Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/497CE122195C11F1931F0049063D8C67.roa
File: 497CE122195C11F1931F0049063D8C67.roa (raw, json)
Hash identifier: BMRCY3Y2IFkTXDDgtncrW3lCD7z2ptYrU+27mbLC7F0=
Subject key identifier: 1A:05:31:94:B6:36:D2:4F:E1:54:05:3E:6F:67:44:31:26:3D:D0:66
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: DB8E
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/497CE122195C11F1931F0049063D8C67.roa
Signing time: Fri 06 Mar 2026 12:59:19 +0000
ROA not before: Fri 06 Mar 2026 12:59:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17439
IP address blocks: 43.225.0.0/22 maxlen: 24
45.64.12.0/24 maxlen: 24
45.251.76.0/22 maxlen: 24
49.213.48.0/23 maxlen: 24
103.19.52.0/22 maxlen: 24
103.35.164.0/23 maxlen: 23
103.48.50.0/23 maxlen: 23
103.48.50.0/24 maxlen: 24
103.48.51.0/24 maxlen: 24
103.55.244.0/22 maxlen: 24
103.70.160.0/22 maxlen: 24
103.83.220.0/22 maxlen: 24
103.96.95.0/24 maxlen: 24
103.100.80.0/22 maxlen: 24
103.115.194.0/24 maxlen: 24
103.116.60.0/22 maxlen: 24
103.117.117.0/24 maxlen: 24
103.138.136.0/22 maxlen: 24
103.143.38.0/24 maxlen: 24
103.165.78.0/23 maxlen: 24
103.170.114.0/24 maxlen: 24
103.171.44.0/23 maxlen: 24
103.174.54.0/23 maxlen: 23
103.175.22.0/24 maxlen: 24
103.175.23.0/24 maxlen: 24
103.175.163.0/24 maxlen: 24
103.181.20.0/23 maxlen: 24
103.214.114.0/24 maxlen: 24
103.214.115.0/24 maxlen: 24
103.214.122.0/23 maxlen: 24
103.225.99.0/24 maxlen: 24
103.226.224.0/24 maxlen: 24
103.228.103.0/24 maxlen: 24
103.235.104.0/22 maxlen: 22
103.239.136.0/22 maxlen: 24
103.247.97.0/24 maxlen: 24
103.247.98.0/24 maxlen: 24
202.66.172.0/22 maxlen: 24
203.112.136.0/21 maxlen: 24
203.112.144.0/21 maxlen: 24
2001:df0:3a00::/48 maxlen: 48
2001:df2:f980::/48 maxlen: 48
2407:e9c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 13 Mar 2026 15:17:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56206 (0xdb8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Mar 6 12:59:18 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69aacfa6-7bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:08:a0:5c:8b:ba:25:4e:c1:82:ab:08:27:16:
b8:2d:0a:bb:c0:1b:9d:8c:c2:4e:6f:92:95:e6:aa:
a0:e8:bb:f2:a4:2e:38:5d:ec:c2:a2:ff:28:b6:ed:
7c:91:af:57:ae:b7:3e:1a:3a:53:3a:eb:98:88:78:
3d:75:a1:d3:5c:66:ad:a0:21:d2:d2:5d:f4:fa:27:
a9:2e:fa:45:4f:e6:ee:e9:37:d2:44:28:6e:4d:7c:
37:5f:d4:51:d6:bb:a9:48:84:6d:83:fd:f2:92:e0:
c8:6b:0c:88:bf:03:10:65:65:ab:8d:d2:22:0d:e9:
fe:51:75:76:ee:ec:ef:0e:cc:27:fa:16:3e:9a:45:
14:ea:5e:c4:5f:73:a4:57:b9:26:0e:93:3e:c0:05:
2d:05:6d:35:4e:08:6e:82:5c:16:89:04:db:31:26:
82:d2:9c:36:b0:6b:ee:ec:ee:7f:61:63:7d:44:2f:
fa:0a:67:fe:b9:8b:90:6a:9a:06:00:6d:6e:4a:ac:
00:e2:e8:05:ac:86:24:7d:a2:67:9e:23:a3:34:36:
91:36:55:48:d3:75:1c:a0:22:27:e5:bf:89:36:d7:
a7:73:ae:53:b0:73:f8:f5:24:7b:9c:0e:1a:ca:37:
92:96:f8:c1:e8:a0:29:8b:0a:79:54:d8:78:26:9d:
b2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:05:31:94:B6:36:D2:4F:E1:54:05:3E:6F:67:44:31:26:3D:D0:66
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/497CE122195C11F1931F0049063D8C67.roa
sbgp-ipAddrBlock: critical
IPv4:
43.225.0.0/22
45.64.12.0/24
45.251.76.0/22
49.213.48.0/23
103.19.52.0/22
103.35.164.0/23
103.48.50.0/23
103.55.244.0/22
103.70.160.0/22
103.83.220.0/22
103.96.95.0/24
103.100.80.0/22
103.115.194.0/24
103.116.60.0/22
103.117.117.0/24
103.138.136.0/22
103.143.38.0/24
103.165.78.0/23
103.170.114.0/24
103.171.44.0/23
103.174.54.0/23
103.175.22.0/23
103.175.163.0/24
103.181.20.0/23
103.214.114.0/23
103.214.122.0/23
103.225.99.0/24
103.226.224.0/24
103.228.103.0/24
103.235.104.0/22
103.239.136.0/22
103.247.97.0-103.247.98.255
202.66.172.0/22
203.112.136.0-203.112.151.255
IPv6:
2001:df0:3a00::/48
2001:df2:f980::/48
2407:e9c0::/48
Signature Algorithm: sha256WithRSAEncryption
45:c7:1a:0b:c6:77:06:aa:85:0a:ab:92:f0:1c:6f:b0:03:a1:
91:28:af:dd:a0:1b:71:06:22:96:67:13:0d:74:28:1b:df:83:
71:35:46:3f:9c:db:51:e4:73:35:22:17:f7:8b:d9:0d:7d:7e:
08:dd:e1:05:dd:92:62:c7:b0:31:4b:7c:7b:e1:ea:b0:fc:7a:
49:ad:50:c6:68:6e:27:03:b7:78:b4:b1:aa:b5:bf:a5:2d:c4:
12:32:bb:b3:a9:c2:5a:8d:fd:87:e4:04:81:20:06:bb:23:68:
68:ec:8c:b7:ff:8c:8b:27:be:6b:c8:92:63:1e:7e:99:65:e6:
41:19:de:dc:45:a7:1e:b9:e0:d7:35:05:bd:ea:e0:b3:08:55:
72:8b:87:10:ef:5a:a7:ff:22:22:04:87:f2:81:ab:60:db:a5:
9a:bf:dc:c1:d8:f6:78:8d:32:e7:fa:79:39:7e:c1:88:5d:75:
59:52:4b:d3:57:b6:9b:1e:1d:7d:31:83:f1:ad:8b:fa:96:cc:
2f:4a:b5:77:40:0a:43:24:59:4e:53:e9:42:68:d6:84:b3:0c:
18:ee:f0:3c:7d:c0:f6:37:cc:f9:53:f8:43:dd:b6:bf:b4:4e:
47:86:ec:54:7f:54:58:7f:0c:8d:d1:3f:82:14:bc:1a:11:a6:
19:bd:a9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 19:23:39 2026 by rpki-client