Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/83C2F8EE2F1F11F0AC29D057C4F9AE02.roa
File: 83C2F8EE2F1F11F0AC29D057C4F9AE02.roa (raw, json)
Hash identifier: rj6KJYmEp2+rKQLylz+2OmMmAyRJ6sC36RLgakzwgyI=
Subject key identifier: 21:10:D3:C3:26:0E:57:E4:38:B7:30:71:6F:8F:2B:1D:CC:7F:01:10
Certificate issuer: /CN=A914DA2D/serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5
Certificate serial: 03D0
Authority key identifier: D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/83C2F8EE2F1F11F0AC29D057C4F9AE02.roa
Signing time: Sun 01 Mar 2026 11:30:29 +0000
ROA not before: Thu 21 Aug 2025 02:30:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17882
IP address blocks: 64.119.16.0/24 maxlen: 24
64.119.17.0/24 maxlen: 24
64.119.18.0/24 maxlen: 24
64.119.19.0/24 maxlen: 24
64.119.20.0/24 maxlen: 24
64.119.21.0/24 maxlen: 24
64.119.22.0/24 maxlen: 24
64.119.23.0/24 maxlen: 24
64.119.24.0/24 maxlen: 24
64.119.25.0/24 maxlen: 24
64.119.26.0/24 maxlen: 24
64.119.27.0/24 maxlen: 24
64.119.28.0/24 maxlen: 24
64.119.29.0/24 maxlen: 24
64.119.30.0/24 maxlen: 24
64.119.31.0/24 maxlen: 24
66.181.160.0/24 maxlen: 24
66.181.161.0/24 maxlen: 24
66.181.162.0/24 maxlen: 24
66.181.163.0/24 maxlen: 24
66.181.164.0/24 maxlen: 24
66.181.165.0/24 maxlen: 24
66.181.166.0/24 maxlen: 24
66.181.167.0/24 maxlen: 24
66.181.168.0/24 maxlen: 24
66.181.169.0/24 maxlen: 24
66.181.170.0/24 maxlen: 24
66.181.171.0/24 maxlen: 24
66.181.172.0/24 maxlen: 24
66.181.173.0/24 maxlen: 24
66.181.174.0/24 maxlen: 24
66.181.175.0/24 maxlen: 24
66.181.176.0/24 maxlen: 24
66.181.177.0/24 maxlen: 24
66.181.178.0/24 maxlen: 24
66.181.179.0/24 maxlen: 24
66.181.180.0/24 maxlen: 24
66.181.181.0/24 maxlen: 24
66.181.182.0/24 maxlen: 24
66.181.183.0/24 maxlen: 24
66.181.184.0/24 maxlen: 24
66.181.185.0/24 maxlen: 24
66.181.186.0/24 maxlen: 24
66.181.187.0/24 maxlen: 24
66.181.188.0/24 maxlen: 24
66.181.189.0/24 maxlen: 24
66.181.190.0/24 maxlen: 24
66.181.191.0/24 maxlen: 24
192.82.64.0/24 maxlen: 24
192.82.65.0/24 maxlen: 24
192.82.66.0/24 maxlen: 24
192.82.67.0/24 maxlen: 24
192.82.68.0/24 maxlen: 24
192.82.69.0/24 maxlen: 24
192.82.70.0/24 maxlen: 24
192.82.71.0/24 maxlen: 24
192.82.72.0/24 maxlen: 24
192.82.73.0/24 maxlen: 24
192.82.74.0/24 maxlen: 24
192.82.75.0/24 maxlen: 24
192.82.76.0/24 maxlen: 24
192.82.77.0/24 maxlen: 24
192.82.79.0/24 maxlen: 24
192.82.92.0/24 maxlen: 24
192.82.93.0/24 maxlen: 24
192.82.94.0/24 maxlen: 24
192.82.95.0/24 maxlen: 24
192.82.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl
rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 01:55:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 976 (0x3d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914DA2D, serialNumber=D7CB6D1DDCF934A1F59E4FFE4982F0B4C52C35F5
Validity
Not Before: Aug 21 02:30:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69a42355-d299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3b:06:58:21:73:fd:34:2d:29:a8:ef:e2:f4:
1f:31:9b:db:ac:96:eb:34:70:30:f1:ae:f1:23:2c:
c1:26:27:45:bb:2e:3d:4b:c7:c3:80:d9:eb:85:18:
c4:38:4b:1b:aa:bf:02:27:35:42:96:9a:1c:16:74:
b9:8f:ac:4c:ff:11:d2:6a:d0:11:b3:b2:9e:cf:49:
cd:75:48:a6:34:21:4b:1c:5e:e6:bf:25:06:0e:57:
5f:e3:c7:5c:0b:4a:24:d2:24:17:1b:fd:9f:34:39:
f2:fc:0b:b6:0d:ac:80:a3:e3:4a:ce:73:c0:b5:c5:
b9:14:ff:e4:4c:8a:08:23:c2:e2:b5:45:c4:6c:ac:
ec:b3:2d:22:e2:2f:27:e0:01:55:31:f6:80:a4:b7:
e2:4b:5a:82:6b:91:f2:86:ee:88:93:48:4c:ed:cd:
cd:d6:5c:39:d5:1a:d8:63:9b:5c:24:a6:63:de:ab:
9c:0e:08:42:76:7c:06:c9:bc:a6:27:90:11:89:e3:
f1:45:57:65:59:7e:97:63:c2:c9:f0:da:fd:f9:f0:
bb:58:08:56:59:3e:d7:7d:80:11:07:ce:0f:60:df:
79:e2:40:79:24:6a:82:ef:1c:a7:73:4a:42:d1:b8:
5e:05:cf:c8:61:59:8f:a7:55:b5:c4:02:99:48:84:
8e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:10:D3:C3:26:0E:57:E4:38:B7:30:71:6F:8F:2B:1D:CC:7F:01:10
X509v3 Authority Key Identifier:
keyid:D7:CB:6D:1D:DC:F9:34:A1:F5:9E:4F:FE:49:82:F0:B4:C5:2C:35:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/18ttHdz5NKH1nk_-SYLwtMUsNfU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/18ttHdz5NKH1nk_-SYLwtMUsNfU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/72B5F292D27D11ECA73EF154C4F9AE02/83C2F8EE2F1F11F0AC29D057C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
64.119.16.0/20
66.181.160.0/19
192.82.64.0-192.82.77.255
192.82.79.0/24
192.82.92.0/22
192.82.100.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f1:54:60:11:ba:63:0e:ef:af:bb:15:ec:f6:66:e1:20:85:
72:64:a7:3c:88:96:68:64:a7:59:88:74:99:45:a0:c5:e7:1e:
3d:de:be:77:6a:db:b1:a6:dd:31:b4:11:b1:ad:40:40:52:8a:
92:70:1a:46:50:4c:bb:d9:cd:80:04:fc:f9:31:cc:69:32:d3:
82:d8:59:60:77:e4:41:07:08:b8:e8:91:eb:7b:3e:04:06:29:
f0:4a:65:31:b8:25:58:ec:16:56:00:f0:3b:07:cc:bf:a6:a7:
20:81:79:6a:6a:e3:ff:a2:c7:83:eb:12:8e:fa:0a:80:5a:3c:
2e:b6:ea:aa:39:ad:2f:9c:ad:a2:25:7d:4b:a1:a1:5f:e9:92:
1e:69:6f:22:8b:77:2b:40:05:61:3c:cb:66:e1:cb:9a:7a:1b:
46:90:08:84:c3:69:74:8a:d9:9a:20:93:56:da:6f:20:6c:95:
10:c0:99:82:bc:3e:78:d4:dd:0b:6a:dc:36:8e:21:b3:7d:7f:
4a:88:d8:5c:35:91:a7:bb:b1:59:d5:6d:d2:84:35:cb:64:b6:
bc:bc:8b:5a:81:7b:00:9a:95:83:54:4d:fb:77:97:42:1e:e6:
96:20:27:e6:b4:97:98:2a:cb:50:13:70:f8:a3:a2:2b:3a:76:
4d:dc:89:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:29:31 2026 by rpki-client