Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/129B2BBE2D7F11F197CBCE2494833773.roa
File: 129B2BBE2D7F11F197CBCE2494833773.roa (raw, json)
Hash identifier: 2iaTrytb8h/Tg9BUcmcg4KJaklAqvCugyc1NFxxt2eE=
Subject key identifier: F6:40:AB:CB:57:09:AE:D4:16:94:2F:1B:A5:D2:D8:57:F4:6F:8E:E6
Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial: 2080
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/129B2BBE2D7F11F197CBCE2494833773.roa
Signing time: Wed 01 Apr 2026 09:04:12 +0000
ROA not before: Wed 01 Apr 2026 09:04:12 +0000
ROA not after: Tue 01 Dec 2026 00:00:00 +0000
asID: 4134
IP address blocks: 1.1.4.0/22 maxlen: 22
1.1.16.0/20 maxlen: 20
1.1.32.0/19 maxlen: 19
1.2.9.0/24 maxlen: 24
1.2.10.0/24 maxlen: 24
1.2.11.0/24 maxlen: 24
1.2.12.0/22 maxlen: 22
1.3.0.0/16 maxlen: 16
1.10.64.0/18 maxlen: 18
1.180.0.0/14 maxlen: 14
27.54.72.0/21 maxlen: 21
39.0.64.0/18 maxlen: 18
39.0.128.0/17 maxlen: 17
42.0.16.0/21 maxlen: 21
42.99.64.0/19 maxlen: 19
42.123.0.0/19 maxlen: 19
42.187.0.0/18 maxlen: 18
42.194.64.0/18 maxlen: 18
60.191.227.0/24 maxlen: 24
101.99.96.0/19 maxlen: 19
101.102.64.0/19 maxlen: 19
101.102.104.0/21 maxlen: 21
101.128.16.0/20 maxlen: 20
101.128.32.0/19 maxlen: 19
101.234.96.0/19 maxlen: 19
101.251.32.0/19 maxlen: 19
103.22.56.0/22 maxlen: 22
106.0.64.0/18 maxlen: 18
110.94.0.0/15 maxlen: 15
114.79.64.0/18 maxlen: 18
115.166.64.0/19 maxlen: 19
120.88.8.0/21 maxlen: 21
121.56.0.0/15 maxlen: 15
124.76.0.0/14 maxlen: 14
124.112.0.0/15 maxlen: 15
124.117.0.0/16 maxlen: 16
124.117.233.0/24 maxlen: 24
124.224.0.0/16 maxlen: 16
124.225.0.0/16 maxlen: 16
124.234.0.0/15 maxlen: 15
125.76.128.0/17 maxlen: 17
125.80.0.0/13 maxlen: 13
125.104.0.0/13 maxlen: 13
150.0.0.0/16 maxlen: 16
150.121.0.0/16 maxlen: 16
202.67.0.0/22 maxlen: 24
202.73.128.0/22 maxlen: 24
202.86.252.0/22 maxlen: 22
202.95.240.0/21 maxlen: 24
202.96.112.0/20 maxlen: 20
202.98.128.0/19 maxlen: 19
202.150.224.0/19 maxlen: 19
202.166.224.0/19 maxlen: 19
202.191.72.0/21 maxlen: 24
202.191.80.0/20 maxlen: 24
203.22.78.0/24 maxlen: 24
203.24.186.0/23 maxlen: 23
203.33.67.0/24 maxlen: 24
203.33.68.0/24 maxlen: 24
203.33.73.0/24 maxlen: 24
203.33.79.0/24 maxlen: 24
203.33.100.0/24 maxlen: 24
203.33.122.0/24 maxlen: 24
203.33.129.0/24 maxlen: 24
203.33.131.0/24 maxlen: 24
203.86.96.0/19 maxlen: 19
203.144.96.0/19 maxlen: 19
218.0.0.0/16 maxlen: 16
218.2.0.0/16 maxlen: 16
218.2.122.0/24 maxlen: 24
218.6.0.0/17 maxlen: 17
218.14.0.0/15 maxlen: 15
218.20.0.0/16 maxlen: 16
218.21.0.0/19 maxlen: 19
218.21.32.0/20 maxlen: 20
218.21.48.0/20 maxlen: 20
218.21.64.0/18 maxlen: 18
218.62.128.0/17 maxlen: 19
218.64.0.0/16 maxlen: 16
218.92.0.0/16 maxlen: 16
218.100.128.0/17 maxlen: 17
2402:8800::/48 maxlen: 48
2402:8800:fee0::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Apr 2026 16:11:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8320 (0x2080)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Validity
Not Before: Apr 1 09:04:12 2026 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=69ccdf8b-4f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:37:45:9c:72:5e:25:d4:64:ec:e1:03:d4:ba:
