Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/830520904A7111F08446103FC4F9AE02.roa
File: 830520904A7111F08446103FC4F9AE02.roa (raw, json)
Hash identifier: 9Illv8XAc8U1lXkUocv/WRojO2ubUMMnJxUClgUuSSA=
Subject key identifier: 95:68:3F:F0:D6:D2:37:06:10:07:CF:50:10:3F:9C:5F:28:03:46:2E
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: EB46
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/830520904A7111F08446103FC4F9AE02.roa
Signing time: Sun 31 May 2026 17:50:54 +0000
ROA not before: Sun 31 May 2026 17:50:54 +0000
ROA not after: Thu 01 Oct 2026 00:00:00 +0000
asID: 45433
IP address blocks: 43.229.73.0/24 maxlen: 24
43.229.74.0/24 maxlen: 24
45.64.176.0/24 maxlen: 24
45.64.177.0/24 maxlen: 24
45.64.179.0/24 maxlen: 24
45.118.204.0/24 maxlen: 24
45.118.205.0/24 maxlen: 24
45.118.206.0/24 maxlen: 24
45.118.207.0/24 maxlen: 24
45.127.220.0/24 maxlen: 24
45.127.221.0/24 maxlen: 24
45.127.222.0/24 maxlen: 24
45.127.223.0/24 maxlen: 24
45.250.169.0/24 maxlen: 24
45.250.170.0/24 maxlen: 24
45.250.171.0/24 maxlen: 24
103.23.236.0/24 maxlen: 24
103.23.237.0/24 maxlen: 24
103.23.238.0/24 maxlen: 24
103.23.239.0/24 maxlen: 24
103.36.49.0/24 maxlen: 24
103.36.50.0/24 maxlen: 24
103.36.51.0/24 maxlen: 24
103.39.8.0/24 maxlen: 24
103.39.9.0/24 maxlen: 24
103.39.10.0/24 maxlen: 24
103.39.11.0/24 maxlen: 24
103.58.248.0/24 maxlen: 24
103.58.250.0/24 maxlen: 24
103.58.251.0/24 maxlen: 24
103.70.58.0/24 maxlen: 24
103.157.124.0/24 maxlen: 24
103.157.125.0/24 maxlen: 24
103.157.168.0/24 maxlen: 24
103.157.169.0/24 maxlen: 24
103.175.9.0/24 maxlen: 24
103.179.1.0/24 maxlen: 24
103.194.120.0/24 maxlen: 24
103.196.208.0/24 maxlen: 24
103.196.209.0/24 maxlen: 24
103.196.210.0/24 maxlen: 24
103.196.211.0/24 maxlen: 24
103.207.168.0/24 maxlen: 24
103.207.169.0/24 maxlen: 24
103.207.170.0/24 maxlen: 24
103.207.171.0/24 maxlen: 24
103.209.176.0/24 maxlen: 24
103.209.177.0/24 maxlen: 24
103.209.178.0/24 maxlen: 24
103.209.179.0/24 maxlen: 24
103.255.8.0/24 maxlen: 24
103.255.10.0/24 maxlen: 24
103.255.11.0/24 maxlen: 24
115.178.96.0/24 maxlen: 24
115.178.97.0/24 maxlen: 24
115.178.98.0/24 maxlen: 24
115.178.99.0/24 maxlen: 24
115.178.100.0/24 maxlen: 24
115.178.101.0/24 maxlen: 24
115.178.102.0/24 maxlen: 24
115.178.103.0/24 maxlen: 24
122.102.24.0/24 maxlen: 24
122.102.25.0/24 maxlen: 24
122.102.27.0/24 maxlen: 24
122.102.28.0/24 maxlen: 24
122.102.29.0/24 maxlen: 24
122.102.30.0/24 maxlen: 24
122.102.31.0/24 maxlen: 24
163.53.80.0/22 maxlen: 22
163.53.80.0/24 maxlen: 24
163.53.81.0/24 maxlen: 24
163.53.82.0/24 maxlen: 24
163.53.83.0/24 maxlen: 24
175.111.128.0/24 maxlen: 24
175.111.129.0/24 maxlen: 24
175.111.130.0/24 maxlen: 24
