Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
File: CCF0C1920EBA11ECB2C2867AC4F9AE02.roa (raw, json)
Hash identifier: RfyM8ct768oGdAt1gNhPGfq/0bgJ1ThmkXz5XVukic4=
Subject key identifier: 4E:0E:43:74:12:54:36:1D:1F:2F:C8:2F:39:D4:E0:29:A0:EE:EA:0A
Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Certificate serial: 2A03
Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
Signing time: Sat 30 May 2026 16:17:57 +0000
ROA not before: Sat 30 May 2026 16:17:57 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 24440
IP address blocks: 36.255.44.0/22 maxlen: 24
43.242.100.0/22 maxlen: 24
58.65.192.0/19 maxlen: 24
61.5.128.0/19 maxlen: 24
101.53.224.0/19 maxlen: 24
103.7.60.0/22 maxlen: 24
103.18.8.0/22 maxlen: 24
103.18.12.0/22 maxlen: 24
103.18.20.0/22 maxlen: 24
103.26.80.0/22 maxlen: 24
103.26.84.0/22 maxlen: 24
103.31.92.0/22 maxlen: 24
103.31.100.0/22 maxlen: 24
103.31.104.0/22 maxlen: 24
103.244.172.0/22 maxlen: 24
103.244.176.0/22 maxlen: 24
103.245.132.0/22 maxlen: 24
103.245.192.0/22 maxlen: 24
119.13.184.0/21 maxlen: 24
124.29.192.0/18 maxlen: 24
153.117.0.0/16 maxlen: 24
175.107.192.0/18 maxlen: 24
202.47.32.0/19 maxlen: 24
202.163.64.0/19 maxlen: 24
202.163.96.0/19 maxlen: 24
203.101.160.0/19 maxlen: 24
218.100.85.0/24 maxlen: 24
2001:4538::/32 maxlen: 32
2001:4538:41::/48 maxlen: 48
2400:adc0:9::/64 maxlen: 64
2400:adc0:200::/48 maxlen: 48
2400:adc0:201::/48 maxlen: 48
2400:adc0:4000::/48 maxlen: 48
2400:adc0:4001::/48 maxlen: 48
2400:adc0:4002::/48 maxlen: 48
2400:adc0:4003::/48 maxlen: 48
2400:adc0:4004::/48 maxlen: 48
2400:adc0:4005::/48 maxlen: 48
2400:adc0:4006::/48 maxlen: 48
2400:adc0:4007::/48 maxlen: 48
2400:adc0:4008::/48 maxlen: 48
2400:adc0:4009::/48 maxlen: 48
2400:adc0:4010::/48 maxlen: 48
2400:adc0:4011::/48 maxlen: 48
2400:adc0:4012::/48 maxlen: 48
2400:adc0:4013::/48 maxlen: 48
2400:adc0:4014::/48 maxlen: 48
2400:adc0:4020::/48 maxlen: 48
2400:adc0:4030::/48 maxlen: 48
2400:adc0:4040::/48 maxlen: 48
2400:adc0:4104::/48 maxlen: 48
2400:adc0:4203::/48 maxlen: 48
2400:adc0:4204::/48 maxlen: 48
2400:adc0:4300::/48 maxlen: 48
2400:adc0:4301::/48 maxlen: 48
2400:adc0:4302::/48 maxlen: 48
2400:adc0:4303::/48 maxlen: 48
2400:adc0:4310::/48 maxlen: 48
2400:adc0:4311::/48 maxlen: 48
2400:adc0:4500::/48 maxlen: 48
2400:adc0:4600::/48 maxlen: 48
2400:adc0:4610::/48 maxlen: 48
2400:adc0:4611::/48 maxlen: 48
2400:adc0:4700::/48 maxlen: 48
2400:adc0:4710::/48 maxlen: 48
2400:adc0:4711::/48 maxlen: 48
2400:adc0:4900::/48 maxlen: 48
2400:adc0:4910::/48 maxlen: 48
2400:adc0:4a10::/48 maxlen: 48
