Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/06093D68DC1311F09341A9F45E6F56BC.roa
File: 06093D68DC1311F09341A9F45E6F56BC.roa (raw, json)
Hash identifier: 38iP1UDZ5HIVswjKfNaAplI7jivkq9C797QFF0+FNg8=
Subject key identifier: 44:32:C3:EE:F0:1F:69:F6:48:BB:62:BB:9D:C7:F5:B4:D6:62:B0:6D
Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521
Certificate serial: 1098
Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/06093D68DC1311F09341A9F45E6F56BC.roa
Signing time: Sun 01 Mar 2026 17:34:24 +0000
ROA not before: Wed 18 Feb 2026 17:15:39 +0000
ROA not after: Sat 01 May 2027 00:00:00 +0000
asID: 58521
IP address blocks: 143.92.112.0/21 maxlen: 21
143.92.112.0/22 maxlen: 22
143.92.112.0/23 maxlen: 23
143.92.112.0/24 maxlen: 24
143.92.113.0/24 maxlen: 24
143.92.114.0/24 maxlen: 24
143.92.115.0/24 maxlen: 24
143.92.116.0/24 maxlen: 24
143.92.117.0/24 maxlen: 24
143.92.118.0/24 maxlen: 24
143.92.119.0/24 maxlen: 24
143.92.120.0/22 maxlen: 22
143.92.120.0/24 maxlen: 24
143.92.121.0/24 maxlen: 24
143.92.122.0/24 maxlen: 24
143.92.123.0/24 maxlen: 24
143.92.124.0/22 maxlen: 24
148.222.64.0/22 maxlen: 22
148.222.64.0/24 maxlen: 24
148.222.65.0/24 maxlen: 24
148.222.66.0/23 maxlen: 23
148.222.66.0/24 maxlen: 24
148.222.67.0/24 maxlen: 24
148.222.68.0/22 maxlen: 22
148.222.68.0/24 maxlen: 24
148.222.69.0/24 maxlen: 24
148.222.70.0/24 maxlen: 24
148.222.71.0/24 maxlen: 24
148.222.72.0/22 maxlen: 22
148.222.72.0/24 maxlen: 24
148.222.73.0/24 maxlen: 24
148.222.74.0/24 maxlen: 24
148.222.75.0/24 maxlen: 24
148.222.76.0/22 maxlen: 22
148.222.76.0/24 maxlen: 24
148.222.77.0/24 maxlen: 24
148.222.78.0/24 maxlen: 24
148.222.79.0/24 maxlen: 24
148.222.84.0/22 maxlen: 22
148.222.84.0/24 maxlen: 24
148.222.85.0/24 maxlen: 24
148.222.86.0/24 maxlen: 24
148.222.87.0/24 maxlen: 24
148.222.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl
rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 23:51:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4248 (0x1098)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913E8F3, serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521
Validity
Not Before: Feb 18 17:15:39 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=69a478a0-8f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b3:ac:28:b1:8b:f4:f6:49:78:6b:ca:87:29:
c4:a6:49:a0:87:8e:12:6c:dd:2f:1f:5f:9b:cf:8e:
d7:09:00:01:fb:9c:d1:2b:36:66:b7:0f:a0:29:84:
76:7b:da:8d:1b:35:2f:c5:1a:7f:84:da:4f:8f:85:
9f:56:91:49:0b:8e:f4:9c:56:8f:f5:b7:d2:8c:94:
41:95:e5:46:d3:f3:70:a5:6a:4e:b6:57:6f:02:86:
f3:c8:10:97:45:77:51:03:dc:af:93:ae:35:47:21:
76:5c:0c:29:57:5e:31:f3:7d:90:26:96:a5:0a:c9:
f6:6a:9a:79:08:5d:fe:cb:b1:8a:1e:c2:38:e7:a9:
e6:c1:32:5f:50:1f:3d:30:03:e1:c8:1b:1a:db:b1:
3e:a5:78:e6:d2:65:56:d7:8d:8d:fa:5e:2a:c3:d2:
c9:39:9e:2e:ef:95:97:0f:3f:13:ce:6a:a4:ba:ce:
7d:66:f9:c8:84:73:54:3e:d2:4b:2d:f4:87:ac:7e:
bb:b6:50:24:c3:55:dd:bf:a6:cd:ff:f7:e0:5c:b4:
77:24:58:a1:1d:e0:1d:22:df:d6:db:37:e7:42:d5:
83:56:88:5a:8b:2c:1e:88:1c:b9:fb:bd:09:2a:64:
c0:5b:c7:5a:56:64:7e:b2:83:4c:64:09:f2:e1:03:
aa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:32:C3:EE:F0:1F:69:F6:48:BB:62:BB:9D:C7:F5:B4:D6:62:B0:6D
X509v3 Authority Key Identifier:
keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/06093D68DC1311F09341A9F45E6F56BC.roa
sbgp-ipAddrBlock: critical
IPv4:
143.92.112.0/20
148.222.64.0/20
148.222.84.0/22
148.222.92.0/24
Signature Algorithm: sha256WithRSAEncryption
30:84:b9:96:bc:fa:ed:5f:06:04:e2:6c:3d:c1:37:c0:c7:0e:
eb:d4:a8:48:b0:70:d2:86:92:2e:df:76:09:a2:54:76:f8:1e:
96:70:35:08:ed:ce:4d:c9:b0:a5:9a:e2:f2:ec:7e:78:28:d4:
de:bc:ab:a2:92:67:81:ac:95:c3:8f:52:60:6e:6a:5e:2c:21:
a2:17:43:3e:48:ff:7e:23:71:96:d1:01:7b:36:ae:a5:e6:8a:
8c:39:54:f8:89:31:94:f2:99:27:bf:93:40:7c:16:75:47:3d:
3a:ce:cb:69:b5:fb:0d:f7:23:70:0c:4e:38:02:ae:b4:de:ec:
b6:7c:5e:04:c4:95:c7:67:25:ba:51:4f:af:c9:2d:c7:47:cd:
8c:09:3c:48:5f:21:c1:8a:63:60:92:00:be:cd:1f:14:56:e1:
32:12:f8:61:68:66:94:44:9d:1c:69:fe:6b:6d:02:fb:b8:18:
3a:f4:bd:98:40:db:9d:40:4a:97:7a:f2:cf:b9:b2:75:df:d0:
29:a2:f1:83:8a:91:e7:b4:b2:41:e7:1d:f6:cf:9f:a0:c1:c2:
8d:9c:3e:1d:3f:13:af:60:eb:70:0c:ae:8f:18:1c:f5:4b:69:
e1:05:39:e6:4e:c8:e3:33:64:6c:1e:18:db:88:de:f2:60:02:
ea:c8:1a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:05:19 2026 by rpki-client