Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
File: B3B5B50E117711EEA0E5E040C4F9AE02.roa (raw, json)
Hash identifier: ZbvAqdZRdRlZ0nK19Soo+W7fZP+M1TyK82wvNdqV5u4=
Subject key identifier: 86:FA:F7:CC:15:0C:81:6A:11:75:80:D7:2B:FE:3B:8A:74:99:57:08
Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418
Certificate serial: 35C7
Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
Signing time: Thu 16 Apr 2026 15:10:33 +0000
ROA not before: Thu 16 Apr 2026 15:10:33 +0000
ROA not after: Fri 28 May 2027 00:00:00 +0000
asID: 10030
IP address blocks: 103.3.20.0/22 maxlen: 22
183.171.0.0/16 maxlen: 16
183.171.7.0/24 maxlen: 24
183.171.16.0/24 maxlen: 24
183.171.17.0/24 maxlen: 24
183.171.18.0/24 maxlen: 24
183.171.19.0/24 maxlen: 24
183.171.20.0/24 maxlen: 24
183.171.21.0/24 maxlen: 24
183.171.22.0/24 maxlen: 24
183.171.23.0/24 maxlen: 24
183.171.24.0/24 maxlen: 24
183.171.25.0/24 maxlen: 24
183.171.26.0/24 maxlen: 24
183.171.27.0/24 maxlen: 24
183.171.28.0/24 maxlen: 24
183.171.29.0/24 maxlen: 24
183.171.30.0/24 maxlen: 24
183.171.31.0/24 maxlen: 24
183.171.40.0/24 maxlen: 24
183.171.41.0/24 maxlen: 24
183.171.42.0/24 maxlen: 24
183.171.49.0/24 maxlen: 24
183.171.50.0/24 maxlen: 24
183.171.51.0/24 maxlen: 24
183.171.52.0/24 maxlen: 24
183.171.53.0/24 maxlen: 24
183.171.54.0/24 maxlen: 24
183.171.55.0/24 maxlen: 24
183.171.56.0/24 maxlen: 24
183.171.57.0/24 maxlen: 24
183.171.64.0/24 maxlen: 24
183.171.65.0/24 maxlen: 24
183.171.66.0/24 maxlen: 24
183.171.67.0/24 maxlen: 24
183.171.68.0/24 maxlen: 24
183.171.69.0/24 maxlen: 24
183.171.70.0/24 maxlen: 24
183.171.71.0/24 maxlen: 24
183.171.72.0/24 maxlen: 24
183.171.73.0/24 maxlen: 24
183.171.74.0/24 maxlen: 24
183.171.75.0/24 maxlen: 24
183.171.76.0/24 maxlen: 24
183.171.77.0/24 maxlen: 24
183.171.78.0/24 maxlen: 24
183.171.79.0/24 maxlen: 24
183.171.80.0/24 maxlen: 24
183.171.81.0/24 maxlen: 24
183.171.82.0/24 maxlen: 24
183.171.83.0/24 maxlen: 24
183.171.84.0/24 maxlen: 24
183.171.85.0/24 maxlen: 24
183.171.86.0/24 maxlen: 24
183.171.87.0/24 maxlen: 24
183.171.88.0/24 maxlen: 24
183.171.89.0/24 maxlen: 24
183.171.90.0/24 maxlen: 24
183.171.91.0/24 maxlen: 24
183.171.92.0/24 maxlen: 24
183.171.93.0/24 maxlen: 24
183.171.94.0/24 maxlen: 24
183.171.95.0/24 maxlen: 24
183.171.96.0/24 maxlen: 24
183.171.97.0/24 maxlen: 24
183.171.98.0/24 maxlen: 24
183.171.99.0/24 maxlen: 24
183.171.100.0/24 maxlen: 24
183.171.101.0/24 maxlen: 24
183.171.102.0/24 maxlen: 24
183.171.103.0/24 maxlen: 24
183.171.104.0/24 maxlen: 24
183.171.105.0/24 maxlen: 24
183.171.106.0/24 maxlen: 24
183.171.107.0/24 maxlen: 24
183.171.108.0/24 maxlen: 24
183.171.109.0/24 maxlen: 24
183.171.110.0/24 maxlen: 24
183.171.111.0/24 maxlen: 24
183.171.112.0/24 maxlen: 24
183.171.113.0/24 maxlen: 24
183.171.114.0/24 maxlen: 24
183.171.115.0/24 maxlen: 24
183.171.116.0/24 maxlen: 24
