Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C24D5CE8559011F0BA47F860C4F9AE02.roa
File: C24D5CE8559011F0BA47F860C4F9AE02.roa (raw, json)
Hash identifier: g0tWkTphXl+R7XSB6+SfmTO3TwVvKaBjGofy2oBw1vU=
Subject key identifier: 41:A8:C3:02:A2:29:C9:23:FD:72:96:D1:B3:D9:E0:A6:6F:C3:B2:1F
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: EB49
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C24D5CE8559011F0BA47F860C4F9AE02.roa
Signing time: Sun 31 May 2026 17:50:59 +0000
ROA not before: Sun 31 May 2026 17:50:59 +0000
ROA not after: Thu 01 Oct 2026 00:00:00 +0000
asID: 45528
IP address blocks: 1.22.0.0/16 maxlen: 24
1.23.0.0/16 maxlen: 24
43.224.164.0/22 maxlen: 24
103.28.180.0/22 maxlen: 24
113.193.0.0/16 maxlen: 24
202.56.117.0/24 maxlen: 24
202.56.118.0/24 maxlen: 24
202.56.119.0/24 maxlen: 24
202.56.120.0/24 maxlen: 24
202.56.121.0/24 maxlen: 24
202.56.123.0/24 maxlen: 24
202.56.124.0/24 maxlen: 24
202.56.126.0/24 maxlen: 24
202.56.127.0/24 maxlen: 24
203.76.128.0/24 maxlen: 24
203.76.129.0/24 maxlen: 24
203.76.130.0/24 maxlen: 24
203.76.131.0/24 maxlen: 24
203.76.132.0/24 maxlen: 24
203.76.133.0/24 maxlen: 24
203.76.134.0/24 maxlen: 24
203.76.135.0/24 maxlen: 24
203.76.136.0/24 maxlen: 24
203.76.137.0/24 maxlen: 24
203.76.138.0/24 maxlen: 24
203.76.140.0/24 maxlen: 24
203.76.142.0/24 maxlen: 24
203.90.64.0/24 maxlen: 24
203.90.65.0/24 maxlen: 24
203.90.66.0/24 maxlen: 24
203.90.68.0/24 maxlen: 24
203.90.69.0/24 maxlen: 24
203.90.76.0/24 maxlen: 24
203.90.77.0/24 maxlen: 24
203.90.78.0/24 maxlen: 24
203.90.79.0/24 maxlen: 24
203.90.80.0/24 maxlen: 24
203.90.82.0/24 maxlen: 24
203.90.85.0/24 maxlen: 24
203.90.86.0/24 maxlen: 24
203.90.87.0/24 maxlen: 24
203.90.88.0/24 maxlen: 24
203.90.89.0/24 maxlen: 24
203.90.90.0/24 maxlen: 24
203.90.91.0/24 maxlen: 24
203.90.92.0/24 maxlen: 24
203.90.94.0/24 maxlen: 24
203.90.95.0/24 maxlen: 24
203.90.96.0/24 maxlen: 24
203.90.97.0/24 maxlen: 24
203.90.98.0/24 maxlen: 24
203.90.99.0/24 maxlen: 24
203.90.100.0/24 maxlen: 24
203.90.101.0/24 maxlen: 24
203.90.102.0/24 maxlen: 24
203.90.103.0/24 maxlen: 24
203.90.104.0/24 maxlen: 24
203.90.105.0/24 maxlen: 24
203.90.109.0/24 maxlen: 24
203.90.110.0/24 maxlen: 24
203.90.111.0/24 maxlen: 24
203.90.112.0/24 maxlen: 24
203.90.113.0/24 maxlen: 24
203.90.114.0/24 maxlen: 24
203.90.115.0/24 maxlen: 24
203.90.116.0/24 maxlen: 24
203.90.117.0/24 maxlen: 24
203.90.118.0/24 maxlen: 24
203.90.119.0/24 maxlen: 24
203.90.120.0/24 maxlen: 24
203.90.123.0/24 maxlen: 24
203.90.124.0/24 maxlen: 24
203.90.125.0/24 maxlen: 24
