Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
File: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (raw, json)
Hash identifier: W5LAVsz2Yx0gOwwWGPZgBY6RaJIiVbbMJG5xk+9Nu34=
Subject key identifier: 9C:14:10:83:F7:28:BB:CC:6B:91:5D:CD:D5:27:48:24:53:FB:89:6F
Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0
Certificate serial: 0386
Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
Signing time: Thu 21 May 2026 01:31:46 +0000
ROA not before: Thu 21 May 2026 01:31:46 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 138341
IP address blocks: 134.65.64.0/18 maxlen: 18
134.65.64.0/22 maxlen: 24
134.65.68.0/22 maxlen: 24
134.65.72.0/22 maxlen: 24
134.65.76.0/22 maxlen: 22
134.65.76.0/23 maxlen: 23
134.65.76.0/24 maxlen: 24
134.65.77.0/24 maxlen: 24
134.65.78.0/23 maxlen: 23
134.65.78.0/24 maxlen: 24
134.65.79.0/24 maxlen: 24
134.65.80.0/22 maxlen: 22
134.65.80.0/23 maxlen: 23
134.65.80.0/24 maxlen: 24
134.65.81.0/24 maxlen: 24
134.65.82.0/23 maxlen: 23
134.65.82.0/24 maxlen: 24
134.65.83.0/24 maxlen: 24
134.65.84.0/22 maxlen: 22
134.65.84.0/23 maxlen: 23
134.65.84.0/24 maxlen: 24
134.65.85.0/24 maxlen: 24
134.65.86.0/23 maxlen: 23
134.65.86.0/24 maxlen: 24
134.65.87.0/24 maxlen: 24
143.92.64.0/19 maxlen: 19
143.92.64.0/24 maxlen: 24
143.92.65.0/24 maxlen: 24
143.92.66.0/24 maxlen: 24
143.92.67.0/24 maxlen: 24
143.92.68.0/24 maxlen: 24
143.92.69.0/24 maxlen: 24
143.92.70.0/24 maxlen: 24
143.92.72.0/24 maxlen: 24
143.92.73.0/24 maxlen: 24
143.92.74.0/23 maxlen: 23
143.92.74.0/24 maxlen: 24
143.92.75.0/24 maxlen: 24
143.92.76.0/24 maxlen: 24
143.92.77.0/24 maxlen: 24
143.92.78.0/24 maxlen: 24
143.92.79.0/24 maxlen: 24
143.92.80.0/24 maxlen: 24
143.92.81.0/24 maxlen: 24
143.92.82.0/23 maxlen: 23
143.92.82.0/24 maxlen: 24
143.92.83.0/24 maxlen: 24
143.92.84.0/23 maxlen: 23
143.92.84.0/24 maxlen: 24
143.92.85.0/24 maxlen: 24
143.92.86.0/24 maxlen: 24
143.92.87.0/24 maxlen: 24
143.92.88.0/24 maxlen: 24
143.92.89.0/24 maxlen: 24
143.92.90.0/24 maxlen: 24
143.92.91.0/24 maxlen: 24
143.92.92.0/23 maxlen: 23
143.92.92.0/24 maxlen: 24
143.92.93.0/24 maxlen: 24
143.92.94.0/23 maxlen: 23
143.92.94.0/24 maxlen: 24
143.92.95.0/24 maxlen: 24
143.92.96.0/22 maxlen: 22
143.92.97.0/24 maxlen: 24
143.92.98.0/24 maxlen: 24
143.92.99.0/24 maxlen: 24
143.92.100.0/23 maxlen: 23
143.92.100.0/24 maxlen: 24
143.92.101.0/24 maxlen: 24
143.92.108.0/23 maxlen: 23
143.92.109.0/24 maxlen: 24
147.136.128.0/22 maxlen: 22
147.136.128.0/23 maxlen: 23
147.136.128.0/24 maxlen: 24
147.136.129.0/24 maxlen: 24
147.136.130.0/23 maxlen: 23
147.136.130.0/24 maxlen: 24
147.136.131.0/24 maxlen: 24
147.136.132.0/22 maxlen: 22