183.171.117.0/24 maxlen: 24
183.171.118.0/24 maxlen: 24
183.171.119.0/24 maxlen: 24
183.171.120.0/24 maxlen: 24
183.171.121.0/24 maxlen: 24
183.171.122.0/24 maxlen: 24
183.171.123.0/24 maxlen: 24
183.171.124.0/24 maxlen: 24
183.171.125.0/24 maxlen: 24
183.171.126.0/24 maxlen: 24
183.171.127.0/24 maxlen: 24
183.171.128.0/24 maxlen: 24
183.171.129.0/24 maxlen: 24
183.171.130.0/24 maxlen: 24
183.171.131.0/24 maxlen: 24
183.171.132.0/24 maxlen: 24
183.171.133.0/24 maxlen: 24
183.171.134.0/24 maxlen: 24
183.171.135.0/24 maxlen: 24
183.171.136.0/24 maxlen: 24
183.171.137.0/24 maxlen: 24
183.171.138.0/24 maxlen: 24
183.171.139.0/24 maxlen: 24
183.171.140.0/24 maxlen: 24
183.171.141.0/24 maxlen: 24
183.171.142.0/24 maxlen: 24
183.171.143.0/24 maxlen: 24
183.171.156.0/24 maxlen: 24
183.171.158.0/24 maxlen: 24
183.171.160.0/24 maxlen: 24
183.171.161.0/24 maxlen: 24
183.171.162.0/24 maxlen: 24
183.171.163.0/24 maxlen: 24
183.171.164.0/24 maxlen: 24
183.171.165.0/24 maxlen: 24
183.171.166.0/24 maxlen: 24
183.171.167.0/24 maxlen: 24
183.171.168.0/24 maxlen: 24
183.171.169.0/24 maxlen: 24
183.171.170.0/24 maxlen: 24
183.171.171.0/24 maxlen: 24
183.171.172.0/24 maxlen: 24
183.171.173.0/24 maxlen: 24
183.171.174.0/24 maxlen: 24
183.171.175.0/24 maxlen: 24
183.171.176.0/24 maxlen: 24
183.171.177.0/24 maxlen: 24
183.171.183.0/24 maxlen: 24
183.171.184.0/24 maxlen: 24
183.171.186.0/24 maxlen: 24
183.171.187.0/24 maxlen: 24
183.171.188.0/23 maxlen: 23
183.171.190.0/24 maxlen: 24
183.171.191.0/24 maxlen: 24
183.171.192.0/24 maxlen: 24
183.171.193.0/24 maxlen: 24
183.171.194.0/24 maxlen: 24
183.171.195.0/24 maxlen: 24
183.171.196.0/24 maxlen: 24
183.171.197.0/24 maxlen: 24
183.171.198.0/24 maxlen: 24
183.171.199.0/24 maxlen: 24
183.171.200.0/24 maxlen: 24
183.171.201.0/24 maxlen: 24
183.171.202.0/24 maxlen: 24
183.171.204.0/24 maxlen: 24
183.171.205.0/24 maxlen: 24
183.171.207.0/24 maxlen: 24
183.171.208.0/21 maxlen: 21
183.171.223.0/24 maxlen: 24
183.171.224.0/24 maxlen: 24
183.171.225.0/24 maxlen: 24
183.171.226.0/24 maxlen: 24
183.171.227.0/24 maxlen: 24
183.171.228.0/24 maxlen: 24
183.171.229.0/24 maxlen: 24
183.171.232.0/21 maxlen: 21
183.171.233.0/24 maxlen: 24
183.171.234.0/24 maxlen: 24
183.171.235.0/24 maxlen: 24
183.171.236.0/24 maxlen: 24
183.171.240.0/20 maxlen: 20
183.171.240.0/24 maxlen: 24
183.171.241.0/24 maxlen: 24
183.171.242.0/24 maxlen: 24
183.171.243.0/24 maxlen: 24
183.171.244.0/23 maxlen: 23
183.171.248.0/24 maxlen: 24
183.171.249.0/24 maxlen: 24
183.171.250.0/24 maxlen: 24
183.171.251.0/24 maxlen: 24
183.171.252.0/24 maxlen: 24
183.171.253.0/24 maxlen: 24
183.171.255.0/24 maxlen: 24
203.82.64.0/19 maxlen: 19
203.82.66.0/24 maxlen: 24
203.82.67.0/24 maxlen: 24
203.82.70.0/23 maxlen: 23
203.82.70.0/24 maxlen: 24
203.82.71.0/24 maxlen: 24
203.82.75.0/24 maxlen: 24
