Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
File: 64A2C96E919E11EEA5241125C4F9AE02.roa (raw, json)
Hash identifier: qjBgBEX3jOgtbJNGuGFTdQVysziOvPHYcPyyJLAbTnM=
Subject key identifier: 47:DD:79:B4:23:96:E8:B1:96:4F:C9:4A:82:6E:62:DF:46:44:00:72
Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34
Certificate serial: 0D18
Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
Signing time: Sun 01 Mar 2026 09:23:49 +0000
ROA not before: Fri 04 Apr 2025 18:58:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137515
IP address blocks: 103.111.120.0/22 maxlen: 24
2405:7e40::/32 maxlen: 36
2405:7e40:f100::/48 maxlen: 48
2405:7e40:f101::/48 maxlen: 48
2405:7e40:f102::/48 maxlen: 48
2405:7e40:f103::/48 maxlen: 48
2405:7e40:f104::/48 maxlen: 48
2405:7e40:f105::/48 maxlen: 48
2405:7e40:f106::/48 maxlen: 48
2405:7e40:f107::/48 maxlen: 48
2405:7e40:f108::/48 maxlen: 48
2405:7e40:f109::/48 maxlen: 48
2405:7e40:f10a::/48 maxlen: 48
2405:7e40:f10b::/48 maxlen: 48
2405:7e40:f10c::/48 maxlen: 48
2405:7e40:f10d::/48 maxlen: 48
2405:7e40:f10e::/48 maxlen: 48
2405:7e40:f10f::/48 maxlen: 48
2405:7e40:f110::/48 maxlen: 48
2405:7e40:f111::/48 maxlen: 48
2405:7e40:f112::/48 maxlen: 48
2405:7e40:f113::/48 maxlen: 48
2405:7e40:f114::/48 maxlen: 48
2405:7e40:f115::/48 maxlen: 48
2405:7e40:f116::/48 maxlen: 48
2405:7e40:f117::/48 maxlen: 48
2405:7e40:f118::/48 maxlen: 48
2405:7e40:f119::/48 maxlen: 48
2405:7e40:f11a::/48 maxlen: 48
2405:7e40:f11b::/48 maxlen: 48
2405:7e40:f11c::/48 maxlen: 48
2405:7e40:f11d::/48 maxlen: 48
2405:7e40:f11e::/48 maxlen: 48
2405:7e40:f11f::/48 maxlen: 48
2405:7e40:f120::/48 maxlen: 48
2405:7e40:f121::/48 maxlen: 48
2405:7e40:f122::/48 maxlen: 48
2405:7e40:f123::/48 maxlen: 48
2405:7e40:f124::/48 maxlen: 48
2405:7e40:f125::/48 maxlen: 48
2405:7e40:f126::/48 maxlen: 48
2405:7e40:f127::/48 maxlen: 48
2405:7e40:f128::/48 maxlen: 48
2405:7e40:f129::/48 maxlen: 48
2405:7e40:f12a::/48 maxlen: 48
2405:7e40:f12b::/48 maxlen: 48
2405:7e40:f12c::/48 maxlen: 48
2405:7e40:f12d::/48 maxlen: 48
2405:7e40:f12e::/48 maxlen: 48
2405:7e40:f12f::/48 maxlen: 48
2405:7e40:f130::/48 maxlen: 48
2405:7e40:f131::/48 maxlen: 48
2405:7e40:f132::/48 maxlen: 48
2405:7e40:f133::/48 maxlen: 48
2405:7e40:f134::/48 maxlen: 48
2405:7e40:f135::/48 maxlen: 48
2405:7e40:f136::/48 maxlen: 48
2405:7e40:f137::/48 maxlen: 48
2405:7e40:f138::/48 maxlen: 48
2405:7e40:f139::/48 maxlen: 48
2405:7e40:f13a::/48 maxlen: 48
2405:7e40:f13b::/48 maxlen: 48
2405:7e40:f13c::/48 maxlen: 48
