Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
File: CCF0C1920EBA11ECB2C2867AC4F9AE02.roa (raw, json)
Hash identifier: k7kFjplm2s+ydD7K6WhjMn03EyJGzpwOT89KNvnobeA=
Subject key identifier: 73:FD:B0:DD:80:32:FA:FB:49:DE:45:C1:CA:1E:E0:96:77:C0:36:3F
Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Certificate serial: 29E3
Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
Signing time: Wed 22 Apr 2026 06:19:24 +0000
ROA not before: Wed 22 Apr 2026 06:19:24 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 24440
IP address blocks: 36.255.44.0/22 maxlen: 24
43.242.100.0/22 maxlen: 24
58.65.192.0/19 maxlen: 24
61.5.128.0/19 maxlen: 24
101.53.224.0/19 maxlen: 24
103.7.60.0/22 maxlen: 24
103.18.8.0/22 maxlen: 24
103.18.12.0/22 maxlen: 24
103.18.20.0/22 maxlen: 24
103.26.80.0/22 maxlen: 24
103.26.84.0/22 maxlen: 24
103.31.92.0/22 maxlen: 24
103.31.100.0/22 maxlen: 24
103.31.104.0/22 maxlen: 24
103.244.172.0/22 maxlen: 24
103.244.176.0/22 maxlen: 24
103.245.132.0/22 maxlen: 24
103.245.192.0/22 maxlen: 24
119.13.184.0/21 maxlen: 24
124.29.192.0/18 maxlen: 24
153.117.0.0/16 maxlen: 24
175.107.192.0/18 maxlen: 24
202.47.32.0/19 maxlen: 24
202.163.64.0/19 maxlen: 24
202.163.96.0/19 maxlen: 24
203.101.160.0/19 maxlen: 24
218.100.85.0/24 maxlen: 24
2001:4538::/32 maxlen: 32
2001:4538:41::/48 maxlen: 48
2400:adc0:9::/64 maxlen: 64
2400:adc0:200::/48 maxlen: 48
2400:adc0:201::/48 maxlen: 48
2400:adc0:4000::/48 maxlen: 48
2400:adc0:4001::/48 maxlen: 48
2400:adc0:4002::/48 maxlen: 48
2400:adc0:4003::/48 maxlen: 48
2400:adc0:4004::/48 maxlen: 48
2400:adc0:4005::/48 maxlen: 48
2400:adc0:4006::/48 maxlen: 48
2400:adc0:4007::/48 maxlen: 48
2400:adc0:4008::/48 maxlen: 48
2400:adc0:4009::/48 maxlen: 48
2400:adc0:4010::/48 maxlen: 48
2400:adc0:4011::/48 maxlen: 48
2400:adc0:4012::/48 maxlen: 48
2400:adc0:4013::/48 maxlen: 48
2400:adc0:4014::/48 maxlen: 48
2400:adc0:4020::/48 maxlen: 48
2400:adc0:4030::/48 maxlen: 48
2400:adc0:4040::/48 maxlen: 48
2400:adc0:4104::/48 maxlen: 48
2400:adc0:4203::/48 maxlen: 48
2400:adc0:4204::/48 maxlen: 48
2400:adc0:4300::/48 maxlen: 48
2400:adc0:4301::/48 maxlen: 48
2400:adc0:4302::/48 maxlen: 48
2400:adc0:4303::/48 maxlen: 48
2400:adc0:4310::/48 maxlen: 48
2400:adc0:4311::/48 maxlen: 48
2400:adc0:4500::/48 maxlen: 48
2400:adc0:4600::/48 maxlen: 48
2400:adc0:4610::/48 maxlen: 48
2400:adc0:4611::/48 maxlen: 48
2400:adc0:4700::/48 maxlen: 48
2400:adc0:4710::/48 maxlen: 48
2400:adc0:4711::/48 maxlen: 48
2400:adc0:4900::/48 maxlen: 48
2400:adc0:4910::/48 maxlen: 48
2400:adc0:4a10::/48 maxlen: 48
2400:adc0:4b10::/48 maxlen: 48
2400:adc0:c001::/48 maxlen: 48
2400:adc0:c003::/48 maxlen: 48
2400:adc0:c030::/48 maxlen: 48
