Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
File: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (raw, json)
Hash identifier: GPv0enDipVUFIVtjxcJ03U5PrJ0KyT4M8Wg4OCxsEOQ=
Subject key identifier: 9B:37:9A:AE:D7:9D:9D:B8:1E:79:37:2B:E6:21:C7:6C:D6:27:54:2E
Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0
Certificate serial: 02B8
Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
Signing time: Mon 02 Jun 2025 07:33:59 +0000
ROA not before: Mon 02 Jun 2025 07:33:59 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 138341
IP address blocks: 134.65.64.0/18 maxlen: 18
134.65.64.0/22 maxlen: 24
134.65.68.0/22 maxlen: 24
134.65.72.0/22 maxlen: 24
134.65.76.0/22 maxlen: 22
134.65.76.0/23 maxlen: 23
134.65.76.0/24 maxlen: 24
134.65.77.0/24 maxlen: 24
134.65.78.0/23 maxlen: 23
134.65.78.0/24 maxlen: 24
134.65.79.0/24 maxlen: 24
134.65.80.0/24 maxlen: 24
143.92.64.0/19 maxlen: 19
143.92.64.0/24 maxlen: 24
143.92.65.0/24 maxlen: 24
143.92.66.0/24 maxlen: 24
143.92.67.0/24 maxlen: 24
143.92.68.0/24 maxlen: 24
143.92.69.0/24 maxlen: 24
143.92.70.0/24 maxlen: 24
143.92.72.0/24 maxlen: 24
143.92.73.0/24 maxlen: 24
143.92.74.0/23 maxlen: 23
143.92.74.0/24 maxlen: 24
143.92.75.0/24 maxlen: 24
143.92.76.0/24 maxlen: 24
143.92.77.0/24 maxlen: 24
143.92.78.0/24 maxlen: 24
143.92.79.0/24 maxlen: 24
143.92.80.0/24 maxlen: 24
143.92.81.0/24 maxlen: 24
143.92.82.0/23 maxlen: 23
143.92.82.0/24 maxlen: 24
143.92.83.0/24 maxlen: 24
143.92.84.0/23 maxlen: 23
143.92.84.0/24 maxlen: 24
143.92.85.0/24 maxlen: 24
143.92.86.0/24 maxlen: 24
143.92.87.0/24 maxlen: 24
143.92.88.0/24 maxlen: 24
143.92.89.0/24 maxlen: 24
143.92.90.0/24 maxlen: 24
143.92.91.0/24 maxlen: 24
143.92.92.0/23 maxlen: 23
143.92.92.0/24 maxlen: 24
143.92.93.0/24 maxlen: 24
143.92.94.0/23 maxlen: 23
143.92.94.0/24 maxlen: 24
143.92.95.0/24 maxlen: 24
143.92.96.0/22 maxlen: 22
143.92.97.0/24 maxlen: 24
143.92.98.0/24 maxlen: 24
143.92.99.0/24 maxlen: 24
143.92.100.0/23 maxlen: 23
143.92.100.0/24 maxlen: 24
143.92.101.0/24 maxlen: 24
143.92.108.0/23 maxlen: 23
143.92.109.0/24 maxlen: 24
147.136.128.0/22 maxlen: 22
147.136.128.0/23 maxlen: 23
147.136.128.0/24 maxlen: 24
147.136.129.0/24 maxlen: 24
147.136.130.0/23 maxlen: 23
147.136.130.0/24 maxlen: 24
147.136.131.0/24 maxlen: 24
147.136.132.0/22 maxlen: 22
147.136.132.0/23 maxlen: 23
147.136.132.0/24 maxlen: 24
147.136.133.0/24 maxlen: 24
147.136.134.0/23 maxlen: 23
147.136.134.0/24 maxlen: 24
147.136.135.0/24 maxlen: 24
147.136.136.0/22 maxlen: 22
147.136.136.0/23 maxlen: 23