2400:adc0:4b10::/48 maxlen: 48
2400:adc0:c001::/48 maxlen: 48
2400:adc0:c003::/48 maxlen: 48
2400:adc0:c030::/48 maxlen: 48
2400:adc0:c102::/48 maxlen: 48
2400:adc0:c103::/48 maxlen: 48
2400:adc0:c210::/48 maxlen: 48
2400:adc0:c211::/48 maxlen: 48
2400:adc0:c310::/48 maxlen: 48
2400:adc0:c410::/48 maxlen: 48
2400:adc0:c510::/48 maxlen: 48
2400:adc2:100::/48 maxlen: 48
2400:adc2:300::/40 maxlen: 40
2400:adc2:400::/40 maxlen: 40
2400:adc2:600::/40 maxlen: 40
2400:adc2:700::/40 maxlen: 40
2400:adc2:900::/40 maxlen: 40
2400:adc2:a00::/40 maxlen: 40
2400:adc4::/40 maxlen: 40
2400:adc4:100::/40 maxlen: 40
2400:adc4:800::/40 maxlen: 40
2400:adc4:900::/40 maxlen: 40
2400:adc5::/42 maxlen: 42
2400:adc5:40::/42 maxlen: 42
2400:adc5:80::/42 maxlen: 42
2400:adc5:c0::/42 maxlen: 42
2400:adc5:100::/42 maxlen: 42
2400:adc5:140::/42 maxlen: 42
2400:adc5:180::/42 maxlen: 42
2400:adc5:1c0::/42 maxlen: 42
2400:adc5:300::/42 maxlen: 42
2400:adc5:340::/42 maxlen: 42
2400:adc5:380::/42 maxlen: 42
2400:adc5:3c0::/42 maxlen: 42
2400:adc5:400::/42 maxlen: 42
2400:adc5:440::/42 maxlen: 42
2400:adc5:480::/42 maxlen: 42
2400:adc5:4c0::/42 maxlen: 42
2400:adca::/40 maxlen: 40
2400:adca:100::/40 maxlen: 40
2400:add9::/40 maxlen: 40
2400:add9:100::/40 maxlen: 40
2400:add9:200::/40 maxlen: 40
2400:add9:300::/40 maxlen: 40
2400:addb:800::/40 maxlen: 40
2400:addb:900::/40 maxlen: 40
2400:addd:2000::/40 maxlen: 40
2400:addd:2100::/40 maxlen: 40
2400:addd:2800::/40 maxlen: 40
2400:addd:2900::/40 maxlen: 40
2400:addd:4900::/40 maxlen: 40
2400:adde::/40 maxlen: 40
2400:adde:100::/40 maxlen: 40
2400:addf:800::/40 maxlen: 40
2400:addf:900::/40 maxlen: 40
2400:addf:1000::/40 maxlen: 40
2400:addf:1100::/40 maxlen: 40
2400:addf:2900::/40 maxlen: 40
2400:addf:3900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Jun 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10755 (0x2a03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Validity
Not Before: May 30 16:17:57 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a1b0db5-88bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ce:08:91:21:50:8b:e3:a4:89:6e:b6:cb:b2:
7e:e3:fc:76:bc:5d:8a:ee:fa:be:dd:9d:6b:7e:fc:
b2:26:0b:3e:3b:48:30:9d:a9:aa:9d:55:5c:5a:e4:
73:aa:b9:a6:37:7f:89:fa:1c:b6:d5:b3:56:83:fc:
98:a4:63:9c:17:de:d5:b3:ac:4e:4e:1f:93:02:3f:
57:19:e6:f0:22:28:c1:04:56:6c:71:e0:a6:b5:4a:
41:30:da:23:ee:ef:e0:e3:ae:6c:51:78:05:ce:21:
75:e0:99:c3:97:fc:d5:dc:0d:28:19:83:df:02:12:
e9:76:9c:22:82:49:4e:e6:89:aa:a4:65:49:da:e3:
ab:00:8e:66:23:a4:f1:63:67:45:e6:49:53:3d:7b:
97:73:fb:9c:62:ba:c9:a3:81:5d:14:64:85:9f:d0:
a9:cd:6c:dd:8d:5b:f9:a7:fd:4e:ee:d6:b9:64:77:
74:6c:63:36:b5:e3:b4:a1:1c:cd:c2:04:45:9a:44:
fb:f1:32:cf:a6:a2:60:29:ba:6e:f4:4c:74:bd:0e:
99:4c:62:a2:c1:75:87:60:fe:22:83:d7:d8:e9:8f:
e9:3a:9d:00:ee:8a:fc:34:2e:f0:66:ad:18:38:26:
8a:b7:82:85:d6:95:4b:85:fc:59:57:90:84:b4:06:
4e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0E:43:74:12:54:36:1D:1F:2F:C8:2F:39:D4:E0:29:A0:EE:EA:0A
X509v3 Authority Key Identifier:
keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
36.255.44.0/22
43.242.100.0/22
58.65.192.0/19
61.5.128.0/19
101.53.224.0/19
103.7.60.0/22
103.18.8.0/21
103.18.20.0/22
103.26.80.0/21
103.31.92.0/22
103.31.100.0-103.31.107.255
103.244.172.0-103.244.179.255
103.245.132.0/22
103.245.192.0/22
119.13.184.0/21
124.29.192.0/18
153.117.0.0/16
175.107.192.0/18
202.47.32.0/19
202.163.64.0/18
203.101.160.0/19
218.100.85.0/24
IPv6:
2001:4538::/32
2400:adc0:9::/64
2400:adc0:200::/47
2400:adc0:4000::-2400:adc0:4009:ffff:ffff:ffff:ffff:ffff
2400:adc0:4010::-2400:adc0:4014:ffff:ffff:ffff:ffff:ffff
2400:adc0:4020::/48
2400:adc0:4030::/48
2400:adc0:4040::/48
2400:adc0:4104::/48
2400:adc0:4203::-2400:adc0:4204:ffff:ffff:ffff:ffff:ffff
2400:adc0:4300::/46
2400:adc0:4310::/47
2400:adc0:4500::/48
2400:adc0:4600::/48
2400:adc0:4610::/47
2400:adc0:4700::/48
2400:adc0:4710::/47
2400:adc0:4900::/48
2400:adc0:4910::/48
2400:adc0:4a10::/48
2400:adc0:4b10::/48
2400:adc0:c001::/48
2400:adc0:c003::/48
2400:adc0:c030::/48
2400:adc0:c102::/47
2400:adc0:c210::/47
2400:adc0:c310::/48
2400:adc0:c410::/48
2400:adc0:c510::/48
2400:adc2:100::/48
2400:adc2:300::-2400:adc2:4ff:ffff:ffff:ffff:ffff:ffff
2400:adc2:600::/39
2400:adc2:900::-2400:adc2:aff:ffff:ffff:ffff:ffff:ffff
2400:adc4::/39
2400:adc4:800::/39
2400:adc5::/39
2400:adc5:300::-2400:adc5:4ff:ffff:ffff:ffff:ffff:ffff
2400:adca::/39
2400:add9::/38
2400:addb:800::/39
2400:addd:2000::/39
2400:addd:2800::/39
2400:addd:4900::/40
2400:adde::/39
2400:addf:800::/39
2400:addf:1000::/39
2400:addf:2900::/40
2400:addf:3900::/40
Signature Algorithm: sha256WithRSAEncryption
16:7f:db:04:0b:20:27:29:5c:00:0e:15:a2:af:40:32:ec:eb:
18:37:f1:80:79:c8:5c:86:d3:33:8e:f5:2b:f0:26:4e:10:cd:
e9:ff:cd:50:9f:c0:b2:1c:7c:92:06:40:4e:ef:0a:90:de:f5:
d5:e9:b3:4b:0f:13:51:db:00:09:e3:68:52:01:27:1a:30:66:
ef:80:1a:b6:17:d1:74:f6:fa:1f:df:12:c8:45:69:73:2b:e6:
b9:70:bd:ba:93:32:f1:ae:3a:dc:fc:5b:8b:87:ee:4b:3f:2f:
d2:97:1e:d1:38:36:bc:04:bb:a4:4c:0f:9f:94:61:52:57:ad:
26:b1:c7:59:80:51:93:1e:b4:d7:b0:9a:9c:fd:44:d0:aa:10:
d6:19:7c:ab:74:bd:12:96:1d:1f:6b:c9:3f:9c:60:cc:e4:8f:
