Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/7171F028473E11F091D81586C4F9AE02.roa
File: 7171F028473E11F091D81586C4F9AE02.roa (raw, json)
Hash identifier: tEkq5majHKvkM53Bt92EO4jxoAaUb9F8DXETDUgsRg4=
Subject key identifier: 49:56:6E:31:AB:3C:10:72:54:FF:70:48:B6:02:BB:80:BF:F7:70:5F
Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial: 1F05
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/7171F028473E11F091D81586C4F9AE02.roa
Signing time: Thu 12 Jun 2025 03:36:36 +0000
ROA not before: Thu 12 Jun 2025 03:36:36 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 4134
IP address blocks: 1.1.4.0/22 maxlen: 22
1.1.16.0/20 maxlen: 20
1.2.9.0/24 maxlen: 24
1.2.10.0/24 maxlen: 24
1.2.11.0/24 maxlen: 24
1.2.12.0/22 maxlen: 22
1.3.0.0/16 maxlen: 16
1.10.64.0/18 maxlen: 18
1.180.0.0/14 maxlen: 14
27.54.72.0/21 maxlen: 21
39.0.64.0/18 maxlen: 18
39.0.128.0/17 maxlen: 17
42.0.16.0/21 maxlen: 21
42.99.64.0/19 maxlen: 19
42.123.0.0/19 maxlen: 19
42.187.0.0/18 maxlen: 18
42.194.64.0/18 maxlen: 18
101.99.96.0/19 maxlen: 19
101.102.64.0/19 maxlen: 19
101.102.104.0/21 maxlen: 21
101.128.16.0/20 maxlen: 20
101.128.32.0/19 maxlen: 19
101.234.96.0/19 maxlen: 19
101.251.32.0/19 maxlen: 19
103.22.56.0/22 maxlen: 22
106.0.64.0/18 maxlen: 18
110.94.0.0/15 maxlen: 15
114.79.64.0/18 maxlen: 18
115.166.64.0/19 maxlen: 19
120.88.8.0/21 maxlen: 21
121.56.0.0/15 maxlen: 15
124.76.0.0/14 maxlen: 14
124.112.0.0/15 maxlen: 15
124.117.0.0/16 maxlen: 16
124.117.233.0/24 maxlen: 24
124.224.0.0/16 maxlen: 16
124.225.0.0/16 maxlen: 16
124.234.0.0/15 maxlen: 15
125.76.128.0/17 maxlen: 17
125.80.0.0/13 maxlen: 13
125.104.0.0/13 maxlen: 13
150.121.0.0/16 maxlen: 16
202.67.0.0/22 maxlen: 24
202.73.128.0/22 maxlen: 24
202.86.252.0/22 maxlen: 22
202.95.240.0/21 maxlen: 24
202.96.112.0/20 maxlen: 20
202.98.128.0/19 maxlen: 19
202.150.224.0/19 maxlen: 19
202.166.224.0/19 maxlen: 19
202.191.72.0/21 maxlen: 24
202.191.80.0/20 maxlen: 24
203.22.78.0/24 maxlen: 24
203.24.186.0/23 maxlen: 23
203.33.67.0/24 maxlen: 24
203.33.68.0/24 maxlen: 24
203.33.73.0/24 maxlen: 24
203.33.79.0/24 maxlen: 24
203.33.100.0/24 maxlen: 24
203.33.122.0/24 maxlen: 24
203.33.129.0/24 maxlen: 24
203.33.131.0/24 maxlen: 24
203.86.96.0/19 maxlen: 19
203.144.96.0/19 maxlen: 19
218.0.0.0/16 maxlen: 16
218.2.0.0/16 maxlen: 16
218.2.122.0/24 maxlen: 24
218.6.0.0/17 maxlen: 17
218.14.0.0/15 maxlen: 15
218.20.0.0/16 maxlen: 16
218.21.0.0/19 maxlen: 19
218.21.32.0/20 maxlen: 20
218.21.48.0/20 maxlen: 20
218.21.64.0/18 maxlen: 18
218.62.128.0/17 maxlen: 19
218.64.0.0/16 maxlen: 16
218.92.0.0/16 maxlen: 16
218.100.128.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 27 Jun 2025 16:20:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7941 (0x1f05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Validity
Not Before: Jun 12 03:36:36 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=684a4b44-53ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:21:f5:98:9c:b8:62:64:38:2f:7b:57:75:4c:
04:01:a7:8b:1d:c4:0b:c0:f3:b2:c6:b3:39:f4:33:
1e:ef:c5:02:08:81:f9:8c:50:df:f8:9d:24:d6:75:
bc:de:88:eb:b0:c2:e9:22:6d:f2:ca:2f:4e:60:68:
8b:33:46:61:9c:7e:1d:af:aa:7c:3b:21:e9:3a:65:
71:6e:12:45:9c:dd:ad:7d:90:45:2e:a1:61:16:ee:
1f:89:8e:0b:4a:02:24:4f:da:34:a5:7c:e8:33:72:
a2:52:0e:89:c4:ca:cf:34:a5:44:25:28:c8:34:0c:
68:90:35:2e:ff:12:d0:6d:ab:69:ed:7c:42:97:40:
a3:a2:be:5c:d0:8d:ba:ef:c5:fa:76:e3:96:77:24:
bc:db:ec:6d:31:bc:63:3b:54:b8:cb:6e:4a:33:7d:
99:72:0a:eb:25:0e:9b:c5:b0:53:a6:cc:bf:c0:e2:
2e:ac:d8:ef:a7:67:e9:c5:6e:51:57:0e:1f:4f:00:
f2:b0:d6:65:bc:33:d9:5f:b2:96:91:7c:41:e0:0f:
10:1a:42:0f:30:2e:24:c0:60:15:af:44:1d:f8:86:
6b:3b:5d:33:df:b8:9e:ce:1f:7b:ee:a8:0d:42:06:
80:5f:2a:48:93:32:5c:df:8a:e2:0c:d0:e0:5c:1f:
e3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:56:6E:31:AB:3C:10:72:54:FF:70:48:B6:02:BB:80:BF:F7:70:5F
X509v3 Authority Key Identifier:
keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/7171F028473E11F091D81586C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.1.4.0/22
1.1.16.0/20
1.2.9.0-1.2.15.255
1.3.0.0/16
1.10.64.0/18
1.180.0.0/14
27.54.72.0/21
39.0.64.0-39.0.255.255
42.0.16.0/21
42.99.64.0/19
42.123.0.0/19
42.187.0.0/18
42.194.64.0/18
101.99.96.0/19
101.102.64.0/19
101.102.104.0/21
101.128.16.0-101.128.63.255
101.234.96.0/19
101.251.32.0/19
103.22.56.0/22
106.0.64.0/18
110.94.0.0/15
114.79.64.0/18
115.166.64.0/19
120.88.8.0/21
121.56.0.0/15
124.76.0.0/14
124.112.0.0/15
124.117.0.0/16
124.224.0.0/15
124.234.0.0/15
125.76.128.0/17
125.80.0.0/13
125.104.0.0/13
150.121.0.0/16
202.67.0.0/22
202.73.128.0/22
202.86.252.0/22
202.95.240.0/21
202.96.112.0/20
202.98.128.0/19
202.150.224.0/19
202.166.224.0/19
202.191.72.0-202.191.95.255
203.22.78.0/24
203.24.186.0/23
203.33.67.0-203.33.68.255
203.33.73.0/24
203.33.79.0/24
203.33.100.0/24
203.33.122.0/24
203.33.129.0/24
203.33.131.0/24
203.86.96.0/19
203.144.96.0/19
218.0.0.0/16
218.2.0.0/16
218.6.0.0/17
218.14.0.0/15
218.20.0.0-218.21.127.255
218.62.128.0/17
218.64.0.0/16
218.92.0.0/16
218.100.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1d:1d:2c:24:8f:d6:e9:77:0e:94:88:74:c1:8a:e2:ce:c9:24:
d5:92:66:25:84:08:9f:be:03:07:56:68:97:d1:2e:d2:04:f4:
ab:d8:2e:e5:a6:2d:b0:e1:aa:ef:60:06:05:e8:9a:e1:42:51:
a9:96:5d:68:bc:f6:5f:2a:7a:8e:53:71:c9:7b:bd:e9:27:e4:
fe:b8:a7:17:fa:f2:4d:9e:de:4c:eb:f1:0b:ec:b5:de:5b:bb:
c3:12:5a:43:b7:08:d5:3f:66:53:8a:ae:4f:c6:dd:dc:31:91:
41:d8:8a:67:68:6c:9b:cd:d6:66:34:3e:5c:82:bf:a2:3e:45:
e7:45:1c:59:59:76:36:c8:fa:8e:c9:b2:11:76:f4:53:ac:d7:
e8:57:65:00:c8:b3:69:15:16:61:b9:46:52:3b:a6:02:4e:2b:
6b:1e:97:d6:9e:eb:80:de:e6:43:c2:6a:60:e8:0e:49:91:c7:
5b:d5:d6:f6:fb:f6:c8:cf:8b:b6:d9:4b:60:0e:0c:04:92:03:
e5:a7:74:16:7f:25:74:e0:8a:8a:19:ef:8c:0d:ec:f4:4e:34:
1d:08:76:b1:6b:6e:7a:9b:e4:c7:f0:95:8f:20:84:e6:11:af:
7d:96:7b:ce:a0:de:08:c9:53:d8:f2:58:cf:e2:db:d2:3c:1d:
ba:b2:31:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 19:29:06 2025 by rpki-client