Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9890AFA6871111F0BE323E33C4F9AE02.roa
File: 9890AFA6871111F0BE323E33C4F9AE02.roa (raw, json)
Hash identifier: 4xvtd5aZuizJzpuL8/6TQetkuE2KAgNqX0jPBBweC4E=
Subject key identifier: 5E:67:CE:90:11:1C:CF:9F:13:77:BF:92:67:51:91:62:FD:AD:3D:2B
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: C3B6
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9890AFA6871111F0BE323E33C4F9AE02.roa
Signing time: Mon 01 Sep 2025 08:56:49 +0000
ROA not before: Mon 01 Sep 2025 08:56:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17665
IP address blocks: 36.255.88.0/22 maxlen: 24
43.230.40.0/22 maxlen: 24
45.117.72.0/22 maxlen: 24
45.118.104.0/22 maxlen: 24
59.152.120.0/22 maxlen: 24
103.27.48.0/22 maxlen: 24
103.38.68.0/23 maxlen: 24
103.38.128.0/22 maxlen: 24
103.57.140.0/22 maxlen: 24
103.58.152.0/22 maxlen: 24
103.59.204.0/22 maxlen: 24
103.88.57.0/24 maxlen: 24
103.88.58.0/24 maxlen: 24
103.88.59.0/24 maxlen: 24
103.92.112.0/24 maxlen: 24
103.92.113.0/24 maxlen: 24
103.92.114.0/24 maxlen: 24
103.92.115.0/24 maxlen: 24
103.99.196.0/23 maxlen: 24
103.99.198.0/23 maxlen: 24
103.135.64.0/24 maxlen: 24
103.135.65.0/24 maxlen: 24
103.136.172.0/22 maxlen: 24
103.142.114.0/23 maxlen: 24
103.144.188.0/23 maxlen: 24
103.147.1.0/24 maxlen: 24
103.158.170.0/23 maxlen: 24
103.159.98.0/24 maxlen: 24
103.159.212.0/23 maxlen: 24
103.161.40.0/23 maxlen: 24
103.164.46.0/23 maxlen: 24
103.165.28.0/23 maxlen: 24
103.168.177.0/24 maxlen: 24
103.168.232.0/23 maxlen: 24
103.171.9.0/24 maxlen: 24
103.171.208.0/24 maxlen: 24
103.175.30.0/24 maxlen: 24
103.175.31.0/24 maxlen: 24
103.176.176.0/24 maxlen: 24
103.176.194.0/23 maxlen: 24
103.177.174.0/23 maxlen: 24
103.178.74.0/24 maxlen: 24
103.178.168.0/23 maxlen: 24
103.179.122.0/24 maxlen: 24
103.182.130.0/23 maxlen: 24
103.184.40.0/24 maxlen: 24
103.184.41.0/24 maxlen: 24
103.186.121.0/24 maxlen: 24
103.186.176.0/24 maxlen: 24
103.199.192.0/22 maxlen: 24
103.203.36.0/22 maxlen: 24
103.206.8.0/24 maxlen: 24
103.206.9.0/24 maxlen: 24
103.206.10.0/24 maxlen: 24
103.206.11.0/24 maxlen: 24
103.209.68.0/22 maxlen: 22
103.209.68.0/24 maxlen: 24
103.209.69.0/24 maxlen: 24
103.209.70.0/24 maxlen: 24
103.209.71.0/24 maxlen: 24
103.215.164.0/22 maxlen: 24
103.245.103.0/24 maxlen: 24
111.223.24.0/22 maxlen: 24
157.119.44.0/22 maxlen: 24
162.12.246.0/23 maxlen: 24
202.148.60.0/22 maxlen: 24
203.189.248.0/22 maxlen: 24
203.192.192.0/20 maxlen: 24
203.192.208.0/22 maxlen: 24
203.192.212.0/24 maxlen: 24
203.192.213.0/24 maxlen: 24
203.192.214.0/24 maxlen: 24
203.192.215.0/24 maxlen: 24
203.192.216.0/24 maxlen: 24
203.192.217.0/24 maxlen: 24
203.192.218.0/24 maxlen: 24
203.192.219.0/24 maxlen: 24
203.192.220.0/22 maxlen: 24
203.192.224.0/23 maxlen: 24
203.192.226.0/24 maxlen: 24
203.192.227.0/24 maxlen: 24
203.192.228.0/22 maxlen: 24
203.192.232.0/22 maxlen: 24
203.192.236.0/24 maxlen: 24
203.192.237.0/24 maxlen: 24
203.192.238.0/23 maxlen: 24
203.192.240.0/20 maxlen: 20
203.192.240.0/24 maxlen: 24
