Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
File: CCF0C1920EBA11ECB2C2867AC4F9AE02.roa (raw, json)
Hash identifier: LFWn/rSoBv/3fh71RRvkZddKgegGusau/MxjXYH21iI=
Subject key identifier: FC:91:0F:D5:85:D5:B1:51:B5:FA:7C:C1:DF:63:3B:F9:3F:8E:76:60
Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Certificate serial: 29AF
Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
Signing time: Thu 05 Mar 2026 08:25:56 +0000
ROA not before: Thu 05 Mar 2026 08:25:56 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 24440
IP address blocks: 36.255.44.0/22 maxlen: 24
43.242.100.0/22 maxlen: 24
58.65.192.0/19 maxlen: 24
61.5.128.0/19 maxlen: 24
101.53.224.0/19 maxlen: 24
103.7.60.0/22 maxlen: 24
103.18.8.0/22 maxlen: 24
103.18.12.0/22 maxlen: 24
103.18.20.0/22 maxlen: 24
103.26.80.0/22 maxlen: 24
103.26.84.0/22 maxlen: 24
103.31.92.0/22 maxlen: 24
103.31.100.0/22 maxlen: 24
103.31.104.0/22 maxlen: 24
103.244.172.0/22 maxlen: 24
103.244.176.0/22 maxlen: 24
103.245.132.0/22 maxlen: 24
103.245.192.0/22 maxlen: 24
119.13.184.0/21 maxlen: 24
124.29.192.0/18 maxlen: 24
175.107.192.0/18 maxlen: 24
202.47.32.0/19 maxlen: 24
202.163.64.0/19 maxlen: 24
202.163.96.0/19 maxlen: 24
203.101.160.0/19 maxlen: 24
218.100.85.0/24 maxlen: 24
2001:4538::/32 maxlen: 32
2001:4538:41::/48 maxlen: 48
2400:adc0:9::/64 maxlen: 64
2400:adc0:200::/48 maxlen: 48
2400:adc0:201::/48 maxlen: 48
2400:adc0:4005::/48 maxlen: 48
2400:adc0:4006::/48 maxlen: 48
2400:adc0:4007::/48 maxlen: 48
2400:adc0:4008::/48 maxlen: 48
2400:adc0:4009::/48 maxlen: 48
2400:adc0:4013::/48 maxlen: 48
2400:adc0:4014::/48 maxlen: 48
2400:adc0:4104::/48 maxlen: 48
2400:adc0:4203::/48 maxlen: 48
2400:adc0:4204::/48 maxlen: 48
2400:adc0:4302::/48 maxlen: 48
2400:adc0:4303::/48 maxlen: 48
2400:adc0:4500::/48 maxlen: 48
2400:adc0:4611::/48 maxlen: 48
2400:adc0:4700::/48 maxlen: 48
2400:adc0:4710::/48 maxlen: 48
2400:adc0:4711::/48 maxlen: 48
2400:adc0:4900::/48 maxlen: 48
2400:adc0:4910::/48 maxlen: 48
2400:adc0:4a10::/48 maxlen: 48
2400:adc0:4b10::/48 maxlen: 48
2400:adc0:c001::/48 maxlen: 48
2400:adc0:c003::/48 maxlen: 48
2400:adc0:c030::/48 maxlen: 48
2400:adc0:c102::/48 maxlen: 48
2400:adc0:c103::/48 maxlen: 48
2400:adc0:c210::/48 maxlen: 48
2400:adc0:c211::/48 maxlen: 48
2400:adc0:c310::/48 maxlen: 48
2400:adc0:c410::/48 maxlen: 48
2400:adc0:c510::/48 maxlen: 48
2400:adc2:100::/48 maxlen: 48
2400:adc2:300::/40 maxlen: 40
2400:adc2:400::/40 maxlen: 40
2400:adc2:600::/40 maxlen: 40