203.82.76.0/24 maxlen: 24
203.82.77.0/24 maxlen: 24
203.82.82.0/24 maxlen: 24
203.82.86.0/24 maxlen: 24
203.82.91.0/24 maxlen: 24
203.82.93.0/24 maxlen: 24
203.82.94.0/24 maxlen: 24
203.82.95.0/24 maxlen: 24
2404:160::/32 maxlen: 32
2404:160:8000::/44 maxlen: 44
2404:160:8010::/44 maxlen: 44
2404:160:8020::/44 maxlen: 44
2404:160:8030::/44 maxlen: 44
2404:160:8040::/42 maxlen: 42
2404:160:8100::/42 maxlen: 42
2404:160:8140::/42 maxlen: 42
2404:160:a000::/42 maxlen: 42
2404:160:a400::/42 maxlen: 42
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl
rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Apr 2026 14:27:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13767 (0x35c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418
Validity
Not Before: Apr 16 15:10:33 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=69e0fbe9-9d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ba:b8:6a:08:41:a1:a4:00:9a:9b:6d:5e:31:
58:df:81:2d:a9:38:20:e0:3e:c5:51:3b:32:e7:98:
3f:d5:75:99:c9:37:bf:ce:d9:a0:b3:71:df:f7:d8:
3c:a1:7d:68:a3:17:f1:30:81:9f:e2:0b:ea:20:e3:
58:1b:e2:43:e5:45:9f:e0:4c:48:3d:9b:0e:e1:09:
09:c8:e8:bf:0e:ae:8a:ae:c3:14:fb:eb:f9:b0:ee:
4f:e4:ed:d9:00:67:ef:89:0f:70:c3:34:6b:71:7e:
da:c1:8a:03:e1:87:b2:05:be:2b:3d:09:d8:e7:3a:
2d:6a:64:bb:55:6e:15:69:de:4c:73:08:2d:d8:fd:
75:2d:75:79:8a:59:3c:b3:f1:c5:f3:96:41:57:85:
3f:f2:46:ad:7c:70:f6:84:4d:f6:b1:ae:60:9e:2f:
3a:ee:66:53:db:cc:43:55:e0:97:28:82:a8:c8:4d:
81:da:36:73:0b:00:ee:4e:cd:1d:19:4e:c9:3a:53:
47:37:00:65:cc:60:a9:78:94:73:36:f7:3b:83:7c:
89:97:43:25:fb:07:bb:79:8b:d9:2c:76:fd:df:f4:
2a:6b:f7:db:9f:94:a6:d8:2b:54:cb:86:a9:dd:70:
e7:db:e6:2c:57:20:c1:2a:35:35:64:06:be:74:e3:
b4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FA:F7:CC:15:0C:81:6A:11:75:80:D7:2B:FE:3B:8A:74:99:57:08
X509v3 Authority Key Identifier:
keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.3.20.0/22
183.171.0.0/16
203.82.64.0/19
IPv6:
2404:160::/32
Signature Algorithm: sha256WithRSAEncryption
c6:b0:ee:21:18:7f:8d:7e:39:4e:4d:b8:52:f1:57:96:e1:78:
c1:4f:71:5d:7d:a7:3f:7d:81:1f:7d:86:a1:05:69:6a:75:ce:
69:84:d0:20:15:5b:aa:21:7e:9f:d1:ff:ea:9f:c0:02:56:69:
12:1e:b2:87:7a:23:f7:42:35:41:e8:85:86:c1:d4:ef:2f:4f:
89:93:bd:c1:1f:36:d7:8c:2a:27:c5:98:9c:46:e6:d8:3b:c5:
0c:52:06:fa:b8:66:f9:0c:3a:12:65:bd:3f:40:64:fc:70:fc:
35:79:71:98:ce:6c:e7:75:c6:a4:49:d1:81:ce:c0:4e:91:77:
a4:77:f1:c3:18:23:67:c0:0b:ed:42:7e:18:32:a1:40:b8:b7:
0f:ac:b3:1d:14:17:fc:db:fb:9f:41:f1:dc:81:53:c0:6e:05:
a2:b2:14:b8:ae:85:68:13:69:d6:fa:c0:47:1c:f2:de:ee:22:
75:b6:81:d7:65:fa:b7:9e:5e:e9:1c:4a:c5:f8:fa:b7:34:9f:
9d:05:ee:3c:26:82:91:13:41:6a:19:1d:32:1a:7d:21:20:a7:
36:c8:c8:e3:b4:77:a2:80:18:9f:ca:b9:8a:8f:cc:aa:2f:89:
80:dd:ba:b1:de:ff:ca:83:e4:ff:74:dd:be:1b:4a:9e:43:20:
42:e1:8b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 15:33:55 2026 by rpki-client