Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/6D188172BF5C11F098B79354C4F9AE02.roa
File: 6D188172BF5C11F098B79354C4F9AE02.roa (raw, json)
Hash identifier: +vcVP3Vc/xQrceGKHxptusion7qC1wdDocXyLDBF9wk=
Subject key identifier: F6:97:2D:83:8B:C8:B7:F4:71:F9:CE:D3:8B:5C:AE:1B:A7:BE:E5:BF
Certificate issuer: /CN=A9149F3E/serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F
Certificate serial: 35ED
Authority key identifier: BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/6D188172BF5C11F098B79354C4F9AE02.roa
Signing time: Tue 26 May 2026 01:13:36 +0000
ROA not before: Tue 26 May 2026 01:13:36 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 17579
IP address blocks: 134.75.1.0/24 maxlen: 24
134.75.15.0/24 maxlen: 24
134.75.16.0/24 maxlen: 24
134.75.101.0/24 maxlen: 24
134.75.102.0/24 maxlen: 24
134.75.103.0/24 maxlen: 24
134.75.105.0/24 maxlen: 24
134.75.107.0/24 maxlen: 24
134.75.108.0/24 maxlen: 24
134.75.123.0/24 maxlen: 24
134.75.124.0/24 maxlen: 24
134.75.125.0/24 maxlen: 24
134.75.126.0/24 maxlen: 24
134.75.127.0/24 maxlen: 24
134.75.128.0/24 maxlen: 24
134.75.129.0/24 maxlen: 24
134.75.130.0/24 maxlen: 24
134.75.131.0/24 maxlen: 24
134.75.132.0/24 maxlen: 24
134.75.200.0/24 maxlen: 24
134.75.203.0/24 maxlen: 24
134.75.207.0/24 maxlen: 24
134.75.252.0/24 maxlen: 24
134.75.253.0/24 maxlen: 24
134.75.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl
rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 19 Jun 2026 14:22:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13805 (0x35ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9149F3E, serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F
Validity
Not Before: May 26 01:13:36 2026 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=6a14f3c0-cc20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9f:f3:5f:4d:38:60:1f:6e:b7:92:ba:30:f9:
92:fb:9d:c8:d8:1a:de:d9:42:1f:dd:99:ab:6a:58:
3d:a8:35:b2:c8:12:a9:14:13:70:01:fc:f8:c2:3a:
15:8c:3f:77:ba:29:78:33:06:92:50:e4:e2:b9:cb:
72:a5:08:88:1a:8d:4a:b0:3a:f9:c3:db:68:4f:40:
3a:5d:d7:0e:8f:0c:c1:b8:8d:5e:19:0d:95:36:a6:
53:69:79:1d:fc:cc:5f:80:f4:28:c2:72:09:95:32:
fe:1c:ed:9a:12:5b:c8:d1:63:b7:6a:79:cc:d6:d3:
cc:00:e3:f4:65:04:ad:94:cf:3a:ef:06:83:05:af:
72:d1:ec:32:5c:31:89:ba:bd:bf:e7:af:3c:ae:39:
a9:8f:b3:da:e8:80:70:ae:e7:4c:35:dc:f7:cc:a2:
4e:03:ee:03:a6:7a:b1:9e:44:7e:0d:6a:97:ae:91:
84:e3:a6:41:3d:12:65:1b:92:42:b9:4f:be:da:d6:
03:ed:d5:d2:b0:06:28:68:02:de:7b:76:bf:47:ad:
a8:84:f6:a8:12:a2:36:cf:fa:a9:1c:a4:85:a9:61:
2b:34:85:63:af:ff:cd:b8:e2:d1:3c:6c:d7:d6:58:
4c:da:b2:11:dd:6a:73:1a:7a:99:96:3b:db:4b:cd:
f7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:97:2D:83:8B:C8:B7:F4:71:F9:CE:D3:8B:5C:AE:1B:A7:BE:E5:BF
X509v3 Authority Key Identifier:
keyid:BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/6D188172BF5C11F098B79354C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
134.75.1.0/24
134.75.15.0-134.75.16.255
134.75.101.0-134.75.103.255
134.75.105.0/24
134.75.107.0-134.75.108.255
134.75.123.0-134.75.132.255
134.75.200.0/24
134.75.203.0/24
134.75.207.0/24
134.75.252.0-134.75.254.255
Signature Algorithm: sha256WithRSAEncryption
d7:f8:9f:3c:fb:79:a3:f8:4f:66:9a:b0:0a:dd:8f:96:69:81:
ee:be:c2:31:d6:3c:6c:ea:f9:a2:16:85:91:a6:61:33:c9:2b:
41:76:7b:c7:a3:51:20:34:47:b0:88:67:40:50:c2:19:a2:f1:
f0:4f:eb:14:51:7f:2d:45:e2:fe:b3:c8:c2:e1:69:cc:2c:b3:
8a:d7:9c:9c:08:18:1e:e6:37:39:5e:cf:15:15:3b:ee:90:5e:
72:b2:0b:08:27:90:5e:a7:02:fd:9b:fd:88:28:3e:b0:79:d1:
90:0d:12:30:66:ad:52:47:2a:8a:16:52:ff:f4:21:8a:2d:06:
b3:72:65:87:0e:09:bd:5d:0a:0c:41:e1:10:c7:9c:77:40:d0:
9c:f9:59:59:ef:8f:76:07:4b:be:ec:ba:57:8f:16:b5:88:66:
1e:87:a0:e2:a1:42:e5:a5:b2:ef:c4:78:18:30:7d:19:d3:7e:
bb:4a:c8:40:74:b8:1c:2b:18:98:a8:08:3a:74:d0:dd:c4:fc:
cd:40:13:85:1d:9e:e5:68:2d:f3:7c:ce:c4:12:e7:2e:ca:05:
01:56:62:2a:4e:a7:dc:77:e7:cb:36:78:dc:35:f5:5b:8e:b9:
66:6c:7c:2d:a6:f4:53:c4:e7:cf:7a:9f:6a:ef:6a:8c:ad:a8:
85:15:44:27
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 13 15:36:33 2026 by rpki-client