Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EBD48D1E0F8311F0AB75BC25C4F9AE02.roa
File: EBD48D1E0F8311F0AB75BC25C4F9AE02.roa (raw, json)
Hash identifier: npJJwfvJJbqwwFAVBja5pJqifLGDuppGaOnni6kZSr4=
Subject key identifier: FB:5C:EE:D1:A9:84:5B:96:7C:36:01:89:95:CE:CB:D2:7F:BE:8D:8E
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: EBC6
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EBD48D1E0F8311F0AB75BC25C4F9AE02.roa
Signing time: Mon 01 Jun 2026 07:05:30 +0000
ROA not before: Mon 01 Jun 2026 07:05:30 +0000
ROA not after: Thu 01 Oct 2026 00:00:00 +0000
asID: 133594
IP address blocks: 14.102.1.0/24 maxlen: 24
14.102.2.0/23 maxlen: 24
14.102.3.0/24 maxlen: 24
14.102.12.0/23 maxlen: 24
14.102.15.0/24 maxlen: 24
14.102.22.0/23 maxlen: 24
14.102.24.0/22 maxlen: 24
14.102.32.0/22 maxlen: 24
14.102.36.0/23 maxlen: 24
14.102.38.0/24 maxlen: 24
14.102.40.0/22 maxlen: 24
14.102.43.0/24 maxlen: 24
14.102.44.0/24 maxlen: 24
14.102.45.0/24 maxlen: 24
14.102.48.0/24 maxlen: 24
14.102.50.0/24 maxlen: 24
14.102.56.0/23 maxlen: 24
14.102.57.0/24 maxlen: 24
14.102.59.0/24 maxlen: 24
14.102.64.0/22 maxlen: 24
14.102.66.0/24 maxlen: 24
14.102.68.0/22 maxlen: 24
14.102.72.0/22 maxlen: 24
14.102.76.0/23 maxlen: 24
14.102.78.0/24 maxlen: 24
14.102.80.0/23 maxlen: 24
14.102.82.0/24 maxlen: 24
14.102.88.0/24 maxlen: 24
14.102.92.0/23 maxlen: 24
14.102.95.0/24 maxlen: 24
14.102.96.0/23 maxlen: 24
14.102.100.0/23 maxlen: 24
14.102.103.0/24 maxlen: 24
14.102.104.0/22 maxlen: 24
14.102.108.0/22 maxlen: 24
14.102.112.0/22 maxlen: 24
14.102.116.0/22 maxlen: 24
14.102.120.0/22 maxlen: 24
14.102.123.0/24 maxlen: 24
14.102.125.0/24 maxlen: 24
14.102.126.0/23 maxlen: 24
103.5.200.0/24 maxlen: 24
103.5.201.0/24 maxlen: 24
103.5.202.0/24 maxlen: 24
103.124.76.0/24 maxlen: 24
103.155.128.0/23 maxlen: 24
103.160.72.0/23 maxlen: 24
110.172.136.0/24 maxlen: 24
110.172.150.0/24 maxlen: 24
110.172.168.0/24 maxlen: 24
110.172.170.0/24 maxlen: 24
111.235.64.0/22 maxlen: 24
118.91.176.0/24 maxlen: 24
202.89.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Jun 2026 06:09:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60358 (0xebc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 1 07:05:30 2026 GMT
Not After : Oct 1 00:00:00 2026 GMT
Subject: CN=6a1d2f3a-919b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f0:27:14:a4:2b:c5:b9:de:26:30:48:fa:3d:
1c:04:42:6d:5f:03:9a:be:01:25:c6:fe:85:9d:3a:
0e:64:bc:da:ee:7d:72:22:e9:22:54:97:ca:05:3d:
16:8f:21:29:3d:4c:2b:fe:93:a6:79:9a:6b:60:4e:
b2:f1:17:64:4c:d1:25:ff:86:8a:94:00:05:51:fb:
d6:ff:93:a4:9e:0d:0e:75:7f:dc:fd:4f:5a:2b:5b:
9a:2e:c6:a0:62:c6:93:a5:2a:3c:b9:af:dc:2e:3e:
b8:00:a8:05:30:aa:c0:4e:ad:1a:49:46:42:c6:2e:
4b:c8:59:f0:2c:94:a8:23:92:43:f4:d9:29:40:7d:
c4:09:39:3f:0a:a1:0f:4a:90:e5:e2:22:e6:14:37:
6e:30:e9:50:80:a0:4d:30:2a:d8:49:10:c9:12:c2:
d9:6a:fb:29:44:ce:57:df:01:7a:fb:51:8f:6f:4a:
fa:fd:4a:b4:44:b3:3d:5a:8f:c2:91:83:e3:a6:f3:
16:2f:52:9a:33:76:3c:46:ae:66:05:83:74:39:c0:
0d:95:ee:73:08:00:2d:d6:08:53:53:52:96:17:c9:
60:62:bb:64:ae:c6:58:bb:26:11:25:af:b4:32:7d:
f2:13:c4:53:61:cf:97:64:cc:9f:f0:e1:e8:6d:93:
b4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:5C:EE:D1:A9:84:5B:96:7C:36:01:89:95:CE:CB:D2:7F:BE:8D:8E