2400:adc0:c102::/48 maxlen: 48
2400:adc0:c103::/48 maxlen: 48
2400:adc0:c210::/48 maxlen: 48
2400:adc0:c211::/48 maxlen: 48
2400:adc0:c310::/48 maxlen: 48
2400:adc0:c410::/48 maxlen: 48
2400:adc0:c510::/48 maxlen: 48
2400:adc2:100::/48 maxlen: 48
2400:adc2:300::/40 maxlen: 40
2400:adc2:400::/40 maxlen: 40
2400:adc2:600::/40 maxlen: 40
2400:adc2:700::/40 maxlen: 40
2400:adc2:900::/40 maxlen: 40
2400:adc2:a00::/40 maxlen: 40
2400:adc4::/40 maxlen: 40
2400:adc4:100::/40 maxlen: 40
2400:adc4:800::/40 maxlen: 40
2400:adc4:900::/40 maxlen: 40
2400:adc5::/42 maxlen: 42
2400:adc5:40::/42 maxlen: 42
2400:adc5:80::/42 maxlen: 42
2400:adc5:c0::/42 maxlen: 42
2400:adc5:100::/42 maxlen: 42
2400:adc5:140::/42 maxlen: 42
2400:adc5:180::/42 maxlen: 42
2400:adc5:1c0::/42 maxlen: 42
2400:adc5:300::/42 maxlen: 42
2400:adc5:340::/42 maxlen: 42
2400:adc5:380::/42 maxlen: 42
2400:adc5:3c0::/42 maxlen: 42
2400:adc5:400::/42 maxlen: 42
2400:adc5:440::/42 maxlen: 42
2400:adc5:480::/42 maxlen: 42
2400:adc5:4c0::/42 maxlen: 42
2400:adca::/40 maxlen: 40
2400:adca:100::/40 maxlen: 40
2400:add9::/40 maxlen: 40
2400:add9:100::/40 maxlen: 40
2400:add9:200::/40 maxlen: 40
2400:add9:300::/40 maxlen: 40
2400:addb:800::/40 maxlen: 40
2400:addb:900::/40 maxlen: 40
2400:addd:2000::/40 maxlen: 40
2400:addd:2100::/40 maxlen: 40
2400:addd:2800::/40 maxlen: 40
2400:addd:2900::/40 maxlen: 40
2400:addd:4900::/40 maxlen: 40
2400:adde::/40 maxlen: 40
2400:adde:100::/40 maxlen: 40
2400:addf:800::/40 maxlen: 40
2400:addf:900::/40 maxlen: 40
2400:addf:1000::/40 maxlen: 40
2400:addf:1100::/40 maxlen: 40
2400:addf:2900::/40 maxlen: 40
2400:addf:3900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 29 Apr 2026 06:19:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10723 (0x29e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Validity
Not Before: Apr 22 06:19:24 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69e8686c-150e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:12:1d:1a:fc:fc:e5:79:4f:5f:24:20:15:
ea:18:4e:ac:98:d1:6c:c7:52:6a:c5:10:25:9e:ac:
d1:07:2a:94:fd:53:a9:28:dd:d7:ef:aa:2c:47:60:
b6:fc:25:c0:0c:bc:e6:a0:02:ee:6c:bc:47:37:a8:
92:c1:18:bf:8d:67:5e:e1:32:70:f0:db:8b:25:73:
87:b4:3c:a0:08:2b:b0:00:da:32:65:9e:80:ba:78:
57:c6:e1:64:1b:5b:c1:b2:d0:73:9d:34:ef:dd:2c:
f2:4e:b9:84:37:06:fe:09:46:b6:e6:1a:6c:a3:c1:
4d:4d:00:53:96:73:bb:31:93:ca:1b:39:ab:e6:20:
51:7f:c9:a5:e5:a5:aa:89:bd:fe:d0:44:a1:a7:48:
21:7c:84:86:5b:4d:31:64:7c:af:e1:06:fa:db:77:
46:aa:fc:65:eb:53:43:1f:e9:ef:2b:d7:2f:cd:6f:
13:b6:55:2e:bc:cb:ad:37:ec:ea:6b:41:35:8d:01:
72:b9:18:b9:3b:d5:2e:30:0f:29:b2:5c:38:8e:9a:
a5:4f:40:d8:94:13:c0:fb:e5:1c:8c:5e:a4:9c:38:
da:b3:ba:fe:cc:49:f9:43:f4:74:3a:cc:f0:a0:a0:
