Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A9D80C50865811F09AC97D44C4F9AE02.roa
File: A9D80C50865811F09AC97D44C4F9AE02.roa (raw, json)
Hash identifier: MNpsO6J8WRzvYujCZ7hvce7Nx4dHp3rsOHZBfJgfkLs=
Subject key identifier: 71:4F:9D:9D:6D:0F:0A:9F:7B:D9:CF:55:81:D1:28:89:36:C7:FC:9A
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 3970
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A9D80C50865811F09AC97D44C4F9AE02.roa
Signing time: Sun 31 Aug 2025 10:53:02 +0000
ROA not before: Sun 31 Aug 2025 10:53:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 150382
IP address blocks: 111.88.76.0/24 maxlen: 24
111.88.77.0/24 maxlen: 24
111.88.79.0/24 maxlen: 24
111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.184.0/24 maxlen: 24
111.88.185.0/24 maxlen: 24
111.88.186.0/24 maxlen: 24
111.88.187.0/24 maxlen: 24
111.88.188.0/24 maxlen: 24
111.88.189.0/24 maxlen: 24
111.88.190.0/24 maxlen: 24
111.88.191.0/24 maxlen: 24
111.88.232.0/24 maxlen: 24
111.88.234.0/24 maxlen: 24
111.88.235.0/24 maxlen: 24
111.88.236.0/24 maxlen: 24
111.88.237.0/24 maxlen: 24
115.186.1.0/24 maxlen: 24
115.186.10.0/24 maxlen: 24
115.186.11.0/24 maxlen: 24
115.186.12.0/24 maxlen: 24
115.186.16.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.22.0/24 maxlen: 24
115.186.24.0/24 maxlen: 24
115.186.26.0/24 maxlen: 24
115.186.27.0/24 maxlen: 24
115.186.28.0/24 maxlen: 24
115.186.29.0/24 maxlen: 24
115.186.41.0/24 maxlen: 24
115.186.52.0/24 maxlen: 24
115.186.53.0/24 maxlen: 24
115.186.54.0/24 maxlen: 24
115.186.55.0/24 maxlen: 24
115.186.64.0/24 maxlen: 24
115.186.65.0/24 maxlen: 24
115.186.66.0/24 maxlen: 24
115.186.67.0/24 maxlen: 24
115.186.68.0/24 maxlen: 24
115.186.69.0/24 maxlen: 24
115.186.70.0/24 maxlen: 24
115.186.71.0/24 maxlen: 24
115.186.72.0/24 maxlen: 24
115.186.73.0/24 maxlen: 24
115.186.74.0/24 maxlen: 24
115.186.75.0/24 maxlen: 24
115.186.88.0/24 maxlen: 24
115.186.89.0/24 maxlen: 24
115.186.91.0/24 maxlen: 24
115.186.92.0/24 maxlen: 24
115.186.93.0/24 maxlen: 24
115.186.94.0/24 maxlen: 24
115.186.95.0/24 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/24 maxlen: 24
115.186.122.0/24 maxlen: 24
115.186.123.0/24 maxlen: 24
115.186.124.0/24 maxlen: 24
115.186.125.0/24 maxlen: 24
115.186.127.0/24 maxlen: 24
117.102.10.0/24 maxlen: 24
117.102.11.0/24 maxlen: 24
117.102.13.0/24 maxlen: 24
117.102.14.0/24 maxlen: 24
117.102.15.0/24 maxlen: 24
117.102.20.0/24 maxlen: 24
117.102.21.0/24 maxlen: 24
117.102.22.0/24 maxlen: 24
117.102.23.0/24 maxlen: 24
117.102.27.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
203.81.224.0/24 maxlen: 24
203.81.225.0/24 maxlen: 24
203.81.226.0/24 maxlen: 24
203.81.227.0/24 maxlen: 24
203.81.228.0/24 maxlen: 24
203.81.229.0/24 maxlen: 24
203.81.231.0/24 maxlen: 24
203.81.232.0/24 maxlen: 24
203.81.233.0/24 maxlen: 24
