Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/14AD087E635711F1A8C1BFBC9B47A888.roa
File: 14AD087E635711F1A8C1BFBC9B47A888.roa (raw, json)
Hash identifier: /xu/u+3n4gHsOINUiGMqVZ+4o2jYPP8AqjTqfATumMY=
Subject key identifier: 59:87:DE:03:57:1D:07:C6:D9:1F:6C:B6:98:AE:10:E4:2F:92:72:08
Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial: 0DE4
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/14AD087E635711F1A8C1BFBC9B47A888.roa
Signing time: Mon 08 Jun 2026 16:28:45 +0000
ROA not before: Mon 08 Jun 2026 16:28:45 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 141030
IP address blocks: 2400:3dc0:41::/48 maxlen: 48
2400:3dc0:42::/48 maxlen: 48
2400:3dc0:44::/48 maxlen: 48
2400:3dc0:47::/48 maxlen: 48
2400:3dc0:48::/48 maxlen: 48
2400:3dc0:4a::/48 maxlen: 48
2400:3dc0:4d::/48 maxlen: 48
2400:3dc0:4e::/48 maxlen: 48
2400:3dc0:4f::/48 maxlen: 48
2400:3dc0:50::/48 maxlen: 48
2400:3dc0:51::/48 maxlen: 48
2400:3dc0:52::/48 maxlen: 48
2400:3dc0:53::/48 maxlen: 48
2400:3dc0:54::/48 maxlen: 48
2400:3dc0:55::/48 maxlen: 48
2400:3dc0:56::/48 maxlen: 48
2400:3dc0:59::/48 maxlen: 48
2400:3dc0:5c::/48 maxlen: 48
2400:3dc0:5d::/48 maxlen: 48
2400:3dc0:5e::/48 maxlen: 48
2400:3dc0:5f::/48 maxlen: 48
2400:3dc0:62::/48 maxlen: 48
2400:3dc0:63::/48 maxlen: 48
2400:3dc0:64::/48 maxlen: 48
2400:3dc0:65::/48 maxlen: 48
2400:3dc0:66::/48 maxlen: 48
2400:3dc0:67::/48 maxlen: 48
2400:3dc0:6b::/48 maxlen: 48
2400:3dc0:6d::/48 maxlen: 48
2400:3dc0:6e::/48 maxlen: 48
2400:3dc0:72::/48 maxlen: 48
2400:3dc0:73::/48 maxlen: 48
2400:3dc0:74::/48 maxlen: 48
2400:3dc0:75::/48 maxlen: 48
2400:3dc0:76::/48 maxlen: 48
2400:3dc0:77::/48 maxlen: 48
2400:3dc0:79::/48 maxlen: 48
2400:3dc0:7a::/48 maxlen: 48
2400:3dc0:7c::/48 maxlen: 48
2400:3dc0:81::/48 maxlen: 48
2400:3dc0:82::/48 maxlen: 48
2400:3dc0:90::/48 maxlen: 48
2400:3dc0:91::/48 maxlen: 48
2400:3dc0:92::/48 maxlen: 48
2400:3dc0:93::/48 maxlen: 48
2400:3dc0:94::/48 maxlen: 48
2400:3dc0:95::/48 maxlen: 48
2400:3dc0:96::/48 maxlen: 48
2400:3dc0:97::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 19 Jun 2026 18:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3556 (0xde4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Validity
Not Before: Jun 8 16:28:45 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=6a26edbd-a1d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2f:3c:72:41:19:50:60:2d:03:59:ff:53:53:
eb:e3:1e:99:d4:af:5e:27:2d:97:f6:30:86:34:18:
