Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa
File: B32F80267BD111EBBB223C84C4F9AE02.roa (raw, json)
Hash identifier: bvumtKmjydpds260GSE3ZN+98kVYT+P1pSSWGh64AWg=
Subject key identifier: C0:E8:F3:FD:3C:59:A8:3A:27:56:E6:60:24:16:95:C9:28:5B:C4:16
Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3
Certificate serial: 0889
Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa
Signing time: Wed 03 Jun 2026 10:00:13 +0000
ROA not before: Wed 03 Jun 2026 10:00:13 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 21859
IP address blocks: 129.227.17.0/24 maxlen: 24
129.227.18.0/24 maxlen: 24
129.227.19.0/24 maxlen: 24
129.227.29.0/24 maxlen: 24
129.227.30.0/24 maxlen: 24
129.227.31.0/24 maxlen: 24
129.227.63.0/24 maxlen: 24
129.227.176.0/23 maxlen: 24
129.227.192.0/24 maxlen: 24
129.227.193.0/24 maxlen: 24
129.227.194.0/23 maxlen: 24
156.59.16.0/22 maxlen: 24
156.59.37.0/24 maxlen: 24
156.59.48.0/23 maxlen: 24
156.59.50.0/23 maxlen: 24
156.59.52.0/22 maxlen: 24
156.59.73.0/24 maxlen: 24
156.59.80.0/21 maxlen: 24
156.59.94.0/23 maxlen: 24
156.59.108.0/24 maxlen: 24
156.59.123.0/24 maxlen: 24
156.59.128.0/21 maxlen: 24
156.59.136.0/21 maxlen: 24
156.59.146.0/24 maxlen: 24
156.59.179.0/24 maxlen: 24
156.59.216.0/24 maxlen: 24
156.59.224.0/24 maxlen: 24
156.59.225.0/24 maxlen: 24
156.59.241.0/24 maxlen: 24
156.59.246.0/23 maxlen: 24
156.59.255.0/24 maxlen: 24
162.128.43.0/24 maxlen: 24
162.128.44.0/24 maxlen: 24
162.128.53.0/24 maxlen: 24
162.128.54.0/24 maxlen: 24
162.128.55.0/24 maxlen: 24
162.128.56.0/24 maxlen: 24
162.128.57.0/24 maxlen: 24
162.128.58.0/24 maxlen: 24
162.128.59.0/24 maxlen: 24
162.128.60.0/24 maxlen: 24
162.128.61.0/24 maxlen: 24
162.128.62.0/24 maxlen: 24
162.128.63.0/24 maxlen: 24
162.128.96.0/24 maxlen: 24
162.128.97.0/24 maxlen: 24
162.128.98.0/24 maxlen: 24
162.128.99.0/24 maxlen: 24
162.128.100.0/24 maxlen: 24
162.128.102.0/24 maxlen: 24
162.128.103.0/24 maxlen: 24
162.128.134.0/24 maxlen: 24
162.128.135.0/24 maxlen: 24
162.128.140.0/24 maxlen: 24
162.128.149.0/24 maxlen: 24
162.128.150.0/24 maxlen: 24
162.128.151.0/24 maxlen: 24
162.128.156.0/24 maxlen: 24
162.128.183.0/24 maxlen: 24
162.128.186.0/24 maxlen: 24
162.128.196.0/24 maxlen: 24
162.128.197.0/24 maxlen: 24
162.128.198.0/24 maxlen: 24
162.128.199.0/24 maxlen: 24
162.128.200.0/24 maxlen: 24
162.128.201.0/24 maxlen: 24
162.128.202.0/24 maxlen: 24
162.128.203.0/24 maxlen: 24
162.128.204.0/24 maxlen: 24
162.128.205.0/24 maxlen: 24
162.128.206.0/24 maxlen: 24
162.128.207.0/24 maxlen: 24
162.128.208.0/24 maxlen: 24
162.128.209.0/24 maxlen: 24
162.128.210.0/24 maxlen: 24
162.128.211.0/24 maxlen: 24
162.128.213.0/24 maxlen: 24
162.128.214.0/24 maxlen: 24
162.128.215.0/24 maxlen: 24
162.128.216.0/24 maxlen: 24
162.128.217.0/24 maxlen: 24
162.128.218.0/24 maxlen: 24
162.128.219.0/24 maxlen: 24
162.128.220.0/24 maxlen: 24
162.128.221.0/24 maxlen: 24
162.128.222.0/24 maxlen: 24
162.128.223.0/24 maxlen: 24
162.128.224.0/24 maxlen: 24
162.128.225.0/24 maxlen: 24
162.128.226.0/24 maxlen: 24
162.128.227.0/24 maxlen: 24
162.128.228.0/24 maxlen: 24
162.128.229.0/24 maxlen: 24
162.128.230.0/24 maxlen: 24
162.128.231.0/24 maxlen: 24
162.128.232.0/24 maxlen: 24
162.128.233.0/24 maxlen: 24
162.128.234.0/24 maxlen: 24
162.128.235.0/24 maxlen: 24
162.128.236.0/24 maxlen: 24
162.128.237.0/24 maxlen: 24
162.128.238.0/24 maxlen: 24
162.128.239.0/24 maxlen: 24