c1:10:c3:4b:fd:8d:d3:cd:35:c9:20:b0:62:f7:34:
72:b3:d9:ff:c8:e6:91:67:5b:7b:d3:7e:d3:5f:33:
99:ab:75:62:6e:34:f1:94:f4:aa:73:3b:ea:1d:f6:
5d:8a:b4:de:e7:19:a8:33:de:b3:bb:6c:ae:26:aa:
23:9a:17:7a:e6:1c:08:9b:b6:6c:79:bd:9c:73:25:
db:77:86:35:b5:56:64:60:45:1e:12:65:3a:b9:1b:
d2:4a:7e:02:da:b7:0e:4a:66:5a:c4:72:27:61:82:
26:c0:f8:a3:c9:22:b7:d7:79:d1:b4:31:aa:53:c6:
a6:6f:3b:68:29:0a:23:95:d0:51:31:e7:e4:a7:2c:
da:2f:32:9a:76:d9:30:72:9d:b3:1f:ea:47:65:ad:
bf:b6:c3:67:9c:52:99:05:c1:6c:7a:50:fa:10:e6:
91:b8:74:fa:33:d2:c1:ba:5b:51:d4:9e:f1:e3:70:
d7:6e:ef:b0:1d:20:81:67:12:5a:66:dd:69:03:35:
eb:49:fa:f6:da:1f:98:d1:28:6e:f4:45:a6:65:bf:
61:6b:93:f3:d4:f8:fe:7b:19:ed:9c:66:b1:af:67:
9b:88:9d:09:16:b6:a9:38:c5:50:17:8c:56:a4:da:
75:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:40:AB:CB:57:09:AE:D4:16:94:2F:1B:A5:D2:D8:57:F4:6F:8E:E6
X509v3 Authority Key Identifier:
keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/129B2BBE2D7F11F197CBCE2494833773.roa
sbgp-ipAddrBlock: critical
IPv4:
1.1.4.0/22
1.1.16.0-1.1.63.255
1.2.9.0-1.2.15.255
1.3.0.0/16
1.10.64.0/18
1.180.0.0/14
27.54.72.0/21
39.0.64.0-39.0.255.255
42.0.16.0/21
42.99.64.0/19
42.123.0.0/19
42.187.0.0/18
42.194.64.0/18
60.191.227.0/24
101.99.96.0/19
101.102.64.0/19
101.102.104.0/21
101.128.16.0-101.128.63.255
101.234.96.0/19
101.251.32.0/19
103.22.56.0/22
106.0.64.0/18
110.94.0.0/15
114.79.64.0/18
115.166.64.0/19
120.88.8.0/21
121.56.0.0/15
124.76.0.0/14
124.112.0.0/15
124.117.0.0/16
124.224.0.0/15
124.234.0.0/15
125.76.128.0/17
125.80.0.0/13
125.104.0.0/13
150.0.0.0/16
150.121.0.0/16
202.67.0.0/22
202.73.128.0/22
202.86.252.0/22
202.95.240.0/21
202.96.112.0/20
202.98.128.0/19
202.150.224.0/19
202.166.224.0/19
202.191.72.0-202.191.95.255
203.22.78.0/24
203.24.186.0/23
203.33.67.0-203.33.68.255
203.33.73.0/24
203.33.79.0/24
203.33.100.0/24
203.33.122.0/24
203.33.129.0/24
203.33.131.0/24
203.86.96.0/19
203.144.96.0/19
218.0.0.0/16
218.2.0.0/16
218.6.0.0/17
218.14.0.0/15
218.20.0.0-218.21.127.255
218.62.128.0/17
218.64.0.0/16
218.92.0.0/16
218.100.128.0/17
IPv6:
2402:8800::/48
2402:8800:fee0::/44
Signature Algorithm: sha256WithRSAEncryption
10:60:0e:62:f7:45:81:aa:5f:39:74:bf:db:81:3d:84:68:01:
c0:86:1a:68:3c:f4:c0:d3:78:d7:9e:e1:df:fd:14:24:10:39:
f1:9e:d0:6d:64:ae:a1:c3:1a:59:7e:ba:f7:7d:d4:5a:90:c0:
a5:6b:3a:f8:45:15:f9:0b:3f:09:61:45:c7:72:74:f6:54:25:
a9:2d:5a:0f:4b:00:ad:8e:98:50:0a:fd:48:5a:30:44:60:1c:
e5:38:ca:51:0d:57:7a:09:85:d0:78:d0:05:c2:f3:f8:84:3d:
73:6e:03:59:27:6d:c3:d0:0e:15:a5:de:82:0f:f3:ab:67:4e:
c5:57:f9:66:62:43:c3:0c:84:81:2d:dd:9d:86:c5:1c:bb:9d:
c3:ab:61:fd:7a:ef:11:46:92:ca:e1:f1:00:9b:1d:f5:5b:27:
4a:b6:61:fa:3b:d7:3e:2b:01:02:12:ae:14:cb:e3:26:b1:70:
4b:2f:5d:5e:3f:fb:69:94:24:af:e2:84:3b:b1:97:c9:92:04:
e8:ef:14:9a:1b:85:31:52:f5:d9:7d:08:ad:e1:32:33:47:85:
79:44:47:22:19:90:5b:cf:da:0f:b8:70:f3:64:5c:64:0d:5b:
c4:be:c7:c9:bd:a7:e7:bc:db:2a:ec:06:07:bb:59:a5:1e:16:
d3:1d:9a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:04:10 2026 by rpki-client