Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
File: 64A2C96E919E11EEA5241125C4F9AE02.roa (raw, json)
Hash identifier: 8PpRKr88j1UQz0on0wf3wxEYqhe8qTzmSyhtAroOiwc=
Subject key identifier: 95:DF:32:5B:D2:51:45:DF:21:06:BF:28:B7:32:82:59:9F:E5:36:1A
Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34
Certificate serial: 0D2D
Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
Signing time: Thu 02 Apr 2026 18:23:05 +0000
ROA not before: Thu 02 Apr 2026 18:23:05 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 137515
IP address blocks: 103.111.120.0/22 maxlen: 24
2405:7e40::/32 maxlen: 36
2405:7e40:f100::/48 maxlen: 48
2405:7e40:f101::/48 maxlen: 48
2405:7e40:f102::/48 maxlen: 48
2405:7e40:f103::/48 maxlen: 48
2405:7e40:f104::/48 maxlen: 48
2405:7e40:f105::/48 maxlen: 48
2405:7e40:f106::/48 maxlen: 48
2405:7e40:f107::/48 maxlen: 48
2405:7e40:f108::/48 maxlen: 48
2405:7e40:f109::/48 maxlen: 48
2405:7e40:f10a::/48 maxlen: 48
2405:7e40:f10b::/48 maxlen: 48
2405:7e40:f10c::/48 maxlen: 48
2405:7e40:f10d::/48 maxlen: 48
2405:7e40:f10e::/48 maxlen: 48
2405:7e40:f10f::/48 maxlen: 48
2405:7e40:f110::/48 maxlen: 48
2405:7e40:f111::/48 maxlen: 48
2405:7e40:f112::/48 maxlen: 48
2405:7e40:f113::/48 maxlen: 48
2405:7e40:f114::/48 maxlen: 48
2405:7e40:f115::/48 maxlen: 48
2405:7e40:f116::/48 maxlen: 48
2405:7e40:f117::/48 maxlen: 48
2405:7e40:f118::/48 maxlen: 48
2405:7e40:f119::/48 maxlen: 48
2405:7e40:f11a::/48 maxlen: 48
2405:7e40:f11b::/48 maxlen: 48
2405:7e40:f11c::/48 maxlen: 48
2405:7e40:f11d::/48 maxlen: 48
2405:7e40:f11e::/48 maxlen: 48
2405:7e40:f11f::/48 maxlen: 48
2405:7e40:f120::/48 maxlen: 48
2405:7e40:f121::/48 maxlen: 48
2405:7e40:f122::/48 maxlen: 48
2405:7e40:f123::/48 maxlen: 48
2405:7e40:f124::/48 maxlen: 48
2405:7e40:f125::/48 maxlen: 48
2405:7e40:f126::/48 maxlen: 48
2405:7e40:f127::/48 maxlen: 48
2405:7e40:f128::/48 maxlen: 48
2405:7e40:f129::/48 maxlen: 48
2405:7e40:f12a::/48 maxlen: 48
2405:7e40:f12b::/48 maxlen: 48
2405:7e40:f12c::/48 maxlen: 48
2405:7e40:f12d::/48 maxlen: 48
2405:7e40:f12e::/48 maxlen: 48
2405:7e40:f12f::/48 maxlen: 48
2405:7e40:f130::/48 maxlen: 48
2405:7e40:f131::/48 maxlen: 48
2405:7e40:f132::/48 maxlen: 48
2405:7e40:f133::/48 maxlen: 48
2405:7e40:f134::/48 maxlen: 48
2405:7e40:f135::/48 maxlen: 48
2405:7e40:f136::/48 maxlen: 48
2405:7e40:f137::/48 maxlen: 48
2405:7e40:f138::/48 maxlen: 48
2405:7e40:f139::/48 maxlen: 48
2405:7e40:f13a::/48 maxlen: 48
2405:7e40:f13b::/48 maxlen: 48
2405:7e40:f13c::/48 maxlen: 48
2405:7e40:f13d::/48 maxlen: 48
2405:7e40:f13e::/48 maxlen: 48
2405:7e40:f13f::/48 maxlen: 48
2405:7e40:f910::/48 maxlen: 48
2405:7e40:f911::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl
rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Apr 2026 18:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3373 (0xd2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34
Validity
Not Before: Apr 2 18:23:05 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69ceb408-194d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8b:e9:1c:a6:32:18:21:1e:c4:98:61:06:8e:
f0:e4:32:33:f0:ae:1b:9c:62:3d:5a:a1:00:3d:2d:
76:ae:4a:08:06:48:eb:0a:a2:3f:85:bf:3a:2c:fe:
f5:49:1f:63:54:cf:7d:85:0e:38:a7:5c:7c:03:e3:
bf:2e:10:20:82:fb:ef:1d:4c:bc:72:77:60:a2:0e:
1c:73:3e:0d:d8:07:22:6c:f3:a0:8d:9c:ee:36:6c:
56:8e:ba:93:6d:11:10:d5:c2:dc:db:d0:d5:02:0d:
21:d4:ab:79:48:48:e7:be:d5:e8:06:20:48:12:74:
7a:cb:98:6f:4a:12:f5:d5:92:ea:03:79:b3:1f:9c:
24:47:93:94:67:4d:0e:96:ab:a4:8a:03:9b:a5:37:
59:a5:71:41:37:de:42:12:36:bb:18:47:d5:82:4c:
9c:ef:57:16:18:77:fe:df:b6:f9:65:03:94:11:e3:
91:97:0c:39:ef:08:8d:a8:c1:e5:d8:7e:cd:e2:f3:
fa:f8:fb:7d:74:12:34:b3:92:4e:51:c7:e9:cc:53:
4b:70:51:69:d0:5e:0a:2a:93:cb:f4:aa:56:21:39:
ce:1a:9a:12:31:d4:5f:0d:ba:11:07:bf:a5:62:7b:
e9:4f:2b:09:01:fe:fc:f1:7a:28:f9:54:0f:34:4c:
e9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DF:32:5B:D2:51:45:DF:21:06:BF:28:B7:32:82:59:9F:E5:36:1A
X509v3 Authority Key Identifier:
keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.111.120.0/22
IPv6:
2405:7e40::/32
Signature Algorithm: sha256WithRSAEncryption
c2:98:43:82:54:25:77:6c:44:b1:34:d2:2f:71:57:79:23:48:
2d:29:8e:32:d0:60:be:ce:d8:d5:45:7a:81:05:be:1c:2d:e6:
da:2e:36:55:c6:2c:c4:06:2f:3e:2c:ae:13:89:e3:19:d7:22:
5c:4d:b9:3b:2f:96:3e:0c:5f:16:99:b0:65:19:f4:0e:b3:cc:
ce:fb:f3:e1:c4:29:4e:1b:8d:cf:e2:77:cd:bb:36:ce:4c:85:
80:7b:67:4b:0d:f6:4a:d6:a0:a3:21:88:70:70:30:1a:79:0f:
1d:4f:53:80:f7:27:a5:58:2b:17:80:db:f8:8f:6f:21:fa:17:
85:55:1b:c6:d0:80:0d:7f:e8:45:71:67:65:ed:a2:e2:9f:7e:
15:a3:2b:59:bf:6f:e5:38:f3:2e:d2:df:72:18:ee:73:31:a1:
55:b0:6f:7f:29:c3:e5:56:c8:c5:1c:23:11:42:e7:f8:c7:1e:
d2:d7:aa:1a:37:da:d5:10:9f:d5:5d:d8:d9:b4:ad:15:de:53:
d6:92:4f:fd:e8:d9:33:e6:d1:61:c7:94:82:48:8c:3a:93:82:
2f:43:43:79:54:45:33:76:dd:b8:96:3e:be:7b:16:57:6f:3d:
f2:44:2a:6a:9b:89:cb:7c:cd:2b:ff:ec:57:34:e9:5d:b9:33:
95:cc:3e:4d
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgICDS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjE2REMxMTAvBgNVBAUTKDk3NzZCRkIxRThFQThBMUFCQzhGOENGRDZGNjYyMjcz
NkREOENBMzQwHhcNMjYwNDAyMTgyMzA1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02OWNlYjQwOC0xOTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAhovpHKYyGCEexJhhBo7w5DIz8K4bnGI9WqEAPS12rkoIBkjrCqI/hb86LP71
SR9jVM99hQ44p1x8A+O/LhAggvvvHUy8cndgog4ccz4N2AcibPOgjZzuNmxWjrqT
bREQ1cLc29DVAg0h1Kt5SEjnvtXoBiBIEnR6y5hvShL11ZLqA3mzH5wkR5OUZ00O
lqukigObpTdZpXFBN95CEja7GEfVgkyc71cWGHf+37b5ZQOUEeORlww57wiNqMHl
2H7N4vP6+Pt9dBI0s5JOUcfpzFNLcFFp0F4KKpPL9KpWITnOGpoSMdRfDboRB7+l
YnvpTysJAf788Xoo+VQPNEzpnwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJXfMlvS
UUXfIQa/KLcyglmf5TYaMB8GA1UdIwQYMBaAFJd2v7Ho6ooavI+M/W9mInNt2Mo0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTZEQy80NEE3RTVFODA5
NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlocThqNHo5YjJZaWMyM1l5
alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2wzYV9zZWpxaWhxOGo0ejliMllpYzIzWXlqUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjE2REMvNDRBN0U1RTgwOTVGMTFFQUEyODE2ODFEQzRGOUFFMDIvNjRBMkM5NkU5
MTlFMTFFRUE1MjQxMTI1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM
BAIAATAGAwQCZ294MA0EAgACMAcDBQAkBX5AMA0GCSqGSIb3DQEBCwUAA4IBAQDC
mEOCVCV3bESxNNIvcVd5I0gtKY4y0GC+ztjVRXqBBb4cLebaLjZVxizEBi8+LK4T
ieMZ1yJcTbk7L5Y+DF8WmbBlGfQOs8zO+/PhxClOG43P4nfNuzbOTIWAe2dLDfZK
1qCjIYhwcDAaeQ8dT1OA9yelWCsXgNv4j28h+heFVRvG0IANf+hFcWdl7aLin34V
oytZv2/lOPMu0t9yGO5zMaFVsG9/KcPlVsjFHCMRQuf4xx7S16oaN9rVEJ/VXdjZ
tK0V3lPWkk/96Nkz5tFhx5SCSIw6k4IvQ0N5VEUzdt24lj6+exZXbz3yRCpqm4nL
fM0r/+xXNOlduTOVzD5N
-----END CERTIFICATE-----
Generated at Mon Apr 6 10:10:07 2026 by rpki-client