Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
File: CCF0C1920EBA11ECB2C2867AC4F9AE02.roa (raw, json)
Hash identifier: h0rSrxTUJXsobys4znwNeKDjEgV7lxqTSG93M+EzW5c=
Subject key identifier: 11:8D:5A:87:DC:8A:19:77:2A:DE:09:C4:DE:9F:FF:DD:3E:6C:6C:8A
Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Certificate serial: 29A1
Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
Signing time: Thu 26 Feb 2026 05:15:07 +0000
ROA not before: Thu 26 Feb 2026 05:15:07 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 24440
IP address blocks: 36.255.44.0/22 maxlen: 24
43.242.100.0/22 maxlen: 24
58.65.192.0/19 maxlen: 24
61.5.128.0/19 maxlen: 24
101.53.224.0/19 maxlen: 24
103.7.60.0/22 maxlen: 24
103.18.8.0/22 maxlen: 24
103.18.12.0/22 maxlen: 24
103.18.20.0/22 maxlen: 24
103.26.80.0/22 maxlen: 24
103.26.84.0/22 maxlen: 24
103.31.92.0/22 maxlen: 24
103.31.100.0/22 maxlen: 24
103.31.104.0/22 maxlen: 24
103.244.172.0/22 maxlen: 24
103.244.176.0/22 maxlen: 24
103.245.132.0/22 maxlen: 24
103.245.192.0/22 maxlen: 24
119.13.184.0/21 maxlen: 24
124.29.192.0/18 maxlen: 24
175.107.192.0/18 maxlen: 24
202.47.32.0/19 maxlen: 24
202.163.64.0/19 maxlen: 24
202.163.96.0/19 maxlen: 24
203.101.160.0/19 maxlen: 24
218.100.85.0/24 maxlen: 24
2001:4538::/32 maxlen: 32
2001:4538:41::/48 maxlen: 48
2400:adc0:9::/64 maxlen: 64
2400:adc0:200::/48 maxlen: 48
2400:adc0:201::/48 maxlen: 48
2400:adc0:4005::/48 maxlen: 48
2400:adc0:4006::/48 maxlen: 48
2400:adc0:4013::/48 maxlen: 48
2400:adc0:4014::/48 maxlen: 48
2400:adc0:4104::/48 maxlen: 48
2400:adc0:4203::/48 maxlen: 48
2400:adc0:4204::/48 maxlen: 48
2400:adc0:4302::/48 maxlen: 48
2400:adc0:4303::/48 maxlen: 48
2400:adc0:4500::/48 maxlen: 48
2400:adc0:4611::/48 maxlen: 48
2400:adc0:4700::/48 maxlen: 48
2400:adc0:4710::/48 maxlen: 48
2400:adc0:4711::/48 maxlen: 48
2400:adc0:4900::/48 maxlen: 48
2400:adc0:4910::/48 maxlen: 48
2400:adc0:4a10::/48 maxlen: 48
2400:adc0:4b10::/48 maxlen: 48
2400:adc0:c001::/48 maxlen: 48
2400:adc0:c003::/48 maxlen: 48
2400:adc0:c030::/48 maxlen: 48
2400:adc0:c102::/48 maxlen: 48
2400:adc0:c103::/48 maxlen: 48
2400:adc0:c210::/48 maxlen: 48
2400:adc0:c211::/48 maxlen: 48
2400:adc0:c310::/48 maxlen: 48
2400:adc0:c410::/48 maxlen: 48
2400:adc0:c510::/48 maxlen: 48
2400:adc2:100::/48 maxlen: 48
2400:adc2:300::/40 maxlen: 40
2400:adc2:400::/40 maxlen: 40
2400:adc2:600::/40 maxlen: 40
2400:adc2:700::/40 maxlen: 40
2400:adc2:900::/40 maxlen: 40