2400:adc2:700::/40 maxlen: 40
2400:adc2:900::/40 maxlen: 40
2400:adc2:a00::/40 maxlen: 40
2400:adc4::/40 maxlen: 40
2400:adc4:100::/40 maxlen: 40
2400:adc4:800::/40 maxlen: 40
2400:adc4:900::/40 maxlen: 40
2400:adc5::/42 maxlen: 42
2400:adc5:40::/42 maxlen: 42
2400:adc5:80::/42 maxlen: 42
2400:adc5:c0::/42 maxlen: 42
2400:adc5:100::/42 maxlen: 42
2400:adc5:140::/42 maxlen: 42
2400:adc5:180::/42 maxlen: 42
2400:adc5:1c0::/42 maxlen: 42
2400:adc5:300::/42 maxlen: 42
2400:adc5:340::/42 maxlen: 42
2400:adc5:380::/42 maxlen: 42
2400:adc5:3c0::/42 maxlen: 42
2400:adc5:400::/42 maxlen: 42
2400:adc5:440::/42 maxlen: 42
2400:adc5:480::/42 maxlen: 42
2400:adc5:4c0::/42 maxlen: 42
2400:adca::/40 maxlen: 40
2400:adca:100::/40 maxlen: 40
2400:add9::/40 maxlen: 40
2400:add9:100::/40 maxlen: 40
2400:add9:200::/40 maxlen: 40
2400:add9:300::/40 maxlen: 40
2400:addb:800::/40 maxlen: 40
2400:addb:900::/40 maxlen: 40
2400:addd:2000::/40 maxlen: 40
2400:addd:2100::/40 maxlen: 40
2400:addd:2800::/40 maxlen: 40
2400:addd:2900::/40 maxlen: 40
2400:addd:4900::/40 maxlen: 40
2400:adde::/40 maxlen: 40
2400:adde:100::/40 maxlen: 40
2400:addf:800::/40 maxlen: 40
2400:addf:900::/40 maxlen: 40
2400:addf:1000::/40 maxlen: 40
2400:addf:1100::/40 maxlen: 40
2400:addf:2900::/40 maxlen: 40
2400:addf:3900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 13 Mar 2026 15:33:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10671 (0x29af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Validity
Not Before: Mar 5 08:25:56 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69a93e13-d078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e7:a8:6f:37:8d:fd:f3:70:7d:5d:c4:ae:69:
37:a3:0f:7d:8e:61:11:c9:c8:d6:d2:00:e8:64:0d:
41:09:c7:ef:7a:8e:2f:56:78:1a:ae:6e:43:56:0d:
45:b1:f4:fe:7c:a9:19:0d:cd:e9:2a:8c:76:87:05:
5d:b9:19:47:0b:52:07:61:53:3e:b1:cd:f0:e2:c5:
6b:1c:fe:6e:3b:df:4c:93:69:c3:3c:04:d9:41:fa:
53:6f:60:58:21:7d:fb:5a:16:25:29:90:85:8d:f1:
c2:49:9f:06:95:6d:b9:6b:db:ea:25:f8:85:50:52:
92:55:78:35:97:8d:f0:15:6e:18:d2:fa:db:04:95:
63:78:5f:6a:fa:93:ae:80:a8:3b:a0:70:2f:61:75:
bf:62:15:41:78:c6:f8:bb:f8:fb:4b:42:9e:f8:b4:
35:82:d6:53:ac:9d:45:5e:aa:7e:c3:ef:b2:82:a3:
7b:5c:49:13:9e:7c:6c:8e:8d:79:f0:35:5c:f9:24:
02:f4:4b:bb:e1:ec:ad:18:b5:1e:35:d4:68:6c:ef:
eb:4b:39:b5:14:a2:b5:30:49:ee:df:b0:eb:cf:d6:
a4:e1:60:81:8f:12:15:e6:63:68:98:89:30:79:01:
66:e9:32:c5:cd:22:f9:25:25:83:c5:55:ea:5f:f5:
32:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:91:0F:D5:85:D5:B1:51:B5:FA:7C:C1:DF:63:3B:F9:3F:8E:76:60
X509v3 Authority Key Identifier:
keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
36.255.44.0/22
43.242.100.0/22
58.65.192.0/19
61.5.128.0/19
101.53.224.0/19
103.7.60.0/22
103.18.8.0/21
103.18.20.0/22
103.26.80.0/21
103.31.92.0/22
103.31.100.0-103.31.107.255
103.244.172.0-103.244.179.255
103.245.132.0/22
103.245.192.0/22
119.13.184.0/21
124.29.192.0/18
175.107.192.0/18
202.47.32.0/19
202.163.64.0/18
203.101.160.0/19
218.100.85.0/24
IPv6:
2001:4538::/32
2400:adc0:9::/64
2400:adc0:200::/47
2400:adc0:4005::-2400:adc0:4009:ffff:ffff:ffff:ffff:ffff
2400:adc0:4013::-2400:adc0:4014:ffff:ffff:ffff:ffff:ffff
2400:adc0:4104::/48
2400:adc0:4203::-2400:adc0:4204:ffff:ffff:ffff:ffff:ffff
2400:adc0:4302::/47
2400:adc0:4500::/48
2400:adc0:4611::/48
2400:adc0:4700::/48
2400:adc0:4710::/47
2400:adc0:4900::/48
2400:adc0:4910::/48
2400:adc0:4a10::/48
2400:adc0:4b10::/48
2400:adc0:c001::/48
2400:adc0:c003::/48
2400:adc0:c030::/48
2400:adc0:c102::/47
2400:adc0:c210::/47
2400:adc0:c310::/48
2400:adc0:c410::/48
2400:adc0:c510::/48
2400:adc2:100::/48
2400:adc2:300::-2400:adc2:4ff:ffff:ffff:ffff:ffff:ffff
2400:adc2:600::/39
2400:adc2:900::-2400:adc2:aff:ffff:ffff:ffff:ffff:ffff
2400:adc4::/39
2400:adc4:800::/39
2400:adc5::/39
2400:adc5:300::-2400:adc5:4ff:ffff:ffff:ffff:ffff:ffff
2400:adca::/39
2400:add9::/38
2400:addb:800::/39
2400:addd:2000::/39
2400:addd:2800::/39
2400:addd:4900::/40
2400:adde::/39
2400:addf:800::/39
2400:addf:1000::/39
2400:addf:2900::/40
2400:addf:3900::/40
Signature Algorithm: sha256WithRSAEncryption
04:f0:fb:56:0e:c5:a9:89:86:11:13:ad:87:be:e2:92:97:34:
05:16:49:1b:ce:84:13:63:79:90:37:1f:0a:02:59:1f:17:60:
5c:9d:45:1b:0b:58:1e:5e:ce:ea:71:be:1b:5f:5a:76:4b:5e:
bf:7e:6a:d6:17:50:42:04:9e:a9:6e:48:3b:0e:aa:14:55:21:
a2:c7:d5:a6:d7:62:3b:e8:03:f2:c0:44:a1:df:1f:e3:33:b3:
68:f8:12:bb:31:1b:32:1f:e0:5b:ae:0c:b4:03:57:6b:16:de:
b0:33:82:7f:33:e2:b4:a3:98:c6:c2:2c:66:ac:9c:83:77:c5:
79:36:7f:c9:7a:8e:5c:69:d0:4b:1e:c3:c1:0b:6d:f2:bf:c3:
63:6c:b7:ac:e4:08:5b:93:d9:30:4a:ea:47:57:88:7c:c2:b7:
d8:11:bf:c7:c2:ec:74:33:28:35:05:94:06:3c:58:5b:00:12:
02:1a:9d:a8:96:ef:45:ab:85:f3:1d:0b:24:fb:2b:c2:ef:6c:
fa:b2:65:b7:98:0c:a4:13:89:a0:6c:36:0c:ba:02:7c:04:3f:
50:c9:cc:9b:aa:42:22:ed:02:83:92:c5:44:6f:19:d0:11:cd:
41:84:71:f1:d4:f3:bc:30:b9:76:20:4c:5b:1d:84:91:8d:94:
d1:8d:4f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 09:56:49 2026 by rpki-client