
Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/0FB29E462A0811EE9A08C30FC4F9AE02.roa
File: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (raw, json)
Hash identifier: Qwutn9B3CDHm9n0iew3RV9fUFrgygonwXrMYgIgIKWc=
Subject key identifier: 2A:A4:C9:CA:18:A8:A6:5F:AA:7D:5C:42:C2:99:E2:0B:9F:95:51:C4
Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4
Certificate serial: 0B77
Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/0FB29E462A0811EE9A08C30FC4F9AE02.roa
Signing time: Tue 05 Aug 2025 10:50:34 +0000
ROA not before: Tue 05 Aug 2025 10:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 138915
IP address blocks: 59.153.156.0/24 maxlen: 24
59.153.157.0/24 maxlen: 24
59.153.158.0/24 maxlen: 24
59.153.159.0/24 maxlen: 24
103.84.108.0/24 maxlen: 24
103.84.109.0/24 maxlen: 24
103.84.111.0/24 maxlen: 24
103.136.248.0/22 maxlen: 22
103.136.248.0/24 maxlen: 24
103.136.249.0/24 maxlen: 24
103.136.250.0/24 maxlen: 24
103.136.251.0/24 maxlen: 24
103.198.200.0/24 maxlen: 24
103.198.201.0/24 maxlen: 24
103.198.202.0/24 maxlen: 24
175.176.192.0/24 maxlen: 24
175.176.193.0/24 maxlen: 24
175.176.194.0/24 maxlen: 24
175.176.195.0/24 maxlen: 24
2404:a140::/32 maxlen: 32
2404:a140:2::/48 maxlen: 48
2404:a140:3::/48 maxlen: 48
2404:a140:4::/48 maxlen: 48
2404:a140:5::/48 maxlen: 48
2404:a140:6::/48 maxlen: 48
2404:a140:7::/48 maxlen: 48
2404:a140:8::/48 maxlen: 48
2404:a140:9::/48 maxlen: 48
2404:a140:a::/48 maxlen: 48
2404:a140:b::/48 maxlen: 48
2404:a140:c::/48 maxlen: 48
2404:a140:d::/48 maxlen: 48
2404:a140:e::/48 maxlen: 48
2404:a140:f::/48 maxlen: 48
2404:a140:10::/48 maxlen: 48
2404:a140:11::/48 maxlen: 48
2404:a140:12::/48 maxlen: 48
2404:a140:13::/48 maxlen: 48
2404:a140:14::/48 maxlen: 48
2404:a140:15::/48 maxlen: 48
2404:a140:16::/48 maxlen: 48
2404:a140:17::/48 maxlen: 48
2404:a140:18::/48 maxlen: 48
2404:a140:19::/48 maxlen: 48
2404:a140:1a::/48 maxlen: 48
2404:a140:1b::/48 maxlen: 48
2404:a140:1c::/48 maxlen: 48
2404:a140:1d::/48 maxlen: 48
2404:a140:1e::/48 maxlen: 48
2404:a140:1f::/48 maxlen: 48
2404:a140:20::/48 maxlen: 48
2404:a140:21::/48 maxlen: 48
2404:a140:22::/48 maxlen: 48
2404:a140:23::/48 maxlen: 48
2404:a140:24::/48 maxlen: 48
2404:a140:25::/48 maxlen: 48
2404:a140:26::/48 maxlen: 48
2404:a140:27::/48 maxlen: 48
2404:a140:28::/48 maxlen: 48
2404:a140:29::/48 maxlen: 48
2404:a140:2a::/48 maxlen: 48
2404:a140:2b::/48 maxlen: 48
2404:a140:2c::/48 maxlen: 48
2404:a140:2d::/48 maxlen: 48
2404:a140:2e::/48 maxlen: 48
2404:a140:2f::/48 maxlen: 48
2404:a140:30::/48 maxlen: 48
2404:a140:32::/48 maxlen: 48
2404:a140:33::/48 maxlen: 48
2404:a140:38::/48 maxlen: 48
2404:a140:39::/48 maxlen: 48
2404:a140:3a::/48 maxlen: 48
2404:a140:3b::/48 maxlen: 48
2404:a140:3c::/48 maxlen: 48
2404:a140:3d::/48 maxlen: 48