203.81.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Sep 2025 14:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14704 (0x3970)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: Aug 31 10:53:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68b4298d-4f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:62:d4:66:a2:8d:1f:00:23:0d:91:84:f0:da:
3a:70:d5:27:f0:c0:29:18:6a:59:4a:63:ec:e0:56:
55:f5:4f:a5:3e:df:2e:21:1f:3d:ea:05:e8:79:fe:
36:f8:24:68:40:68:83:20:57:9a:db:11:82:2f:5f:
26:a5:3e:f0:c2:8c:39:3c:b9:b6:fe:18:63:3e:1a:
c1:64:b7:9d:ad:70:96:16:ff:0d:63:8d:00:60:06:
85:15:0f:3f:49:6d:d4:37:0d:3e:2b:a5:9b:b6:9f:
1e:4a:21:16:e5:83:9f:e8:ec:7f:a4:9a:ce:7f:ad:
43:62:95:6a:99:24:d4:f9:94:87:9a:a8:6c:5b:23:
a7:7a:68:37:6c:cc:b9:13:d7:d2:0a:be:fc:d2:94:
a2:5d:71:05:ce:10:e0:50:c4:d3:11:b9:5f:1f:b9:
16:26:5c:04:29:1d:c1:b5:0a:47:4b:2d:60:66:09:
76:96:e3:ec:48:fa:50:68:e5:9f:51:2f:1d:fd:79:
74:7a:6c:b4:88:22:3d:67:e2:3c:03:7c:96:ff:75:
11:5f:f4:d0:79:e6:32:2b:96:7d:df:59:89:ae:5b:
5c:8f:49:16:2c:e6:a3:59:50:9a:22:03:6e:b3:d6:
6c:0f:ac:c6:3b:07:3e:bb:fe:89:b6:ae:d2:1a:87:
ce:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:4F:9D:9D:6D:0F:0A:9F:7B:D9:CF:55:81:D1:28:89:36:C7:FC:9A
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A9D80C50865811F09AC97D44C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.76.0/23
111.88.79.0/24
111.88.138.0/23
111.88.184.0/21
111.88.232.0/24
111.88.234.0-111.88.237.255
115.186.1.0/24
115.186.10.0-115.186.12.255
115.186.16.0/24
115.186.19.0/24
115.186.22.0/24
115.186.24.0/24
115.186.26.0-115.186.29.255
115.186.41.0/24
115.186.52.0/22
115.186.64.0-115.186.75.255
115.186.88.0/23
115.186.91.0-115.186.95.255
115.186.97.0/24
115.186.99.0-115.186.100.255
115.186.105.0/24
115.186.114.0/24
115.186.116.0/24
115.186.122.0-115.186.125.255
115.186.127.0/24
117.102.10.0/23
117.102.13.0-117.102.15.255
117.102.20.0/22
117.102.27.0/24
117.102.29.0-117.102.31.255
203.81.224.0-203.81.229.255
203.81.231.0-203.81.234.255
Signature Algorithm: sha256WithRSAEncryption
8c:65:34:de:d1:a2:02:15:98:64:4b:5f:f8:14:7b:ec:de:a1:
ca:42:3a:e3:99:80:8c:43:b5:c0:f7:d8:9d:c4:5e:6d:fb:2a:
eb:ca:61:a9:21:90:82:50:0b:56:5b:e1:59:0c:ce:51:b3:3c:
1f:11:13:c6:ba:ab:fd:20:f2:ce:82:19:2d:bc:23:1e:0d:12:
2e:7f:72:e0:d9:de:2b:84:32:22:93:31:90:62:3e:90:7e:06:
6a:b6:71:28:96:d7:1a:ba:a9:90:3f:73:de:38:64:e2:b4:60:
45:3e:e2:ef:88:f9:c2:d5:f0:80:46:27:12:14:f5:f9:4d:31:
20:6a:30:bf:3e:8c:49:82:77:80:5f:0c:c3:1d:b7:13:ac:b1:
bc:c9:49:e7:b0:69:76:76:1a:ed:4d:7c:12:df:54:0e:04:b9:
d5:c6:e0:82:6c:e6:87:dd:17:96:50:c7:80:7c:ef:94:6a:34:
7e:0e:1b:ae:29:a5:c9:58:0e:57:85:48:9e:79:a4:ee:70:e2:
41:56:7c:ff:7e:66:df:54:fb:0e:99:aa:e3:97:db:bc:f4:d6:
03:c7:56:83:50:2f:4d:68:2e:61:c4:7c:df:79:ce:39:78:e7:
24:d9:05:aa:eb:03:ae:dc:68:1e:db:84:8d:7c:a0:02:61:df:
aa:c5:df:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 07:27:20 2025 by rpki-client