Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D815D4096F811EDA42F4660C4F9AE02.roa
File: 5D815D4096F811EDA42F4660C4F9AE02.roa (raw, json)
Hash identifier: EECWmI+H+Pug4beHpBp2PzG089qsjlQNWAlOQOmGtvc=
Subject key identifier: 39:D5:0E:83:98:F4:8F:5A:13:63:89:34:1B:BD:74:87:DF:2D:49:69
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: E50E
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D815D4096F811EDA42F4660C4F9AE02.roa
Signing time: Sun 31 May 2026 16:58:53 +0000
ROA not before: Sun 31 May 2026 16:58:53 +0000
ROA not after: Thu 01 Oct 2026 00:00:00 +0000
asID: 137097
IP address blocks: 103.105.176.0/24 maxlen: 24
103.105.177.0/24 maxlen: 24
103.105.178.0/24 maxlen: 24
103.105.179.0/24 maxlen: 24
103.174.162.0/24 maxlen: 24
103.174.163.0/24 maxlen: 24
2001:df1:3c40::/48 maxlen: 48
2400:7b60::/32 maxlen: 32
2400:7b60::/48 maxlen: 48
2400:7b60:1::/48 maxlen: 48
2400:7b60:2::/48 maxlen: 48
2400:7b60:3::/48 maxlen: 48
2400:7b60:4::/48 maxlen: 48
2400:7b60:5::/48 maxlen: 48
2400:7b60:6::/48 maxlen: 48
2400:7b60:7::/48 maxlen: 48
2400:7b60:8::/48 maxlen: 48
2400:7b60:9::/48 maxlen: 48
2400:7b60:a::/48 maxlen: 48
2400:7b60:b::/48 maxlen: 48
2400:7b60:c::/48 maxlen: 48
2400:7b60:d::/48 maxlen: 48
2400:7b60:e::/48 maxlen: 48
2400:7b60:f::/48 maxlen: 48
2400:7b60:10::/48 maxlen: 48
2400:7b60:11::/48 maxlen: 48
2400:7b60:12::/48 maxlen: 48
2400:7b60:13::/48 maxlen: 48
2400:7b60:14::/48 maxlen: 48
2400:7b60:15::/48 maxlen: 48
2400:7b60:16::/48 maxlen: 48
2400:7b60:17::/48 maxlen: 48
2400:7b60:18::/48 maxlen: 48
2400:7b60:19::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Jun 2026 06:09:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58638 (0xe50e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 31 16:58:53 2026 GMT
Not After : Oct 1 00:00:00 2026 GMT
Subject: CN=6a1c68cd-9b62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:3b:c9:a3:1c:85:b3:98:20:25:32:e6:2b:
ef:4c:af:24:62:b1:25:99:97:b3:63:4e:9e:4e:f5:
df:85:1c:15:a5:0f:49:52:f1:2a:46:db:85:3f:17:
51:f8:49:5c:3a:e1:64:e3:59:a0:eb:33:2f:11:da:
b8:04:ac:db:e1:54:96:9e:eb:6b:51:86:77:cf:f5:
f4:43:c5:a2:fd:83:ff:a4:7f:49:ca:9f:0d:16:f9:
2e:f5:34:5a:c7:52:94:64:a8:9d:33:ea:db:39:a5:
d6:f7:61:d1:b5:12:4b:5e:8f:83:bf:95:9f:59:1a:
7a:83:ef:91:3c:46:23:32:ec:f5:5b:1d:f1:14:7a:
4b:da:f4:37:ed:ac:4c:1c:00:b7:44:fd:8f:69:99:
32:ec:eb:81:43:bb:74:4f:ce:26:56:70:fd:77:85:
ee:5f:81:a8:92:bb:d5:7b:80:81:85:03:d9:77:7c:
75:23:f3:7d:8a:14:ef:66:cf:2b:90:39:0d:95:b1:
ca:f0:8f:3d:d4:be:80:6c:9b:09:5d:8a:19:40:ee:
d5:26:29:a2:0c:80:73:29:a1:9e:ed:90:ce:31:a6:
dc:32:c7:df:1b:b2:d9:92:ed:3e:3b:e6:32:c8:46:
fd:a8:52:7f:5c:86:86:6f:d8:62:7b:fc:62:f3:ee:
50:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D5:0E:83:98:F4:8F:5A:13:63:89:34:1B:BD:74:87:DF:2D:49:69
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5D815D4096F811EDA42F4660C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.105.176.0/22
103.174.162.0/23
IPv6:
2001:df1:3c40::/48
2400:7b60::/32
Signature Algorithm: sha256WithRSAEncryption
af:b2:3e:95:e8:b2:ff:dc:7b:63:4b:2a:53:c7:78:62:0a:7f:
ef:da:25:95:5b:16:a8:da:97:c5:41:da:db:b8:20:ce:21:40:
a5:cf:3f:72:cf:64:b0:d4:fd:65:9f:f6:c0:ce:f5:bf:59:a6:
e5:59:1a:91:6b:89:d0:dd:be:98:a3:51:a1:e2:b9:6f:88:3a:
4e:66:2e:5f:37:fd:ac:7f:e7:44:c5:c9:cc:0b:54:0a:c1:84:
f6:74:14:c8:26:75:c4:34:0b:ae:ba:b8:11:fd:1c:29:d5:0a:
85:6f:85:70:db:6a:f6:e8:0c:3e:f2:7c:4f:99:b9:40:a4:15:
da:b5:c9:8f:e0:6b:82:1f:46:eb:e7:54:6a:73:78:03:71:0b:
40:bb:1e:31:ec:88:05:b2:06:04:26:03:37:63:0e:ea:64:6b:
5d:a4:35:e1:76:50:c2:a6:fb:5c:07:bb:fe:b2:c6:0b:76:b3:
43:e3:2e:69:ce:22:e4:06:47:13:f6:2c:3b:a8:8c:8e:10:4d:
6a:33:59:6d:ac:3c:6c:2f:c2:57:1f:9f:f5:f6:b7:ef:e4:58:
bf:5c:6d:8b:5a:6a:30:f1:d3:4f:74:6f:27:34:5b:50:74:3e:
bf:7d:82:d3:a9:b9:0a:7e:cc:8e:95:ca:71:57:10:8e:11:cf:
33:79:97:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 10:06:49 2026 by rpki-client