2404:a140:3e::/48 maxlen: 48
2404:a140:3f::/48 maxlen: 48
2404:a140:42::/48 maxlen: 48
2404:a140:44::/48 maxlen: 48
2404:a140:45::/48 maxlen: 48
2404:a140:4a::/48 maxlen: 48
2404:a140:4b::/48 maxlen: 48
2404:a140:4c::/48 maxlen: 48
2404:a140:4d::/48 maxlen: 48
2404:a140:4f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl
rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 Aug 2025 19:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2935 (0xb77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4
Validity
Not Before: Aug 5 10:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6891e1fa-fbf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:56:4b:08:dd:d9:82:63:48:91:ac:63:6c:7b:
b2:f8:90:0c:85:ff:bb:11:7d:05:28:5b:51:1a:78:
b0:00:e8:e3:00:e0:75:62:42:05:4c:11:5e:83:5b:
49:fd:5c:ba:e0:d2:05:06:8f:c2:e0:24:1b:24:b3:
76:0d:72:6f:b6:54:5e:20:99:89:25:6b:96:4b:35:
54:4c:40:e3:fb:3e:c2:42:44:76:a1:38:58:bb:0c:
7e:4e:c0:5b:aa:92:50:77:d8:88:23:a9:1f:92:35:
1f:82:83:6d:bc:79:ee:af:72:56:42:98:8b:c7:d9:
37:52:02:dc:a1:97:f2:b5:67:39:20:b3:3e:1d:e5:
b8:fc:6f:a1:31:94:77:d4:81:7e:8f:21:f8:29:6d:
d7:97:c1:90:3d:7f:a2:3e:0b:b0:88:d0:92:bd:36:
d3:8a:5a:ca:d5:ea:fa:8e:85:7b:43:01:7f:fd:0d:
f3:db:09:f8:95:1c:69:a4:fe:4c:6e:1d:1f:80:d6:
aa:73:1f:9c:39:a6:4a:e4:ce:01:f8:ec:10:2a:56:
f6:a3:d4:d6:3f:af:5d:91:a0:92:49:ba:b2:cf:67:
b7:fc:f4:1e:82:77:22:bc:e7:b9:3f:30:93:b6:11:
20:0a:2e:98:9a:d1:00:48:09:f9:fa:2a:76:03:8d:
ac:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A4:C9:CA:18:A8:A6:5F:AA:7D:5C:42:C2:99:E2:0B:9F:95:51:C4
X509v3 Authority Key Identifier:
keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/0FB29E462A0811EE9A08C30FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.156.0/22
103.84.108.0/23
103.84.111.0/24
103.136.248.0/22
103.198.200.0-103.198.202.255
175.176.192.0/22
IPv6:
2404:a140::/32
Signature Algorithm: sha256WithRSAEncryption
6b:b4:18:9a:4f:b3:d5:b7:07:aa:62:48:1b:8e:96:9e:6d:73:
4c:e4:4a:76:41:6d:4a:91:67:4a:5a:ad:56:47:44:b7:c1:61:
34:cb:26:68:bd:c2:21:93:94:21:ef:41:88:4d:45:45:08:48:
6a:a4:82:92:06:1e:ae:13:f3:a5:ff:78:b1:dd:be:91:2d:fe:
32:26:36:98:77:a2:fb:51:3c:65:23:c1:8b:ec:7b:88:e5:a0:
d6:f4:fb:bd:48:8c:82:a0:be:75:0b:a7:82:0f:5c:08:3b:bc:
c3:86:f0:d3:8e:56:01:a6:b8:22:d9:91:24:53:16:02:0f:3c:
40:60:4e:75:38:01:ec:1d:7f:d4:7d:5d:d8:b7:c9:6e:a4:31:
39:19:e2:d0:ad:e5:11:ec:e0:87:d4:53:b3:0f:63:9b:c7:f8:
26:b0:09:16:a5:f6:6f:6b:17:0b:8e:d5:84:68:70:e9:49:41:
99:c6:c5:79:c4:86:86:15:08:f6:b8:20:cd:c2:f6:3f:bc:63:
e9:4c:42:04:8a:c5:a5:2e:08:c2:b7:87:a9:54:bc:d6:dd:66:
1a:ff:4e:3f:9a:e8:14:b4:8c:b4:e8:19:63:d0:db:8b:e6:ce:
46:2c:55:fc:ed:c0:b0:4a:16:d8:9e:58:3a:3d:bf:98:30:49:
75:f3:c4:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 20:59:09 2025 by rpki-client