2405:7e40:f13d::/48 maxlen: 48
2405:7e40:f13e::/48 maxlen: 48
2405:7e40:f13f::/48 maxlen: 48
2405:7e40:f910::/48 maxlen: 48
2405:7e40:f911::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl
rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 16:03:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3352 (0xd18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34
Validity
Not Before: Apr 4 18:58:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69a405a4-a76f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8a:0e:9e:8b:18:53:c6:c0:6c:a4:97:de:ba:
96:7b:e7:07:51:01:cd:38:aa:b9:96:17:41:24:e2:
9c:98:5b:d8:f1:9b:47:32:54:e0:25:6e:fa:f6:02:
b4:6d:a8:82:26:8d:e8:45:38:ee:ce:cf:a9:11:34:
5b:6d:cf:fa:72:08:a1:ec:db:82:28:12:c2:24:6d:
aa:ee:d2:03:9e:ed:5a:e8:a4:3d:e2:55:a7:f5:d5:
eb:f6:1f:07:e2:c6:a0:86:e3:6a:cb:a3:8b:87:90:
ce:aa:92:89:e5:b8:91:64:44:82:a6:ac:59:69:a8:
f6:0f:54:f0:55:1d:ff:a9:24:05:50:cc:31:07:94:
12:06:5a:6b:d8:73:06:c1:f3:9e:dc:f7:3c:97:43:
f1:42:1b:41:66:c2:02:94:5a:8f:3e:65:9a:e5:70:
2c:b0:1a:5e:7f:1c:89:76:f1:2d:cd:e8:bd:46:37:
95:95:7c:7d:4d:36:70:93:8a:e5:ba:5b:0b:25:fc:
fa:f4:5f:c0:cc:2d:52:13:f1:65:1d:71:c3:77:4c:
bf:1f:45:b7:3c:8f:03:de:5d:d7:8d:f4:00:43:31:
a9:94:d1:bc:e6:bd:a4:86:17:91:d7:c5:d3:c5:d4:
5b:4b:5f:72:dd:48:fc:86:b9:56:3c:f4:5e:e2:af:
90:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:DD:79:B4:23:96:E8:B1:96:4F:C9:4A:82:6E:62:DF:46:44:00:72
X509v3 Authority Key Identifier:
keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/64A2C96E919E11EEA5241125C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.111.120.0/22
IPv6:
2405:7e40::/32
Signature Algorithm: sha256WithRSAEncryption
6c:4e:07:16:3c:3b:7c:8b:b5:fe:4d:93:a3:b2:93:94:81:ca:
fd:6f:70:e4:15:3d:b8:86:1e:a3:9a:a9:76:17:68:1f:4b:e5:
62:0f:38:da:0d:b5:da:b5:7f:2a:ed:35:b2:fd:1b:b8:4f:e4:
ab:b8:7d:84:db:d7:ea:7a:fe:a5:35:24:b8:eb:00:1d:e8:bf:
10:87:2d:00:55:7a:5e:2a:f4:41:4f:3b:89:4f:1c:ce:6c:74:
94:99:98:4e:f2:bb:6a:84:e7:a4:9c:e0:0f:86:3d:bc:f6:5a:
7b:2c:6a:de:b9:67:e1:d8:9d:0b:e3:04:54:2b:40:32:62:fe:
8a:aa:31:ef:b2:a0:21:37:43:7e:4e:3b:13:86:8f:6a:ae:d8:
aa:34:76:77:4d:2b:84:35:08:ae:80:9f:7c:21:f5:d7:fa:ce:
d3:62:07:76:64:43:cc:c9:2b:2b:0a:af:3f:b0:73:ce:eb:fb:
9e:4a:24:83:a0:69:fc:4f:1c:92:0b:77:87:29:c3:d0:a0:a3:
f9:1b:71:3d:37:19:86:c3:06:49:32:9b:23:2e:50:ec:99:4f:
2a:25:07:69:fe:b9:c2:64:b4:84:70:13:35:ac:0f:30:b8:2f:
f6:a8:5b:ca:39:c0:77:30:cb:47:75:dc:b9:b2:94:7d:d9:ab:
18:b7:5b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:13:54 2026 by rpki-client