Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
File:                     A460738A366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier:          GaGzYSUxNZ4zR+uHkj0/WJB+KCNuqgxRfycOLacDEC4=
Subject key identifier:   DA:6B:C3:11:35:6B:7E:DA:72:BB:BE:B1:B3:10:CC:CB:DE:C7:EB:82
Certificate issuer:       /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA
Certificate serial:       028D
Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
Signing time:             Mon 22 Jun 2026 06:33:25 +0000
ROA not before:           Mon 22 Jun 2026 06:33:25 +0000
ROA not after:            Tue 31 Aug 2027 00:00:00 +0000
asID:                     132280
IP address blocks:        45.250.176.0/22 maxlen: 22
                          45.250.176.0/24 maxlen: 24
                          103.14.8.0/22 maxlen: 22
                          103.14.8.0/24 maxlen: 24
                          119.110.192.0/18 maxlen: 19
                          119.110.192.0/21 maxlen: 22
                          119.110.196.0/24 maxlen: 24
                          119.110.197.0/24 maxlen: 24
                          119.110.198.0/24 maxlen: 24
                          119.110.199.0/24 maxlen: 24
                          119.110.200.0/21 maxlen: 22
                          119.110.201.0/24 maxlen: 24
                          119.110.208.0/21 maxlen: 22
                          119.110.208.0/24 maxlen: 24
                          119.110.215.0/24 maxlen: 24
                          119.110.216.0/21 maxlen: 22
                          119.110.220.0/24 maxlen: 24
                          119.110.223.0/24 maxlen: 24
                          119.110.224.0/21 maxlen: 22
                          119.110.228.0/24 maxlen: 24
                          119.110.232.0/21 maxlen: 22
                          119.110.233.0/24 maxlen: 24
                          119.110.236.0/22 maxlen: 23
                          119.110.240.0/21 maxlen: 22
                          119.110.246.0/24 maxlen: 24
                          119.110.248.0/21 maxlen: 22
                          119.110.248.0/23 maxlen: 23
                          119.110.252.0/24 maxlen: 24
                          119.110.254.0/24 maxlen: 24
                          119.110.255.0/24 maxlen: 24
                          2400:6280::/32 maxlen: 32
                          2400:6280:4::/48 maxlen: 48
                          2400:6280:5::/48 maxlen: 48
                          2400:6280:6::/48 maxlen: 48
                          2400:6280:7::/48 maxlen: 48
                          2400:6280:8::/48 maxlen: 48
                          2400:6280:9::/48 maxlen: 48
                          2400:6280:a::/48 maxlen: 48
                          2400:6280:15::/48 maxlen: 48
                          2400:6280:16::/48 maxlen: 48
                          2400:6280:17::/48 maxlen: 48
                          2400:6280:43::/48 maxlen: 48
                          2400:6280:87::/48 maxlen: 48
                          2400:6280:96::/48 maxlen: 48
                          2400:6280:104::/48 maxlen: 48
                          2400:6280:10a::/48 maxlen: 48
                          2400:6280:113::/48 maxlen: 48
