Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918232F/3345C4C6664C11E8B71AFE46C4F9AE02/530FB34C664D11E89967A549C4F9AE02.roa
File: 530FB34C664D11E89967A549C4F9AE02.roa (raw, json)
Hash identifier: L35F7snTd+k2kkTxwJ/jTFRZ1ynip+q6MeQXF9faxdw=
Subject key identifier: 51:ED:27:DA:B5:C4:B2:17:82:1B:D0:4B:15:AE:1F:87:B5:D2:2C:80
Certificate issuer: /CN=A918232F/serialNumber=A727F59B24B114A251FDF77F53BFA0EC691E25A5
Certificate serial: 1546
Authority key identifier: A7:27:F5:9B:24:B1:14:A2:51:FD:F7:7F:53:BF:A0:EC:69:1E:25:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pyf1mySxFKJR_fd_U7-g7GkeJaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918232F/3345C4C6664C11E8B71AFE46C4F9AE02/530FB34C664D11E89967A549C4F9AE02.roa
Signing time: Thu 02 Apr 2026 17:20:32 +0000
ROA not before: Thu 02 Apr 2026 17:20:32 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 135139
IP address blocks: 103.114.208.0/22 maxlen: 22
103.114.208.0/23 maxlen: 23
103.114.208.0/24 maxlen: 24
103.114.209.0/24 maxlen: 24
103.114.210.0/23 maxlen: 23
103.114.210.0/24 maxlen: 24
103.114.211.0/24 maxlen: 24
2402:d540::/32 maxlen: 32
2402:d540::/36 maxlen: 44
2402:d540:1::/48 maxlen: 48
2402:d540:2::/48 maxlen: 48
2402:d540:3::/48 maxlen: 48
2402:d540:4::/48 maxlen: 48
2402:d540:5::/48 maxlen: 48
2402:d540:6::/48 maxlen: 48
2402:d540:7::/48 maxlen: 48
2402:d540:8::/48 maxlen: 48
2402:d540:9::/48 maxlen: 48
2402:d540:a::/48 maxlen: 48
2402:d540:b::/48 maxlen: 48
2402:d540:c::/48 maxlen: 48
2402:d540:d::/48 maxlen: 48
2402:d540:e::/48 maxlen: 48
2402:d540:f::/48 maxlen: 48
2402:d540:10::/48 maxlen: 48
2402:d540:11::/48 maxlen: 48
2402:d540:12::/48 maxlen: 48
2402:d540:13::/48 maxlen: 48
2402:d540:14::/48 maxlen: 48
2402:d540:15::/48 maxlen: 48
2402:d540:16::/48 maxlen: 48
2402:d540:17::/48 maxlen: 48
2402:d540:18::/48 maxlen: 48
2402:d540:19::/48 maxlen: 48
2402:d540:1a::/48 maxlen: 48
2402:d540:1b::/48 maxlen: 48
2402:d540:3ff::/48 maxlen: 56
2402:d540:1000::/36 maxlen: 36
2402:d540:2000::/36 maxlen: 44
2402:d540:3000::/36 maxlen: 44
2402:d540:4000::/36 maxlen: 44
2402:d540:5000::/36 maxlen: 44
2402:d540:6000::/36 maxlen: 44
2402:d540:7000::/36 maxlen: 44
2402:d540:8000::/36 maxlen: 44
2402:d540:9000::/36 maxlen: 44
2402:d540:a000::/36 maxlen: 44
2402:d540:b000::/36 maxlen: 44
2402:d540:c000::/36 maxlen: 44
2402:d540:d000::/36 maxlen: 44
2402:d540:e000::/36 maxlen: 44
2402:d540:f000::/36 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918232F/3345C4C6664C11E8B71AFE46C4F9AE02/pyf1mySxFKJR_fd_U7-g7GkeJaU.crl
