Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/AA7E3F9017A211F1926DA6A3313D8C67.roa
File: AA7E3F9017A211F1926DA6A3313D8C67.roa (raw, json)
Hash identifier: OS3QBd1KBjVue1TsCQI+ygNSnecMtRq+5PQovPP87f0=
Subject key identifier: 2D:53:83:48:77:46:C5:BC:79:CD:EB:08:E6:BC:44:E7:7A:92:C3:A8
Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D
Certificate serial: 362F
Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/AA7E3F9017A211F1926DA6A3313D8C67.roa
Signing time: Mon 20 Apr 2026 04:12:24 +0000
ROA not before: Mon 20 Apr 2026 04:12:24 +0000
ROA not after: Sat 01 May 2027 00:00:00 +0000
asID: 55423
IP address blocks: 58.82.128.0/18 maxlen: 18
58.82.128.0/21 maxlen: 24
58.82.136.0/21 maxlen: 24
58.82.144.0/21 maxlen: 24
58.82.152.0/21 maxlen: 24
58.82.160.0/20 maxlen: 20
58.82.160.0/21 maxlen: 24
58.82.168.0/21 maxlen: 24
58.82.176.0/20 maxlen: 20
58.82.176.0/21 maxlen: 23
58.82.176.0/23 maxlen: 24
58.82.179.0/24 maxlen: 24
58.82.180.0/22 maxlen: 24
58.82.184.0/21 maxlen: 21
58.82.184.0/24 maxlen: 24
103.247.60.0/22 maxlen: 24
182.50.80.0/22 maxlen: 22
182.50.80.0/24 maxlen: 24
182.50.83.0/24 maxlen: 24
182.50.86.0/24 maxlen: 24
182.50.88.0/22 maxlen: 22
182.50.88.0/24 maxlen: 24
203.130.129.80/28 maxlen: 28
203.130.131.240/28 maxlen: 28
203.130.140.0/24 maxlen: 24
203.130.152.0/24 maxlen: 24
203.147.6.0/24 maxlen: 24
203.147.26.0/24 maxlen: 24
203.147.30.0/23 maxlen: 23
203.147.46.0/23 maxlen: 23
203.147.46.0/24 maxlen: 24
203.147.47.0/24 maxlen: 24
203.156.0.0/22 maxlen: 22
203.156.8.0/21 maxlen: 21
203.156.9.0/24 maxlen: 24
203.156.16.0/24 maxlen: 24
203.156.24.0/24 maxlen: 24
203.156.25.0/24 maxlen: 24
203.156.26.0/24 maxlen: 24
203.156.27.0/24 maxlen: 24
203.156.28.0/24 maxlen: 24
203.156.31.0/24 maxlen: 24
203.156.40.0/22 maxlen: 22
203.156.46.0/23 maxlen: 23
203.156.46.0/24 maxlen: 24
203.156.48.0/23 maxlen: 23
203.156.51.0/24 maxlen: 24
203.156.52.0/24 maxlen: 24
203.156.57.0/24 maxlen: 24
203.156.59.0/24 maxlen: 24
203.156.60.0/24 maxlen: 24
203.156.61.0/24 maxlen: 24
203.156.62.0/24 maxlen: 24
203.156.64.0/24 maxlen: 24
203.156.96.0/23 maxlen: 23
203.156.102.0/23 maxlen: 23
203.156.108.0/24 maxlen: 24
203.156.109.0/24 maxlen: 24
203.156.110.0/23 maxlen: 23
203.156.110.0/24 maxlen: 24
203.156.111.0/24 maxlen: 24
203.156.112.0/24 maxlen: 24
203.156.113.0/24 maxlen: 24
203.156.114.0/23 maxlen: 23
203.156.119.0/24 maxlen: 24
203.156.120.0/21 maxlen: 21
203.156.143.0/24 maxlen: 24
203.156.150.0/24 maxlen: 24
203.156.176.0/23 maxlen: 23
203.156.183.0/24 maxlen: 24
2404:4a00:1::/64 maxlen: 64
2404:4a00:2::/64 maxlen: 64
2404:4a00:3::/64 maxlen: 64
2404:4a00:4::/64 maxlen: 64
2404:4a00:1000::/48 maxlen: 48
2404:4a00:2094::/48 maxlen: 48
2404:4a00:5542::/48 maxlen: 48
2404:4a00:5542:3::/64 maxlen: 64
2404:4a00:5542:3a1::/64 maxlen: 64
2404:4a00:5542:3001::/64 maxlen: 64
2404:4a00:5542:3002::/64 maxlen: 64
2404:4a00:5542:3003::/64 maxlen: 64
2404:4a00:6000::/64 maxlen: 64
2404:4a00:6500::/64 maxlen: 64
2404:4a00:6501::/64 maxlen: 64
2404:4a00:6a00::/64 maxlen: 64
2404:4a00:7000::/64 maxlen: 64
2404:4a00:7500::/64 maxlen: 64
2404:4a00:7a00::/64 maxlen: 64
2404:4a00:8000::/64 maxlen: 64
2404:4a00:8500::/64 maxlen: 64
2404:4a00:8a00::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl
rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 27 Apr 2026 14:56:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13871 (0x362f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914781A, serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D
Validity
Not Before: Apr 20 04:12:24 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=69e5a7a8-9bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8a:77:48:6e:fe:a9:02:1c:62:4e:80:fa:11:
f3:52:81:e7:30:c8:ad:31:b7:87:d6:41:ca:bb:06:
bd:03:ee:f4:29:3c:28:6b:3d:df:01:d4:8c:9a:48:
e6:04:b7:59:6d:78:e8:62:b5:7e:df:5c:64:29:90:
05:4b:50:47:7b:a6:d3:de:72:13:5d:c9:d8:54:8a:
10:b7:6f:2c:5f:92:a5:9d:5a:35:49:83:79:f5:8d:
ec:f7:ca:5b:74:82:a8:ba:15:2a:29:69:53:8b:c7:
7e:a8:b3:dc:ea:e7:b4:2a:55:84:25:84:d7:30:fe:
5d:e1:70:04:a4:35:d7:43:c6:33:6d:b0:72:15:08:
3e:2d:65:11:e0:4d:0d:eb:cc:ea:be:f4:d2:94:72:
48:9b:c0:01:a2:74:e1:04:4b:36:5c:9e:49:e7:a1:
ef:d9:97:25:37:62:81:ad:e6:21:07:b4:e7:61:0a:
2d:0f:5d:b8:98:07:b5:ea:3c:f0:9e:bd:97:d5:af:
24:52:97:86:28:dd:a8:70:37:6f:6f:df:f7:9c:3c:
a4:6c:69:f2:b1:62:68:0e:c7:5e:13:3b:0c:e3:5b:
05:ec:4a:0b:7c:b4:1d:91:26:1d:16:85:cc:73:41:
4c:9c:3e:9d:3d:0f:99:a9:7e:33:2c:29:da:26:35:
5a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:53:83:48:77:46:C5:BC:79:CD:EB:08:E6:BC:44:E7:7A:92:C3:A8
X509v3 Authority Key Identifier:
keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/AA7E3F9017A211F1926DA6A3313D8C67.roa
sbgp-ipAddrBlock: critical
IPv4:
58.82.128.0/18
103.247.60.0/22
182.50.80.0/22
182.50.86.0/24
182.50.88.0/22
203.130.129.80/28
203.130.131.240/28
203.130.140.0/24
203.130.152.0/24
203.147.6.0/24
203.147.26.0/24
203.147.30.0/23
203.147.46.0/23
203.156.0.0/22
203.156.8.0-203.156.16.255
203.156.24.0-203.156.28.255
203.156.31.0/24
203.156.40.0/22
203.156.46.0-203.156.49.255
203.156.51.0-203.156.52.255
203.156.57.0/24
203.156.59.0-203.156.62.255
203.156.64.0/24
203.156.96.0/23
203.156.102.0/23
203.156.108.0-203.156.115.255
203.156.119.0-203.156.127.255
203.156.143.0/24
203.156.150.0/24
203.156.176.0/23
203.156.183.0/24
IPv6:
2404:4a00:1::/64
2404:4a00:2::/64
2404:4a00:3::/64
2404:4a00:4::/64
2404:4a00:1000::/48
2404:4a00:2094::/48
2404:4a00:5542::/48
2404:4a00:6000::/64
2404:4a00:6500::/64
2404:4a00:6501::/64
2404:4a00:6a00::/64
2404:4a00:7000::/64
2404:4a00:7500::/64
2404:4a00:7a00::/64
2404:4a00:8000::/64
2404:4a00:8500::/64
2404:4a00:8a00::/64
Signature Algorithm: sha256WithRSAEncryption
91:d7:2c:68:2f:ec:a4:ed:62:b0:fa:3e:e8:50:75:2e:92:ed:
b6:b8:b8:ad:73:3f:bc:cd:cd:c0:36:23:90:4b:60:9e:01:fa:
04:79:b1:69:ba:da:c0:bb:c6:12:8b:43:15:9d:3f:de:ff:1a:
8a:84:ed:87:a1:17:1f:fd:ca:ed:c2:47:18:3a:90:5a:b0:1d:
c1:57:67:5e:52:65:6c:65:67:0a:96:6c:4c:63:03:f8:5c:c9:
6e:9a:73:40:85:9c:79:07:1b:3d:61:4c:04:64:94:ee:ee:9f:
3e:4c:c7:3a:00:09:8c:6e:45:64:2f:41:c5:5f:91:30:b9:8c:
5a:77:11:16:48:0c:6a:af:95:3a:6d:79:1e:65:f5:bd:a2:c1:
93:9d:35:22:95:09:98:a1:2d:d7:50:7c:da:09:d3:60:90:e6:
b9:a7:21:c5:6a:c6:1a:f9:9c:42:16:a3:94:61:c6:cc:05:af:
6e:a3:ce:55:9d:db:fe:3d:77:98:b2:64:c9:cd:85:6b:c9:1c:
96:08:5f:bc:83:7a:2d:ab:f3:14:cf:c6:84:cf:e7:e4:a7:c9:
bb:13:80:25:ad:78:f1:3f:bf:8e:fb:e7:67:92:67:8a:4c:3b:
e5:17:62:9b:e1:d9:78:3a:18:04:1a:05:83:bf:72:3b:97:a5:
f7:ce:74:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 06:38:17 2026 by rpki-client