175.111.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Jun 2026 06:09:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60230 (0xeb46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 31 17:50:54 2026 GMT
Not After : Oct 1 00:00:00 2026 GMT
Subject: CN=6a1c74fe-e57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:dd:b4:ea:5d:74:84:8e:6d:e0:b7:83:65:c3:
5f:fc:42:10:fa:f3:57:16:f5:00:0c:02:27:b2:c8:
6c:9a:69:2c:ec:4c:93:44:fe:e0:fc:a5:ef:27:e6:
d0:d0:9b:8a:99:06:f0:69:c2:99:62:7e:1f:7c:a3:
ac:33:c8:fa:56:10:56:a6:d7:ab:7e:47:05:da:a2:
17:98:6e:12:4b:4c:26:c4:b5:e9:2b:0b:bf:71:5d:
41:dd:e5:09:a1:93:2f:11:24:be:1f:6b:9d:f5:14:
97:e9:eb:a0:80:c3:b3:50:0b:f4:16:22:df:0a:4f:
57:3c:60:8b:d0:c5:7a:b3:31:1b:a7:28:f0:8f:08:
c7:71:5d:92:a8:fb:c4:bf:f9:e3:2b:27:25:9e:68:
76:6c:cf:b2:49:bb:ed:2d:b6:93:ca:aa:c0:e5:80:
d1:b5:a7:ec:73:ce:df:d6:9b:6b:f9:88:d3:5f:88:
20:5f:14:24:ab:7b:0e:7c:11:ab:8a:64:47:55:d0:
be:36:23:ae:b0:6d:e5:12:95:21:6a:b6:22:f1:f7:
75:61:7c:3f:09:61:7c:ca:3d:c0:6e:29:28:8a:e2:
b6:2f:c8:ee:ff:7c:dd:73:0e:63:2c:cf:eb:58:c1:
fe:61:e2:d8:57:ce:38:64:09:90:a2:84:c6:71:10:
1e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:68:3F:F0:D6:D2:37:06:10:07:CF:50:10:3F:9C:5F:28:03:46:2E
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/830520904A7111F08446103FC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
43.229.73.0-43.229.74.255
45.64.176.0/23
45.64.179.0/24
45.118.204.0/22
45.127.220.0/22
45.250.169.0-45.250.171.255
103.23.236.0/22
103.36.49.0-103.36.51.255
103.39.8.0/22
103.58.248.0/24
103.58.250.0/23
103.70.58.0/24
103.157.124.0/23
103.157.168.0/23
103.175.9.0/24
103.179.1.0/24
103.194.120.0/24
103.196.208.0/22
103.207.168.0/22
103.209.176.0/22
103.255.8.0/24
103.255.10.0/23
115.178.96.0/21
122.102.24.0/23
122.102.27.0-122.102.31.255
163.53.80.0/22
175.111.128.0/22
Signature Algorithm: sha256WithRSAEncryption
40:bf:43:63:06:54:e4:8f:e2:cb:51:0c:f6:45:5f:f8:9b:48:
52:90:1e:bb:c4:c5:fc:c6:36:28:59:19:b5:e2:a7:56:3a:e0:
01:bf:fa:77:a8:b2:64:41:3a:5c:de:36:ec:ce:1e:19:22:fc:
a3:e8:f5:03:8f:3e:00:cc:be:2a:37:13:07:18:5c:36:fc:21:
83:27:e0:e3:54:dc:d0:07:f0:29:e6:32:ca:35:3c:a2:57:70:
48:e5:e5:95:35:6d:6f:10:9a:58:fa:1b:a8:56:2e:26:c6:59:
4c:b6:d9:96:2c:a9:00:41:0f:88:8c:1a:01:1b:42:d1:84:dc:
02:79:2d:c1:4f:51:52:93:de:89:69:ba:26:ca:a2:6c:1b:44:
ec:29:5f:ce:8a:90:61:a6:3d:ea:bb:ed:a0:27:2a:73:52:c8:
3f:93:e7:d3:b8:f5:d7:0b:67:7e:df:61:76:a7:ba:60:20:6a:
1c:b8:9d:15:a6:46:fd:15:d8:63:c4:84:5d:86:62:78:d2:a7:
fc:f4:4f:f6:0a:98:07:19:b1:01:92:b7:3a:36:7a:cf:c3:ec:
00:ff:fd:37:b8:af:79:fc:64:ac:25:bf:31:ed:b0:30:39:45:
d4:13:4d:0a:57:e6:b3:d5:86:a8:3d:1f:65:44:1f:dc:1d:97:
d6:5a:3b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 10:06:47 2026 by rpki-client