203.90.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Jun 2026 06:09:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60233 (0xeb49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 31 17:50:59 2026 GMT
Not After : Oct 1 00:00:00 2026 GMT
Subject: CN=6a1c7503-5053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2a:e1:cf:29:02:e4:30:c9:bf:82:fc:43:1b:
b6:f2:89:68:41:c8:82:0a:83:01:fa:b0:ef:3b:e2:
51:c1:97:f5:3d:df:8f:e6:ca:8a:a3:08:4b:b9:19:
6b:9c:79:b4:a0:b5:6e:8f:bd:5c:fe:a3:1a:29:36:
b8:41:dc:08:bb:7e:6c:c5:43:27:85:1c:65:2f:25:
e4:b3:02:62:8c:d0:e0:ad:dc:e6:89:61:1c:d7:83:
5e:9b:92:6a:86:46:72:bb:85:14:80:c0:cd:14:05:
18:a9:2c:03:fb:cf:3d:5f:9f:40:27:94:1b:ec:8a:
0a:62:af:92:f5:80:12:79:e2:e7:27:ef:c1:c7:98:
92:40:b3:aa:0f:46:34:28:59:21:d7:f9:fe:de:69:
b2:bb:bd:b0:88:91:ee:e7:f1:3a:ad:47:d9:b0:c8:
63:e8:13:b8:6f:4f:ac:5b:55:0d:32:c9:76:b1:6f:
cb:f2:c2:ac:db:b1:0e:75:51:6e:8e:29:8b:52:85:
96:89:f4:f9:4b:9a:8e:8b:50:80:ed:7e:b8:df:1e:
aa:00:2e:6f:00:d2:29:aa:8b:37:67:96:6b:20:d1:
17:11:e2:8d:d1:23:aa:80:a8:e5:cf:a2:b5:27:eb:
a6:09:0f:1a:32:fb:e8:64:eb:e8:70:2d:14:4e:1b:
bb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A8:C3:02:A2:29:C9:23:FD:72:96:D1:B3:D9:E0:A6:6F:C3:B2:1F
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C24D5CE8559011F0BA47F860C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
1.22.0.0/15
43.224.164.0/22
103.28.180.0/22
113.193.0.0/16
202.56.117.0-202.56.121.255
202.56.123.0-202.56.124.255
202.56.126.0/23
203.76.128.0-203.76.138.255
203.76.140.0/24
203.76.142.0/24
203.90.64.0-203.90.66.255
203.90.68.0/23
203.90.76.0-203.90.80.255
203.90.82.0/24
203.90.85.0-203.90.92.255
203.90.94.0-203.90.105.255
203.90.109.0-203.90.120.255
203.90.123.0-203.90.125.255
203.90.127.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a9:3d:0c:73:39:44:69:68:b9:c4:20:a1:4e:06:0d:9b:8f:
60:c7:3d:87:00:ef:7a:92:20:af:49:e5:d5:db:26:d3:29:b6:
8c:61:78:a4:16:80:21:e2:e7:84:11:c5:68:ff:12:37:a5:0c:
3d:70:53:db:38:22:ac:c8:a0:45:26:50:bb:3e:fb:40:9f:6e:
6d:68:63:5e:1c:cc:0e:59:db:25:21:49:22:05:6f:eb:7f:35:
b1:46:ca:c5:cd:a3:2a:08:f4:80:f7:8e:7c:d5:06:fb:c8:e8:
41:b2:aa:9f:46:91:a0:14:7f:ec:c1:90:5b:37:90:9a:84:92:
39:e9:7a:2c:2d:59:09:41:cc:9a:9a:4e:91:ed:9b:9b:e4:ed:
cb:bc:56:f1:68:ea:85:07:7e:ee:4b:d6:42:f0:4c:8f:b7:98:
e1:c7:93:3c:8e:92:4b:fa:b2:a3:db:fb:c8:3d:37:31:b8:66:
ec:87:32:58:57:01:db:1b:96:2a:9d:d9:e7:6f:97:c5:5a:b9:
b4:de:81:dd:48:3d:a2:de:6b:82:d7:79:3d:26:70:1b:4e:52:
11:1b:10:ad:f7:bf:b8:0d:81:05:41:d9:c3:34:92:78:66:d5:
a0:25:82:a5:45:2d:a8:cf:ee:11:11:a0:ae:95:b4:57:6e:b6:
d8:8c:53:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 10:06:31 2026 by rpki-client