Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/A51B73A01F0711EFB7C30655C4F9AE02.roa
File: A51B73A01F0711EFB7C30655C4F9AE02.roa (raw, json)
Hash identifier: gywHrBDOisk4NwQExOTjeY31/f6L9eZJuRiuNkwPekg=
Subject key identifier: 6B:25:63:58:FA:16:DE:4C:F9:A9:07:ED:DD:EA:C3:56:23:C8:D7:A4
Certificate issuer: /CN=A9181375/serialNumber=8DCDE52B9B8B0522BE26713A41865670A61EE86D
Certificate serial: 015C
Authority key identifier: 8D:CD:E5:2B:9B:8B:05:22:BE:26:71:3A:41:86:56:70:A6:1E:E8:6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jc3lK5uLBSK-JnE6QYZWcKYe6G0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/A51B73A01F0711EFB7C30655C4F9AE02.roa
Signing time: Mon 02 Mar 2026 13:14:38 +0000
ROA not before: Tue 01 Jul 2025 06:43:53 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 45701
IP address blocks: 43.224.168.0/24 maxlen: 24
43.224.169.0/24 maxlen: 24
43.224.170.0/24 maxlen: 24
43.224.171.0/24 maxlen: 24
59.153.128.0/24 maxlen: 24
59.153.129.0/24 maxlen: 24
59.153.130.0/24 maxlen: 24
59.153.131.0/24 maxlen: 24
103.89.76.0/24 maxlen: 24
103.89.77.0/24 maxlen: 24
103.89.78.0/24 maxlen: 24
103.89.79.0/24 maxlen: 24
103.225.148.0/24 maxlen: 24
103.225.149.0/24 maxlen: 24
103.225.150.0/24 maxlen: 24
103.225.151.0/24 maxlen: 24
153.124.160.0/24 maxlen: 24
153.124.161.0/24 maxlen: 24
153.124.162.0/24 maxlen: 24
153.124.163.0/24 maxlen: 24
153.124.164.0/24 maxlen: 24
153.124.165.0/24 maxlen: 24
153.124.166.0/24 maxlen: 24
153.124.167.0/24 maxlen: 24
202.58.192.0/24 maxlen: 24
202.58.193.0/24 maxlen: 24
202.58.194.0/24 maxlen: 24
202.58.195.0/24 maxlen: 24
202.58.196.0/24 maxlen: 24
202.58.197.0/24 maxlen: 24
202.58.198.0/24 maxlen: 24
202.58.199.0/24 maxlen: 24
202.58.200.0/24 maxlen: 24
202.58.201.0/24 maxlen: 24
202.58.203.0/24 maxlen: 24
202.58.204.0/24 maxlen: 24
202.58.205.0/24 maxlen: 24
202.58.206.0/24 maxlen: 24
202.58.207.0/24 maxlen: 24
203.28.216.0/24 maxlen: 24
203.28.217.0/24 maxlen: 24
203.28.218.0/24 maxlen: 24
203.28.219.0/24 maxlen: 24
2001:df0:a900::/48 maxlen: 48
2402:2900::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/jc3lK5uLBSK-JnE6QYZWcKYe6G0.crl
rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/jc3lK5uLBSK-JnE6QYZWcKYe6G0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jc3lK5uLBSK-JnE6QYZWcKYe6G0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 13:14:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348 (0x15c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9181375, serialNumber=8DCDE52B9B8B0522BE26713A41865670A61EE86D
Validity
Not Before: Jul 1 06:43:53 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=69a58d3e-832a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:2c:b3:4e:f9:51:14:13:bb:66:5c:43:d3:
39:9f:32:be:53:28:23:d0:7d:ce:e0:9c:d4:7e:49:
02:6d:d3:9a:dd:5e:d8:f4:c4:a9:4b:0b:8e:55:ad:
62:ac:1c:61:69:57:c2:58:3a:c7:0a:af:d2:0f:1c:
a6:58:be:2b:dc:b9:21:2b:3a:16:3b:d0:1d:7f:cf:
ce:77:4c:0a:56:09:95:84:63:22:f5:f7:05:70:ac:
e3:83:b1:a0:5a:7f:42:32:88:f6:cf:04:3e:c4:1c:
b6:35:4c:af:aa:bb:ad:a7:14:05:87:04:5f:6c:31:
df:6b:2e:ff:98:27:f9:72:c5:ce:d0:8c:71:cb:29:
62:ad:55:a9:5d:ae:61:69:91:a0:52:25:33:4c:36:
09:fb:09:08:14:3b:f9:4f:53:7d:7e:87:e6:f4:5a:
bf:53:e0:65:b6:37:ea:2f:27:d7:74:ec:f1:17:77:
41:83:0c:37:5a:42:13:71:95:90:ca:bc:f3:7c:98:
55:67:7b:26:72:7c:c8:72:57:bb:92:a2:38:09:a1:
7c:fb:7d:c4:32:87:58:94:7b:8a:32:68:ca:dc:0f:
