Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
File: B3B5B50E117711EEA0E5E040C4F9AE02.roa (raw, json)
Hash identifier: e8SiSstrDxKvqr8pjHVysqGm3Q9BeYoWTiQI4PDdJxk=
Subject key identifier: E0:7A:BD:B4:0C:AD:1C:29:80:26:75:1F:64:B7:AA:E5:0D:E5:92:13
Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418
Certificate serial: 35A8
Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
Signing time: Sun 01 Mar 2026 18:39:39 +0000
ROA not before: Wed 17 Dec 2025 06:27:45 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 10030
IP address blocks: 103.3.20.0/22 maxlen: 22
183.171.0.0/16 maxlen: 16
183.171.7.0/24 maxlen: 24
183.171.16.0/24 maxlen: 24
183.171.17.0/24 maxlen: 24
183.171.18.0/24 maxlen: 24
183.171.19.0/24 maxlen: 24
183.171.20.0/24 maxlen: 24
183.171.21.0/24 maxlen: 24
183.171.22.0/24 maxlen: 24
183.171.23.0/24 maxlen: 24
183.171.24.0/24 maxlen: 24
183.171.25.0/24 maxlen: 24
183.171.26.0/24 maxlen: 24
183.171.27.0/24 maxlen: 24
183.171.28.0/24 maxlen: 24
183.171.29.0/24 maxlen: 24
183.171.30.0/24 maxlen: 24
183.171.31.0/24 maxlen: 24
183.171.40.0/24 maxlen: 24
183.171.41.0/24 maxlen: 24
183.171.42.0/24 maxlen: 24
183.171.49.0/24 maxlen: 24
183.171.50.0/24 maxlen: 24
183.171.51.0/24 maxlen: 24
183.171.52.0/24 maxlen: 24
183.171.53.0/24 maxlen: 24
183.171.54.0/24 maxlen: 24
183.171.55.0/24 maxlen: 24
183.171.56.0/24 maxlen: 24
183.171.57.0/24 maxlen: 24
183.171.64.0/24 maxlen: 24
183.171.65.0/24 maxlen: 24
183.171.66.0/24 maxlen: 24
183.171.67.0/24 maxlen: 24
183.171.68.0/24 maxlen: 24
183.171.69.0/24 maxlen: 24
183.171.70.0/24 maxlen: 24
183.171.71.0/24 maxlen: 24
183.171.72.0/24 maxlen: 24
183.171.73.0/24 maxlen: 24
183.171.74.0/24 maxlen: 24
183.171.75.0/24 maxlen: 24
183.171.76.0/24 maxlen: 24
183.171.77.0/24 maxlen: 24
183.171.78.0/24 maxlen: 24
183.171.79.0/24 maxlen: 24
183.171.80.0/24 maxlen: 24
183.171.81.0/24 maxlen: 24
183.171.82.0/24 maxlen: 24
183.171.83.0/24 maxlen: 24
183.171.84.0/24 maxlen: 24
183.171.85.0/24 maxlen: 24
183.171.86.0/24 maxlen: 24
183.171.87.0/24 maxlen: 24
183.171.88.0/24 maxlen: 24
183.171.89.0/24 maxlen: 24
183.171.90.0/24 maxlen: 24
183.171.91.0/24 maxlen: 24
183.171.92.0/24 maxlen: 24
183.171.93.0/24 maxlen: 24
183.171.94.0/24 maxlen: 24
183.171.95.0/24 maxlen: 24
183.171.96.0/24 maxlen: 24
183.171.97.0/24 maxlen: 24
183.171.98.0/24 maxlen: 24
183.171.99.0/24 maxlen: 24
183.171.100.0/24 maxlen: 24
183.171.101.0/24 maxlen: 24
183.171.102.0/24 maxlen: 24
183.171.103.0/24 maxlen: 24
183.171.104.0/24 maxlen: 24
183.171.105.0/24 maxlen: 24
183.171.106.0/24 maxlen: 24
183.171.107.0/24 maxlen: 24
183.171.108.0/24 maxlen: 24
183.171.109.0/24 maxlen: 24
183.171.110.0/24 maxlen: 24
183.171.111.0/24 maxlen: 24
183.171.112.0/24 maxlen: 24
183.171.113.0/24 maxlen: 24
183.171.114.0/24 maxlen: 24
183.171.115.0/24 maxlen: 24
183.171.116.0/24 maxlen: 24