203.192.241.0/24 maxlen: 24
203.192.242.0/24 maxlen: 24
203.192.243.0/24 maxlen: 24
203.192.244.0/24 maxlen: 24
203.192.245.0/24 maxlen: 24
203.192.246.0/24 maxlen: 24
203.192.247.0/24 maxlen: 24
203.192.248.0/24 maxlen: 24
203.192.249.0/24 maxlen: 24
203.192.250.0/24 maxlen: 24
203.192.251.0/24 maxlen: 24
203.192.252.0/24 maxlen: 24
203.192.253.0/24 maxlen: 24
203.192.254.0/24 maxlen: 24
203.192.255.0/24 maxlen: 24
203.194.96.0/24 maxlen: 24
203.194.97.0/24 maxlen: 24
203.194.98.0/24 maxlen: 24
203.194.99.0/24 maxlen: 24
203.194.100.0/24 maxlen: 24
203.194.101.0/24 maxlen: 24
203.194.102.0/24 maxlen: 24
203.194.103.0/24 maxlen: 24
203.194.104.0/24 maxlen: 24
203.194.105.0/24 maxlen: 24
203.194.106.0/24 maxlen: 24
203.194.107.0/24 maxlen: 24
203.194.108.0/24 maxlen: 24
203.194.109.0/24 maxlen: 24
203.194.110.0/24 maxlen: 24
203.194.111.0/24 maxlen: 24
2001:df1:9980::/48 maxlen: 48
2001:df1:9980:1::/64 maxlen: 64
2001:df1:9980:2::/64 maxlen: 64
2001:df1:9980:3::/64 maxlen: 64
2001:df1:9980:4::/64 maxlen: 64
2001:df1:9980:5::/64 maxlen: 64
2001:df2:4c0::/48 maxlen: 48
2404:ba00::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Sep 2025 15:24:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50102 (0xc3b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Sep 1 08:56:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68b55fd1-e19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:54:a1:97:b0:e8:c1:b5:45:4b:91:93:13:7f:
26:57:03:11:35:f8:c5:a2:71:41:2f:a4:1a:78:e7:
24:72:97:e5:93:de:86:2c:9d:f0:9b:ed:37:5e:1b:
81:aa:a1:77:a7:7c:27:99:62:02:3e:b0:38:12:67:
69:17:02:01:2b:6f:89:19:20:fa:b6:77:27:c0:1a:
c0:1a:8f:21:db:1c:d4:08:42:5a:41:6f:da:1b:62:
2b:ea:48:75:68:2d:66:57:17:44:72:d1:b3:4d:6f:
45:ea:4c:8c:f3:ec:9f:44:f8:f0:3f:cf:dc:2e:e9:
0b:e1:67:91:88:ac:6f:ed:4b:ca:e2:fe:95:0e:ab:
cb:f4:44:44:b8:e9:dd:17:a3:ac:70:bb:0e:68:ae:
5e:e7:b1:a5:5c:e1:74:8c:47:99:cc:e0:8a:b9:f2:
c0:b1:5f:7c:9d:8c:7c:19:78:0b:4a:19:a2:59:7e:
58:89:1b:6f:95:b7:7d:1b:7c:c5:f4:42:d3:cb:5d:
09:32:67:65:1c:c9:59:02:36:94:27:60:48:fb:a3:
02:2c:8e:30:6e:9b:d3:d6:82:9c:a2:fc:97:ff:36:
86:53:6d:e5:3f:dc:ed:91:5c:a0:af:a7:be:3d:91:
60:14:e7:30:df:34:14:8c:3d:ea:87:ed:f7:f8:26:
c2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:67:CE:90:11:1C:CF:9F:13:77:BF:92:67:51:91:62:FD:AD:3D:2B
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9890AFA6871111F0BE323E33C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.88.0/22
43.230.40.0/22
45.117.72.0/22
45.118.104.0/22
59.152.120.0/22
103.27.48.0/22
103.38.68.0/23
103.38.128.0/22
103.57.140.0/22
103.58.152.0/22
103.59.204.0/22
103.88.57.0-103.88.59.255
103.92.112.0/22
103.99.196.0/22
103.135.64.0/23
103.136.172.0/22
103.142.114.0/23
103.144.188.0/23
103.147.1.0/24
103.158.170.0/23
103.159.98.0/24
103.159.212.0/23
103.161.40.0/23
103.164.46.0/23
103.165.28.0/23
103.168.177.0/24
103.168.232.0/23
103.171.9.0/24
103.171.208.0/24
103.175.30.0/23
103.176.176.0/24
103.176.194.0/23
103.177.174.0/23
103.178.74.0/24
103.178.168.0/23