2400:adc2:a00::/40 maxlen: 40
2400:adc4::/40 maxlen: 40
2400:adc4:100::/40 maxlen: 40
2400:adc4:800::/40 maxlen: 40
2400:adc4:900::/40 maxlen: 40
2400:adc5::/42 maxlen: 42
2400:adc5:40::/42 maxlen: 42
2400:adc5:80::/42 maxlen: 42
2400:adc5:c0::/42 maxlen: 42
2400:adc5:100::/42 maxlen: 42
2400:adc5:140::/42 maxlen: 42
2400:adc5:180::/42 maxlen: 42
2400:adc5:1c0::/42 maxlen: 42
2400:adc5:300::/42 maxlen: 42
2400:adc5:340::/42 maxlen: 42
2400:adc5:380::/42 maxlen: 42
2400:adc5:3c0::/42 maxlen: 42
2400:adc5:400::/42 maxlen: 42
2400:adc5:440::/42 maxlen: 42
2400:adc5:480::/42 maxlen: 42
2400:adc5:4c0::/42 maxlen: 42
2400:adca::/40 maxlen: 40
2400:adca:100::/40 maxlen: 40
2400:add9::/40 maxlen: 40
2400:add9:100::/40 maxlen: 40
2400:add9:200::/40 maxlen: 40
2400:add9:300::/40 maxlen: 40
2400:addb:800::/40 maxlen: 40
2400:addb:900::/40 maxlen: 40
2400:addd:2000::/40 maxlen: 40
2400:addd:2100::/40 maxlen: 40
2400:addd:2800::/40 maxlen: 40
2400:addd:2900::/40 maxlen: 40
2400:addd:4900::/40 maxlen: 40
2400:adde::/40 maxlen: 40
2400:adde:100::/40 maxlen: 40
2400:addf:800::/40 maxlen: 40
2400:addf:900::/40 maxlen: 40
2400:addf:1000::/40 maxlen: 40
2400:addf:1100::/40 maxlen: 40
2400:addf:2900::/40 maxlen: 40
2400:addf:3900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 07 Mar 2026 15:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10657 (0x29a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Validity
Not Before: Feb 26 05:15:07 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=699fd6db-6615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:a6:dd:2e:c2:25:34:b2:b2:d3:79:97:b5:
a1:df:2f:1a:79:54:84:63:7e:0b:7d:e1:c6:ba:5f:
cb:1e:de:1a:b3:b1:64:4c:50:c7:34:a4:98:14:d4:
aa:7b:23:2a:e3:e1:f0:4f:05:9e:d6:cc:36:68:49:
38:74:19:9b:c5:25:6c:92:e7:d3:ab:83:3f:2e:98:
04:a2:4b:71:31:fb:71:87:84:e1:ef:65:a8:67:9a:
ee:e1:51:e6:69:cc:68:9a:ab:9f:54:24:09:5f:1c:
e9:22:b0:c7:9a:54:d5:35:b7:76:10:ed:fa:72:a4:
ed:4a:b7:0c:9f:42:c3:b3:8f:e3:e7:a1:8a:d2:cb:
13:4d:68:52:3c:1a:e5:70:b5:23:ca:64:9f:00:98:
fb:ad:25:d6:23:2a:4f:96:5a:d0:dd:a1:c1:ce:3d:
7f:60:2f:73:74:35:47:6f:74:72:63:3e:f8:22:aa:
93:fd:7e:cd:6a:a9:a4:13:9e:0a:2c:27:2e:4f:4f:
75:35:b2:cb:1e:46:77:e0:fe:1a:8f:98:71:e8:c3:
fd:6a:60:bb:81:ff:ad:69:97:63:22:c8:fb:e9:c1:
c7:a6:59:62:3b:c2:ec:3c:76:4d:73:01:fa:08:a0:
a3:f5:98:b1:e9:ee:24:07:72:c4:12:16:1b:ac:8e:
ff:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8D:5A:87:DC:8A:19:77:2A:DE:09:C4:DE:9F:FF:DD:3E:6C:6C:8A
