Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/AFA9D654D9F711EEA1409D5DC4F9AE02.roa
File: AFA9D654D9F711EEA1409D5DC4F9AE02.roa (raw, json)
Hash identifier: O6ZOPVwxFkNjeJWmRWdaGnVAImdC2WliszZw8u4xZjE=
Subject key identifier: 6D:DA:3A:CD:53:B1:92:FC:B9:74:1A:75:DE:7E:9B:19:AB:E2:64:2C
Certificate issuer: /CN=A911BCF8/serialNumber=889332A4E25C21E89BFA43FA002D2D1F0AD7E797
Certificate serial: 0C73
Authority key identifier: 88:93:32:A4:E2:5C:21:E8:9B:FA:43:FA:00:2D:2D:1F:0A:D7:E7:97
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iJMypOJcIeib-kP6AC0tHwrX55c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/AFA9D654D9F711EEA1409D5DC4F9AE02.roa
Signing time: Mon 26 May 2025 13:49:46 +0000
ROA not before: Mon 26 May 2025 13:49:46 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 134113
IP address blocks: 27.123.252.0/22 maxlen: 24
103.52.134.0/23 maxlen: 24
103.71.46.0/23 maxlen: 24
2403:140::/32 maxlen: 32
2403:140::/48 maxlen: 48
2403:140:1::/48 maxlen: 48
2403:140:2::/48 maxlen: 48
2403:140:3::/48 maxlen: 48
2403:140:4::/48 maxlen: 48
2403:140:5::/48 maxlen: 48
2403:140:6::/48 maxlen: 48
2403:140:7::/48 maxlen: 48
2403:140:8::/48 maxlen: 48
2403:140:9::/48 maxlen: 48
2403:140:a::/48 maxlen: 48
2403:140:b::/48 maxlen: 48
2403:140:c::/48 maxlen: 48
2403:140:d::/48 maxlen: 48
2403:140:e::/48 maxlen: 48
2403:140:f::/48 maxlen: 48
2403:140:10::/48 maxlen: 48
2403:140:103::/48 maxlen: 48
2403:140:121::/48 maxlen: 48
2403:140:1111::/48 maxlen: 48
2403:140:8888::/48 maxlen: 48
2403:140:ff00::/40 maxlen: 40
2403:140:ff00::/48 maxlen: 48
2403:140:ff01::/48 maxlen: 48
2403:140:ff02::/48 maxlen: 48
2403:140:ff03::/48 maxlen: 48
2403:140:ff04::/48 maxlen: 48
2403:140:ff05::/48 maxlen: 48
2403:140:ff06::/48 maxlen: 48
2403:140:ff07::/48 maxlen: 48
2403:140:ff08::/48 maxlen: 48
2403:140:ff09::/48 maxlen: 48
2403:140:ff0a::/48 maxlen: 48
2403:140:ff0b::/48 maxlen: 48
2403:140:ff0c::/48 maxlen: 48
2403:140:ff0d::/48 maxlen: 48
2403:140:ff0e::/48 maxlen: 48
2403:140:ff0f::/48 maxlen: 48
2403:140:ff10::/48 maxlen: 48
2403:140:ff11::/48 maxlen: 48
2403:140:ff12::/48 maxlen: 48
2403:140:ff13::/48 maxlen: 48
2403:140:ff14::/48 maxlen: 48
2403:140:ff15::/48 maxlen: 48
2403:140:ff16::/48 maxlen: 48
2403:140:ff17::/48 maxlen: 48
2403:140:ff18::/48 maxlen: 48
2403:140:ff19::/48 maxlen: 48
2403:140:ff1a::/48 maxlen: 48
2403:140:ff1b::/48 maxlen: 48
2403:140:ff1c::/48 maxlen: 48
2403:140:ff1d::/48 maxlen: 48
2403:140:ff1e::/48 maxlen: 48
2403:140:ff1f::/48 maxlen: 48
2403:140:ff20::/48 maxlen: 48
2403:140:ff21::/48 maxlen: 48
2403:140:ff22::/48 maxlen: 48
2403:140:ff23::/48 maxlen: 48
2403:140:ff24::/48 maxlen: 48
2403:140:ff25::/48 maxlen: 48
2403:140:ff26::/48 maxlen: 48
2403:140:ff27::/48 maxlen: 48
2403:140:ff28::/48 maxlen: 48
2403:140:ff29::/48 maxlen: 48
2403:140:ff2a::/48 maxlen: 48
2403:140:ff2b::/48 maxlen: 48
