Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117394/4F59186A1D6F11E29B5446B108B02CD2/90F73AF40E2511EBBB7F993CC4F9AE02.roa
File: 90F73AF40E2511EBBB7F993CC4F9AE02.roa (raw, json)
Hash identifier: YjGvu7hS1PYqJK/ZSd5JlS+EEqqiFgJ4Qzr5idGzW0I=
Subject key identifier: 4C:1A:0F:C3:CF:35:7D:29:EA:C2:7E:A6:A7:56:42:A7:E6:3F:33:93
Certificate issuer: /CN=A9117394/serialNumber=AAFAAE3C5703B39337FD3D7A9666C58CB8C3B509
Certificate serial: 3610
Authority key identifier: AA:FA:AE:3C:57:03:B3:93:37:FD:3D:7A:96:66:C5:8C:B8:C3:B5:09
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qvquPFcDs5M3_T16lmbFjLjDtQk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9117394/4F59186A1D6F11E29B5446B108B02CD2/90F73AF40E2511EBBB7F993CC4F9AE02.roa
Signing time: Mon 02 Mar 2026 04:52:58 +0000
ROA not before: Tue 02 Dec 2025 14:40:06 +0000
ROA not after: Sun 31 Jan 2027 00:00:00 +0000
asID: 19905
IP address blocks: 14.1.194.0/24 maxlen: 24
14.1.195.0/24 maxlen: 24
14.1.196.0/23 maxlen: 23
14.1.200.0/24 maxlen: 24
14.1.201.0/24 maxlen: 24
14.1.202.0/24 maxlen: 24
14.1.203.0/24 maxlen: 24
14.1.204.0/24 maxlen: 24
14.1.205.0/24 maxlen: 24
14.1.206.0/24 maxlen: 24
14.1.207.0/24 maxlen: 24
14.1.208.0/24 maxlen: 24
14.1.209.0/24 maxlen: 24
14.1.210.0/24 maxlen: 24
14.1.211.0/24 maxlen: 24
14.1.212.0/24 maxlen: 24
14.1.213.0/24 maxlen: 24
14.1.214.0/24 maxlen: 24
14.1.215.0/24 maxlen: 24
14.1.216.0/24 maxlen: 24
14.1.217.0/24 maxlen: 24
14.1.218.0/24 maxlen: 24
14.1.219.0/24 maxlen: 24
14.1.220.0/24 maxlen: 24
14.1.221.0/24 maxlen: 24
14.1.222.0/24 maxlen: 24
14.1.223.0/24 maxlen: 24
14.1.224.0/24 maxlen: 24
14.1.225.0/24 maxlen: 24
14.1.226.0/24 maxlen: 24
14.1.227.0/24 maxlen: 24
183.78.0.0/24 maxlen: 24
183.78.1.0/24 maxlen: 24
183.78.2.0/24 maxlen: 24
183.78.3.0/24 maxlen: 24
183.78.4.0/24 maxlen: 24
183.78.10.0/24 maxlen: 24
183.78.12.0/24 maxlen: 24
183.78.44.0/24 maxlen: 24
183.78.45.0/24 maxlen: 24
183.78.46.0/24 maxlen: 24
183.78.47.0/24 maxlen: 24
183.78.51.0/24 maxlen: 24
183.78.52.0/24 maxlen: 24
183.78.53.0/24 maxlen: 24
183.78.54.0/24 maxlen: 24
183.78.55.0/24 maxlen: 24
183.78.56.0/24 maxlen: 24
183.78.57.0/24 maxlen: 24
183.78.58.0/24 maxlen: 24
183.78.59.0/24 maxlen: 24
183.78.60.0/24 maxlen: 24
183.78.61.0/24 maxlen: 24
183.78.62.0/24 maxlen: 24
183.78.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9117394/4F59186A1D6F11E29B5446B108B02CD2/qvquPFcDs5M3_T16lmbFjLjDtQk.crl
rsync://rpki.apnic.net/member_repository/A9117394/4F59186A1D6F11E29B5446B108B02CD2/qvquPFcDs5M3_T16lmbFjLjDtQk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qvquPFcDs5M3_T16lmbFjLjDtQk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 14:19:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13840 (0x3610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9117394, serialNumber=AAFAAE3C5703B39337FD3D7A9666C58CB8C3B509
