Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/A51B73A01F0711EFB7C30655C4F9AE02.roa
File: A51B73A01F0711EFB7C30655C4F9AE02.roa (raw, json)
Hash identifier: b6508MSXVyNaUe4p4vgfVTolfpDsTV9uysiL+YPvW8Y=
Subject key identifier: 7C:0A:53:9C:86:1D:21:D6:71:49:9B:D5:F2:7C:38:79:43:44:61:2D
Certificate issuer: /CN=A9181375/serialNumber=8DCDE52B9B8B0522BE26713A41865670A61EE86D
Certificate serial: 0193
Authority key identifier: 8D:CD:E5:2B:9B:8B:05:22:BE:26:71:3A:41:86:56:70:A6:1E:E8:6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jc3lK5uLBSK-JnE6QYZWcKYe6G0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/A51B73A01F0711EFB7C30655C4F9AE02.roa
Signing time: Thu 11 Jun 2026 07:34:01 +0000
ROA not before: Thu 11 Jun 2026 07:34:01 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 45701
IP address blocks: 43.224.168.0/24 maxlen: 24
43.224.169.0/24 maxlen: 24
43.224.170.0/24 maxlen: 24
43.224.171.0/24 maxlen: 24
59.153.128.0/24 maxlen: 24
59.153.129.0/24 maxlen: 24
59.153.130.0/24 maxlen: 24
59.153.131.0/24 maxlen: 24
103.89.76.0/24 maxlen: 24
103.89.77.0/24 maxlen: 24
103.89.78.0/24 maxlen: 24
103.89.79.0/24 maxlen: 24
103.225.148.0/24 maxlen: 24
103.225.149.0/24 maxlen: 24
103.225.150.0/24 maxlen: 24
103.225.151.0/24 maxlen: 24
153.124.160.0/24 maxlen: 24
153.124.161.0/24 maxlen: 24
153.124.162.0/24 maxlen: 24
153.124.163.0/24 maxlen: 24
153.124.164.0/24 maxlen: 24
153.124.165.0/24 maxlen: 24
153.124.166.0/24 maxlen: 24
153.124.167.0/24 maxlen: 24
202.58.192.0/24 maxlen: 24
202.58.193.0/24 maxlen: 24
202.58.194.0/24 maxlen: 24
202.58.195.0/24 maxlen: 24
202.58.196.0/24 maxlen: 24
202.58.197.0/24 maxlen: 24
202.58.198.0/24 maxlen: 24
202.58.199.0/24 maxlen: 24
202.58.200.0/24 maxlen: 24
202.58.201.0/24 maxlen: 24
202.58.203.0/24 maxlen: 24
202.58.204.0/24 maxlen: 24
202.58.205.0/24 maxlen: 24
202.58.206.0/24 maxlen: 24
202.58.207.0/24 maxlen: 24
203.28.216.0/24 maxlen: 24
203.28.217.0/24 maxlen: 24
203.28.218.0/24 maxlen: 24
203.28.219.0/24 maxlen: 24
2001:df0:a900::/48 maxlen: 48
2402:2900::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/jc3lK5uLBSK-JnE6QYZWcKYe6G0.crl
rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/jc3lK5uLBSK-JnE6QYZWcKYe6G0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jc3lK5uLBSK-JnE6QYZWcKYe6G0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403 (0x193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9181375, serialNumber=8DCDE52B9B8B0522BE26713A41865670A61EE86D
Validity