f8:d1:06:20:8c:38:51:98:9c:20:9a:2d:db:8f:ad:
0c:e7:e0:8a:87:59:1c:a2:d5:ef:9c:7f:9d:a2:fd:
d5:6d:da:83:94:db:ec:bb:a2:b5:11:9f:e0:cf:d7:
5c:97:0c:08:94:3b:41:d8:4c:a3:8c:34:40:78:86:
59:27:21:44:8b:56:b9:60:e9:ce:15:8d:bb:5b:1e:
a7:9c:fa:66:05:0c:4b:df:ce:56:9e:86:6d:54:2f:
2f:6c:c6:a3:23:09:ca:5d:15:01:e1:bb:ea:df:f8:
6d:85:a5:fd:56:a6:52:72:a5:12:43:6d:fb:4b:67:
31:44:a6:f6:1e:5f:6e:5d:e5:cd:10:3f:cf:ab:f7:
3d:20:b4:03:90:bb:10:5d:99:23:1e:67:2d:22:13:
7a:b4:11:1e:d1:59:0b:43:73:a6:d0:38:5e:16:e1:
d9:07:fa:c2:35:e3:5f:bf:41:12:86:62:26:58:a3:
ab:12:4a:98:a2:81:c8:cf:ac:5c:3c:89:2f:4c:ae:
d2:8e:cb:0d:82:3b:c2:8a:a4:f7:84:66:4d:9a:20:
eb:d9:65:30:6a:30:6c:a3:ca:2a:1a:19:8f:99:5d:
6b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:87:DE:03:57:1D:07:C6:D9:1F:6C:B6:98:AE:10:E4:2F:92:72:08
X509v3 Authority Key Identifier:
keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/14AD087E635711F1A8C1BFBC9B47A888.roa
sbgp-ipAddrBlock: critical
IPv6:
2400:3dc0:41::-2400:3dc0:42:ffff:ffff:ffff:ffff:ffff
2400:3dc0:44::/48
2400:3dc0:47::-2400:3dc0:48:ffff:ffff:ffff:ffff:ffff
2400:3dc0:4a::/48
2400:3dc0:4d::-2400:3dc0:56:ffff:ffff:ffff:ffff:ffff
2400:3dc0:59::/48
2400:3dc0:5c::/46
2400:3dc0:62::-2400:3dc0:67:ffff:ffff:ffff:ffff:ffff
2400:3dc0:6b::/48
2400:3dc0:6d::-2400:3dc0:6e:ffff:ffff:ffff:ffff:ffff
2400:3dc0:72::-2400:3dc0:77:ffff:ffff:ffff:ffff:ffff
2400:3dc0:79::-2400:3dc0:7a:ffff:ffff:ffff:ffff:ffff
2400:3dc0:7c::/48
2400:3dc0:81::-2400:3dc0:82:ffff:ffff:ffff:ffff:ffff
2400:3dc0:90::/45
Signature Algorithm: sha256WithRSAEncryption
2f:54:4c:48:81:24:9d:7f:be:37:fb:0c:39:75:ec:fd:20:05:
44:c4:1e:77:8a:a6:80:db:3f:9e:2c:3c:ca:7a:67:27:26:cc:
15:2e:88:70:d9:37:82:46:1f:8a:74:ff:a9:cb:43:66:4a:1f:
4d:8d:57:29:3b:58:9f:99:7b:86:3a:67:d2:93:43:f6:38:dd:
9a:66:8d:a6:b4:02:f8:6a:4a:7b:23:dd:bd:c8:af:4c:4e:11:
ef:8c:ee:37:a9:0d:bb:42:5b:8d:50:a6:60:cc:fe:63:bc:4d:
cc:7f:68:41:09:26:1d:71:04:5b:1a:89:9f:4b:b4:fd:41:47:
59:fe:dd:46:c8:8d:6c:bd:01:a6:80:4a:20:f3:fd:6a:e1:f5:
20:59:f8:c4:fc:2f:61:81:2b:3f:8e:3f:9e:e2:16:16:7e:21:
fc:2e:d8:2b:15:d7:40:73:da:90:68:35:49:46:80:dc:69:3b:
79:3c:17:52:a1:0e:e4:9f:ff:12:fd:8b:bd:5e:00:0a:ea:51:
a5:67:45:51:39:6a:c4:81:55:d8:63:01:ca:e0:37:04:e2:c0:
e1:a8:c5:33:fd:a6:37:f0:f9:ec:2f:73:d5:1a:5d:d3:f8:1c:
99:3d:d5:e9:c1:af:bb:72:41:03:97:80:d7:c6:72:67:74:cc:
f1:1e:90:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:20:21 2026 by rpki-client