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EBD48D1E0F8311F0AB75BC25C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
14.102.1.0-14.102.3.255
14.102.12.0/23
14.102.15.0/24
14.102.22.0-14.102.27.255
14.102.32.0-14.102.38.255
14.102.40.0-14.102.45.255
14.102.48.0/24
14.102.50.0/24
14.102.56.0/23
14.102.59.0/24
14.102.64.0-14.102.78.255
14.102.80.0-14.102.82.255
14.102.88.0/24
14.102.92.0/23
14.102.95.0-14.102.97.255
14.102.100.0/23
14.102.103.0-14.102.123.255
14.102.125.0-14.102.127.255
103.5.200.0-103.5.202.255
103.124.76.0/24
103.155.128.0/23
103.160.72.0/23
110.172.136.0/24
110.172.150.0/24
110.172.168.0/24
110.172.170.0/24
111.235.64.0/22
118.91.176.0/24
202.89.70.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:01:80:3d:36:98:05:da:97:2f:f4:0d:0b:50:b3:be:6d:cf:
7b:ce:75:f6:14:07:f0:71:4a:e8:8a:76:d7:46:14:59:ae:20:
39:b6:8c:21:96:56:46:7a:dd:5e:9e:bd:df:af:75:e6:91:65:
95:85:c7:d0:77:81:9f:78:be:13:d8:d9:0b:e7:65:ea:09:53:
32:66:df:a5:e0:6a:e2:73:cc:e2:96:b2:3a:09:d7:27:21:03:
fd:9a:1a:98:eb:e4:9c:77:93:57:7b:da:8d:7c:ef:71:b2:f4:
39:f1:c4:db:38:5a:42:1f:cb:81:a5:97:53:0e:16:3f:9b:99:
23:e3:ca:a4:96:d1:2a:82:e2:60:7b:e6:e5:3e:6b:c2:14:4c:
7a:12:06:2f:a7:b1:62:ec:91:0f:f2:3d:30:7e:ae:56:37:58:
4f:94:24:06:cd:08:4a:e9:9d:c6:45:e1:c1:81:f1:a8:48:48:
c3:ef:d1:b9:a3:37:4a:92:0b:17:aa:1d:d9:52:f7:c8:84:c5:
43:85:a0:a2:9d:33:5f:d8:d4:24:0c:d3:8e:e0:a7:1e:cf:63:
40:5e:e5:79:8b:99:99:43:e1:88:1d:df:f8:8e:2b:65:cf:28:
26:34:e0:03:0d:0e:16:3d:30:3a:b5:f2:3d:80:42:2a:d9:dd:
ab:fa:a5:45
-----BEGIN CERTIFICATE-----
MIIGPjCCBSagAwIBAgIDAOvGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI2MDYwMTA3MDUzMFoXDTI2MTAwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNmExZDJmM2EtOTE5YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMrwJxSkK8W53iYwSPo9HARCbV8Dmr4BJcb+hZ06DmS82u59ciLpIlSXygU9
Fo8hKT1MK/6Tpnmaa2BOsvEXZEzRJf+GipQABVH71v+TpJ4NDnV/3P1PWitbmi7G
oGLGk6UqPLmv3C4+uACoBTCqwE6tGklGQsYuS8hZ8CyUqCOSQ/TZKUB9xAk5Pwqh
D0qQ5eIi5hQ3bjDpUICgTTAq2EkQyRLC2Wr7KUTOV98BevtRj29K+v1KtESzPVqP
wpGD46bzFi9SmjN2PEauZgWDdDnADZXucwgALdYIU1NSlhfJYGK7ZK7GWLsmESWv
tDJ98hPEU2HPl2TMn/Dh6G2TtI8CAwEAAaOCA2EwggNdMB0GA1UdDgQWBBT7XO7R
qYRblnw2AYmVzsvSf76NjjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VCRDQ4RDFF
MEY4MzExRjBBQjc1QkMyNUM0RjlBRTAyLnJvYTCCAR4GCCsGAQUFBwEHAQH/BIIB
DTCCAQkwggEFBAIAATCB/jAMAwQADmYBAwQCDmYAAwQBDmYMAwQADmYPMAwDBAEO
ZhYDBAIOZhgwDAMEBQ5mIAMEAA5mJjAMAwQDDmYoAwQBDmYsAwQADmYwAwQADmYy
AwQBDmY4AwQADmY7MAwDBAYOZkADBAAOZk4wDAMEBA5mUAMEAA5mUgMEAA5mWAME
AQ5mXDAMAwQADmZfAwQBDmZgAwQBDmZkMAwDBAAOZmcDBAIOZngwDAMEAA5mfQME
Bw5mADAMAwQDZwXIAwQAZwXKAwQAZ3xMAwQBZ5uAAwQBZ6BIAwQAbqyIAwQAbqyW
AwQAbqyoAwQAbqyqAwQCb+tAAwQAdluwAwQAyllGMA0GCSqGSIb3DQEBCwUAA4IB
AQC4AYA9NpgF2pcv9A0LULO+bc97znX2FAfwcUroinbXRhRZriA5towhllZGet1e
nr3fr3XmkWWVhcfQd4GfeL4T2NkL52XqCVMyZt+l4Gric8zilrI6CdcnIQP9mhqY
6+Scd5NXe9qNfO9xsvQ58cTbOFpCH8uBpZdTDhY/m5kj48qkltEqguJge+blPmvC
FEx6EgYvp7Fi7JEP8j0wfq5WN1hPlCQGzQhK6Z3GReHBgfGoSEjD79G5ozdKkgsX
qh3ZUvfIhMVDhaCinTNf2NQkDNOO4Kcez2NAXuV5i5mZQ+GIHd/4jitlzygmNOAD
DQ4WPTA6tfI9gEIq2d2r+qVF
-----END CERTIFICATE-----
Generated at Thu Jun 4 09:08:49 2026 by rpki-client