89:ba:dd:58:fc:02:a1:39:1e:41:
c6:66:78:b2:61:be:ba:18:d7:95:ba:6a:fa:36:bd:aa:40:eb:
fb:77:6a:1c:d4:77:91:6c:b6:f6:ae:94:b8:26:1c:70:2b:0c:
f3:e8:9e:7b:16:39:1f:08:f5:4c:f6:91:ec:a8:b4:1d:ab:75:
0a:02:97:e4:9f:09:29:a0:75:2d:c5:fc:b7:7e:6d:62:c8:3a:
20:ad:bd:d3:74:84:0f:f3:2a:57:7e:af:3a:7f:86:d0:99:25:
9a:77:29:94:1b:24:4c:c5:c6:44:b4:a2:17:f5:f5:7b:59:a2:
81:c3:c6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 01:43:04 2026 by rpki-client