Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/AFA9D654D9F711EEA1409D5DC4F9AE02.roa
File: AFA9D654D9F711EEA1409D5DC4F9AE02.roa (raw, json)
Hash identifier: 157ABxUfeCDadV2j9/u0VY6yaJP4yo2wFFqe5ja4Lwg=
Subject key identifier: 22:4E:24:98:85:68:C6:63:2F:25:6F:24:DD:F0:A6:AE:0C:FA:86:DC
Certificate issuer: /CN=A911BCF8/serialNumber=889332A4E25C21E89BFA43FA002D2D1F0AD7E797
Certificate serial: 0D08
Authority key identifier: 88:93:32:A4:E2:5C:21:E8:9B:FA:43:FA:00:2D:2D:1F:0A:D7:E7:97
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iJMypOJcIeib-kP6AC0tHwrX55c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/AFA9D654D9F711EEA1409D5DC4F9AE02.roa
Signing time: Mon 02 Mar 2026 14:49:09 +0000
ROA not before: Mon 26 May 2025 13:49:46 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 134113
IP address blocks: 27.123.252.0/22 maxlen: 24
103.52.134.0/23 maxlen: 24
103.71.46.0/23 maxlen: 24
2403:140::/32 maxlen: 32
2403:140::/48 maxlen: 48
2403:140:1::/48 maxlen: 48
2403:140:2::/48 maxlen: 48
2403:140:3::/48 maxlen: 48
2403:140:4::/48 maxlen: 48
2403:140:5::/48 maxlen: 48
2403:140:6::/48 maxlen: 48
2403:140:7::/48 maxlen: 48
2403:140:8::/48 maxlen: 48
2403:140:9::/48 maxlen: 48
2403:140:a::/48 maxlen: 48
2403:140:b::/48 maxlen: 48
2403:140:c::/48 maxlen: 48
2403:140:d::/48 maxlen: 48
2403:140:e::/48 maxlen: 48
2403:140:f::/48 maxlen: 48
2403:140:10::/48 maxlen: 48
2403:140:103::/48 maxlen: 48
2403:140:121::/48 maxlen: 48
2403:140:1111::/48 maxlen: 48
2403:140:8888::/48 maxlen: 48
2403:140:ff00::/40 maxlen: 40
2403:140:ff00::/48 maxlen: 48
2403:140:ff01::/48 maxlen: 48
2403:140:ff02::/48 maxlen: 48
2403:140:ff03::/48 maxlen: 48
2403:140:ff04::/48 maxlen: 48
2403:140:ff05::/48 maxlen: 48
2403:140:ff06::/48 maxlen: 48
2403:140:ff07::/48 maxlen: 48
2403:140:ff08::/48 maxlen: 48
2403:140:ff09::/48 maxlen: 48
2403:140:ff0a::/48 maxlen: 48
2403:140:ff0b::/48 maxlen: 48
2403:140:ff0c::/48 maxlen: 48
2403:140:ff0d::/48 maxlen: 48
2403:140:ff0e::/48 maxlen: 48
2403:140:ff0f::/48 maxlen: 48
2403:140:ff10::/48 maxlen: 48
2403:140:ff11::/48 maxlen: 48
2403:140:ff12::/48 maxlen: 48
2403:140:ff13::/48 maxlen: 48
2403:140:ff14::/48 maxlen: 48
2403:140:ff15::/48 maxlen: 48
2403:140:ff16::/48 maxlen: 48
2403:140:ff17::/48 maxlen: 48
2403:140:ff18::/48 maxlen: 48
2403:140:ff19::/48 maxlen: 48
2403:140:ff1a::/48 maxlen: 48
2403:140:ff1b::/48 maxlen: 48
2403:140:ff1c::/48 maxlen: 48
2403:140:ff1d::/48 maxlen: 48
2403:140:ff1e::/48 maxlen: 48
2403:140:ff1f::/48 maxlen: 48
2403:140:ff20::/48 maxlen: 48
2403:140:ff21::/48 maxlen: 48
2403:140:ff22::/48 maxlen: 48
2403:140:ff23::/48 maxlen: 48
2403:140:ff24::/48 maxlen: 48
2403:140:ff25::/48 maxlen: 48
2403:140:ff26::/48 maxlen: 48
2403:140:ff27::/48 maxlen: 48
2403:140:ff28::/48 maxlen: 48
2403:140:ff29::/48 maxlen: 48
2403:140:ff2a::/48 maxlen: 48
2403:140:ff2b::/48 maxlen: 48