2403:140:ff2c::/48 maxlen: 48
2403:140:ff2d::/48 maxlen: 48
2403:140:ff2e::/48 maxlen: 48
2403:140:ff2f::/48 maxlen: 48
2403:140:ff30::/48 maxlen: 48
2403:140:ff31::/48 maxlen: 48
2403:140:ff32::/48 maxlen: 48
2403:140:ff33::/48 maxlen: 48
2403:140:ff34::/48 maxlen: 48
2403:140:ff35::/48 maxlen: 48
2403:140:ff36::/48 maxlen: 48
2403:140:ff37::/48 maxlen: 48
2403:140:ff38::/48 maxlen: 48
2403:140:ff39::/48 maxlen: 48
2403:140:ff3a::/48 maxlen: 48
2403:140:ff3b::/48 maxlen: 48
2403:140:ff3c::/48 maxlen: 48
2403:140:ff3d::/48 maxlen: 48
2403:140:ff3e::/48 maxlen: 48
2403:140:ff3f::/48 maxlen: 48
2403:140:ff40::/48 maxlen: 48
2403:140:ff41::/48 maxlen: 48
2403:140:ff42::/48 maxlen: 48
2403:140:ff43::/48 maxlen: 48
2403:140:ff44::/48 maxlen: 48
2403:140:ff45::/48 maxlen: 48
2403:140:ff46::/48 maxlen: 48
2403:140:ff47::/48 maxlen: 48
2403:140:ff48::/48 maxlen: 48
2403:140:ff49::/48 maxlen: 48
2403:140:ff4a::/48 maxlen: 48
2403:140:ff4b::/48 maxlen: 48
2403:140:ff4c::/48 maxlen: 48
2403:140:ff4d::/48 maxlen: 48
2403:140:ff4e::/48 maxlen: 48
2403:140:ff4f::/48 maxlen: 48
2403:140:ff50::/48 maxlen: 48
2403:140:ff51::/48 maxlen: 48
2403:140:ff52::/48 maxlen: 48
2403:140:ff53::/48 maxlen: 48
2403:140:ff54::/48 maxlen: 48
2403:140:ff55::/48 maxlen: 48
2403:140:ff56::/48 maxlen: 48
2403:140:ff57::/48 maxlen: 48
2403:140:ff58::/48 maxlen: 48
2403:140:ff59::/48 maxlen: 48
2403:140:ff5a::/48 maxlen: 48
2403:140:ff5b::/48 maxlen: 48
2403:140:ff5c::/48 maxlen: 48
2403:140:ff5d::/48 maxlen: 48
2403:140:ff5e::/48 maxlen: 48
2403:140:ff5f::/48 maxlen: 48
2403:140:ff60::/48 maxlen: 48
2403:140:ff61::/48 maxlen: 48
2403:140:ff62::/48 maxlen: 48
2403:140:ff63::/48 maxlen: 48
2403:140:ff64::/48 maxlen: 48
2403:140:ff65::/48 maxlen: 48
2403:140:ff66::/48 maxlen: 48
2403:140:ff67::/48 maxlen: 48
2403:140:ff68::/48 maxlen: 48
2403:140:ff69::/48 maxlen: 48
2403:140:ff6a::/48 maxlen: 48
2403:140:ff6b::/48 maxlen: 48
2403:140:ff6c::/48 maxlen: 48
2403:140:ff6d::/48 maxlen: 48
2403:140:ff6e::/48 maxlen: 48
2403:140:ff6f::/48 maxlen: 48
2403:140:ff70::/48 maxlen: 48
2403:140:ff71::/48 maxlen: 48
2403:140:ff72::/48 maxlen: 48
2403:140:ff73::/48 maxlen: 48
2403:140:ff74::/48 maxlen: 48
2403:140:ff75::/48 maxlen: 48
2403:140:ff76::/48 maxlen: 48
2403:140:ff77::/48 maxlen: 48
2403:140:ff78::/48 maxlen: 48
2403:140:ff79::/48 maxlen: 48
2403:140:ff7a::/48 maxlen: 48
2403:140:ff7b::/48 maxlen: 48
2403:140:ff7c::/48 maxlen: 48
2403:140:ff7d::/48 maxlen: 48
2403:140:ff7e::/48 maxlen: 48
2403:140:ff7f::/48 maxlen: 48
2403:140:ff80::/48 maxlen: 48
2403:140:ff81::/48 maxlen: 48
2403:140:ff82::/48 maxlen: 48
2403:140:ff83::/48 maxlen: 48
2403:140:ff84::/48 maxlen: 48
2403:140:ff85::/48 maxlen: 48
2403:140:ff86::/48 maxlen: 48
2403:140:ff87::/48 maxlen: 48
2403:140:ff88::/48 maxlen: 48
2403:140:ff89::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/iJMypOJcIeib-kP6AC0tHwrX55c.crl
rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/iJMypOJcIeib-kP6AC0tHwrX55c.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iJMypOJcIeib-kP6AC0tHwrX55c.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 25 Jun 2025 18:13:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3187 (0xc73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BCF8, serialNumber=889332A4E25C21E89BFA43FA002D2D1F0AD7E797
Validity
Not Before: May 26 13:49:46 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=6834717a-1397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f4:af:d1:0d:45:28:61:3f:a8:8b:c3:bf:4d:
64:31:85:e4:a6:0c:bd:19:b1:8c:c3:48:42:59:68:
0b:cb:34:7f:b0:2e:93:49:fc:0b:13:5a:7d:0a:44:
03:f5:4c:3e:02:88:0a:7a:94:90:c6:ba:6e:3d:53:
18:da:b9:89:f4:d2:f7:96:48:2b:bc:c4:ba:48:1c:
89:aa:fc:e6:7e:1b:d2:bb:c4:98:df:09:9c:19:cb:
01:6f:33:1f:8c:58:c6:9e:95:8d:dc:c5:d8:af:6a:
4b:75:72:74:75:5c:b6:88:9f:38:ac:4a:39:48:50:
27:8f:a6:c5:4e:45:7f:9e:dd:68:0c:b7:bb:ee:53:
61:3c:d6:3a:df:08:2a:40:20:02:99:d7:05:c0:22:
39:ed:7e:3b:8a:3f:a5:7d:d1:85:79:04:b8:d1:c6:
46:75:4a:5f:17:89:aa:32:fd:0a:4a:51:60:42:f1:
69:7d:dd:7a:5d:ab:99:ae:1b:0b:74:95:f1:4a:01:
72:45:48:c5:62:99:34:18:e9:90:1f:6d:8c:e0:6c:
8a:20:2f:e6:a7:a7:ca:58:02:bf:7b:fe:0a:1a:33:
2b:e5:83:5b:18:4d:d9:39:a2:1f:74:00:0f:ee:b8:
78:b7:59:1f:e4:5d:bb:b3:ac:af:a2:87:9c:0e:4e:
44:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DA:3A:CD:53:B1:92:FC:B9:74:1A:75:DE:7E:9B:19:AB:E2:64:2C
X509v3 Authority Key Identifier:
keyid:88:93:32:A4:E2:5C:21:E8:9B:FA:43:FA:00:2D:2D:1F:0A:D7:E7:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/iJMypOJcIeib-kP6AC0tHwrX55c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iJMypOJcIeib-kP6AC0tHwrX55c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCF8/B7078F80005411EA9ABDF51FC4F9AE02/AFA9D654D9F711EEA1409D5DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.123.252.0/22
103.52.134.0/23
103.71.46.0/23
IPv6:
2403:140::/32
Signature Algorithm: sha256WithRSAEncryption
42:8e:22:97:a3:c9:a0:b5:ab:31:09:2b:5a:6c:d5:4e:d7:bc:
45:5c:2b:1e:66:fe:62:a9:38:6d:0f:e6:0f:c6:44:68:b7:b1:
e8:87:7b:1b:3e:6b:40:ec:5f:f2:7c:e9:c1:bd:f2:06:3b:ba:
b2:60:3b:c9:56:6a:9a:8b:4b:af:3a:87:f6:c6:a5:6b:0e:3a:
f4:68:ca:18:7d:f8:3e:1b:7b:6e:17:e1:68:28:f5:1c:28:d8:
70:44:ae:b3:ea:a7:df:b3:6e:94:be:b2:12:77:eb:cf:ea:e9:
ee:d1:cf:25:2e:5f:60:bf:43:fe:f5:0f:3b:68:a0:98:15:ff:
4a:64:d7:2a:32:53:15:38:eb:98:70:a8:b8:39:32:93:f6:db:
e7:17:8f:33:7f:91:32:a0:16:3e:9c:b7:5f:65:f7:9e:f4:8c:
b3:8a:a9:25:14:3c:a8:0a:d1:db:ef:77:12:d8:e6:1d:b4:47:
29:dc:8b:1b:66:98:8e:ed:c4:b3:90:fa:26:99:ce:3c:15:3d:
7f:74:5d:f1:44:35:11:a4:da:bb:5b:5b:9f:c4:8e:02:01:db:
84:e5:47:45:ce:59:39:f3:21:18:79:74:55:55:77:c3:f9:b1:
ee:41:22:1d:05:f5:92:87:39:46:39:40:c5:74:f3:f1:a2:92:
2b:89:e0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 11:03:13 2025 by rpki-client