Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7403EBDAEC7911F09ED87EBA536F56BC.roa
File: 7403EBDAEC7911F09ED87EBA536F56BC.roa (raw, json)
Hash identifier: E9dyum7G8WGTLyejHbb+gzqqyeMgwkW4+6yg3XO/npo=
Subject key identifier: 36:75:00:55:44:F9:24:83:9D:25:28:E6:D5:67:69:A3:A0:1A:49:6E
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: EC9D
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7403EBDAEC7911F09ED87EBA536F56BC.roa
Signing time: Wed 10 Jun 2026 10:38:19 +0000
ROA not before: Wed 10 Jun 2026 10:38:19 +0000
ROA not after: Thu 01 Oct 2026 00:00:00 +0000
asID: 140641
IP address blocks: 103.69.43.0/24 maxlen: 24
103.93.94.0/24 maxlen: 24
103.93.112.0/24 maxlen: 24
103.93.113.0/24 maxlen: 24
103.93.114.0/24 maxlen: 24
103.93.115.0/24 maxlen: 24
103.95.50.0/23 maxlen: 24
103.97.104.0/24 maxlen: 24
103.97.105.0/24 maxlen: 24
103.97.106.0/24 maxlen: 24
103.97.107.0/24 maxlen: 24
103.110.12.0/24 maxlen: 24
103.110.13.0/24 maxlen: 24
103.110.14.0/24 maxlen: 24
103.110.15.0/24 maxlen: 24
103.117.212.0/24 maxlen: 24
103.119.170.0/23 maxlen: 24
103.129.97.0/24 maxlen: 24
103.131.26.0/24 maxlen: 24
103.139.7.0/24 maxlen: 24
103.140.72.0/24 maxlen: 24
103.152.79.0/24 maxlen: 24
103.171.44.0/24 maxlen: 24
103.171.45.0/24 maxlen: 24
103.190.243.0/24 maxlen: 24
103.218.124.0/24 maxlen: 24
103.218.125.0/24 maxlen: 24
103.218.126.0/24 maxlen: 24
103.218.127.0/24 maxlen: 24
103.228.140.0/24 maxlen: 24
103.228.141.0/24 maxlen: 24
103.228.142.0/24 maxlen: 24
103.228.143.0/24 maxlen: 24
103.240.89.0/24 maxlen: 24
103.251.150.0/24 maxlen: 24
103.253.70.0/24 maxlen: 24
163.227.186.0/24 maxlen: 24
163.227.187.0/24 maxlen: 24
175.158.75.0/24 maxlen: 24
182.255.56.0/24 maxlen: 24
182.255.57.0/24 maxlen: 24
182.255.58.0/24 maxlen: 24
182.255.59.0/24 maxlen: 24
202.162.240.0/24 maxlen: 24
202.162.241.0/24 maxlen: 24
202.162.243.0/24 maxlen: 24
2402:61a0:1000::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 19 Jun 2026 15:19:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60573 (0xec9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 10 10:38:19 2026 GMT
Not After : Oct 1 00:00:00 2026 GMT
Subject: CN=6a293e9b-ce1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:93:28:eb:26:4c:bc:7f:5f:73:8d:ce:97:e4:
a9:88:97:b0:42:04:64:07:a6:58:9f:52:46:4a:5e:
24:25:ab:27:3c:fd:b2:70:1c:dd:26:b5:b4:79:1a:
f0:83:06:b6:9c:7c:9c:db:ac:20:67:8e:34:3c:61:
28:c6:d0:16:f0:69:11:64:8f:46:35:9d:ed:e0:db:
85:f9:ac:e5:b4:97:ca:3c:c9:e4:0e:d6:a5:7b:70:
88:00:85:db:5b:e8:51:2c:4f:70:33:e4:7a:55:12:
1c:eb:fc:ce:72:f3:1d:3c:6c:56:3c:84:e2:c9:8e:
c1:8b:4c:47:5a:4f:91:b3:6a:23:77:d6:41:fc:f3:
19:3d:a8:be:7a:6f:ec:32:f1:cc:bf:c4:a2:9e:1c:
96:37:ce:f0:63:c7:86:96:0d:ac:e4:41:ca:03:80:
3b:a9:f2:1c:b6:54:f3:e9:3e:15:ee:4b:89:73:d4:
d4:a0:45:47:97:59:9a:e8:d8:4c:89:70:67:aa:3e:
62:67:02:0e:46:20:83:19:6e:ed:5f:b1:be:99:94:
c0:4c:ab:00:e7:5d:f2:fe:86:3a:51:05:3b:71:34:
7d:4d:0c:4d:d3:c5:16:c5:0b:fc:9b:90:ef:69:cd:
d5:58:d9:b3:34:02:9c:0a:07:41:a1:a7:d8:bd:56:
ad:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:75:00:55:44:F9:24:83:9D:25:28:E6:D5:67:69:A3:A0:1A:49:6E
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7403EBDAEC7911F09ED87EBA536F56BC.roa
sbgp-ipAddrBlock: critical
IPv4:
103.69.43.0/24
103.93.94.0/24
103.93.112.0/22
103.95.50.0/23
103.97.104.0/22
103.110.12.0/22
103.117.212.0/24
103.119.170.0/23
103.129.97.0/24
103.131.26.0/24
103.139.7.0/24
103.140.72.0/24
103.152.79.0/24
103.171.44.0/23
103.190.243.0/24
103.218.124.0/22
103.228.140.0/22
103.240.89.0/24
103.251.150.0/24
103.253.70.0/24
163.227.186.0/23
175.158.75.0/24
182.255.56.0/22
202.162.240.0/23
202.162.243.0/24
IPv6:
2402:61a0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
93:a8:dc:bb:bd:7b:89:58:8b:29:0e:d3:73:55:a3:a6:94:d2:
6d:44:9d:73:ba:bb:9f:f3:30:3f:26:03:d0:f5:df:87:54:f8:
d7:1b:49:9b:f2:0c:99:12:7f:a5:17:05:d7:a3:8b:18:14:b1:
ee:08:71:1e:e1:5d:a4:d3:37:ec:39:ec:00:fe:81:be:f7:46:
b8:41:72:66:2e:bc:11:7e:1e:fc:d9:11:bb:78:92:fe:9f:b8:
1f:d3:2c:63:54:ec:00:0a:31:06:4f:45:40:1c:8c:c0:90:e4:
8a:4d:4d:37:96:8d:4d:d6:b5:35:8e:59:03:04:9c:96:3f:62:
5e:19:aa:51:ef:19:81:bc:c8:f2:61:ec:dc:12:11:09:85:f9:
d1:c9:24:a0:44:b0:96:84:f6:a2:d5:12:f7:60:76:f6:57:0c:
9e:fc:f1:b7:91:7f:e5:52:88:9a:45:18:e4:5d:01:03:41:75:
e7:55:e5:b9:9d:7e:06:a6:4a:f9:77:56:86:ae:a7:bb:05:75:
3d:31:f1:9c:ee:6b:a4:94:42:43:70:82:60:5e:3a:0e:c9:8f:
71:ba:8c:f2:2c:2e:30:d8:68:40:f3:fc:dd:78:d4:86:91:9d:
e9:ef:00:43:dc:0c:ea:5f:6f:98:b3:4b:c4:c1:87:b1:09:e8:
9b:2a:3d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:32:08 2026 by rpki-client