ac:57:08:38:a2:0d:9e:dc:b7:8e:d5:af:c2:2e:5a:59:de:5a:
16:15:1c:5c:aa:1e:38:2d:cf:48:9d:84:ed:b0:d4:89:59:8a:
42:f1:c6:4c:7c:d5:5b:b5:cf:b7:74:b8:f2:c6:c9:7c:7d:19:
00:89:eb:57:ca:90:63:14:63:ea:19:93:31:bb:78:64:db:01:
18:18:9a:78:bc:0d:6f:51:a3:a6:f1:67:d4:01:e9:99:b5:36:
58:f2:6a:f8
-----BEGIN CERTIFICATE-----
MIIHuTCCBqGgAwIBAgICKgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF
QzUwNDhDRjcwHhcNMjYwNTMwMTYxNzU3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTFiMGRiNS04OGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAws4IkSFQi+OkiW62y7J+4/x2vF2K7vq+3Z1rfvyyJgs+O0gwnamqnVVcWuRz
qrmmN3+J+hy21bNWg/yYpGOcF97Vs6xOTh+TAj9XGebwIijBBFZsceCmtUpBMNoj
7u/g465sUXgFziF14JnDl/zV3A0oGYPfAhLpdpwigklO5omqpGVJ2uOrAI5mI6Tx
Y2dF5klTPXuXc/ucYrrJo4FdFGSFn9CpzWzdjVv5p/1O7ta5ZHd0bGM2teO0oRzN
wgRFmkT78TLPpqJgKbpu9Ex0vQ6ZTGKiwXWHYP4ig9fY6Y/pOp0A7or8NC7wZq0Y
OCaKt4KF1pVLhfxZV5CEtAZOnQIDAQABo4IE3TCCBNkwHQYDVR0OBBYEFE4OQ3QS
VDYdHy/ILznU4Cmg7uoKMB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx
NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq
UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTBGNjYvQkMxREMxRjZDMTc1MTFFNEEyQzdCNzRDQzRGOUFFMDIvQ0NGMEMxOTIw
RUJBMTFFQ0IyQzI4NjdBQzRGOUFFMDIucm9hMIICmgYIKwYBBQUHAQcBAf8EggKJ
MIIChTCBmgQCAAEwgZMDBAIk/ywDBAIr8mQDBAU6QcADBAU9BYADBAVlNeADBAJn
BzwDBANnEggDBAJnEhQDBANnGlADBAJnH1wwDAMEAmcfZAMEAmcfaDAMAwQCZ/Ss
AwQCZ/SwAwQCZ/WEAwQCZ/XAAwQDdw24AwQGfB3AAwMAmXUDBAava8ADBAXKLyAD
BAbKo0ADBAXLZaADBADaZFUwggHkBAIAAjCCAdwDBQAgAUU4AwkAJACtwAAJAAAD
BwEkAK3AAgAwEQMGBiQArcBAAwcBJACtwEAIMBIDBwQkAK3AQBADBwAkAK3AQBQD
BwAkAK3AQCADBwAkAK3AQDADBwAkAK3AQEADBwAkAK3AQQQwEgMHACQArcBCAwMH
ACQArcBCBAMHAiQArcBDAAMHASQArcBDEAMHACQArcBFAAMHACQArcBGAAMHASQA
rcBGEAMHACQArcBHAAMHASQArcBHEAMHACQArcBJAAMHACQArcBJEAMHACQArcBK
EAMHACQArcBLEAMHACQArcDAAQMHACQArcDAAwMHACQArcDAMAMHASQArcDBAgMH
ASQArcDCEAMHACQArcDDEAMHACQArcDEEAMHACQArcDFEAMHACQArcIBADAQAwYA
JACtwgMDBgAkAK3CBAMGASQArcIGMBADBgAkAK3CCQMGACQArcIKAwYBJACtxAAD
BgEkAK3ECAMGASQArcUAMBADBgAkAK3FAwMGACQArcUEAwYBJACtygADBgIkAK3Z
AAMGASQArdsIAwYBJACt3SADBgEkAK3dKAMGACQArd1JAwYBJACt3gADBgEkAK3f
CAMGASQArd8QAwYAJACt3ykDBgAkAK3fOTANBgkqhkiG9w0BAQsFAAOCAQEAFn/b
BAsgJylcAA4Voq9AMuzrGDfxgHnIXIbTM471K/AmThDN6f/NUJ/Ashx8kgZATu8K
kN711emzSw8TUdsACeNoUgEnGjBm74AathfRdPb6H98SyEVpcyvmuXC9upMy8a46
3Pxbi4fuSz8v0pce0Tg2vAS7pEwPn5RhUletJrHHWYBRkx6017CanP1E0KoQ1hl8
q3S9EpYdH2vJP5xgzOSPrFcIOKINnty3jtWvwi5aWd5aFhUcXKoeOC3PSJ2E7bDU
iVmKQvHGTHzVW7XPt3S48sbJfH0ZAInrV8qQYxRj6hmTMbt4ZNsBGBiaeLwNb1Gj
pvFn1AHpmbU2WPJq+A==
-----END CERTIFICATE-----
Generated at Sat Jun 6 18:03:45 2026 by rpki-client