Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/14C388C2114311F0B3944E67C4F9AE02.roa
File: 14C388C2114311F0B3944E67C4F9AE02.roa (raw, json)
Hash identifier: Uo8Q/y2S0AomO+yycZEREAugFGcv/hV1i0jWeHXdlLc=
Subject key identifier: 20:C8:5F:F5:CD:47:A7:B1:7C:59:59:C9:61:6A:7D:F8:19:09:FA:CE
Certificate issuer: /CN=A9199197/serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7
Certificate serial: 0938
Authority key identifier: 68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/14C388C2114311F0B3944E67C4F9AE02.roa
Signing time: Sun 01 Mar 2026 14:50:57 +0000
ROA not before: Thu 12 Jun 2025 20:58:43 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 24560
IP address blocks: 27.56.128.0/20 maxlen: 24
27.56.144.0/20 maxlen: 24
27.56.160.0/19 maxlen: 24
27.57.0.0/16 maxlen: 24
27.58.0.0/16 maxlen: 24
27.62.116.0/24 maxlen: 24
27.62.117.0/24 maxlen: 24
27.63.176.0/20 maxlen: 24
106.200.0.0/18 maxlen: 24
106.200.192.0/18 maxlen: 24
106.201.0.0/16 maxlen: 24
106.202.128.0/17 maxlen: 24
106.203.192.0/18 maxlen: 24
106.205.0.0/18 maxlen: 24
106.205.64.0/18 maxlen: 24
106.212.0.0/17 maxlen: 24
106.212.128.0/17 maxlen: 24
106.213.0.0/17 maxlen: 24
106.214.0.0/16 maxlen: 24
106.215.0.0/17 maxlen: 24
106.215.128.0/19 maxlen: 24
106.215.160.0/20 maxlen: 24
106.215.176.0/21 maxlen: 24
106.215.184.0/21 maxlen: 24
106.215.192.0/21 maxlen: 24
106.215.200.0/24 maxlen: 24
106.219.64.0/19 maxlen: 24
106.219.96.0/20 maxlen: 24
106.219.120.0/22 maxlen: 24
106.219.124.0/22 maxlen: 24
106.219.128.0/21 maxlen: 24
106.219.136.0/22 maxlen: 24
106.219.144.0/20 maxlen: 24
106.219.160.0/20 maxlen: 24
106.219.176.0/21 maxlen: 24
106.222.192.0/18 maxlen: 24
110.224.128.0/17 maxlen: 24
110.225.0.0/16 maxlen: 24
110.226.0.0/16 maxlen: 24
110.227.0.0/16 maxlen: 24
117.96.0.0/16 maxlen: 24
117.97.128.0/18 maxlen: 24
117.98.192.0/20 maxlen: 24
117.98.208.0/21 maxlen: 21
117.98.216.0/21 maxlen: 24
117.99.96.0/20 maxlen: 24
117.99.160.0/19 maxlen: 24
223.177.0.0/16 maxlen: 24
223.178.0.0/17 maxlen: 24
223.178.192.0/18 maxlen: 24
223.179.128.0/19 maxlen: 24
223.181.0.0/17 maxlen: 24
223.181.128.0/18 maxlen: 24
223.182.64.0/18 maxlen: 24
223.182.164.0/22 maxlen: 24
223.182.172.0/22 maxlen: 24
223.182.180.0/22 maxlen: 24
223.182.248.0/21 maxlen: 24
223.184.0.0/17 maxlen: 24
223.185.12.0/22 maxlen: 24
223.185.16.0/20 maxlen: 24
223.185.32.0/19 maxlen: 24
223.185.128.0/21 maxlen: 24
223.185.136.0/21 maxlen: 24
223.185.144.0/20 maxlen: 24
223.185.160.0/20 maxlen: 24
223.185.176.0/20 maxlen: 24
223.190.0.0/17 maxlen: 24
223.190.192.0/18 maxlen: 24
223.224.172.0/23 maxlen: 24
223.226.0.0/16 maxlen: 24
223.229.128.0/17 maxlen: 24
223.230.0.0/16 maxlen: 24
223.233.64.0/18 maxlen: 24
223.235.0.0/16 maxlen: 24
223.236.0.0/16 maxlen: 24
223.239.0.0/16 maxlen: 24