a5:58:5d:be:b7:7f:1b:da:ad:74:31:1f:12:c6:ec:
86:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:FD:B0:DD:80:32:FA:FB:49:DE:45:C1:CA:1E:E0:96:77:C0:36:3F
X509v3 Authority Key Identifier:
keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
36.255.44.0/22
43.242.100.0/22
58.65.192.0/19
61.5.128.0/19
101.53.224.0/19
103.7.60.0/22
103.18.8.0/21
103.18.20.0/22
103.26.80.0/21
103.31.92.0/22
103.31.100.0-103.31.107.255
103.244.172.0-103.244.179.255
103.245.132.0/22
103.245.192.0/22
119.13.184.0/21
124.29.192.0/18
153.117.0.0/16
175.107.192.0/18
202.47.32.0/19
202.163.64.0/18
203.101.160.0/19
218.100.85.0/24
IPv6:
2001:4538::/32
2400:adc0:9::/64
2400:adc0:200::/47
2400:adc0:4000::-2400:adc0:4009:ffff:ffff:ffff:ffff:ffff
2400:adc0:4010::-2400:adc0:4014:ffff:ffff:ffff:ffff:ffff
2400:adc0:4020::/48
2400:adc0:4030::/48
2400:adc0:4040::/48
2400:adc0:4104::/48
2400:adc0:4203::-2400:adc0:4204:ffff:ffff:ffff:ffff:ffff
2400:adc0:4300::/46
2400:adc0:4310::/47
2400:adc0:4500::/48
2400:adc0:4600::/48
2400:adc0:4610::/47
2400:adc0:4700::/48
2400:adc0:4710::/47
2400:adc0:4900::/48
2400:adc0:4910::/48
2400:adc0:4a10::/48
2400:adc0:4b10::/48
2400:adc0:c001::/48
2400:adc0:c003::/48
2400:adc0:c030::/48
2400:adc0:c102::/47
2400:adc0:c210::/47
2400:adc0:c310::/48
2400:adc0:c410::/48
2400:adc0:c510::/48
2400:adc2:100::/48
2400:adc2:300::-2400:adc2:4ff:ffff:ffff:ffff:ffff:ffff
2400:adc2:600::/39
2400:adc2:900::-2400:adc2:aff:ffff:ffff:ffff:ffff:ffff
2400:adc4::/39
2400:adc4:800::/39
2400:adc5::/39
2400:adc5:300::-2400:adc5:4ff:ffff:ffff:ffff:ffff:ffff
2400:adca::/39
2400:add9::/38
2400:addb:800::/39
2400:addd:2000::/39
2400:addd:2800::/39
2400:addd:4900::/40
2400:adde::/39
2400:addf:800::/39
2400:addf:1000::/39
2400:addf:2900::/40
2400:addf:3900::/40
Signature Algorithm: sha256WithRSAEncryption
9b:ed:0d:22:5c:e3:14:90:2e:2c:82:4f:89:09:e4:2b:cf:52:
54:80:50:01:2b:21:b9:da:b6:7a:d0:f6:4d:1b:3b:b7:55:47:
75:a7:3d:42:c8:9f:b9:77:26:f9:0c:22:6e:62:d1:7f:a0:5f:
2e:e8:05:09:03:88:8d:da:30:aa:3b:32:2b:f6:8f:f8:36:01:
3e:66:7f:99:be:b9:07:10:f0:fa:be:c9:8f:a6:31:90:0b:28:
fd:da:2f:97:8f:70:e7:46:c9:0d:0f:e0:cf:6e:55:b6:5b:12:
8e:c7:9a:b6:33:f7:da:38:7d:1f:9e:b3:40:cd:d0:4b:a4:a9:
5a:94:6e:ae:59:ba:9c:b5:50:54:fd:59:06:52:f1:72:78:8a:
70:f2:e9:0f:18:0f:36:3b:22:30:fa:1b:15:0b:31:c0:27:7b:
10:2f:a3:5f:4f:8c:eb:b0:54:c6:61:a2:46:c5:b7:f0:cc:d7:
73:2a:76:81:a8:66:7d:2a:3c:b2:38:00:42:98:1b:cf:73:20:
31:97:86:05:b4:47:74:60:0f:fb:da:5c:3e:76:be:5c:c9:e7:
6b:c3:f7:05:c9:a9:fe:b3:e2:ac:36:e7:02:b2:1a:84:3e:9c:
ef:42:5e:40:96:8c:e5:f8:d1:b6:ef:9b:3f:0d:70:8c:83:f0:
70:48:bf:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 11:47:30 2026 by rpki-client