Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/5113BF7CFE6011EA9D63505CC4F9AE02.roa
File: 5113BF7CFE6011EA9D63505CC4F9AE02.roa (raw, json)
Hash identifier: P+6IlyX7VPwDe0x7wL0hnumsPRthTqu2byNn+pYjd1M=
Subject key identifier: A1:57:87:38:E3:78:6C:EC:95:0B:5E:24:A5:D6:13:37:45:0C:AE:76
Certificate issuer: /CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2
Certificate serial: 3568
Authority key identifier: 96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/5113BF7CFE6011EA9D63505CC4F9AE02.roa
Signing time: Fri 24 Oct 2025 14:30:26 +0000
ROA not before: Fri 24 Oct 2025 14:30:26 +0000
ROA not after: Wed 30 Dec 2026 00:00:00 +0000
asID: 23956
IP address blocks: 118.179.32.0/19 maxlen: 24
118.179.64.0/18 maxlen: 24
118.179.128.0/18 maxlen: 22
118.179.128.0/21 maxlen: 24
118.179.136.0/23 maxlen: 24
118.179.140.0/22 maxlen: 24
118.179.144.0/20 maxlen: 24
118.179.160.0/19 maxlen: 24
118.179.192.0/19 maxlen: 24
202.4.96.0/19 maxlen: 24
2405:7600::/32 maxlen: 36
2405:7600::/48 maxlen: 48
2405:7600:1::/48 maxlen: 48
2405:7600:2::/48 maxlen: 48
2405:7600:7::/48 maxlen: 48
2405:7600:9::/48 maxlen: 48
2405:7600:a::/48 maxlen: 48
2405:7600:b::/48 maxlen: 48
2405:7600:c::/48 maxlen: 48
2405:7600:d::/48 maxlen: 48
2405:7600:e::/48 maxlen: 48
2405:7600:f::/48 maxlen: 48
2405:7600:10::/48 maxlen: 48
2405:7600:11::/48 maxlen: 48
2405:7600:12::/48 maxlen: 48
2405:7600:13::/48 maxlen: 48
2405:7600:14::/48 maxlen: 48
2405:7600:15::/48 maxlen: 48
2405:7600:16::/48 maxlen: 48
2405:7600:17::/48 maxlen: 48
2405:7600:18::/48 maxlen: 48
2405:7600:19::/48 maxlen: 48
2405:7600:1a::/48 maxlen: 48
2405:7600:1b::/48 maxlen: 48
2405:7600:1c::/48 maxlen: 48
2405:7600:1d::/48 maxlen: 48
2405:7600:1e::/48 maxlen: 48
2405:7600:1f::/48 maxlen: 48
2405:7600:20::/48 maxlen: 48
2405:7600:21::/48 maxlen: 48
2405:7600:22::/48 maxlen: 48
2405:7600:23::/48 maxlen: 48
2405:7600:24::/48 maxlen: 48
2405:7600:25::/48 maxlen: 48
2405:7600:26::/48 maxlen: 48
2405:7600:27::/48 maxlen: 48
2405:7600:28::/48 maxlen: 48
2405:7600:29::/48 maxlen: 48
2405:7600:2a::/48 maxlen: 48
2405:7600:2b::/48 maxlen: 48
2405:7600:2c::/48 maxlen: 48
2405:7600:2d::/48 maxlen: 48
2405:7600:2e::/48 maxlen: 48
2405:7600:2f::/48 maxlen: 48
2405:7600:30::/48 maxlen: 48
2405:7600:31::/48 maxlen: 48
2405:7600:32::/48 maxlen: 48
2405:7600:33::/48 maxlen: 48
2405:7600:34::/48 maxlen: 48
2405:7600:35::/48 maxlen: 48
2405:7600:36::/48 maxlen: 48
2405:7600:37::/48 maxlen: 48
2405:7600:38::/48 maxlen: 48
2405:7600:39::/48 maxlen: 48
2405:7600:3a::/48 maxlen: 48
2405:7600:3b::/48 maxlen: 48
2405:7600:3c::/48 maxlen: 48
2405:7600:3d::/48 maxlen: 48