X509v3 Authority Key Identifier:
keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
36.255.44.0/22
43.242.100.0/22
58.65.192.0/19
61.5.128.0/19
101.53.224.0/19
103.7.60.0/22
103.18.8.0/21
103.18.20.0/22
103.26.80.0/21
103.31.92.0/22
103.31.100.0-103.31.107.255
103.244.172.0-103.244.179.255
103.245.132.0/22
103.245.192.0/22
119.13.184.0/21
124.29.192.0/18
175.107.192.0/18
202.47.32.0/19
202.163.64.0/18
203.101.160.0/19
218.100.85.0/24
IPv6:
2001:4538::/32
2400:adc0:9::/64
2400:adc0:200::/47
2400:adc0:4005::-2400:adc0:4006:ffff:ffff:ffff:ffff:ffff
2400:adc0:4013::-2400:adc0:4014:ffff:ffff:ffff:ffff:ffff
2400:adc0:4104::/48
2400:adc0:4203::-2400:adc0:4204:ffff:ffff:ffff:ffff:ffff
2400:adc0:4302::/47
2400:adc0:4500::/48
2400:adc0:4611::/48
2400:adc0:4700::/48
2400:adc0:4710::/47
2400:adc0:4900::/48
2400:adc0:4910::/48
2400:adc0:4a10::/48
2400:adc0:4b10::/48
2400:adc0:c001::/48
2400:adc0:c003::/48
2400:adc0:c030::/48
2400:adc0:c102::/47
2400:adc0:c210::/47
2400:adc0:c310::/48
2400:adc0:c410::/48
2400:adc0:c510::/48
2400:adc2:100::/48
2400:adc2:300::-2400:adc2:4ff:ffff:ffff:ffff:ffff:ffff
2400:adc2:600::/39
2400:adc2:900::-2400:adc2:aff:ffff:ffff:ffff:ffff:ffff
2400:adc4::/39
2400:adc4:800::/39
2400:adc5::/39
2400:adc5:300::-2400:adc5:4ff:ffff:ffff:ffff:ffff:ffff
2400:adca::/39
2400:add9::/38
2400:addb:800::/39
2400:addd:2000::/39
2400:addd:2800::/39
2400:addd:4900::/40
2400:adde::/39
2400:addf:800::/39
2400:addf:1000::/39
2400:addf:2900::/40
2400:addf:3900::/40
Signature Algorithm: sha256WithRSAEncryption
a6:c5:20:75:93:f6:8d:0c:49:c6:22:da:7d:52:c4:6e:0e:7f:
a2:d0:f5:ac:7c:a9:d7:1c:3a:16:db:c0:49:1f:c1:47:1e:b9:
25:5c:a4:55:34:15:60:23:87:1b:f4:cf:93:03:6d:0e:6c:7c:
1f:06:fa:9d:bd:cd:9b:4f:59:1d:c0:4f:8c:a0:67:8b:18:a9:
ee:db:b4:bc:74:4c:d4:84:a4:a7:2c:68:13:31:3a:7b:93:d9:
d4:57:6e:70:92:9f:66:f3:ea:ee:f8:c1:a8:53:c2:63:6b:23:
d0:6d:a4:c5:49:c7:83:6b:1e:c5:a3:31:17:46:57:67:36:0c:
3f:46:89:5c:b4:f4:5e:f2:bf:90:25:a9:8f:b7:d5:20:16:4c:
02:86:4f:16:81:74:db:ea:19:48:5a:ee:ca:76:39:3a:42:f9:
eb:ea:68:0f:94:de:a5:a4:97:6d:a7:56:a9:fd:8a:2d:a1:9e:
f1:e6:f6:f8:03:40:4b:a7:74:27:bc:fe:62:ef:d9:20:c4:f6:
2b:5b:c6:5f:f8:96:95:9c:e2:f0:e5:83:66:d9:89:9e:bf:74:
8e:bd:b5:2c:20:23:7b:9a:5e:70:4f:d1:ee:8d:82:80:e7:07:
17:9a:17:1e:1e:17:72:7c:5d:1f:f0:2a:ab:56:d7:9e:25:77:
bf:57:f1:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:22:29 2026 by rpki-client