rsync://rpki.apnic.net/member_repository/A918232F/3345C4C6664C11E8B71AFE46C4F9AE02/pyf1mySxFKJR_fd_U7-g7GkeJaU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pyf1mySxFKJR_fd_U7-g7GkeJaU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 21 Apr 2026 16:44:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5446 (0x1546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918232F, serialNumber=A727F59B24B114A251FDF77F53BFA0EC691E25A5
Validity
Not Before: Apr 2 17:20:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69cea560-fa93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:28:92:27:fd:4f:6d:60:72:13:b6:3d:c5:e8:
7c:21:8f:a6:f9:eb:3e:f9:28:3e:ac:5a:80:de:76:
cb:05:e4:6c:1d:40:b7:ae:9b:cc:56:12:e3:07:d2:
25:71:0c:52:62:9d:cb:95:b4:65:2a:e6:b5:a7:92:
ad:59:11:1d:39:73:18:43:f5:b7:1f:9d:87:ab:26:
3e:af:f1:2c:36:22:2f:4b:0c:23:57:53:29:30:20:
4b:ad:b6:f4:99:25:8e:12:d1:c4:38:67:c1:99:38:
c9:85:9d:72:99:4e:97:9b:3b:19:bc:f5:a0:7a:c9:
b3:03:aa:e1:4f:de:9c:53:1c:f0:ed:83:0f:ed:90:
0c:aa:89:d7:43:4a:9b:58:af:0f:c9:95:3f:78:ac:
3a:59:68:a8:d7:f4:c5:dc:b2:77:04:6a:97:c0:de:
cc:39:45:ff:5f:10:e8:ed:7e:2c:15:8c:72:5d:76:
b4:fd:80:11:a4:8f:76:d6:70:83:c3:e7:44:0f:78:
e9:55:a3:d3:73:64:32:57:c9:9c:93:ae:18:94:c3:
a6:42:c7:f9:04:09:0e:d1:25:68:e7:01:b9:94:17:
5a:d5:5a:24:7a:a9:bb:19:ec:b3:24:a5:11:53:75:
e4:43:3e:a2:2a:a4:d4:92:2c:f8:d4:c1:d5:d0:0c:
5d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:ED:27:DA:B5:C4:B2:17:82:1B:D0:4B:15:AE:1F:87:B5:D2:2C:80
X509v3 Authority Key Identifier:
keyid:A7:27:F5:9B:24:B1:14:A2:51:FD:F7:7F:53:BF:A0:EC:69:1E:25:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918232F/3345C4C6664C11E8B71AFE46C4F9AE02/pyf1mySxFKJR_fd_U7-g7GkeJaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pyf1mySxFKJR_fd_U7-g7GkeJaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918232F/3345C4C6664C11E8B71AFE46C4F9AE02/530FB34C664D11E89967A549C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.114.208.0/22
IPv6:
2402:d540::/32
Signature Algorithm: sha256WithRSAEncryption
07:6b:c5:fb:0f:be:f9:30:23:7a:49:99:b9:23:b9:f9:9c:43:
9d:bd:76:5e:f6:11:71:48:7e:67:7e:b1:5b:a6:e5:5c:01:0e:
50:67:6a:4e:db:81:80:93:e4:c1:85:0f:c3:fa:bc:ef:f6:82:
bb:5c:cc:04:4d:68:c5:72:97:26:34:d7:10:7a:9a:4b:9f:72:
84:0d:c5:bb:bb:91:a5:b0:4d:b4:d4:2e:78:81:dc:91:a3:db:
cc:72:08:ea:1a:36:38:6e:f1:c2:5a:ce:43:94:2e:b0:29:c6:
a1:40:c0:99:f2:ba:59:8b:77:59:d5:bc:2d:2c:51:61:11:17:
f0:4a:e0:90:f1:fb:a4:23:fb:ae:97:02:f0:06:f6:a8:51:f2:
ed:23:47:16:c8:df:73:c2:e1:de:0e:3f:ac:89:e4:37:97:7c:
1e:0d:9c:73:1e:20:a0:15:1c:67:91:37:dc:03:a4:d1:0e:c1:
1a:7c:d6:5e:d0:d4:11:08:9c:54:6f:49:e8:9c:43:49:6d:99:
e7:73:54:25:d7:15:21:50:c3:30:b3:bd:93:69:51:87:9c:08:
1c:11:90:88:37:a2:ac:a4:5e:1c:b2:50:91:76:07:cb:2a:88:
8d:f7:e0:ae:3f:26:4d:94:e8:98:26:17:b6:6d:65:b9:6e:98:
58:fa:08:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 05:27:43 2026 by rpki-client