147.136.136.0/24 maxlen: 24
147.136.137.0/24 maxlen: 24
147.136.138.0/23 maxlen: 23
147.136.138.0/24 maxlen: 24
147.136.139.0/24 maxlen: 24
147.136.140.0/22 maxlen: 22
147.136.140.0/23 maxlen: 23
147.136.140.0/24 maxlen: 24
147.136.141.0/24 maxlen: 24
147.136.142.0/23 maxlen: 23
147.136.142.0/24 maxlen: 24
147.136.143.0/24 maxlen: 24
147.136.144.0/22 maxlen: 22
147.136.144.0/23 maxlen: 23
147.136.144.0/24 maxlen: 24
147.136.145.0/24 maxlen: 24
147.136.146.0/23 maxlen: 23
147.136.146.0/24 maxlen: 24
147.136.147.0/24 maxlen: 24
147.136.148.0/22 maxlen: 22
147.136.148.0/23 maxlen: 23
147.136.148.0/24 maxlen: 24
147.136.149.0/24 maxlen: 24
147.136.150.0/23 maxlen: 23
147.136.150.0/24 maxlen: 24
147.136.151.0/24 maxlen: 24
147.136.152.0/22 maxlen: 22
147.136.152.0/23 maxlen: 23
147.136.152.0/24 maxlen: 24
147.136.153.0/24 maxlen: 24
147.136.154.0/23 maxlen: 23
147.136.154.0/24 maxlen: 24
147.136.155.0/24 maxlen: 24
147.136.156.0/22 maxlen: 22
147.136.156.0/23 maxlen: 23
147.136.156.0/24 maxlen: 24
147.136.157.0/24 maxlen: 24
147.136.158.0/23 maxlen: 23
147.136.158.0/24 maxlen: 24
147.136.159.0/24 maxlen: 24
147.136.160.0/22 maxlen: 22
147.136.160.0/23 maxlen: 23
147.136.160.0/24 maxlen: 24
147.136.161.0/24 maxlen: 24
147.136.162.0/23 maxlen: 23
147.136.162.0/24 maxlen: 24
147.136.163.0/24 maxlen: 24
147.136.164.0/22 maxlen: 22
147.136.164.0/23 maxlen: 23
147.136.164.0/24 maxlen: 24
147.136.165.0/24 maxlen: 24
147.136.166.0/23 maxlen: 23
147.136.166.0/24 maxlen: 24
147.136.167.0/24 maxlen: 24
147.136.168.0/22 maxlen: 22
147.136.168.0/23 maxlen: 23
147.136.168.0/24 maxlen: 24
147.136.169.0/24 maxlen: 24
147.136.170.0/23 maxlen: 23
147.136.170.0/24 maxlen: 24
147.136.171.0/24 maxlen: 24
147.136.172.0/22 maxlen: 22
147.136.172.0/23 maxlen: 23
147.136.172.0/24 maxlen: 24
147.136.173.0/24 maxlen: 24
147.136.174.0/23 maxlen: 23
147.136.174.0/24 maxlen: 24
147.136.175.0/24 maxlen: 24
147.136.176.0/22 maxlen: 22
147.136.176.0/23 maxlen: 23
147.136.176.0/24 maxlen: 24
147.136.177.0/24 maxlen: 24
147.136.178.0/23 maxlen: 23
147.136.178.0/24 maxlen: 24
147.136.179.0/24 maxlen: 24
147.136.180.0/22 maxlen: 22
147.136.180.0/23 maxlen: 23
147.136.180.0/24 maxlen: 24
147.136.181.0/24 maxlen: 24
147.136.182.0/23 maxlen: 23
147.136.182.0/24 maxlen: 24
147.136.183.0/24 maxlen: 24
147.136.184.0/22 maxlen: 22
147.136.184.0/23 maxlen: 23
147.136.184.0/24 maxlen: 24
147.136.185.0/24 maxlen: 24
147.136.186.0/23 maxlen: 23
147.136.186.0/24 maxlen: 24
147.136.187.0/24 maxlen: 24
147.136.188.0/22 maxlen: 22
