Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/79A169387CA811EFA20CC941C4F9AE02.roa
File: 79A169387CA811EFA20CC941C4F9AE02.roa (raw, json)
Hash identifier: lq/H7Ze5f7YYkgVfnG6XyqNmk5wGVRIH6uKHEP4UDzQ=
Subject key identifier: 2E:7A:F8:6B:E0:FD:CC:2D:DF:3F:4E:9D:63:39:81:3B:E6:F1:6B:6D
Certificate issuer: /CN=A91AE954/serialNumber=83AC168E49FB25EB76945A0BD146EA8B57BF09CC
Certificate serial: 0276
Authority key identifier: 83:AC:16:8E:49:FB:25:EB:76:94:5A:0B:D1:46:EA:8B:57:BF:09:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/79A169387CA811EFA20CC941C4F9AE02.roa
Signing time: Thu 11 Jun 2026 04:31:53 +0000
ROA not before: Thu 11 Jun 2026 04:31:53 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 4817
IP address blocks: 210.10.0.0/20 maxlen: 20
210.10.0.0/22 maxlen: 22
210.10.0.0/24 maxlen: 24
210.10.1.0/24 maxlen: 24
210.10.2.0/24 maxlen: 24
210.10.3.0/24 maxlen: 24
210.10.4.0/22 maxlen: 22
210.10.4.0/24 maxlen: 24
210.10.5.0/24 maxlen: 24
210.10.6.0/24 maxlen: 24
210.10.7.0/24 maxlen: 24
210.10.10.0/24 maxlen: 24
210.10.11.0/24 maxlen: 24
210.10.12.0/23 maxlen: 24
210.10.64.0/23 maxlen: 24
210.10.66.0/23 maxlen: 23
210.10.76.0/23 maxlen: 23
210.10.76.0/24 maxlen: 24
210.10.77.0/24 maxlen: 24
210.10.78.0/24 maxlen: 24
210.10.79.0/24 maxlen: 24
2400:79e0::/32 maxlen: 32
2400:79e0:8000::/40 maxlen: 40
2400:79e0:8030::/44 maxlen: 44
2400:79e0:8040::/44 maxlen: 44
2400:79e0:8050::/44 maxlen: 44
2400:79e0:8070::/44 maxlen: 44
2400:79e0:9000::/40 maxlen: 40
2400:79e0:9030::/44 maxlen: 44
2400:79e0:9040::/44 maxlen: 44
2400:79e0:9050::/44 maxlen: 44
2400:79e0:9070::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.crl
rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 18 Jun 2026 04:31:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 630 (0x276)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE954, serialNumber=83AC168E49FB25EB76945A0BD146EA8B57BF09CC
Validity
Not Before: Jun 11 04:31:53 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a2a3a39-fe4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:50:42:04:7b:fa:62:ea:f3:ef:af:0a:5f:
5c:a4:e5:94:a7:b4:c5:42:59:48:68:96:0f:20:4e:
7f:53:48:36:f7:ff:60:a2:92:04:b7:af:dd:6f:7e:
c7:db:e8:52:7f:ad:32:4a:fa:0c:fa:5b:97:9f:db:
ef:49:35:10:c4:87:a1:87:6e:dd:be:02:ef:1d:b6:
da:2c:62:a6:00:73:88:03:7f:f7:a3:aa:2c:7d:b2:
e6:62:1b:a8:33:01:12:4b:8c:ae:18:57:89:3e:d7:
af:19:8a:38:8f:17:21:53:2b:e2:19:3e:40:62:8d:
10:c8:22:76:77:68:94:6a:be:53:00:84:2b:df:d8:
ee:66:fc:f2:83:db:37:df:9e:8d:96:bb:37:00:27:
f6:a2:8c:ac:33:17:57:e0:1e:73:a8:47:1d:30:91:
05:5c:71:0b:e2:ff:3b:de:35:b4:83:62:27:3b:ec:
24:50:63:3a:1d:94:ee:bb:c7:1f:1c:12:83:85:4b:
97:a1:8a:68:10:e6:b2:fe:44:a1:24:78:13:f2:75:
a1:be:24:60:50:0a:b0:f3:1c:25:00:0d:3b:ff:14:
25:bf:a1:f7:59:68:13:42:72:47:41:07:d8:1e:60:
f2:62:19:64:7e:68:bb:a3:57:49:cf:64:5a:84:1b:
02:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7A:F8:6B:E0:FD:CC:2D:DF:3F:4E:9D:63:39:81:3B:E6:F1:6B:6D
X509v3 Authority Key Identifier:
keyid:83:AC:16:8E:49:FB:25:EB:76:94:5A:0B:D1:46:EA:8B:57:BF:09:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/79A169387CA811EFA20CC941C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
210.10.0.0/20
210.10.64.0/22
210.10.76.0/22
IPv6:
2400:79e0::/32
Signature Algorithm: sha256WithRSAEncryption
3c:a5:57:bc:f5:2b:47:7b:f1:4f:18:8d:c9:4e:3d:96:13:c0:
5e:31:4e:c4:2a:2f:ef:9a:e0:a5:cb:4a:9e:1e:41:11:34:10:
b7:54:9e:6b:87:0b:27:b9:79:24:25:17:b5:2c:96:c5:1b:51:
59:b0:bc:c0:d4:c6:92:37:74:5c:b6:a6:e2:66:39:36:e7:c7:
bc:a1:72:8a:12:dc:54:0e:bb:bb:98:d1:39:be:58:c6:d6:b5:
c2:85:d7:33:cc:f6:9e:c8:65:bf:89:c9:ce:28:54:40:b8:e5:
68:45:37:70:ca:98:72:3d:5d:31:f1:3b:2a:a9:cf:dc:38:60:
3b:28:cb:e1:c0:62:27:cc:c4:ac:d0:71:8b:1e:b2:9b:fe:14:
03:be:6d:de:27:d8:3d:4c:b6:33:19:2e:2a:7d:fd:f4:6c:1b:
4f:cf:f3:dc:99:e4:20:02:05:b9:d0:d8:70:36:99:9c:a3:49:
8a:95:2e:ca:27:2a:c5:2d:43:6a:31:75:10:a5:76:42:77:08:
e5:31:c5:4b:4d:19:7e:41:01:88:e7:cd:c4:84:6e:a5:11:13:
f4:70:d9:55:4f:dd:78:36:e8:a1:80:56:45:d5:59:c6:b4:bb:
38:7f:63:da:24:07:7a:c5:46:26:c3:11:9d:b2:b1:05:60:82:
4e:5c:3a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:52:03 2026 by rpki-client