Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
File: B3B5B50E117711EEA0E5E040C4F9AE02.roa (raw, json)
Hash identifier: 6CSktOcA4MnBe9beO9qKaaWhMjSNipfCRcL+x7I1JgE=
Subject key identifier: 7F:E8:12:CC:CC:F0:8A:55:F9:DF:1A:33:86:A7:6E:8C:0B:9C:84:B7
Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418
Certificate serial: 3508
Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
Signing time: Tue 05 Aug 2025 07:57:13 +0000
ROA not before: Tue 05 Aug 2025 07:57:13 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 10030
IP address blocks: 103.3.20.0/22 maxlen: 22
183.171.0.0/16 maxlen: 16
183.171.7.0/24 maxlen: 24
183.171.16.0/24 maxlen: 24
183.171.17.0/24 maxlen: 24
183.171.18.0/24 maxlen: 24
183.171.19.0/24 maxlen: 24
183.171.20.0/24 maxlen: 24
183.171.21.0/24 maxlen: 24
183.171.22.0/24 maxlen: 24
183.171.23.0/24 maxlen: 24
183.171.24.0/24 maxlen: 24
183.171.25.0/24 maxlen: 24
183.171.26.0/24 maxlen: 24
183.171.27.0/24 maxlen: 24
183.171.28.0/24 maxlen: 24
183.171.29.0/24 maxlen: 24
183.171.30.0/24 maxlen: 24
183.171.31.0/24 maxlen: 24
183.171.40.0/24 maxlen: 24
183.171.41.0/24 maxlen: 24
183.171.42.0/24 maxlen: 24
183.171.49.0/24 maxlen: 24
183.171.50.0/24 maxlen: 24
183.171.51.0/24 maxlen: 24
183.171.52.0/24 maxlen: 24
183.171.53.0/24 maxlen: 24
183.171.54.0/24 maxlen: 24
183.171.55.0/24 maxlen: 24
183.171.56.0/24 maxlen: 24
183.171.57.0/24 maxlen: 24
183.171.64.0/24 maxlen: 24
183.171.65.0/24 maxlen: 24
183.171.66.0/24 maxlen: 24
183.171.67.0/24 maxlen: 24
183.171.68.0/24 maxlen: 24
183.171.69.0/24 maxlen: 24
183.171.70.0/24 maxlen: 24
183.171.71.0/24 maxlen: 24
183.171.72.0/24 maxlen: 24
183.171.73.0/24 maxlen: 24
183.171.74.0/24 maxlen: 24
183.171.75.0/24 maxlen: 24
183.171.76.0/24 maxlen: 24
183.171.77.0/24 maxlen: 24
183.171.78.0/24 maxlen: 24
183.171.79.0/24 maxlen: 24
183.171.80.0/24 maxlen: 24
183.171.81.0/24 maxlen: 24
183.171.82.0/24 maxlen: 24
183.171.83.0/24 maxlen: 24
183.171.84.0/24 maxlen: 24
183.171.85.0/24 maxlen: 24
183.171.86.0/24 maxlen: 24
183.171.87.0/24 maxlen: 24
183.171.88.0/24 maxlen: 24
183.171.89.0/24 maxlen: 24
183.171.90.0/24 maxlen: 24
183.171.91.0/24 maxlen: 24
183.171.92.0/24 maxlen: 24
183.171.93.0/24 maxlen: 24
183.171.94.0/24 maxlen: 24
183.171.95.0/24 maxlen: 24
183.171.96.0/24 maxlen: 24
183.171.97.0/24 maxlen: 24
183.171.98.0/24 maxlen: 24
183.171.99.0/24 maxlen: 24
183.171.100.0/24 maxlen: 24
183.171.101.0/24 maxlen: 24
183.171.102.0/24 maxlen: 24
183.171.103.0/24 maxlen: 24
183.171.104.0/24 maxlen: 24
183.171.105.0/24 maxlen: 24
183.171.106.0/24 maxlen: 24
183.171.107.0/24 maxlen: 24
183.171.108.0/24 maxlen: 24
183.171.109.0/24 maxlen: 24
183.171.110.0/24 maxlen: 24
183.171.111.0/24 maxlen: 24
183.171.112.0/24 maxlen: 24
183.171.113.0/24 maxlen: 24
183.171.114.0/24 maxlen: 24
183.171.115.0/24 maxlen: 24