147.136.132.0/23 maxlen: 23
147.136.132.0/24 maxlen: 24
147.136.133.0/24 maxlen: 24
147.136.134.0/23 maxlen: 23
147.136.134.0/24 maxlen: 24
147.136.135.0/24 maxlen: 24
147.136.136.0/22 maxlen: 22
147.136.136.0/23 maxlen: 23
147.136.136.0/24 maxlen: 24
147.136.137.0/24 maxlen: 24
147.136.138.0/23 maxlen: 23
147.136.138.0/24 maxlen: 24
147.136.139.0/24 maxlen: 24
147.136.140.0/22 maxlen: 22
147.136.140.0/23 maxlen: 23
147.136.140.0/24 maxlen: 24
147.136.141.0/24 maxlen: 24
147.136.142.0/23 maxlen: 23
147.136.142.0/24 maxlen: 24
147.136.143.0/24 maxlen: 24
147.136.144.0/22 maxlen: 22
147.136.144.0/23 maxlen: 23
147.136.144.0/24 maxlen: 24
147.136.145.0/24 maxlen: 24
147.136.146.0/23 maxlen: 23
147.136.146.0/24 maxlen: 24
147.136.147.0/24 maxlen: 24
147.136.148.0/22 maxlen: 22
147.136.148.0/23 maxlen: 23
147.136.148.0/24 maxlen: 24
147.136.149.0/24 maxlen: 24
147.136.150.0/23 maxlen: 23
147.136.150.0/24 maxlen: 24
147.136.151.0/24 maxlen: 24
147.136.152.0/22 maxlen: 22
147.136.152.0/23 maxlen: 23
147.136.152.0/24 maxlen: 24
147.136.153.0/24 maxlen: 24
147.136.154.0/23 maxlen: 23
147.136.154.0/24 maxlen: 24
147.136.155.0/24 maxlen: 24
147.136.156.0/22 maxlen: 22
147.136.156.0/23 maxlen: 23
147.136.156.0/24 maxlen: 24
147.136.157.0/24 maxlen: 24
147.136.158.0/23 maxlen: 23
147.136.158.0/24 maxlen: 24
147.136.159.0/24 maxlen: 24
147.136.160.0/22 maxlen: 22
147.136.160.0/23 maxlen: 23
147.136.160.0/24 maxlen: 24
147.136.161.0/24 maxlen: 24
147.136.162.0/23 maxlen: 23
147.136.162.0/24 maxlen: 24
147.136.163.0/24 maxlen: 24
147.136.164.0/22 maxlen: 22
147.136.164.0/23 maxlen: 23
147.136.164.0/24 maxlen: 24
147.136.165.0/24 maxlen: 24
147.136.166.0/23 maxlen: 23
147.136.166.0/24 maxlen: 24
147.136.167.0/24 maxlen: 24
147.136.168.0/22 maxlen: 22
147.136.168.0/23 maxlen: 23
147.136.168.0/24 maxlen: 24
147.136.169.0/24 maxlen: 24
147.136.170.0/23 maxlen: 23
147.136.170.0/24 maxlen: 24
147.136.171.0/24 maxlen: 24
147.136.172.0/22 maxlen: 22
147.136.172.0/23 maxlen: 23
147.136.172.0/24 maxlen: 24
147.136.173.0/24 maxlen: 24
147.136.174.0/23 maxlen: 23
147.136.174.0/24 maxlen: 24
147.136.175.0/24 maxlen: 24
147.136.176.0/22 maxlen: 22
147.136.176.0/23 maxlen: 23
147.136.176.0/24 maxlen: 24
147.136.177.0/24 maxlen: 24
147.136.178.0/23 maxlen: 23
147.136.178.0/24 maxlen: 24
147.136.179.0/24 maxlen: 24
147.136.180.0/22 maxlen: 22
147.136.180.0/23 maxlen: 23
147.136.180.0/24 maxlen: 24
147.136.181.0/24 maxlen: 24
147.136.182.0/23 maxlen: 23
147.136.182.0/24 maxlen: 24
147.136.183.0/24 maxlen: 24
147.136.184.0/22 maxlen: 22
147.136.184.0/23 maxlen: 23
147.136.184.0/24 maxlen: 24
147.136.185.0/24 maxlen: 24
147.136.186.0/23 maxlen: 23