Validity
Not Before: Dec 2 14:40:06 2025 GMT
Not After : Jan 31 00:00:00 2027 GMT
Subject: CN=69a517aa-1af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:78:69:5c:2a:f8:56:29:b8:0d:78:e0:b7:
79:d9:51:1d:23:63:81:1e:0b:28:5f:ef:da:d0:8d:
25:a8:1e:1e:86:a0:1a:74:b4:d8:8e:1b:01:34:bd:
05:77:01:fc:5c:21:67:82:3b:e9:58:b3:fc:96:2a:
80:ea:5a:6f:c8:15:06:ec:63:b4:9c:cb:16:a2:a8:
08:39:f2:97:d1:94:db:4d:c1:30:4f:26:73:52:8d:
a0:9c:3b:c1:c0:e7:2c:84:e2:f5:c1:7f:9d:50:3f:
69:32:0b:be:aa:3b:0d:eb:37:41:04:81:56:02:84:
4e:29:94:24:66:4f:fc:ac:e2:22:8e:e0:6e:c7:6a:
49:3c:02:96:59:b0:f1:7c:37:7d:a6:43:4d:3f:c2:
1c:b6:81:95:05:48:3c:7b:17:70:c4:c0:33:f0:3f:
39:ee:f3:6d:2c:ff:1a:76:f6:20:0a:8e:f8:aa:ee:
67:5d:c1:88:bf:8d:70:20:a6:35:30:3f:f7:07:87:
fa:ef:c4:8b:38:d7:9e:71:8d:10:35:97:bc:cd:89:
a4:d2:98:a4:1a:24:b4:44:b3:1f:f3:8b:eb:19:10:
d1:c0:bc:5f:23:88:74:22:19:7c:4a:09:52:9b:db:
c9:5f:bc:a5:6d:9f:e7:ec:a5:54:87:b2:11:17:27:
49:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:1A:0F:C3:CF:35:7D:29:EA:C2:7E:A6:A7:56:42:A7:E6:3F:33:93
X509v3 Authority Key Identifier:
keyid:AA:FA:AE:3C:57:03:B3:93:37:FD:3D:7A:96:66:C5:8C:B8:C3:B5:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9117394/4F59186A1D6F11E29B5446B108B02CD2/qvquPFcDs5M3_T16lmbFjLjDtQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qvquPFcDs5M3_T16lmbFjLjDtQk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117394/4F59186A1D6F11E29B5446B108B02CD2/90F73AF40E2511EBBB7F993CC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
14.1.194.0-14.1.197.255
14.1.200.0-14.1.227.255
183.78.0.0-183.78.4.255
183.78.10.0/24
183.78.12.0/24
183.78.44.0/22
183.78.51.0-183.78.63.255
Signature Algorithm: sha256WithRSAEncryption
c0:50:92:fb:81:fd:1b:2a:73:06:fe:4f:2f:0d:53:84:14:a5:
b1:ef:2e:3d:b1:b2:75:75:40:d9:37:eb:e1:35:b7:30:96:0e:
45:77:cb:cb:85:bb:1c:0c:ae:33:2c:e2:d4:ac:88:b1:9a:b5:
11:74:63:c6:16:39:95:19:34:3e:61:00:f8:ed:6f:96:4c:48:
56:59:4a:63:16:41:78:a3:b4:2d:bd:fd:5b:fc:d1:50:31:97:
0b:7f:fa:1e:e7:fc:a2:66:db:27:c5:3e:79:01:ff:c9:7d:3f:
c9:3f:2a:fd:8f:8d:84:6a:08:90:10:8a:28:0b:80:49:4b:60:
ee:2c:ac:fa:29:b3:f0:a7:5a:50:3a:9c:95:c9:84:b4:72:30:
ac:1e:ca:7c:da:b5:70:d3:0d:e6:d5:ee:02:7b:a3:ea:e0:a4:
90:31:f6:78:19:ec:ac:cc:1c:bb:0d:33:b4:d7:c2:48:eb:c8:
11:a4:9f:e3:77:08:a0:1b:47:f9:c3:ba:35:59:c5:ed:af:00:
3b:d9:fe:42:69:ee:38:97:e8:88:a5:31:22:64:01:e8:b7:87:
9f:b5:c7:86:3d:d6:c1:82:a8:76:a3:5a:1b:91:22:3c:64:13:
70:2f:c7:98:89:0c:ad:6f:db:d2:89:e6:19:e1:47:db:44:31:
14:df:31:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:26:03 2026 by rpki-client