48:f6:62:6c:65:7e:c9:a6:bf:58:1b:af:64:fd:c5:
5e:61:c3:e4:2d:ad:0b:dd:a0:8a:c9:f3:78:68:83:
14:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:25:63:58:FA:16:DE:4C:F9:A9:07:ED:DD:EA:C3:56:23:C8:D7:A4
X509v3 Authority Key Identifier:
keyid:8D:CD:E5:2B:9B:8B:05:22:BE:26:71:3A:41:86:56:70:A6:1E:E8:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/jc3lK5uLBSK-JnE6QYZWcKYe6G0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jc3lK5uLBSK-JnE6QYZWcKYe6G0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181375/AED5831E1F0611EFA61ABA51C4F9AE02/A51B73A01F0711EFB7C30655C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
43.224.168.0/22
59.153.128.0/22
103.89.76.0/22
103.225.148.0/22
153.124.160.0/21
202.58.192.0-202.58.201.255
202.58.203.0-202.58.207.255
203.28.216.0/22
IPv6:
2001:df0:a900::/48
2402:2900::/32
Signature Algorithm: sha256WithRSAEncryption
9c:71:d4:58:95:cd:3a:2d:ab:2b:30:7d:fa:13:7c:bb:e8:b8:
6f:c5:e3:7a:c0:9e:fb:0d:6e:28:64:f2:a8:40:fd:39:7b:10:
b4:93:18:90:6e:19:5a:38:d7:8b:8b:35:a1:10:c6:03:b8:2a:
ce:64:40:99:fa:50:a0:93:31:9f:cc:a4:ea:d8:33:84:36:9a:
e6:a0:10:c9:82:1a:0d:ea:88:72:e8:ef:e1:14:c7:fa:7e:3d:
a5:5d:5d:ee:c7:3a:01:93:ef:e3:4a:f2:81:c0:08:c6:f1:e0:
45:6f:19:75:77:bf:0e:cd:37:2b:88:8a:df:61:2d:21:52:be:
85:08:55:8a:00:d1:d5:61:0c:a1:71:eb:01:d1:e2:57:4e:d8:
b2:c2:78:1e:c0:56:53:8a:5c:1b:66:c3:41:8e:b4:83:b1:2a:
9c:58:a2:5c:89:df:a5:d8:d3:52:94:f3:5b:b0:b2:45:49:0a:
5c:a9:b1:49:c6:5e:6c:3b:fa:12:31:99:93:0a:f8:54:56:c7:
e1:a9:2d:17:b8:f9:f1:7b:40:b1:aa:74:8b:0d:91:5f:c3:8a:
c7:16:cb:8d:83:87:93:8f:4d:b4:84:a8:85:3b:59:43:3b:8a:
75:09:90:a0:52:9f:2b:98:2c:10:55:0a:e2:d6:a6:1c:9a:49:
59:61:05:4b
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODEzNzUxMTAvBgNVBAUTKDhEQ0RFNTJCOUI4QjA1MjJCRTI2NzEzQTQxODY1Njcw
QTYxRUU4NkQwHhcNMjUwNzAxMDY0MzUzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02OWE1OGQzZS04MzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAw4sss075URQTu2ZcQ9M5nzK+Uygj0H3O4JzUfkkCbdOa3V7Y9MSpSwuOVa1i
rBxhaVfCWDrHCq/SDxymWL4r3LkhKzoWO9Adf8/Od0wKVgmVhGMi9fcFcKzjg7Gg
Wn9CMoj2zwQ+xBy2NUyvqrutpxQFhwRfbDHfay7/mCf5csXO0IxxyylirVWpXa5h
aZGgUiUzTDYJ+wkIFDv5T1N9fofm9Fq/U+BltjfqLyfXdOzxF3dBgww3WkITcZWQ
yrzzfJhVZ3smcnzIcle7kqI4CaF8+33EModYlHuKMmjK3A9I9mJsZX7Jpr9YG69k
/cVeYcPkLa0L3aCKyfN4aIMUBQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFGslY1j6
Ft5M+akH7d3qw1YjyNekMB8GA1UdIwQYMBaAFI3N5SubiwUiviZxOkGGVnCmHuht
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTM3NS9BRUQ1ODMxRTFG
MDYxMUVGQTYxQUJBNTFDNEY5QUUwMi9qYzNsSzV1TEJTSy1KbkU2UVlaV2NLWWU2
RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2pjM2xLNXVMQlNLLUpuRTZRWVpXY0tZZTZHMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODEzNzUvQUVENTgzMUUxRjA2MTFFRkE2MUFCQTUxQzRGOUFFMDIvQTUxQjczQTAx
RjA3MTFFRkI3QzMwNjU1QzRGOUFFMDIucm9hMHEGCCsGAQUFBwEHAQH/BGIwYDBG
BAIAATBAAwQCK+CoAwQCO5mAAwQCZ1lMAwQCZ+GUAwQDmXygMAwDBAbKOsADBAHK
OsgwDAMEAMo6ywMEBMo6wAMEAssc2DAWBAIAAjAQAwcAIAEN8KkAAwUAJAIpADAN
BgkqhkiG9w0BAQsFAAOCAQEAnHHUWJXNOi2rKzB9+hN8u+i4b8XjesCe+w1uKGTy
qED9OXsQtJMYkG4ZWjjXi4s1oRDGA7gqzmRAmfpQoJMxn8yk6tgzhDaa5qAQyYIa
DeqIcujv4RTH+n49pV1d7sc6AZPv40rygcAIxvHgRW8ZdXe/Ds03K4iK32EtIVK+
hQhVigDR1WEMoXHrAdHiV07YssJ4HsBWU4pcG2bDQY60g7EqnFiiXInfpdjTUpTz
W7CyRUkKXKmxScZebDv6EjGZkwr4VFbH4aktF7j58XtAsap0iw2RX8OKxxbLjYOH
k49NtISohTtZQzuKdQmQoFKfK5gsEFUK4tamHJpJWWEFSw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 16:28:11 2026 by rpki-client