Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B56CEB6661D211F1A31E96439747A888.roa
File: B56CEB6661D211F1A31E96439747A888.roa (raw, json)
Hash identifier: ZpYldFurUfXcEjiT6gCGlQyiiC5DpeKlL42RFSrehpY=
Subject key identifier: CD:05:20:D3:D7:1F:35:BB:7F:D3:CF:68:4B:C4:54:C7:32:42:BD:86
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: EC3C
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B56CEB6661D211F1A31E96439747A888.roa
Signing time: Sat 06 Jun 2026 18:08:25 +0000
ROA not before: Sat 06 Jun 2026 18:08:25 +0000
ROA not after: Thu 01 Oct 2026 00:00:00 +0000
asID: 149240
IP address blocks: 36.50.118.0/23 maxlen: 24
103.82.96.0/24 maxlen: 24
103.139.191.0/24 maxlen: 24
103.152.158.0/24 maxlen: 24
103.157.112.0/23 maxlen: 24
103.159.99.0/24 maxlen: 24
103.160.72.0/23 maxlen: 24
103.162.196.0/23 maxlen: 24
103.163.149.0/24 maxlen: 24
103.163.166.0/23 maxlen: 24
103.167.172.0/24 maxlen: 24
103.170.0.0/23 maxlen: 24
103.170.190.0/24 maxlen: 24
103.171.172.0/24 maxlen: 24
103.174.108.0/23 maxlen: 24
103.178.176.0/23 maxlen: 24
103.184.40.0/24 maxlen: 24
103.184.236.0/24 maxlen: 24
103.191.203.0/24 maxlen: 24
2001:df0:3bc0::/48 maxlen: 48
2001:df0:8640::/48 maxlen: 48
2001:df1:9c40::/48 maxlen: 48
2001:df2:c3c0::/48 maxlen: 48
2001:df3:4940::/48 maxlen: 48
2001:df3:b6c0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 19 Jun 2026 15:19:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60476 (0xec3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 6 18:08:25 2026 GMT
Not After : Oct 1 00:00:00 2026 GMT
Subject: CN=6a246219-53cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:29:11:8a:16:73:a5:a2:4b:82:0e:54:05:a6:
42:a9:94:f9:85:27:7d:a8:09:c2:ec:fb:d1:e4:46:
5a:5f:8f:99:76:82:9f:cb:82:9a:f5:35:dd:30:64:
65:08:fd:5c:e6:7c:dc:d1:ae:84:29:fe:bb:cb:ed:
c4:e1:0e:63:ce:23:8c:1d:4c:ce:2f:e4:81:54:be:
97:02:93:db:ae:4f:d9:e6:f9:c9:ff:62:c5:ca:70:
43:13:88:e4:0d:86:d5:03:f0:71:77:d6:81:e2:47:
d0:c3:23:f0:d2:58:c7:56:3d:06:39:5e:30:62:c7:
1f:09:73:9f:5c:8b:73:b3:48:a3:89:52:1a:86:21:
a2:54:4b:3a:6f:7e:40:ab:84:56:86:f7:5b:b1:c9:
84:90:fe:7c:2c:2d:85:2b:9d:63:03:85:ac:99:ce:
48:fc:01:5a:a9:56:e6:f7:4c:8c:e8:f5:d6:f6:20:
06:92:bb:7f:5a:c4:a6:fb:df:00:fd:a2:e0:db:00:
f2:b7:48:c4:f6:01:ed:d0:35:53:4b:99:23:cf:ec:
a5:5b:cf:b5:2a:a5:ac:f5:8e:15:00:7c:10:78:c3:
16:14:a8:4e:6a:a5:3c:2a:1a:ae:29:e4:4d:51:b7:
33:0c:ec:5e:19:ce:47:da:92:a7:0c:6a:17:fe:b0:
e2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:05:20:D3:D7:1F:35:BB:7F:D3:CF:68:4B:C4:54:C7:32:42:BD:86
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B56CEB6661D211F1A31E96439747A888.roa
sbgp-ipAddrBlock: critical
IPv4:
36.50.118.0/23
103.82.96.0/24
103.139.191.0/24
103.152.158.0/24
103.157.112.0/23
103.159.99.0/24
103.160.72.0/23
103.162.196.0/23
103.163.149.0/24
103.163.166.0/23
103.167.172.0/24
103.170.0.0/23
103.170.190.0/24
103.171.172.0/24
103.174.108.0/23
103.178.176.0/23
103.184.40.0/24
103.184.236.0/24
103.191.203.0/24
IPv6:
2001:df0:3bc0::/48
2001:df0:8640::/48
2001:df1:9c40::/48
2001:df2:c3c0::/48
2001:df3:4940::/48
2001:df3:b6c0::/48
Signature Algorithm: sha256WithRSAEncryption
27:0d:cc:da:3b:94:cc:2a:a9:0f:25:6e:48:ef:00:3b:72:7a:
c2:24:2e:f2:5c:fa:3b:fb:9b:8f:3a:a8:49:b6:3d:7a:c6:1b:
51:32:fb:40:ec:2f:b4:ff:92:1c:01:b7:8b:26:12:de:d5:3f:
18:1c:f4:b4:b4:e2:51:05:7a:c1:50:0b:f0:4f:51:8b:23:d2:
04:78:19:2e:17:a1:22:6e:12:d7:33:ea:75:c9:07:7e:78:14:
d5:fc:98:df:69:d2:6b:63:1b:69:5d:44:f6:1d:ff:8f:3f:b2:
67:25:4a:b2:0f:ed:1d:8c:66:9b:d7:56:85:bc:d3:14:bf:27:
25:0a:9d:ff:e8:0f:f8:9d:71:f6:4a:52:8c:77:81:57:cb:4d:
0d:5d:54:c2:fa:f9:9e:87:5f:02:0e:c2:e1:d6:09:8e:8c:b1:
ad:69:a0:16:dd:d1:cf:ba:35:5a:bf:a5:89:43:45:67:1f:16:
89:e9:1f:81:e0:19:6a:5f:2d:28:81:91:f5:e2:a5:16:97:19:
2b:94:7f:9e:43:4e:58:9d:5d:7f:98:07:e9:0f:7a:e1:92:4d:
02:de:c5:13:59:50:38:30:85:ea:a5:5c:ae:1c:fa:85:0a:10:
d7:e1:e4:1f:01:da:f2:2d:65:5c:74:7b:68:fe:35:3a:52:7c:
69:bc:be:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:00:27 2026 by rpki-client