                          2400:6280:11e::/48 maxlen: 48
                          2400:6280:128::/48 maxlen: 48
                          2400:6280:129::/48 maxlen: 48
                          2400:6280:135::/48 maxlen: 48
                          2400:6280:13a::/48 maxlen: 48
                          2400:6280:13c::/48 maxlen: 48
                          2400:6280:140::/48 maxlen: 48
                          2400:6280:143::/48 maxlen: 48
                          2400:6280:144::/48 maxlen: 48
                          2400:6280:147::/48 maxlen: 48
                          2400:6280:148::/48 maxlen: 48
                          2400:6280:149::/48 maxlen: 48
                          2400:6280:150::/48 maxlen: 48
                          2400:6280:155::/48 maxlen: 48
                          2400:6280:158::/48 maxlen: 48
                          2400:6280:161::/48 maxlen: 48
                          2400:6280:174::/48 maxlen: 48
                          2400:6280:175::/48 maxlen: 48
                          2400:6280:178::/48 maxlen: 48
                          2400:6280:179::/48 maxlen: 48
                          2400:6280:17f::/48 maxlen: 48
                          2400:6280:181::/48 maxlen: 48
                          2400:6280:18a::/48 maxlen: 48
                          2400:6280:18b::/48 maxlen: 48
                          2400:6280:18c::/48 maxlen: 48
                          2400:6280:193::/48 maxlen: 48
                          2400:6280:195::/48 maxlen: 48
                          2400:6280:200::/48 maxlen: 48
                          2400:6280:203::/48 maxlen: 48
                          2400:6280:207::/48 maxlen: 48
                          2400:6280:208::/48 maxlen: 48
                          2400:6280:6280::/48 maxlen: 48
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl
                          rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:37:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 653 (0x28d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919536C, serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA
        Validity
            Not Before: Jun 22 06:33:25 2026 GMT
            Not After : Aug 31 00:00:00 2027 GMT
        Subject: CN=6a38d734-9626
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:50:cc:47:d6:df:48:4f:7c:6d:a8:f6:2f:08:
                    55:73:c6:1c:7c:26:de:f1:48:bf:d1:91:f1:6e:c5:
                    d4:e6:b6:c0:63:71:46:1c:3c:87:3d:21:49:10:4b:
                    94:9a:78:6d:a6:69:c9:7f:02:34:50:f2:a0:cb:69:
                    a7:82:89:80:ca:2e:e6:3e:38:3c:01:d2:5a:21:1f:
                    d3:dc:a2:21:bc:06:4d:8a:cd:51:62:3f:b4:10:37:
                    f1:04:5b:97:4a:9b:7f:69:2d:15:57:60:11:f1:ed:
                    d2:94:3f:68:6f:8e:a2:c2:cf:6d:cb:83:7f:b9:02:
                    c7:c3:c8:cd:28:3a:27:95:02:0a:e0:77:81:4f:1c:
                    43:e4:47:ab:68:03:91:b0:7a:ca:d6:1a:42:e6:c6:
                    b4:ae:b9:82:00:91:89:c2:f2:68:27:0c:96:84:e6:
                    d8:2c:d0:52:42:0d:93:8a:9d:bc:65:f5:be:a6:de:
                    e8:1d:1c:cf:2b:e7:1b:a1:68:01:57:d6:40:35:19:
                    12:a2:e8:b0:3b:e7:f3:d4:dc:a2:88:0f:61:b8:6a:
                    36:4a:c7:48:49:d8:ba:8d:57:9c:20:98:5b:4d:53:
                    32:55:77:8c:36:96:2b:68:c1:c7:ed:5e:09:a4:b5:
                    e1:29:2d:72:9c:5f:07:fd:2c:4f:08:ae:16:47:08:
                    77:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:6B:C3:11:35:6B:7E:DA:72:BB:BE:B1:B3:10:CC:CB:DE:C7:EB:82
            X509v3 Authority Key Identifier:
                keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.250.176.0/22
                  103.14.8.0/22
                  119.110.192.0/18
                IPv6:
                  2400:6280::/32

    Signature Algorithm: sha256WithRSAEncryption
         8e:d6:ae:d3:1b:5c:26:0e:a9:61:61:5a:00:12:15:09:01:c8:
         42:af:91:32:e8:c7:4c:3e:47:1c:e1:7e:ef:1f:b3:cd:de:ee:
         99:35:68:d3:9b:11:d8:8e:ea:a4:6b:78:cb:5a:a8:85:27:36:
         ba:4e:25:b2:1e:48:53:a3:98:4f:97:e9:cf:df:86:63:19:e6:
         9d:99:c3:01:e6:71:20:10:0e:1e:c0:2d:f6:99:44:5a:e3:7e:
         fb:53:5f:f6:d7:1f:da:48:8b:a1:3d:83:8c:eb:e3:0d:ff:39:
         70:ec:17:bc:7d:42:2f:71:3d:7f:27:5f:ea:b0:3f:d3:f9:42:
         fb:9d:49:cc:bc:71:88:47:af:74:28:22:8b:3b:f6:a0:b8:51:
         42:14:f5:dd:cb:df:3f:cc:7e:ee:25:b3:2b:90:ba:93:39:9c:
         67:e3:b3:09:4f:44:09:f8:88:1d:06:d3:41:ca:42:ad:f4:20:
         33:fa:73:3c:a1:87:d0:18:75:fe:4f:59:4e:b0:7d:29:39:54:
         b3:6d:57:d9:46:91:1b:49:74:94:42:76:24:62:81:02:d7:2f:
         37:b8:5e:59:c4:af:da:61:d6:e2:55:6d:3b:af:fb:19:9a:9d:
         5d:68:2d:ff:da:06:d7:67:7e:9d:69:11:9d:19:8d:c3:21:2e:
         3e:64:42:2b
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTUzNkMxMTAvBgNVBAUTKDQ4ODk3MDUwNjI2NEVGOTZEODFFQzEyRTZBQkQyNTZE
QjMwRkRDRkEwHhcNMjYwNjIyMDYzMzI1WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTM4ZDczNC05NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr1DMR9bfSE98baj2LwhVc8YcfCbe8Ui/0ZHxbsXU5rbAY3FGHDyHPSFJEEuU
mnhtpmnJfwI0UPKgy2mngomAyi7mPjg8AdJaIR/T3KIhvAZNis1RYj+0EDfxBFuX
Spt/aS0VV2AR8e3SlD9ob46iws9ty4N/uQLHw8jNKDonlQIK4HeBTxxD5EeraAOR
sHrK1hpC5sa0rrmCAJGJwvJoJwyWhObYLNBSQg2Tip28ZfW+pt7oHRzPK+cboWgB
V9ZANRkSouiwO+fz1NyiiA9huGo2SsdISdi6jVecIJhbTVMyVXeMNpYraMHH7V4J
pLXhKS1ynF8H/SxPCK4WRwh3GQIDAQABo4ICezCCAncwHQYDVR0OBBYEFNprwxE1
a37acru+sbMQzMvex+uCMB8GA1UdIwQYMBaAFEiJcFBiZO+W2B7BLmq9JW2zD9z6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83RTREODQ2MDM2
NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9TSWx3VUdKazc1YllIc0V1YXIwbGJiTVAz
UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NJbHdVR0prNzViWUhzRXVhcjBsYmJNUDNQby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTUzNkMvN0U0RDg0NjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQTQ2MDczOEEz
NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY
BAIAATASAwQCLfqwAwQCZw4IAwQGd27AMA0EAgACMAcDBQAkAGKAMA0GCSqGSIb3
DQEBCwUAA4IBAQCO1q7TG1wmDqlhYVoAEhUJAchCr5Ey6MdMPkcc4X7vH7PN3u6Z
NWjTmxHYjuqka3jLWqiFJza6TiWyHkhTo5hPl+nP34ZjGeadmcMB5nEgEA4ewC32
mURa4377U1/21x/aSIuhPYOM6+MN/zlw7Be8fUIvcT1/J1/qsD/T+UL7nUnMvHGI
R690KCKLO/aguFFCFPXdy98/zH7uJbMrkLqTOZxn47MJT0QJ+IgdBtNBykKt9CAz
+nM8oYfQGHX+T1lOsH0pOVSzbVfZRpEbSXSUQnYkYoEC1y83uF5ZxK/aYdbiVW07
r/sZmp1daC3/2gbXZ36daRGdGY3DIS4+ZEIr
-----END CERTIFICATE-----
Generated at Sat Jul 18 06:21:02 2026 by rpki-client