183.171.117.0/24 maxlen: 24
183.171.118.0/24 maxlen: 24
183.171.119.0/24 maxlen: 24
183.171.120.0/24 maxlen: 24
183.171.121.0/24 maxlen: 24
183.171.122.0/24 maxlen: 24
183.171.123.0/24 maxlen: 24
183.171.124.0/24 maxlen: 24
183.171.125.0/24 maxlen: 24
183.171.126.0/24 maxlen: 24
183.171.127.0/24 maxlen: 24
183.171.128.0/24 maxlen: 24
183.171.129.0/24 maxlen: 24
183.171.130.0/24 maxlen: 24
183.171.131.0/24 maxlen: 24
183.171.132.0/24 maxlen: 24
183.171.133.0/24 maxlen: 24
183.171.134.0/24 maxlen: 24
183.171.135.0/24 maxlen: 24
183.171.136.0/24 maxlen: 24
183.171.137.0/24 maxlen: 24
183.171.138.0/24 maxlen: 24
183.171.139.0/24 maxlen: 24
183.171.140.0/24 maxlen: 24
183.171.141.0/24 maxlen: 24
183.171.142.0/24 maxlen: 24
183.171.143.0/24 maxlen: 24
183.171.156.0/24 maxlen: 24
183.171.158.0/24 maxlen: 24
183.171.160.0/24 maxlen: 24
183.171.161.0/24 maxlen: 24
183.171.162.0/24 maxlen: 24
183.171.163.0/24 maxlen: 24
183.171.164.0/24 maxlen: 24
183.171.165.0/24 maxlen: 24
183.171.166.0/24 maxlen: 24
183.171.167.0/24 maxlen: 24
183.171.168.0/24 maxlen: 24
183.171.169.0/24 maxlen: 24
183.171.170.0/24 maxlen: 24
183.171.171.0/24 maxlen: 24
183.171.172.0/24 maxlen: 24
183.171.173.0/24 maxlen: 24
183.171.174.0/24 maxlen: 24
183.171.175.0/24 maxlen: 24
183.171.176.0/24 maxlen: 24
183.171.177.0/24 maxlen: 24
183.171.183.0/24 maxlen: 24
183.171.184.0/24 maxlen: 24
183.171.186.0/24 maxlen: 24
183.171.187.0/24 maxlen: 24
183.171.188.0/23 maxlen: 23
183.171.190.0/24 maxlen: 24
183.171.191.0/24 maxlen: 24
183.171.192.0/24 maxlen: 24
183.171.193.0/24 maxlen: 24
183.171.194.0/24 maxlen: 24
183.171.195.0/24 maxlen: 24
183.171.196.0/24 maxlen: 24
183.171.197.0/24 maxlen: 24
183.171.198.0/24 maxlen: 24
183.171.199.0/24 maxlen: 24
183.171.200.0/24 maxlen: 24
183.171.201.0/24 maxlen: 24
183.171.202.0/24 maxlen: 24
183.171.204.0/24 maxlen: 24
183.171.205.0/24 maxlen: 24
183.171.207.0/24 maxlen: 24
183.171.208.0/21 maxlen: 21
183.171.223.0/24 maxlen: 24
183.171.224.0/24 maxlen: 24
183.171.225.0/24 maxlen: 24
183.171.226.0/24 maxlen: 24
183.171.227.0/24 maxlen: 24
183.171.228.0/24 maxlen: 24
183.171.229.0/24 maxlen: 24
183.171.232.0/21 maxlen: 21
183.171.233.0/24 maxlen: 24
183.171.234.0/24 maxlen: 24
183.171.235.0/24 maxlen: 24
183.171.236.0/24 maxlen: 24
183.171.240.0/20 maxlen: 20
183.171.240.0/24 maxlen: 24
183.171.241.0/24 maxlen: 24
183.171.242.0/24 maxlen: 24
183.171.243.0/24 maxlen: 24
183.171.244.0/23 maxlen: 23
183.171.248.0/24 maxlen: 24
183.171.249.0/24 maxlen: 24
183.171.250.0/24 maxlen: 24
183.171.251.0/24 maxlen: 24
183.171.252.0/24 maxlen: 24
183.171.253.0/24 maxlen: 24
183.171.255.0/24 maxlen: 24
203.82.64.0/19 maxlen: 19
203.82.66.0/24 maxlen: 24
203.82.67.0/24 maxlen: 24
203.82.70.0/23 maxlen: 23
203.82.70.0/24 maxlen: 24
203.82.71.0/24 maxlen: 24
203.82.75.0/24 maxlen: 24