2401:4900:1c00::/41 maxlen: 48
2401:4900:1c80::/41 maxlen: 48
2401:4900:1f20::/44 maxlen: 48
2401:4900:1f30::/44 maxlen: 48
2401:4900:8800::/37 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl
rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Mar 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2360 (0x938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199197, serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7
Validity
Not Before: Jun 12 20:58:43 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69a45251-100c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d4:20:2f:83:7c:7b:21:46:e0:2f:6a:82:31:
2d:78:87:0b:25:a1:d2:1a:6f:0f:4f:89:d3:65:51:
d8:e7:c0:02:99:6d:9e:d5:60:25:2c:fa:26:0d:0b:
80:a3:1a:fd:d8:bc:2e:da:01:28:5c:9e:c1:d0:c6:
68:be:b8:b7:1b:14:25:16:25:09:74:59:eb:a0:0a:
65:22:d0:98:c4:1f:44:5e:49:dc:a6:56:10:11:c3:
a5:eb:09:45:d3:f1:b7:cd:96:c7:ee:8b:79:e2:09:
38:be:f7:7f:29:78:87:99:3b:13:6e:df:7d:eb:e6:
23:ab:97:0e:f4:85:0e:03:64:91:86:d3:40:72:a1:
ab:1e:90:3e:e7:87:05:44:5f:ba:e5:6e:d0:0b:4f:
1d:e3:c8:3b:ca:bd:bc:74:9e:6f:ad:43:ed:21:6e:
1d:31:09:b0:9c:b8:1b:fb:8d:c6:e6:02:4f:6f:1c:
a8:e6:ed:4a:5c:97:ae:d0:f5:1e:a9:6f:18:91:29:
7f:ee:10:1a:70:4a:b2:3a:1a:df:a1:61:0d:75:f6:
22:e9:19:41:1a:81:d8:e4:3f:53:2c:ac:97:3d:39:
d1:2c:a2:c8:24:08:d2:9a:36:e6:57:ad:d7:2f:2f:
99:3e:ff:0c:e4:8e:d8:2b:e4:5b:e6:7c:d0:47:96:
37:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C8:5F:F5:CD:47:A7:B1:7C:59:59:C9:61:6A:7D:F8:19:09:FA:CE
X509v3 Authority Key Identifier:
keyid:68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/14C388C2114311F0B3944E67C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
27.56.128.0/18
27.57.0.0-27.58.255.255
27.62.116.0/23
27.63.176.0/20
106.200.0.0/18
106.200.192.0-106.201.255.255
106.202.128.0/17
106.203.192.0/18
106.205.0.0/17
106.212.0.0-106.213.127.255
106.214.0.0-106.215.200.255
106.219.64.0-106.219.111.255
106.219.120.0-106.219.139.255
106.219.144.0-106.219.183.255
106.222.192.0/18
110.224.128.0-110.227.255.255
117.96.0.0/16
117.97.128.0/18
117.98.192.0/19
117.99.96.0/20
117.99.160.0/19
223.177.0.0-223.178.127.255
223.178.192.0/18
223.179.128.0/19
223.181.0.0-223.181.191.255
223.182.64.0/18
223.182.164.0/22
223.182.172.0/22
223.182.180.0/22
223.182.248.0/21
223.184.0.0/17
223.185.12.0-223.185.63.255
223.185.128.0/18
223.190.0.0/17
223.190.192.0/18
223.224.172.0/23
223.226.0.0/16
223.229.128.0-223.230.255.255
223.233.64.0/18
223.235.0.0-223.236.255.255
223.239.0.0/16
IPv6:
2401:4900:1c00::/40
2401:4900:1f20::/43
2401:4900:8800::/37
Signature Algorithm: sha256WithRSAEncryption
0f:8c:62:23:bc:6b:77:0c:99:d0:e5:7e:88:11:0a:6e:10:76:
e9:7b:f1:28:f9:7e:ea:f6:dc:d8:ed:55:88:77:ad:6c:63:02:
fe:95:86:c1:d8:c5:4a:c0:aa:52:9e:44:e9:d2:8e:1e:b3:5e:
51:ad:83:f7:77:79:cd:65:62:e8:50:c0:d0:9c:67:b2:d4:67:
8b:36:14:21:e4:20:81:5e:1e:d8:e4:10:41:48:4b:e9:f6:b5:
1f:dd:c2:24:63:d9:df:e8:71:c5:ed:8a:ab:06:6c:b0:6a:3c:
2c:c2:d6:a1:f3:bb:c4:99:af:b2:f5:2a:cd:d3:00:30:79:09:
8a:fe:d8:2c:54:00:ff:3e:0f:98:64:05:76:d0:2f:5b:4b:cb:
82:f8:e7:33:e0:dd:eb:43:29:80:97:ba:da:45:2d:67:1c:cf:
34:09:d0:d2:ba:93:0c:56:cd:7f:21:e4:e0:cd:ef:91:b1:fe:
68:b2:a7:e6:8f:fc:31:95:5c:fc:28:73:90:d9:4f:e1:5f:e7:
db:95:48:a0:44:ba:ac:b5:57:31:0d:21:39:6e:bb:50:7b:0f:
ee:0b:5c:fc:b1:01:e9:8f:1d:38:15:e4:cf:48:80:16:47:eb:
ed:df:53:5d:65:48:43:2d:67:36:b4:17:34:0a:36:07:60:78:
92:f2:ba:cc
-----BEGIN CERTIFICATE-----
MIIGsTCCBZmgAwIBAgICCTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTkxOTcxMTAvBgNVBAUTKDY4MzVEREZCODQzOEQyNEJCNkM1OTc5MzE2RTU0ODkx
MDY2MDkwQTcwHhcNMjUwNjEyMjA1ODQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02OWE0NTI1MS0xMDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq9QgL4N8eyFG4C9qgjEteIcLJaHSGm8PT4nTZVHY58ACmW2e1WAlLPomDQuA
oxr92Lwu2gEoXJ7B0MZovri3GxQlFiUJdFnroAplItCYxB9EXkncplYQEcOl6wlF
0/G3zZbH7ot54gk4vvd/KXiHmTsTbt996+Yjq5cO9IUOA2SRhtNAcqGrHpA+54cF
RF+65W7QC08d48g7yr28dJ5vrUPtIW4dMQmwnLgb+43G5gJPbxyo5u1KXJeu0PUe
qW8YkSl/7hAacEqyOhrfoWENdfYi6RlBGoHY5D9TLKyXPTnRLKLIJAjSmjbmV63X
Ly+ZPv8M5I7YK+Rb5nzQR5Y3JwIDAQABo4ID1TCCA9EwHQYDVR0OBBYEFCDIX/XN
R6exfFlZyWFqffgZCfrOMB8GA1UdIwQYMBaAFGg13fuEONJLtsWXkxblSJEGYJCn
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTE5Ny84NEIyRUM5OEYy
N0QxMUVBOTQ1NkVFNjBDNEY5QUUwMi9hRFhkLTRRNDBrdTJ4WmVURnVWSWtRWmdr
S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FEWGQtNFE0MGt1MnhaZVRGdVZJa1FaZ2tLYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTkxOTcvODRCMkVDOThGMjdEMTFFQTk0NTZFRTYwQzRGOUFFMDIvMTRDMzg4QzIx
MTQzMTFGMEIzOTQ0RTY3QzRGOUFFMDIucm9hMIIBkgYIKwYBBQUHAQcBAf8EggGB
MIIBfTCCAVgEAgABMIIBUAMEBhs4gDAKAwMAGzkDAwAbOgMEARs+dAMEBBs/sAME
BmrIADALAwQGasjAAwMBasgDBAdqyoADBAZqy8ADBAdqzQAwCwMDAmrUAwQHatUA
MAsDAwFq1gMEAGrXyDAMAwQGattAAwQEattgMAwDBANq23gDBAJq24gwDAMEBGrb
kAMEA2rbsAMEBmrewDALAwQHbuCAAwMCbuADAwB1YAMEBnVhgAMEBXViwAMEBHVj
YAMEBXVjoDALAwMA37EDBAffsgADBAbfssADBAXfs4AwCwMDAN+1AwQG37WAAwQG
37ZAAwQC37akAwQC37asAwQC37a0AwQD37b4AwQH37gAMAwDBALfuQwDBAbfuQAD
BAbfuYADBAffvgADBAbfvsADBAHf4KwDAwDf4jALAwQH3+WAAwMA3+YDBAbf6UAw
CgMDAN/rAwMA3+wDAwDf7zAfBAIAAjAZAwYAJAFJABwDBwUkAUkAHyADBgMkAUkA
iDANBgkqhkiG9w0BAQsFAAOCAQEAD4xiI7xrdwyZ0OV+iBEKbhB26XvxKPl+6vbc
2O1ViHetbGMC/pWGwdjFSsCqUp5E6dKOHrNeUa2D93d5zWVi6FDA0JxnstRnizYU
IeQggV4e2OQQQUhL6fa1H93CJGPZ3+hxxe2KqwZssGo8LMLWofO7xJmvsvUqzdMA
MHkJiv7YLFQA/z4PmGQFdtAvW0vLgvjnM+Dd60MpgJe62kUtZxzPNAnQ0rqTDFbN
fyHk4M3vkbH+aLKn5o/8MZVc/ChzkNlP4V/n25VIoES6rLVXMQ0hOW67UHsP7gtc
/LEB6Y8dOBXkz0iAFkfr7d9TXWVIQy1nNrQXNAo2B2B4kvK6zA==
-----END CERTIFICATE-----
Generated at Sat Mar 14 22:58:26 2026 by rpki-client