147.136.186.0/24 maxlen: 24
147.136.187.0/24 maxlen: 24
147.136.188.0/22 maxlen: 22
147.136.188.0/23 maxlen: 23
147.136.188.0/24 maxlen: 24
147.136.189.0/24 maxlen: 24
147.136.190.0/23 maxlen: 23
147.136.190.0/24 maxlen: 24
147.136.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl
rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 12 Jun 2026 06:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902 (0x386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0
Validity
Not Before: May 21 01:31:46 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a0e6082-139f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4e:9c:1c:a4:60:cf:e9:12:f9:9e:03:9c:c4:
d5:d4:76:27:2a:cc:95:14:92:5b:be:8c:df:90:c3:
65:53:6c:ae:83:f5:ec:f3:1a:1b:ec:13:e0:de:b5:
43:c9:32:91:c8:78:6b:c0:bb:5f:0b:c5:82:95:aa:
ad:19:52:3d:45:41:f0:1b:bc:dc:b1:fe:e5:cc:23:
9c:c1:56:94:13:47:21:ad:3c:a6:d8:67:58:31:3f:
e9:ce:ec:7f:1f:f2:ce:a6:07:79:4c:75:96:41:76:
0d:63:c0:c1:96:f5:a3:cf:a1:b9:77:55:0a:e2:8d:
ff:78:32:d8:31:49:f8:17:ed:74:46:14:67:26:39:
aa:82:5f:5f:c9:a7:f2:82:66:ae:d1:1b:63:1c:bc:
ec:f0:00:2c:5c:4e:a5:55:5b:6b:db:cf:77:b3:f8:
38:b0:14:c0:9d:7b:ac:c5:04:a1:28:c8:13:2f:7b:
29:b5:87:c7:66:60:11:b9:43:d0:ce:d1:79:5c:58:
17:a8:fb:8d:86:11:b9:de:fb:65:6b:c5:cc:3f:14:
dc:40:48:b2:aa:6b:49:19:50:7d:61:e7:6a:53:6e:
21:e6:e9:13:35:ac:87:5e:6d:f1:e1:ab:e9:c9:a8:
71:4b:3f:0b:2a:65:c5:03:a7:58:34:21:7c:fb:30:
19:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:14:10:83:F7:28:BB:CC:6B:91:5D:CD:D5:27:48:24:53:FB:89:6F
X509v3 Authority Key Identifier:
keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/9BA94A4A0D8911ED999D4F3BC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
134.65.64.0/18
143.92.64.0-143.92.101.255
143.92.108.0/23
147.136.128.0/18
Signature Algorithm: sha256WithRSAEncryption
01:bf:25:68:2b:f2:7a:a6:f7:c9:96:c6:ad:44:0a:7f:9f:a7:
34:72:64:05:dd:43:64:7b:cd:47:48:e9:61:ef:46:b6:00:52:
bb:5c:4d:9c:c5:4f:1f:90:6e:91:c3:c8:d4:d6:fc:55:ff:f7:
d8:fa:52:df:aa:16:42:aa:09:27:8e:35:42:04:f2:f3:34:9d:
1f:3f:18:46:d9:49:b7:d8:83:f5:20:05:c1:00:c1:4d:7f:01:
25:6d:45:a9:62:86:f9:9d:5d:31:ac:78:02:c7:5b:60:56:2d:
71:c8:44:3d:a1:7b:62:6d:73:8a:b5:18:1c:33:51:88:4c:ca:
8f:e2:07:0e:10:f7:6f:97:e2:13:40:e0:be:98:06:f9:6e:9d:
ae:1f:f3:c7:d2:b2:70:32:0e:27:17:57:61:de:f0:36:e5:7c:
a2:5c:70:e9:c0:59:5d:1e:bf:23:6d:df:96:e6:33:90:5e:c5:
ca:d0:0a:91:0e:bf:4e:49:ae:66:f9:5a:69:76:04:c4:a5:97:
7a:4d:55:27:31:e2:f1:aa:6c:15:90:04:5f:77:63:1f:57:df:
3c:2e:6a:d7:cc:b2:e2:11:be:82:74:52:27:fa:ee:be:83:58:
9b:b3:61:6f:b9:05:74:05:6b:b3:ad:d4:32:ff:d9:4b:7f:d3:
40:7a:c0:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 01:45:05 2026 by rpki-client