2405:7600:3e::/48 maxlen: 48
2405:7600:3f::/48 maxlen: 48
2405:7600:40::/48 maxlen: 48
2405:7600:41::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl
rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 11 Nov 2025 14:26:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13672 (0x3568)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EFDE, serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2
Validity
Not Before: Oct 24 14:30:26 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=68fb8d82-cad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9b:63:c5:d2:4f:d4:06:91:1d:d0:0f:8b:b3:
97:84:fc:6b:77:fc:1d:4a:6c:eb:cd:aa:8b:60:68:
3d:c8:b3:8d:00:09:68:e6:94:d3:2e:0f:b0:da:fc:
86:b1:c9:39:3e:9b:72:c0:4e:41:65:80:4d:4d:63:
eb:34:44:b2:be:f6:72:b1:b5:b6:a8:61:26:e8:9b:
cd:8a:e5:7e:b4:ea:2d:d3:84:9b:b4:4c:56:b7:99:
b0:39:a4:c4:85:08:84:38:b1:0e:29:60:9b:db:84:
84:76:8a:02:8f:fb:52:df:5f:3d:30:17:3a:d5:9f:
69:df:66:fa:33:d7:03:b6:15:f8:ed:40:95:d2:c8:
08:4a:01:c3:f1:2e:98:3a:3f:0f:a4:e8:b8:fd:ec:
fe:a5:bd:f6:30:27:04:fb:57:7f:57:83:37:03:97:
f6:c0:e2:d4:6f:c0:c1:58:89:a8:f9:05:58:98:04:
b8:52:df:7e:47:74:f2:0c:62:53:78:22:0c:da:c9:
18:38:d3:c9:67:b8:12:30:47:40:af:45:26:f3:02:
75:26:49:dd:02:2a:2f:7e:f1:09:83:36:e3:9b:5e:
71:a2:31:30:34:8f:ee:b5:b9:94:8e:37:8d:70:3a:
46:d6:51:d1:79:28:90:f3:3c:d7:ea:bd:fa:fa:a9:
41:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:57:87:38:E3:78:6C:EC:95:0B:5E:24:A5:D6:13:37:45:0C:AE:76
X509v3 Authority Key Identifier:
keyid:96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/5113BF7CFE6011EA9D63505CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
118.179.32.0-118.179.223.255
202.4.96.0/19
IPv6:
2405:7600::/32
Signature Algorithm: sha256WithRSAEncryption
d6:26:97:f2:e1:cc:4d:ea:0e:23:45:a0:07:44:38:9e:de:35:
60:70:8d:87:2d:8e:87:62:d9:1b:a6:6a:e1:21:e3:0e:fc:20:
69:65:a6:48:6d:ff:6a:16:ab:d5:4e:05:3e:99:1b:8b:a0:14:
b8:8a:cb:e9:7f:6c:ac:b5:e9:c2:79:57:9e:1f:88:ca:2e:03:
4e:ad:15:6a:89:e0:3d:5c:23:d6:77:4f:0a:8c:53:e4:4f:ed:
f2:a1:b9:0d:fb:ba:56:26:ac:bd:95:ab:bd:9d:5b:c6:46:6c:
47:10:21:e6:62:eb:a3:bc:8e:7f:1a:06:b5:07:ae:7d:f3:34:
e5:f5:93:ed:1f:ba:d8:dc:8a:0d:63:84:58:3c:3a:1a:8c:bc:
cc:ff:b8:22:84:f0:23:ab:9a:9e:4b:d7:46:35:44:ad:fc:1b:
87:1f:7c:43:7e:4d:f5:c8:b9:53:6a:27:99:c8:52:8a:cb:d6:
ae:83:0c:11:8f:f8:56:6f:b7:1a:73:5c:b4:8d:b3:ce:8d:21:
20:cd:cf:46:92:13:a9:da:93:c1:3d:70:01:97:f2:89:79:81:
ae:14:47:dc:7b:65:e0:ee:57:41:51:7e:65:d7:d4:f6:3e:49:
9d:a9:12:ca:c6:4d:0c:e9:7a:f2:56:80:73:ab:31:6b:10:b2:
f6:9f:a0:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:26:14 2025 by rpki-client