183.171.116.0/24 maxlen: 24
183.171.117.0/24 maxlen: 24
183.171.118.0/24 maxlen: 24
183.171.119.0/24 maxlen: 24
183.171.120.0/24 maxlen: 24
183.171.121.0/24 maxlen: 24
183.171.122.0/24 maxlen: 24
183.171.123.0/24 maxlen: 24
183.171.124.0/24 maxlen: 24
183.171.125.0/24 maxlen: 24
183.171.126.0/24 maxlen: 24
183.171.127.0/24 maxlen: 24
183.171.128.0/24 maxlen: 24
183.171.129.0/24 maxlen: 24
183.171.130.0/24 maxlen: 24
183.171.131.0/24 maxlen: 24
183.171.132.0/24 maxlen: 24
183.171.133.0/24 maxlen: 24
183.171.134.0/24 maxlen: 24
183.171.135.0/24 maxlen: 24
183.171.136.0/24 maxlen: 24
183.171.137.0/24 maxlen: 24
183.171.138.0/24 maxlen: 24
183.171.139.0/24 maxlen: 24
183.171.140.0/24 maxlen: 24
183.171.141.0/24 maxlen: 24
183.171.142.0/24 maxlen: 24
183.171.143.0/24 maxlen: 24
183.171.156.0/24 maxlen: 24
183.171.158.0/24 maxlen: 24
183.171.160.0/24 maxlen: 24
183.171.161.0/24 maxlen: 24
183.171.162.0/24 maxlen: 24
183.171.163.0/24 maxlen: 24
183.171.164.0/24 maxlen: 24
183.171.165.0/24 maxlen: 24
183.171.166.0/24 maxlen: 24
183.171.167.0/24 maxlen: 24
183.171.168.0/24 maxlen: 24
183.171.169.0/24 maxlen: 24
183.171.170.0/24 maxlen: 24
183.171.171.0/24 maxlen: 24
183.171.172.0/24 maxlen: 24
183.171.173.0/24 maxlen: 24
183.171.174.0/24 maxlen: 24
183.171.175.0/24 maxlen: 24
183.171.176.0/24 maxlen: 24
183.171.177.0/24 maxlen: 24
183.171.183.0/24 maxlen: 24
183.171.184.0/24 maxlen: 24
183.171.186.0/24 maxlen: 24
183.171.187.0/24 maxlen: 24
183.171.188.0/23 maxlen: 23
183.171.190.0/24 maxlen: 24
183.171.191.0/24 maxlen: 24
183.171.192.0/24 maxlen: 24
183.171.193.0/24 maxlen: 24
183.171.194.0/24 maxlen: 24
183.171.195.0/24 maxlen: 24
183.171.196.0/24 maxlen: 24
183.171.197.0/24 maxlen: 24
183.171.198.0/24 maxlen: 24
183.171.199.0/24 maxlen: 24
183.171.200.0/24 maxlen: 24
183.171.201.0/24 maxlen: 24
183.171.202.0/24 maxlen: 24
183.171.204.0/24 maxlen: 24
183.171.205.0/24 maxlen: 24
183.171.207.0/24 maxlen: 24
183.171.208.0/21 maxlen: 21
183.171.223.0/24 maxlen: 24
183.171.224.0/24 maxlen: 24
183.171.225.0/24 maxlen: 24
183.171.226.0/24 maxlen: 24
183.171.227.0/24 maxlen: 24
183.171.228.0/24 maxlen: 24
183.171.229.0/24 maxlen: 24
183.171.232.0/21 maxlen: 21
183.171.233.0/24 maxlen: 24
183.171.234.0/24 maxlen: 24
183.171.235.0/24 maxlen: 24
183.171.236.0/24 maxlen: 24
183.171.240.0/20 maxlen: 20
183.171.240.0/24 maxlen: 24
183.171.241.0/24 maxlen: 24
183.171.242.0/24 maxlen: 24
183.171.243.0/24 maxlen: 24
183.171.244.0/23 maxlen: 23
183.171.248.0/24 maxlen: 24
183.171.249.0/24 maxlen: 24
183.171.255.0/24 maxlen: 24
203.82.64.0/19 maxlen: 19
203.82.66.0/24 maxlen: 24
203.82.67.0/24 maxlen: 24
203.82.70.0/23 maxlen: 23
203.82.70.0/24 maxlen: 24
203.82.71.0/24 maxlen: 24
203.82.75.0/24 maxlen: 24
203.82.76.0/24 maxlen: 24
203.82.77.0/24 maxlen: 24
203.82.82.0/24 maxlen: 24
203.82.86.0/24 maxlen: 24
