Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
File: 9461B15C144611EBA5418244C4F9AE02.roa (raw, json)
Hash identifier: 7pgMl5wJH137QshYHXwPE7o/xvV6r1Ih+WJdLlRyQ5s=
Subject key identifier: E7:EE:42:7B:7A:F6:B9:F4:89:D4:A5:45:CA:3B:7B:93:EE:48:39:71
Certificate issuer: /CN=A91275FD/serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Certificate serial: 25BF
Authority key identifier: 5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
Signing time: Sun 01 Mar 2026 11:26:51 +0000
ROA not before: Thu 22 May 2025 15:52:30 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 23944
IP address blocks: 130.105.0.0/16 maxlen: 16
130.105.0.0/22 maxlen: 22
130.105.0.0/24 maxlen: 24
130.105.1.0/24 maxlen: 24
130.105.4.0/22 maxlen: 22
130.105.8.0/22 maxlen: 22
130.105.12.0/22 maxlen: 22
130.105.16.0/22 maxlen: 22
130.105.20.0/22 maxlen: 22
130.105.24.0/22 maxlen: 22
130.105.28.0/22 maxlen: 22
130.105.32.0/22 maxlen: 22
130.105.36.0/22 maxlen: 22
130.105.40.0/22 maxlen: 22
130.105.44.0/22 maxlen: 22
130.105.48.0/22 maxlen: 22
130.105.52.0/22 maxlen: 22
130.105.56.0/22 maxlen: 22
130.105.60.0/22 maxlen: 22
130.105.64.0/22 maxlen: 22
130.105.68.0/22 maxlen: 22
130.105.72.0/22 maxlen: 22
130.105.76.0/22 maxlen: 22
130.105.80.0/22 maxlen: 22
130.105.84.0/22 maxlen: 22
130.105.88.0/22 maxlen: 22
130.105.92.0/22 maxlen: 22
130.105.96.0/22 maxlen: 22
130.105.100.0/22 maxlen: 22
130.105.104.0/22 maxlen: 22
130.105.108.0/22 maxlen: 22
130.105.112.0/22 maxlen: 22
130.105.116.0/22 maxlen: 22
130.105.120.0/22 maxlen: 22
130.105.124.0/22 maxlen: 22
130.105.128.0/22 maxlen: 22
130.105.132.0/22 maxlen: 22
130.105.136.0/22 maxlen: 22
130.105.140.0/22 maxlen: 22
130.105.144.0/22 maxlen: 22
130.105.148.0/22 maxlen: 22
130.105.152.0/22 maxlen: 22
130.105.154.0/24 maxlen: 24
130.105.156.0/22 maxlen: 22
130.105.160.0/22 maxlen: 22
130.105.164.0/22 maxlen: 22
130.105.168.0/22 maxlen: 22
130.105.172.0/22 maxlen: 22
130.105.176.0/22 maxlen: 22
130.105.180.0/22 maxlen: 22
130.105.184.0/22 maxlen: 22
130.105.188.0/22 maxlen: 22
130.105.192.0/22 maxlen: 22
130.105.196.0/22 maxlen: 22
130.105.200.0/22 maxlen: 22
130.105.204.0/22 maxlen: 22
130.105.208.0/22 maxlen: 22
130.105.212.0/22 maxlen: 22
130.105.216.0/22 maxlen: 22
130.105.220.0/22 maxlen: 22
130.105.224.0/22 maxlen: 22
130.105.228.0/22 maxlen: 22
130.105.232.0/22 maxlen: 22
130.105.236.0/22 maxlen: 22
130.105.240.0/22 maxlen: 22
130.105.244.0/22 maxlen: 22
130.105.248.0/22 maxlen: 22
130.105.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 23:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9663 (0x25bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91275FD, serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED
Validity
Not Before: May 22 15:52:30 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69a4227b-fb55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d8:98:12:15:c9:57:ea:dc:7f:0a:1e:3c:48:
d6:37:bd:95:88:ce:56:f5:e4:9e:0f:53:0d:4a:7f:
09:e3:ba:0b:a5:34:2d:27:b7:0a:91:1a:46:88:f6:
09:8d:8e:ea:2c:b0:01:75:4c:32:37:eb:f2:3c:6d:
40:ff:ee:b4:1e:d4:16:7f:a7:19:ed:4f:3b:d2:d5:
b9:15:94:ab:7f:cf:ca:97:12:2b:16:3d:f2:b3:33:
0f:20:2a:28:18:84:fa:b5:d7:13:61:e2:ac:92:ce:
b4:d0:93:46:0a:ab:a7:78:a0:d2:10:9b:bc:89:06:
7f:de:b6:7e:55:13:77:9c:18:ec:96:49:5f:ae:91:
11:22:5f:b2:92:34:cd:7b:05:74:ea:54:80:ec:ab:
3b:24:89:4c:12:ff:70:dd:38:50:8a:69:9b:28:b3:
65:95:35:c8:d3:ba:d6:66:33:3e:a5:4d:7d:47:7e:
44:d0:b9:b6:bc:4f:ed:59:23:b4:c3:d1:9e:1f:93:
16:76:ff:2e:d9:e5:1d:78:03:18:04:65:94:3e:4d:
0b:5e:bb:2c:b5:53:70:40:04:9d:b4:36:9a:ab:59:
02:d2:ee:0e:fd:fb:a8:c5:3b:73:7e:4b:78:31:43:
0a:6b:65:dc:e5:5d:a5:03:d4:2b:0b:b5:1d:6d:00:
1e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EE:42:7B:7A:F6:B9:F4:89:D4:A5:45:CA:3B:7B:93:EE:48:39:71
X509v3 Authority Key Identifier:
keyid:5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/9461B15C144611EBA5418244C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
130.105.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:5c:0c:07:bb:b7:12:31:24:3e:3e:cf:ac:4c:15:c8:fa:be:
d5:c6:38:bc:f7:85:ce:d0:8a:35:3a:61:bd:c1:e3:ee:b1:4d:
a5:bd:51:a7:36:e7:0e:49:c5:f3:85:e2:2e:4a:81:9f:4f:22:
01:fe:d0:36:c6:79:3e:32:30:8b:0d:67:29:97:32:4e:ab:5a:
6a:d5:79:21:c5:a3:fe:45:f7:e9:31:8a:a7:34:22:5e:b5:d8:
97:ff:53:a9:8b:f8:cf:5b:81:92:92:6b:2b:6e:46:dd:f6:39:
0e:36:94:9e:59:29:59:d6:3f:b8:92:dc:5f:0c:3d:df:91:17:
8d:b7:54:ad:93:ec:ee:48:a7:f4:7e:90:65:3e:83:ce:9c:18:
c3:94:ad:bc:0a:b3:77:b4:04:c8:8a:cb:fa:da:3d:33:0c:db:
8c:77:35:fc:31:6e:07:77:df:c3:6e:e8:ef:c2:94:95:1b:06:
36:14:ec:24:5a:f3:3f:bd:18:4b:d8:a1:4d:c6:78:0d:a3:e7:
d2:55:6e:d0:d1:a7:f2:e3:a2:72:18:8e:96:0b:cd:35:aa:48:
c6:a9:a2:01:86:9e:ac:e3:a4:78:ef:05:1e:d1:8b:d6:00:04:
16:d2:24:7c:92:b6:c4:23:14:c5:70:9a:cf:c1:81:cb:b1:10:
65:a5:eb:c8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:43:29 2026 by rpki-client