Not Before: Jun 11 07:34:01 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a2a64e8-fbab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:da:b1:25:21:b3:a5:33:7d:73:90:ac:e5:a9:
13:50:04:45:ca:74:f6:9a:86:80:9c:d4:00:04:2c:
bc:6d:a8:48:83:33:5e:cb:20:d5:9d:66:7c:f3:1b:
9d:bd:ca:a9:22:52:8a:0d:6e:4e:98:63:8d:2f:0c:
28:a7:06:3c:ce:ec:f8:5b:6c:d1:70:71:5e:f9:f9:
14:28:9f:3a:0e:31:ee:01:53:f6:23:96:55:dc:fa:
0e:70:5b:ce:60:d2:8e:ef:4d:d9:b2:0e:c1:2e:cc:
23:e1:4f:d1:82:af:bd:46:fe:7c:fc:e2:a0:e4:d8:
81:b4:1e:db:03:3d:f6:51:58:67:35:b6:42:85:f9:
d8:13:ed:8e:43:6f:56:ca:03:f0:5c:21:24:b0:14:
84:cd:9f:fa:61:99:28:23:5b:ed:e6:8e:92:5f:31:
db:d5:73:e4:6c:e7:ab:c6:48:89:a7:f7:89:40:70:
96:09:53:d3:d7:b0:95:cd:6e:4e:b4:22:3f:64:fa:
e9:17:13:42:0e:0d:28:cb:06:9a:d6:6e:5c:36:67:
58:9c:72:eb:1a:92:18:04:23:b5:aa:b4:52:71:f4:
1a:0b:7b:5d:c7:fe:c9:f3:ec:6b:ab:27:0f:4f:25:
50:9e:8f:bc:e4:8b:b7:e6:09:54:5c:41:3e:51:96:
ec:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:0A:53:9C:86:1D:21:D6:71:49:9B:D5:F2:7C:38:79:43:44:61:2D
X509v3 Authority Key Identifier:
keyid:8D:CD:E5:2B:9B:8B:05:22:BE:26:71:3A:41:86:56:70:A6:1E:E8:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/jc3lK5uLBSK-JnE6QYZWcKYe6G0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jc3lK5uLBSK-JnE6QYZWcKYe6G0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/A51B73A01F0711EFB7C30655C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
43.224.168.0/22
59.153.128.0/22
103.89.76.0/22
103.225.148.0/22
153.124.160.0/21
202.58.192.0-202.58.201.255
202.58.203.0-202.58.207.255
203.28.216.0/22
IPv6:
2001:df0:a900::/48
2402:2900::/32
Signature Algorithm: sha256WithRSAEncryption
43:f8:de:a3:b1:51:ea:fe:91:df:d5:ea:8d:b3:95:ac:ca:d5:
d2:35:1b:20:43:91:d6:07:5e:ed:a7:96:23:63:6f:6d:58:72:
4a:e7:e2:84:9a:c7:02:f6:5e:9b:91:e2:9b:ea:9f:90:d6:97:
94:be:7d:e2:77:6e:5c:4f:57:8b:62:22:4f:8d:c7:1a:94:3b:
8f:39:af:7f:65:0f:bd:fb:82:96:2d:db:4e:3c:32:e0:94:ad:
72:b0:51:9f:e2:34:88:d9:73:7b:e1:3e:89:00:b7:4d:84:c7:
89:43:d7:ad:c5:44:b4:c2:35:50:7a:bd:a5:e8:65:1d:07:09:
55:b0:b6:48:e7:b4:32:26:ad:93:35:40:a6:f0:ee:86:ee:41:
a7:e8:85:80:1e:83:d9:b4:4b:7d:7a:b0:4e:d1:18:f9:16:d2:
86:7d:60:11:eb:a1:03:f0:ae:71:d6:33:4e:8d:88:03:9d:12:
b1:0a:d1:12:b5:2b:99:57:41:d1:d2:71:7d:c7:3f:50:7d:c5:
f5:ed:74:22:70:fc:e5:f4:a6:97:ef:b6:af:cd:2d:67:1d:6e:
f7:65:41:d2:65:b2:59:5e:d2:d7:c4:ca:75:fc:58:98:57:28:
d2:68:21:d1:11:93:f6:06:4b:20:d6:28:35:a3:32:cd:5a:47:
ad:53:bd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:42:57 2026 by rpki-client