203.82.91.0/24 maxlen: 24
203.82.93.0/24 maxlen: 24
203.82.94.0/24 maxlen: 24
203.82.95.0/24 maxlen: 24
2404:160::/32 maxlen: 32
2404:160:8000::/44 maxlen: 44
2404:160:8010::/44 maxlen: 44
2404:160:8020::/44 maxlen: 44
2404:160:8030::/44 maxlen: 44
2404:160:8040::/42 maxlen: 42
2404:160:8100::/42 maxlen: 42
2404:160:8140::/42 maxlen: 42
2404:160:a000::/42 maxlen: 42
2404:160:a400::/42 maxlen: 42
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl
rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 Aug 2025 05:57:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13576 (0x3508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418
Validity
Not Before: Aug 5 07:57:13 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=6891b959-6e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:4d:a6:f4:16:77:17:7d:06:09:7c:31:a2:
a2:54:b6:d1:7c:dc:c1:71:3c:8e:d6:ad:77:e3:30:
2e:55:b8:e8:d2:c7:36:a2:2a:25:1d:f9:9d:cf:08:
a3:1c:fe:41:08:bd:a8:8e:37:e9:0e:91:8b:e5:97:
0e:35:28:8f:8d:45:2a:80:29:01:dc:87:90:d6:e6:
1b:a8:93:84:27:eb:d9:fc:2a:c7:e4:4a:aa:a9:e9:
ba:33:bd:ce:7c:df:2d:3b:8a:14:ee:0d:4e:06:a6:
a5:b4:a8:b4:e4:1e:5e:98:85:3e:95:6d:dd:73:d1:
25:ec:d6:c1:f2:a5:b2:86:cf:3a:3f:68:9d:2e:2d:
68:24:ff:b7:97:88:1c:82:03:f8:a0:8e:1e:b4:2e:
74:98:8d:fe:3d:00:a3:2d:ff:e8:a8:78:81:05:58:
b7:22:e5:ec:99:06:bc:3b:02:01:e9:b9:4b:19:c1:
fe:33:fc:1a:0a:f1:f3:fa:74:1b:08:c8:83:80:ec:
ad:e8:e2:8a:d7:b2:9d:72:20:9c:5c:09:8a:0a:80:
bf:df:06:ca:d3:4c:3e:81:6a:ac:24:68:29:94:8e:
a5:47:68:fc:64:50:15:bf:bd:ef:bc:a4:20:e2:a7:
39:b2:6e:0a:50:b0:54:23:3f:96:d0:39:c3:3f:81:
33:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E8:12:CC:CC:F0:8A:55:F9:DF:1A:33:86:A7:6E:8C:0B:9C:84:B7
X509v3 Authority Key Identifier:
keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/B3B5B50E117711EEA0E5E040C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.3.20.0/22
183.171.0.0/16
203.82.64.0/19
IPv6:
2404:160::/32
Signature Algorithm: sha256WithRSAEncryption
1e:48:29:b4:49:5d:75:b6:e9:3f:19:37:24:8d:37:c6:ad:79:
50:50:bd:74:38:5a:c4:ba:c9:e8:f9:88:bc:12:ce:21:81:5d:
45:c6:a6:66:b7:33:00:b7:7a:b4:0c:e4:26:93:71:f3:26:2a:
09:9a:c9:ce:d0:9e:5c:2c:0b:f0:94:7e:b0:1c:8a:24:5d:24:
d5:f1:7e:9c:2b:5e:8b:0a:7e:4d:42:91:6a:0f:b0:e9:4e:4d:
49:12:80:36:52:c4:c7:1b:f6:a3:9d:5c:53:2c:79:6c:57:27:
d9:9b:8a:68:dc:65:76:1b:29:04:b3:21:17:05:22:77:e6:b1:
bd:1d:95:a6:d7:bf:72:5d:0c:50:9a:55:7a:1b:df:04:da:12:
d9:a2:0f:da:e1:22:e5:f9:38:16:44:ac:16:73:14:ba:40:db:
a0:2d:f9:b5:bb:82:8d:39:6a:7d:cc:ba:2d:b6:ec:c5:c8:c1:
29:1f:dc:36:07:ef:2a:35:cc:5d:f4:ce:21:2c:74:7f:fe:1e:
fb:72:5b:70:78:e6:5a:3d:65:6a:3f:0e:e3:e2:ea:05:6b:c0:
4f:6a:34:4e:0f:71:e2:54:fb:a8:f5:11:b9:23:db:48:7b:59:
8c:9a:61:0c:fa:1f:21:df:aa:f7:0b:6d:fd:a9:43:fc:3e:ef:
73:05:be:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:40:50 2025 by rpki-client