2403:140:ff2c::/48 maxlen: 48
2403:140:ff2d::/48 maxlen: 48
2403:140:ff2e::/48 maxlen: 48
2403:140:ff2f::/48 maxlen: 48
2403:140:ff30::/48 maxlen: 48
2403:140:ff31::/48 maxlen: 48
2403:140:ff32::/48 maxlen: 48
2403:140:ff33::/48 maxlen: 48
2403:140:ff34::/48 maxlen: 48
2403:140:ff35::/48 maxlen: 48
2403:140:ff36::/48 maxlen: 48
2403:140:ff37::/48 maxlen: 48
2403:140:ff38::/48 maxlen: 48
2403:140:ff39::/48 maxlen: 48
2403:140:ff3a::/48 maxlen: 48
2403:140:ff3b::/48 maxlen: 48
2403:140:ff3c::/48 maxlen: 48
2403:140:ff3d::/48 maxlen: 48
2403:140:ff3e::/48 maxlen: 48
2403:140:ff3f::/48 maxlen: 48
2403:140:ff40::/48 maxlen: 48
2403:140:ff41::/48 maxlen: 48
2403:140:ff42::/48 maxlen: 48
2403:140:ff43::/48 maxlen: 48
2403:140:ff44::/48 maxlen: 48
2403:140:ff45::/48 maxlen: 48
2403:140:ff46::/48 maxlen: 48
2403:140:ff47::/48 maxlen: 48
2403:140:ff48::/48 maxlen: 48
2403:140:ff49::/48 maxlen: 48
2403:140:ff4a::/48 maxlen: 48
2403:140:ff4b::/48 maxlen: 48
2403:140:ff4c::/48 maxlen: 48
2403:140:ff4d::/48 maxlen: 48
2403:140:ff4e::/48 maxlen: 48
2403:140:ff4f::/48 maxlen: 48
2403:140:ff50::/48 maxlen: 48
2403:140:ff51::/48 maxlen: 48
2403:140:ff52::/48 maxlen: 48
2403:140:ff53::/48 maxlen: 48
2403:140:ff54::/48 maxlen: 48
2403:140:ff55::/48 maxlen: 48
2403:140:ff56::/48 maxlen: 48
2403:140:ff57::/48 maxlen: 48
2403:140:ff58::/48 maxlen: 48
2403:140:ff59::/48 maxlen: 48
2403:140:ff5a::/48 maxlen: 48
2403:140:ff5b::/48 maxlen: 48
2403:140:ff5c::/48 maxlen: 48
2403:140:ff5d::/48 maxlen: 48
2403:140:ff5e::/48 maxlen: 48
2403:140:ff5f::/48 maxlen: 48
2403:140:ff60::/48 maxlen: 48
2403:140:ff61::/48 maxlen: 48
2403:140:ff62::/48 maxlen: 48
2403:140:ff63::/48 maxlen: 48
2403:140:ff64::/48 maxlen: 48
2403:140:ff65::/48 maxlen: 48
2403:140:ff66::/48 maxlen: 48
2403:140:ff67::/48 maxlen: 48
2403:140:ff68::/48 maxlen: 48
2403:140:ff69::/48 maxlen: 48
2403:140:ff6a::/48 maxlen: 48
2403:140:ff6b::/48 maxlen: 48
2403:140:ff6c::/48 maxlen: 48
2403:140:ff6d::/48 maxlen: 48
2403:140:ff6e::/48 maxlen: 48
2403:140:ff6f::/48 maxlen: 48
2403:140:ff70::/48 maxlen: 48
2403:140:ff71::/48 maxlen: 48
2403:140:ff72::/48 maxlen: 48
2403:140:ff73::/48 maxlen: 48
2403:140:ff74::/48 maxlen: 48
2403:140:ff75::/48 maxlen: 48
2403:140:ff76::/48 maxlen: 48
2403:140:ff77::/48 maxlen: 48
2403:140:ff78::/48 maxlen: 48
2403:140:ff79::/48 maxlen: 48
2403:140:ff7a::/48 maxlen: 48
2403:140:ff7b::/48 maxlen: 48
2403:140:ff7c::/48 maxlen: 48
2403:140:ff7d::/48 maxlen: 48
2403:140:ff7e::/48 maxlen: 48
2403:140:ff7f::/48 maxlen: 48
2403:140:ff80::/48 maxlen: 48
2403:140:ff81::/48 maxlen: 48
2403:140:ff82::/48 maxlen: 48
2403:140:ff83::/48 maxlen: 48
2403:140:ff84::/48 maxlen: 48
2403:140:ff85::/48 maxlen: 48
2403:140:ff86::/48 maxlen: 48
2403:140:ff87::/48 maxlen: 48
2403:140:ff88::/48 maxlen: 48
2403:140:ff89::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/iJMypOJcIeib-kP6AC0tHwrX55c.crl
rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/iJMypOJcIeib-kP6AC0tHwrX55c.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iJMypOJcIeib-kP6AC0tHwrX55c.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 14:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3336 (0xd08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BCF8, serialNumber=889332A4E25C21E89BFA43FA002D2D1F0AD7E797
Validity
Not Before: May 26 13:49:46 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=69a5a365-62c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8d:03:09:7a:4b:a0:f8:98:9d:10:ac:de:12:
bd:9d:2e:c7:39:48:c1:1e:a7:a0:5e:f0:d2:95:b2:
b9:7d:1f:47:18:b3:a8:57:a7:58:d0:63:f5:24:70:
91:17:20:8c:60:47:a7:ac:2c:35:f0:d5:cd:d2:70:
b9:00:80:5d:48:63:1b:51:bf:f4:d0:9f:80:ef:79:
e1:36:ca:a3:d1:dd:46:51:cc:f4:65:f2:c8:96:6d:
55:20:4c:62:20:71:45:00:cd:a0:80:25:94:ce:d3:
3f:e4:cd:df:8d:e2:42:fc:79:13:4a:b5:00:4a:f9:
df:7a:4b:16:eb:c3:7d:bf:e3:62:51:3d:31:6b:4a:
7c:80:80:1c:e1:cc:bc:62:15:0d:ac:25:6a:df:ee:
5f:94:0f:5a:85:c7:3a:6b:38:62:93:57:58:b7:61:
d2:6e:60:73:22:cf:e5:df:66:a4:7e:25:ed:0e:cc:
b4:eb:89:1f:1e:5b:3f:a3:be:ae:65:27:c5:a3:84:
0f:a7:bb:c1:e5:94:0f:8a:c8:71:32:56:fb:83:92:
93:8c:f3:7d:f6:83:08:d6:4a:c6:aa:f5:09:2b:60:
7c:ce:b3:0c:4c:c0:3b:92:51:64:07:ca:a6:dc:05:
b0:4b:1b:b4:e9:1a:62:30:c2:d0:73:ed:f6:37:8c:
fe:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:4E:24:98:85:68:C6:63:2F:25:6F:24:DD:F0:A6:AE:0C:FA:86:DC
X509v3 Authority Key Identifier:
keyid:88:93:32:A4:E2:5C:21:E8:9B:FA:43:FA:00:2D:2D:1F:0A:D7:E7:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/iJMypOJcIeib-kP6AC0tHwrX55c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iJMypOJcIeib-kP6AC0tHwrX55c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/AFA9D654D9F711EEA1409D5DC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
27.123.252.0/22
103.52.134.0/23
103.71.46.0/23
IPv6:
2403:140::/32
Signature Algorithm: sha256WithRSAEncryption
c5:69:d4:58:8e:3a:60:dc:a6:1f:ee:7c:ba:13:c1:16:32:5a:
67:a7:cc:73:86:4c:72:e7:e8:f7:f3:c9:c2:75:2b:1f:e9:8d:
a1:76:63:e5:e0:1f:77:29:f1:2c:8a:8b:01:42:13:2f:63:69:
fb:b6:1c:7c:b7:b5:cd:be:0f:8d:3b:63:76:9b:61:d0:55:3c:
ca:98:7b:94:c8:a6:aa:47:f9:88:bf:52:c8:55:7b:13:36:ab:
93:f0:ca:8b:06:d2:64:16:fe:bb:ef:11:e4:40:73:0d:41:ef:
84:73:7d:6e:15:ba:d1:2b:13:f5:f2:1b:79:25:b2:ef:fa:31:
c0:8e:b9:05:d8:e0:9b:a4:63:b4:35:80:40:b6:3b:d4:12:15:
94:93:69:87:82:af:88:4c:23:99:00:30:78:eb:60:07:7c:d4:
7e:b5:27:a5:19:2e:81:f2:2b:23:59:e1:68:c1:10:d8:51:f1:
e1:6a:73:ef:cc:46:d0:5d:a5:9b:19:83:2e:55:ba:93:11:56:
f2:7e:f2:ff:0a:6a:3d:4a:12:d7:c8:39:3c:62:2a:a7:7b:29:
44:5f:b9:39:ec:de:32:e7:c8:81:6f:a9:08:7e:fe:ef:df:ed:
3a:05:a3:b5:bc:f0:e5:ca:20:24:b9:20:94:72:f1:41:e2:d0:
a0:b9:dd:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:12:44 2026 by rpki-client