103.179.122.0/24
103.182.130.0/23
103.184.40.0/23
103.186.121.0/24
103.186.176.0/24
103.199.192.0/22
103.203.36.0/22
103.206.8.0/22
103.209.68.0/22
103.215.164.0/22
103.245.103.0/24
111.223.24.0/22
157.119.44.0/22
162.12.246.0/23
202.148.60.0/22
203.189.248.0/22
203.192.192.0/18
203.194.96.0/20
IPv6:
2001:df1:9980::/48
2001:df2:4c0::/48
2404:ba00::/32
Signature Algorithm: sha256WithRSAEncryption
98:30:3c:00:ed:f4:d5:c6:3b:bb:12:5d:cf:3e:14:54:ec:6d:
47:9d:bb:0a:5e:90:2e:d1:fb:7a:cd:c0:18:b3:67:80:3c:a2:
3d:08:2f:45:e1:ab:06:3c:9a:aa:4a:b8:ec:54:b3:84:1a:cf:
c8:e0:c0:0a:ec:c8:9e:76:4a:27:1b:da:1e:36:7f:15:cb:ca:
19:d1:76:3b:f1:c2:b6:bc:12:b2:67:09:a3:37:30:8d:c6:9b:
60:3a:0f:50:74:dc:52:cf:8f:4b:73:4b:80:d6:5d:cf:69:f9:
16:49:f2:f2:b1:fd:3d:34:7b:4a:f0:fd:e5:0a:2c:d8:08:46:
05:b8:b6:42:08:ea:9f:b2:48:a5:1d:11:92:cc:7b:90:6a:2c:
33:21:91:ec:78:14:81:ee:72:bb:7e:be:08:fc:df:8b:fb:57:
38:3c:17:5e:bd:1b:a4:70:51:80:62:b0:48:bc:b4:98:fa:19:
6d:74:62:fa:14:b4:f1:5b:a6:0c:51:0d:4b:d2:69:1e:72:dd:
c1:a4:14:73:a1:ed:f8:50:db:ad:66:5d:8a:c1:96:10:f4:f9:
7b:4b:47:0e:8c:a1:88:4e:a4:51:68:2f:40:b3:0c:7e:0f:b4:
c8:8e:1e:3b:2e:e0:e6:d5:b5:a3:63:f2:e9:cb:fd:fc:ae:d2:
ed:ce:d0:de
-----BEGIN CERTIFICATE-----
MIIG3TCCBcWgAwIBAgIDAMO2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI1MDkwMTA4NTY0OVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNjhiNTVmZDEtZTE5YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMtUoZew6MG1RUuRkxN/JlcDETX4xaJxQS+kGnjnJHKX5ZPehiyd8JvtN14b
gaqhd6d8J5liAj6wOBJnaRcCAStviRkg+rZ3J8AawBqPIdsc1AhCWkFv2htiK+pI
dWgtZlcXRHLRs01vRepMjPPsn0T48D/P3C7pC+FnkYisb+1LyuL+lQ6ry/RERLjp
3RejrHC7DmiuXuexpVzhdIxHmczgirnywLFffJ2MfBl4C0oZoll+WIkbb5W3fRt8
xfRC08tdCTJnZRzJWQI2lCdgSPujAiyOMG6b09aCnKL8l/82hlNt5T/c7ZFcoK+n
vj2RYBTnMN80FIw96oft9/gmwr8CAwEAAaOCBAAwggP8MB0GA1UdDgQWBBReZ86Q
ERzPnxN3v5JnUZFi/a09KzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzk4OTBBRkE2
ODcxMTExRjBCRTMyM0UzM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6
Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIIBiAYIKwYBBQUHAQcB
Af8EggF3MIIBczCCAU4EAgABMIIBRgMEAiT/WAMEAivmKAMEAi11SAMEAi12aAME
AjuYeAMEAmcbMAMEAWcmRAMEAmcmgAMEAmc5jAMEAmc6mAMEAmc7zDAMAwQAZ1g5
AwQCZ1g4AwQCZ1xwAwQCZ2PEAwQBZ4dAAwQCZ4isAwQBZ45yAwQBZ5C8AwQAZ5MB
AwQBZ56qAwQAZ59iAwQBZ5/UAwQBZ6EoAwQBZ6QuAwQBZ6UcAwQAZ6ixAwQBZ6jo
AwQAZ6sJAwQAZ6vQAwQBZ68eAwQAZ7CwAwQBZ7DCAwQBZ7GuAwQAZ7JKAwQBZ7Ko
AwQAZ7N6AwQBZ7aCAwQBZ7goAwQAZ7p5AwQAZ7qwAwQCZ8fAAwQCZ8skAwQCZ84I
AwQCZ9FEAwQCZ9ekAwQAZ/VnAwQCb98YAwQCnXcsAwQBogz2AwQCypQ8AwQCy734
AwQGy8DAAwQEy8JgMB8EAgACMBkDBwAgAQ3xmYADBwAgAQ3yBMADBQAkBLoAMA0G
CSqGSIb3DQEBCwUAA4IBAQCYMDwA7fTVxju7El3PPhRU7G1HnbsKXpAu0ft6zcAY
s2eAPKI9CC9F4asGPJqqSrjsVLOEGs/I4MAK7MiedkonG9oeNn8Vy8oZ0XY78cK2
vBKyZwmjNzCNxptgOg9QdNxSz49Lc0uA1l3PafkWSfLysf09NHtK8P3lCizYCEYF
uLZCCOqfskilHRGSzHuQaiwzIZHseBSB7nK7fr4I/N+L+1c4PBdevRukcFGAYrBI
vLSY+hltdGL6FLTxW6YMUQ1L0mkect3BpBRzoe34UNutZl2KwZYQ9Pl7S0cOjKGI
TqRRaC9Aswx+D7TIjh47LuDm1bWjY/Lpy/38rtLtztDe
-----END CERTIFICATE-----
Generated at Sun Sep 7 16:33:30 2025 by rpki-client