Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa
File: 844EFBDA766C11EF8CE33A86C4F9AE02.roa (raw, json)
Hash identifier: 75n5q9t/oszYoszozCEXu11LQIIiL282/784Fcuo6Ew=
Subject key identifier: 29:08:EB:E5:75:37:37:69:E3:22:94:52:21:00:83:46:26:2F:D0:8C
Certificate issuer: /CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Certificate serial: 04EA
Authority key identifier: 60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa
Signing time: Thu 04 Jun 2026 07:59:39 +0000
ROA not before: Thu 04 Jun 2026 07:59:39 +0000
ROA not after: Wed 30 Dec 2026 00:00:00 +0000
asID: 147049
IP address blocks: 103.173.150.0/23 maxlen: 23
103.173.150.0/24 maxlen: 24
103.173.151.0/24 maxlen: 24
116.204.193.0/24 maxlen: 24
116.204.194.0/24 maxlen: 24
116.204.195.0/24 maxlen: 24
2407:e8c0::/48 maxlen: 48
2407:e8c0:1::/48 maxlen: 48
2407:e8c0:2::/48 maxlen: 48
2407:e8c0:3::/48 maxlen: 48
2407:e8c0:4::/48 maxlen: 48
2407:e8c0:5::/48 maxlen: 48
2407:e8c0:6::/48 maxlen: 48
2407:e8c0:7::/48 maxlen: 48
2407:e8c0:8::/48 maxlen: 48
2407:e8c0:9::/48 maxlen: 48
2407:e8c0:a::/48 maxlen: 48
2407:e8c0:b::/48 maxlen: 48
2407:e8c0:c::/48 maxlen: 48
2407:e8c0:d::/48 maxlen: 48
2407:e8c0:e::/48 maxlen: 48
2407:e8c0:f::/48 maxlen: 48
2407:e8c0:11::/48 maxlen: 48
2407:e8c0:12::/48 maxlen: 48
2407:e8c0:13::/48 maxlen: 48
2407:e8c0:1f::/48 maxlen: 48
2407:e8c0:20::/48 maxlen: 48
2407:e8c0:21::/48 maxlen: 48
2407:e8c0:22::/48 maxlen: 48
2407:e8c0:23::/48 maxlen: 48
2407:e8c0:24::/48 maxlen: 48
2407:e8c0:25::/48 maxlen: 48
2407:e8c0:26::/48 maxlen: 48
2407:e8c0:4a00::/40 maxlen: 40
2407:e8c0:4b00::/40 maxlen: 40
2407:e8c0:4c00::/40 maxlen: 40
2407:e8c0:4d00::/40 maxlen: 40
2407:e8c0:4e00::/40 maxlen: 40
2407:e8c0:4f00::/40 maxlen: 40
2407:e8c0:5000::/40 maxlen: 40
2407:e8c0:5100::/40 maxlen: 40
2407:e8c0:5200::/40 maxlen: 40
2407:e8c0:5300::/40 maxlen: 40
2407:e8c0:5400::/40 maxlen: 40
2407:e8c0:5500::/40 maxlen: 40
2407:e8c0:5600::/40 maxlen: 40
2407:e8c0:5700::/40 maxlen: 40
2407:e8c0:5800::/40 maxlen: 40
2407:e8c0:5a00::/40 maxlen: 40
2407:e8c0:5b00::/40 maxlen: 40
2407:e8c0:6000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl
rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1258 (0x4ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162EE1, serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Validity
Not Before: Jun 4 07:59:39 2026 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=6a21306b-f981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:26:f5:63:21:07:6c:32:bc:64:6c:d9:93:66:
3d:ea:14:b0:66:6f:68:82:ab:f9:49:10:cf:03:31:
cc:92:df:93:26:dd:a7:f3:b7:e3:90:37:82:76:01:
4f:7c:ac:36:a5:b6:9b:c0:f1:30:78:43:ea:6e:b7:
c7:83:59:51:a5:15:2b:dc:25:51:17:1c:e1:90:55:
ec:a3:e9:18:ff:e2:35:4d:a6:96:24:c8:36:0b:bc:
b7:e7:08:a2:11:7c:27:a0:81:e8:56:e7:96:ae:1d:
7e:76:b1:7c:e7:ed:8f:25:56:ce:81:aa:b4:b3:de:
af:74:cc:43:8e:18:b6:e4:42:b8:cb:68:4c:a5:2a:
85:9a:e5:ac:41:7a:66:a7:e5:99:66:3c:91:1f:43:
04:7c:b1:0d:aa:3d:6d:98:ce:ae:c1:22:42:6d:35:
17:95:d5:5b:80:2b:09:d6:6c:2c:25:bc:23:0e:4a:
17:39:56:f3:bd:ee:9f:96:f9:4e:77:4a:1b:33:17:
b7:59:55:de:56:ab:14:fc:e9:b3:b1:3f:4c:f6:07:
b5:36:c7:ce:94:4e:3a:30:5d:1a:20:7b:c8:12:f3:
83:9c:12:f5:38:e4:50:4f:75:d4:c2:47:05:f3:0c:
a3:04:30:8d:85:4a:f2:43:91:ed:86:99:d7:d7:53:
7b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:08:EB:E5:75:37:37:69:E3:22:94:52:21:00:83:46:26:2F:D0:8C
X509v3 Authority Key Identifier:
keyid:60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.173.150.0/23
116.204.193.0-116.204.195.255
IPv6:
2407:e8c0::/44
2407:e8c0:11::-2407:e8c0:13:ffff:ffff:ffff:ffff:ffff
2407:e8c0:1f::-2407:e8c0:26:ffff:ffff:ffff:ffff:ffff
2407:e8c0:4a00::-2407:e8c0:58ff:ffff:ffff:ffff:ffff:ffff
2407:e8c0:5a00::/39
2407:e8c0:6000::/40
Signature Algorithm: sha256WithRSAEncryption
cc:47:0a:db:ad:19:9a:c3:8b:31:54:85:b0:72:6b:59:41:20:
86:57:65:bc:33:fb:13:be:3f:f6:75:37:a0:78:05:c4:f4:45:
16:73:ce:c6:7c:ba:15:ba:d6:51:ae:7b:d8:13:50:6e:12:e8:
68:f0:5f:1f:21:3f:06:9a:05:19:8d:3e:13:a8:8e:e3:da:8f:
63:f6:a7:ed:d8:ec:cd:d1:12:5c:d9:14:f5:2f:79:38:a5:7e:
2e:7e:95:9e:fe:c4:db:0e:13:cd:c4:a9:e2:99:49:b7:f4:aa:
90:da:e6:fc:f6:9d:c1:e3:bf:c1:4b:9c:d1:3c:0e:b1:ac:2f:
c7:73:e3:3d:68:f8:8e:18:89:fa:01:18:38:33:74:fa:14:d4:
93:e6:64:2a:c6:aa:17:60:30:ac:7f:44:6f:76:ac:23:21:1b:
c7:43:04:68:f6:6c:07:10:fb:28:eb:5b:11:56:6a:bd:17:b6:
2d:d6:1e:66:01:03:36:7b:fa:33:1a:3b:da:5d:ff:1b:b9:35:
2f:b9:03:48:c4:c5:4d:f0:16:a4:7f:fd:39:c0:7d:90:6b:6a:
86:05:6a:d7:09:ba:e8:24:d3:26:cc:f8:74:02:cc:69:7d:81:
09:e2:fe:32:3e:1d:8c:4a:ca:68:0b:a2:a1:0f:e8:18:01:d4:
4a:cc:97:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:19:59 2026 by rpki-client