147.136.188.0/23 maxlen: 23
147.136.188.0/24 maxlen: 24
147.136.189.0/24 maxlen: 24
147.136.190.0/23 maxlen: 23
147.136.190.0/24 maxlen: 24
147.136.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl
rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 12 Jun 2025 01:28:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 696 (0x2b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0
Validity
Not Before: Jun 2 07:33:59 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=683d53e7-941a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:53:3a:d9:55:35:95:55:89:7f:ed:53:ba:9b:
ff:26:ae:e5:a8:a0:45:49:1d:2b:00:0e:01:6d:b3:
d9:98:16:54:cf:df:d0:c1:72:8b:40:e9:6a:e1:0a:
e0:b0:0d:56:fe:3f:1d:b0:79:da:d3:1e:28:bd:7c:
f1:55:c5:d7:93:2b:b4:3d:dc:72:c9:3d:b6:a2:8b:
f1:f4:92:a6:85:cb:42:5b:51:71:87:31:e7:b3:3d:
4e:c4:9a:b1:f4:6d:98:64:78:2e:d2:44:66:ce:fc:
81:2f:c6:ea:10:ec:4b:1e:1f:06:df:d5:b2:49:c4:
ca:a1:32:80:7a:9b:02:6e:9f:aa:e0:f1:1f:a3:d4:
3d:fe:ae:68:27:62:61:55:5f:09:f6:18:9a:a9:5e:
4b:ad:44:c6:6a:4c:64:af:63:f9:bf:81:20:6e:6b:
66:05:91:0d:72:f4:3c:09:ba:23:3f:59:5c:8e:2e:
41:77:da:47:05:76:89:b2:58:1b:ec:2e:de:fc:97:
13:c0:7e:3b:b2:26:e3:06:78:2a:f4:9b:f1:8e:e9:
22:af:f0:a1:58:81:d4:74:89:1d:9d:8a:52:37:65:
b3:62:49:8f:97:83:f2:68:c4:b4:e8:f8:23:08:bf:
f2:5c:6f:26:d9:42:95:97:f7:b4:df:13:47:b2:28:
85:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:37:9A:AE:D7:9D:9D:B8:1E:79:37:2B:E6:21:C7:6C:D6:27:54:2E
X509v3 Authority Key Identifier:
keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
134.65.64.0/18
143.92.64.0-143.92.101.255
143.92.108.0/23
147.136.128.0/18
Signature Algorithm: sha256WithRSAEncryption
11:c7:f5:48:b0:63:e8:e6:a9:54:41:e6:dd:be:de:f5:52:7f:
f6:bb:6c:57:44:07:99:d2:02:2b:72:a1:52:a1:cb:cd:38:c6:
7f:4c:a4:cb:50:d8:20:6d:c2:f9:9d:7b:32:5d:e4:d4:29:a5:
25:8b:9a:79:e1:49:30:f6:32:7e:73:3a:6e:64:02:5b:2d:8f:
e1:77:22:6e:cb:14:85:c7:06:1c:10:6d:94:aa:fd:01:92:e8:
8c:ce:4d:a8:13:33:cc:b2:e0:db:df:13:51:ef:73:3f:4b:60:
54:fa:e0:67:54:81:40:6a:e7:ba:de:a2:3f:ba:1d:1c:84:2c:
3c:61:dc:ee:1d:24:f0:81:52:3e:17:a2:97:34:a7:89:1f:fa:
ef:b6:ce:3b:df:8a:a6:d7:6b:7f:f1:23:48:84:44:44:37:fd:
c3:12:49:3b:d3:3c:91:eb:e2:3c:94:83:c4:65:5d:ce:ed:09:
a8:69:8f:49:75:56:9b:44:94:49:ee:c3:3b:a1:61:8e:eb:5d:
7b:41:5f:4a:37:c0:1e:f3:71:69:b0:4e:d2:13:bb:75:32:90:
77:3d:ef:c9:96:c9:ea:c5:07:31:a1:e3:f5:96:80:17:9b:ee:
bd:66:54:6a:26:bf:24:48:d3:fc:d9:ad:fd:06:bd:0b:34:bf:
f8:94:77:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 20:00:32 2025 by rpki-client