203.82.76.0/24 maxlen: 24
203.82.77.0/24 maxlen: 24
203.82.82.0/24 maxlen: 24
203.82.86.0/24 maxlen: 24
203.82.91.0/24 maxlen: 24
203.82.93.0/24 maxlen: 24
203.82.94.0/24 maxlen: 24
203.82.95.0/24 maxlen: 24
2404:160::/32 maxlen: 32
2404:160:8000::/44 maxlen: 44
2404:160:8010::/44 maxlen: 44
2404:160:8020::/44 maxlen: 44
2404:160:8030::/44 maxlen: 44
2404:160:8040::/42 maxlen: 42
2404:160:8100::/42 maxlen: 42
2404:160:8140::/42 maxlen: 42
2404:160:a000::/42 maxlen: 42
2404:160:a400::/42 maxlen: 42
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl
rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 02:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13736 (0x35a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418
Validity
Not Before: Dec 17 06:27:45 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=69a487eb-90f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c3:53:5a:c5:79:d7:ae:cb:5f:34:97:f6:85:
c0:52:90:f4:7d:c3:71:3b:0f:a4:0e:f4:db:f4:da:
0e:db:89:b2:72:12:b2:50:87:76:a2:b4:74:c1:7a:
09:8d:2e:f2:33:e9:58:c9:15:d4:7e:3d:08:95:21:
d8:e8:41:18:1e:b1:09:84:cd:75:a6:a8:3b:17:c9:
6d:0a:16:66:ab:2f:c6:ca:a2:36:c7:3a:6f:0e:b1:
3c:79:db:f6:49:ae:cb:2f:b3:38:41:58:68:cc:40:
f1:14:ad:a4:47:ec:7c:f9:a5:77:94:18:09:e6:94:
1c:9b:0e:c7:ec:2b:fa:0f:5d:3b:df:b3:b2:e7:1c:
af:58:18:5e:11:48:a2:40:49:39:02:29:5f:4b:38:
6c:0b:a7:68:4d:a9:61:e3:c2:85:b3:b0:a0:4d:e6:
a4:4d:48:35:0e:2a:b4:d0:45:c7:01:af:f9:12:34:
a6:cd:e0:55:0a:b6:6c:f6:ed:39:26:1a:dd:c2:f1:
b6:f0:c5:b7:5b:64:54:54:6e:db:44:e1:07:b7:5f:
98:9b:20:3c:fd:3e:a5:54:87:1e:16:58:01:eb:b2:
93:3c:0b:59:b8:08:38:86:d2:98:45:c4:b1:a0:db:
31:7d:1d:6c:bd:fc:6c:10:5f:8c:b9:01:a9:9e:ab:
4d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:7A:BD:B4:0C:AD:1C:29:80:26:75:1F:64:B7:AA:E5:0D:E5:92:13
X509v3 Authority Key Identifier:
keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.3.20.0/22
183.171.0.0/16
203.82.64.0/19
IPv6:
2404:160::/32
Signature Algorithm: sha256WithRSAEncryption
16:07:5d:d8:73:53:08:1b:a4:ee:47:12:30:fe:3d:42:c6:9a:
d8:ca:8b:dd:92:ff:9e:68:02:af:76:1f:c6:f8:c2:e8:09:46:
bd:ee:97:79:2b:96:a0:65:a8:5f:6a:0a:4f:1c:41:cf:91:56:
12:a0:46:43:45:5a:b3:cf:14:94:77:a9:6f:0e:ed:2e:e8:e3:
1a:d3:fb:e4:7c:37:1b:43:3a:8f:f0:99:7a:68:42:54:7b:19:
2a:af:97:26:ed:cf:64:79:79:d7:dc:29:37:05:df:73:57:06:
64:0f:37:3e:10:6d:15:47:62:4e:34:fd:c6:43:9b:f0:5b:94:
98:c4:5e:e9:59:1b:8f:77:5f:63:82:7c:2d:c9:67:3a:c8:d8:
14:41:dd:e6:57:1b:d4:ac:bb:ac:bf:21:77:39:7a:4f:5e:65:
31:65:27:63:b1:b3:6c:cc:73:e0:7e:35:f9:d0:c8:bd:cc:e7:
dc:28:47:d0:cd:18:9b:30:df:4c:b7:cc:e9:37:55:1d:98:a0:
43:83:3e:05:28:83:09:0b:41:89:a7:1c:4a:ca:80:5f:0b:a5:
0f:a4:ef:b6:8b:25:11:80:cc:17:02:ed:9a:0a:81:4d:70:36:
c9:ab:2f:67:52:83:fc:d4:a8:32:86:37:d0:91:89:31:cb:dc:
e1:dd:b6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:44:47 2026 by rpki-client