Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/E180123A500A11F09FCC5C46C4F9AE02.roa
File: E180123A500A11F09FCC5C46C4F9AE02.roa (raw, json)
Hash identifier: PvqNT5zkcCGtdh3YXohGg6bWjM2xobJ1FhoWqXmpWM0=
Subject key identifier: D2:A5:4D:E3:05:54:84:08:AA:8C:CB:87:20:F9:B7:5C:77:9F:CE:0D
Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806
Certificate serial: 36A2
Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/E180123A500A11F09FCC5C46C4F9AE02.roa
Signing time: Fri 12 Jun 2026 15:12:51 +0000
ROA not before: Fri 12 Jun 2026 15:12:51 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 132608
IP address blocks: 103.248.204.0/22 maxlen: 23
103.248.204.0/24 maxlen: 24
103.248.205.0/24 maxlen: 24
103.248.206.0/24 maxlen: 24
103.248.207.0/24 maxlen: 24
114.130.4.0/23 maxlen: 23
114.130.4.0/24 maxlen: 24
114.130.5.0/24 maxlen: 24
114.130.8.0/24 maxlen: 24
114.130.10.0/24 maxlen: 24
114.130.31.0/24 maxlen: 24
114.130.36.0/22 maxlen: 22
114.130.36.0/24 maxlen: 24
114.130.37.0/24 maxlen: 24
114.130.41.0/24 maxlen: 24
114.130.51.0/24 maxlen: 24
114.130.52.0/23 maxlen: 24
114.130.56.0/23 maxlen: 23
114.130.58.0/24 maxlen: 24
114.130.68.0/24 maxlen: 24
114.130.71.0/24 maxlen: 24
114.130.75.0/24 maxlen: 24
114.130.80.0/24 maxlen: 24
114.130.81.0/24 maxlen: 24
114.130.83.0/24 maxlen: 24
114.130.84.0/24 maxlen: 24
114.130.85.0/24 maxlen: 24
114.130.86.0/24 maxlen: 24
114.130.89.0/24 maxlen: 24
114.130.92.0/23 maxlen: 24
114.130.94.0/24 maxlen: 24
114.130.95.0/24 maxlen: 24
114.130.96.0/23 maxlen: 24
114.130.98.0/23 maxlen: 24
114.130.120.0/24 maxlen: 24
114.130.223.0/24 maxlen: 24
2403:ec00:45::/48 maxlen: 48
2403:ec00:f000::/36 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl
rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 19 Jun 2026 14:52:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13986 (0x36a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AABB1, serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806
Validity
Not Before: Jun 12 15:12:51 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a2c21f3-ac98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:84:02:3e:31:dd:5f:8c:5a:78:72:2d:55:77:
04:80:95:73:e2:32:f9:10:29:52:a6:cd:dc:92:e4:
93:ec:f4:24:39:bf:29:ed:a4:7f:92:60:2f:c7:1c:
ec:9c:3f:35:f8:5e:a8:03:ec:79:46:55:d0:26:05:
0e:ca:34:0c:09:b4:32:c1:1c:9a:b7:48:9d:fe:61:
6d:d0:26:f0:2d:90:63:a8:88:42:03:e6:38:02:1a:
c3:e6:6d:86:8f:2d:8b:c0:2d:c0:19:af:4a:7b:44:
82:23:cb:b7:33:5f:5f:23:83:ae:a6:40:48:1b:8f:
85:00:e2:39:c8:ba:7f:ef:1d:5b:90:5f:73:0e:f1:
8a:7f:5f:4e:9f:c2:da:3a:56:df:b7:4d:c3:2f:5a:
37:e5:7f:19:b8:e8:36:ee:3d:73:32:5b:12:16:87:
6c:d6:80:f6:f3:6c:cb:01:81:2f:62:1c:41:fe:44:
e1:60:43:2e:88:cb:2c:86:24:eb:49:4f:2f:f7:82:
ff:7b:e6:89:82:ac:03:d5:37:25:4d:66:bc:e9:ae:
ba:b1:a1:74:b7:2e:76:ba:97:a2:2c:e8:ea:98:89:
99:76:c9:0c:8d:30:a9:92:6f:89:ca:55:58:96:e7:
3c:25:24:61:82:97:ad:a0:c0:d1:b0:d7:24:70:b4:
3d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A5:4D:E3:05:54:84:08:AA:8C:CB:87:20:F9:B7:5C:77:9F:CE:0D
X509v3 Authority Key Identifier:
keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/E180123A500A11F09FCC5C46C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.248.204.0/22
114.130.4.0/23
114.130.8.0/24
114.130.10.0/24
114.130.31.0/24
114.130.36.0/22
114.130.41.0/24
114.130.51.0-114.130.53.255
114.130.56.0-114.130.58.255
114.130.68.0/24
114.130.71.0/24
114.130.75.0/24
114.130.80.0/23
114.130.83.0-114.130.86.255
114.130.89.0/24
114.130.92.0-114.130.99.255
114.130.120.0/24
114.130.223.0/24
IPv6:
2403:ec00:45::/48
2403:ec00:f000::/36
Signature Algorithm: sha256WithRSAEncryption
6d:cb:0e:0d:5a:2d:7f:30:6d:f2:c4:4c:a6:51:91:ea:39:0a:
1f:15:de:4e:63:04:3b:1f:81:ae:11:2b:42:8a:f3:39:65:e5:
fb:ac:ff:42:97:81:23:d7:d6:cd:35:6b:eb:82:e9:bd:4a:81:
50:23:b5:df:dc:33:b5:4f:97:46:99:ef:ce:f5:1e:37:c1:b1:
75:5e:29:95:72:85:ca:87:0f:19:3a:c7:00:18:b1:97:f0:de:
d3:cd:fd:90:86:5f:35:70:06:97:e2:0f:d5:1a:40:27:8b:ea:
9e:9d:f6:3a:e2:88:b1:d2:ab:ca:98:67:e5:fb:17:11:e5:f7:
4a:ff:79:30:50:2c:fb:07:eb:ac:1c:5f:ab:35:d5:9d:7c:3a:
49:e1:c6:81:d5:cf:a9:24:90:ad:59:99:21:61:fb:fe:ed:22:
e5:0e:d4:a1:ac:a2:75:29:ce:01:9a:3f:5e:9d:5b:a2:8f:e7:
fe:aa:b3:9d:38:f9:16:b1:79:a7:37:89:14:96:a0:30:e9:a9:
0b:0d:43:12:38:7d:0a:1a:3b:40:54:1f:d4:89:08:9e:7b:35:
05:a4:1c:9c:cb:80:cf:26:9b:60:7b:4a:ae:85:3f:0b:90:15:
ba:66:ad:72:1a:23:3e:51:f7:9a:b9:37:87:8a:03:1b:6f:23:
2e:44:c6:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 19:15:15 2026 by rpki-client