162.128.240.0/24 maxlen: 24
162.128.241.0/24 maxlen: 24
162.128.242.0/24 maxlen: 24
162.128.243.0/24 maxlen: 24
162.128.244.0/24 maxlen: 24
162.128.245.0/24 maxlen: 24
162.128.246.0/24 maxlen: 24
162.128.247.0/24 maxlen: 24
162.128.248.0/24 maxlen: 24
162.128.249.0/24 maxlen: 24
162.128.250.0/24 maxlen: 24
162.128.251.0/24 maxlen: 24
162.128.252.0/24 maxlen: 24
162.128.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl
rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Jun 2026 21:49:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2185 (0x889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3
Validity
Not Before: Jun 3 10:00:13 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=6a1ffb2d-8561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ba:07:7d:0b:da:02:22:bd:5f:9c:48:6d:40:
61:04:06:9c:51:88:92:20:68:bd:de:d8:ed:8b:29:
9a:b8:ce:43:54:aa:90:85:9e:8f:70:8a:95:30:8e:
1f:b4:7c:90:d5:e0:bd:05:70:83:97:ee:a7:a6:a6:
a3:ed:37:1a:22:a1:b5:e1:e9:50:4e:ca:20:39:a9:
f5:16:2d:39:c5:6e:61:8d:1b:26:f2:3e:8b:ad:d5:
77:22:33:2d:f2:cb:53:19:9b:32:80:97:13:df:e4:
a2:0c:12:9d:c6:4b:37:35:dc:bf:ad:af:26:04:66:
f4:c5:f0:76:46:d2:ce:cb:31:d5:02:af:55:58:90:
76:48:83:64:70:6d:85:ab:db:0b:73:53:c0:e0:6f:
a0:33:4d:74:8f:9b:4b:b8:d8:95:30:a8:ec:66:76:
7b:89:d3:54:ba:c5:22:a4:e2:ad:bc:df:4c:da:2b:
2c:69:6b:54:ff:26:1e:bf:72:a1:c8:11:8f:dd:30:
08:eb:f6:d9:fc:20:d0:fe:3b:86:b9:6d:e7:c8:51:
32:f2:44:f8:46:f6:83:91:2d:36:aa:16:56:5d:bc:
47:46:51:b4:37:2a:94:41:d4:b1:f3:eb:21:cf:f6:
d6:d3:9a:ac:c3:0c:5c:d3:27:ce:41:95:09:9d:3d:
98:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E8:F3:FD:3C:59:A8:3A:27:56:E6:60:24:16:95:C9:28:5B:C4:16
X509v3 Authority Key Identifier:
keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/B32F80267BD111EBBB223C84C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
129.227.17.0-129.227.19.255
129.227.29.0-129.227.31.255
129.227.63.0/24
129.227.176.0/23
129.227.192.0/22
156.59.16.0/22
156.59.37.0/24
156.59.48.0/21
156.59.73.0/24
156.59.80.0/21
156.59.94.0/23
156.59.108.0/24
156.59.123.0/24
156.59.128.0/20
156.59.146.0/24
156.59.179.0/24
156.59.216.0/24
156.59.224.0/23
156.59.241.0/24
156.59.246.0/23
156.59.255.0/24
162.128.43.0-162.128.44.255
162.128.53.0-162.128.63.255
162.128.96.0-162.128.100.255
162.128.102.0/23
162.128.134.0/23
162.128.140.0/24
162.128.149.0-162.128.151.255
162.128.156.0/24
162.128.183.0/24
162.128.186.0/24
162.128.196.0-162.128.211.255
162.128.213.0-162.128.252.255
162.128.254.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b8:df:a0:04:62:85:92:fa:d4:02:a7:c6:69:3e:a0:0a:0c:
be:76:8d:ce:7b:52:33:9d:c3:c8:3c:69:49:97:22:1a:8d:fa:
7b:61:ac:1a:70:4d:7f:61:0c:31:2f:ba:ad:bb:3e:20:bc:82:
c0:5e:0c:2d:aa:44:99:65:38:ae:c4:a2:9a:9d:af:22:a1:42:
f9:da:6e:d9:56:c9:5a:ef:e6:99:77:4f:0e:0c:21:b9:1f:10:
38:e8:e4:b8:88:e4:9e:71:a8:cd:4c:6a:fb:4d:c2:ac:8b:9b:
d2:ad:c7:6b:d4:09:19:be:28:5e:d5:c7:42:c1:35:63:c5:90:
d6:8a:c6:ba:ef:5a:e3:fd:3c:e1:b4:61:9b:c4:2e:cf:28:ae:
63:a4:9f:c8:7b:a3:f4:c1:f9:4f:1f:e0:cb:11:7f:c7:38:a0:
2c:7f:88:41:ba:07:80:c7:ce:4b:4b:e7:be:74:91:6f:db:99:
d7:03:e0:fe:52:fc:76:65:d8:8e:72:34:41:bc:69:6a:d1:ca:
8f:d2:7b:0a:11:94:d4:12:11:56:8d:5c:d7:64:47:46:b5:25:
d4:ab:5b:18:73:59:ed:33:46:6c:26:38:9c:bf:ef:b0:dd:62:
15:b1:cc:58:a5:1c:ab:6e:c0:5b:54:20:94:b4:31:34:bb:4b:
fb:c6:0c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 08:23:20 2026 by rpki-client