Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa
File: 6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa (raw, json)
Hash identifier: /34i4p+wHjwHIcXObUd+xUTLIasz0JhxVEuPOnQJ4/M=
Subject key identifier: 62:02:B1:54:A7:69:1E:58:42:2B:D4:7D:7D:E6:A0:73:15:A9:89:E9
Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Certificate serial: 029C
Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa
Signing time: Fri 12 Jun 2026 09:08:31 +0000
ROA not before: Fri 12 Jun 2026 09:08:31 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 132280
IP address blocks: 83.118.0.0/17 maxlen: 18
83.118.0.0/21 maxlen: 23
83.118.8.0/21 maxlen: 23
83.118.16.0/21 maxlen: 23
83.118.24.0/21 maxlen: 23
83.118.26.0/23 maxlen: 24
83.118.32.0/21 maxlen: 23
83.118.32.0/24 maxlen: 24
83.118.35.0/24 maxlen: 24
83.118.36.0/24 maxlen: 24
83.118.40.0/21 maxlen: 23
83.118.45.0/24 maxlen: 24
83.118.48.0/21 maxlen: 23
83.118.52.0/24 maxlen: 24
83.118.55.0/24 maxlen: 24
83.118.56.0/21 maxlen: 23
83.118.56.0/23 maxlen: 24
83.118.61.0/24 maxlen: 24
83.118.64.0/21 maxlen: 23
83.118.65.0/24 maxlen: 24
83.118.72.0/21 maxlen: 23
83.118.75.0/24 maxlen: 24
83.118.80.0/21 maxlen: 23
83.118.88.0/21 maxlen: 23
83.118.92.0/24 maxlen: 24
83.118.96.0/21 maxlen: 23
83.118.98.0/24 maxlen: 24
83.118.104.0/21 maxlen: 23
83.118.105.0/24 maxlen: 24
83.118.109.0/24 maxlen: 24
83.118.111.0/24 maxlen: 24
83.118.112.0/21 maxlen: 23
83.118.112.0/24 maxlen: 24
83.118.114.0/24 maxlen: 24
83.118.118.0/24 maxlen: 24
83.118.120.0/21 maxlen: 23
83.118.120.0/23 maxlen: 24
83.118.124.0/24 maxlen: 24
83.118.126.0/24 maxlen: 24
87.124.0.0/17 maxlen: 23
87.124.1.0/24 maxlen: 24
87.124.2.0/23 maxlen: 24
87.124.4.0/22 maxlen: 24
87.124.8.0/21 maxlen: 24
87.124.16.0/20 maxlen: 24
87.124.32.0/19 maxlen: 24
87.124.64.0/20 maxlen: 24
87.124.80.0/21 maxlen: 24
87.124.88.0/23 maxlen: 24
87.124.90.0/24 maxlen: 24
87.124.94.0/23 maxlen: 24
87.124.96.0/19 maxlen: 24
89.126.128.0/18 maxlen: 21
89.127.128.0/18 maxlen: 21
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 668 (0x29c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C, serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Validity
Not Before: Jun 12 09:08:31 2026 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=6a2bcc8f-44ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b8:b8:47:3d:fb:32:85:06:30:b5:c2:83:fb:
b3:86:ca:3b:cb:46:69:10:ba:47:f5:21:7b:98:0b:
b7:ad:2c:4a:c1:d2:22:92:3e:19:8b:ad:40:b2:e2:
fa:ee:5b:b8:bc:0c:4a:81:cc:ed:09:b1:cc:99:e0:
2a:1f:ec:d3:6d:14:e2:c1:a9:15:f6:22:f6:10:e5:
46:af:eb:6e:fb:fe:bd:63:56:81:78:37:ed:c2:f1:
31:55:fa:4a:73:c7:ee:1d:f3:78:c0:cc:02:5b:1d:
ff:21:a2:2d:11:90:7c:fa:cd:7c:6b:96:e2:04:93:
7a:6d:fc:1a:08:08:b0:56:11:0e:5c:ff:e5:f2:04:
85:79:52:f3:23:c1:4f:e1:a9:4c:f8:1d:37:fa:69:
cc:09:e8:18:c6:64:56:cc:c2:63:68:a5:99:77:c5:
09:b3:46:fa:72:a5:9e:6e:ec:8f:84:7b:2f:ec:87:
33:08:ac:11:77:ab:d0:34:92:02:a5:5f:39:83:78:
bd:09:9a:0b:c5:84:aa:67:bf:1f:89:80:16:75:6f:
27:d1:da:22:90:46:51:1c:8c:d1:89:75:92:2f:44:
ed:a8:3d:3d:90:88:86:05:22:0f:54:f5:d5:80:e3:
c7:70:13:f6:70:e4:cd:65:6d:e2:d7:bb:db:ea:23:
83:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:02:B1:54:A7:69:1E:58:42:2B:D4:7D:7D:E6:A0:73:15:A9:89:E9
X509v3 Authority Key Identifier:
keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/6BA10D8EAD9511EFAA7B4C1AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
83.118.0.0/17
87.124.0.0/17
89.126.128.0/18
89.127.128.0/18
Signature Algorithm: sha256WithRSAEncryption
6c:10:d8:53:0e:f7:93:b3:44:90:c4:ab:f1:86:26:4a:97:0d:
a7:dd:dd:7e:49:c1:19:63:0f:41:67:14:04:e7:45:b1:8b:6e:
ff:85:90:12:fe:50:93:71:3a:44:8f:85:13:1d:57:2e:a0:24:
cb:60:85:82:db:10:e9:75:dc:1d:fc:9e:7a:f9:d9:60:be:ee:
ee:4f:57:b2:d5:fa:fc:b8:66:cf:31:a4:d6:22:3f:ed:cb:79:
33:3a:25:db:aa:07:db:c2:c5:5e:c8:7b:74:2a:32:8f:55:57:
a4:60:fe:74:75:07:52:37:05:4c:c4:1b:73:86:88:d3:7e:ec:
f2:e6:44:ad:05:45:1e:39:79:2e:76:46:e2:73:cd:da:9d:4a:
22:0a:ea:fb:b2:56:80:f2:08:09:30:0f:69:ef:49:9f:78:23:
82:0d:10:f5:d9:5b:65:b6:cb:26:0d:0a:8b:16:33:86:46:68:
d3:0d:98:61:9c:2f:f0:15:b3:d8:b3:a8:34:9c:c4:c7:fd:0e:
ed:3a:4c:dc:a5:c0:be:01:aa:b1:72:68:b2:25:74:9f:d6:46:
34:95:42:e9:b1:71:23:31:5b:02:26:b5:ad:c7:79:41:4e:33:
13:6c:85:b9:95:c8:9b:78:8a:9e:77:e9:f8:f7:de:cb:24:46:
41:f8:aa:56
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF
NEMzMkM5MzQwHhcNMjYwNjEyMDkwODMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTJiY2M4Zi00NGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmbi4Rz37MoUGMLXCg/uzhso7y0ZpELpH9SF7mAu3rSxKwdIikj4Zi61AsuL6
7lu4vAxKgcztCbHMmeAqH+zTbRTiwakV9iL2EOVGr+tu+/69Y1aBeDftwvExVfpK
c8fuHfN4wMwCWx3/IaItEZB8+s18a5biBJN6bfwaCAiwVhEOXP/l8gSFeVLzI8FP
4alM+B03+mnMCegYxmRWzMJjaKWZd8UJs0b6cqWebuyPhHsv7IczCKwRd6vQNJIC
pV85g3i9CZoLxYSqZ78fiYAWdW8n0doikEZRHIzRiXWSL0TtqD09kIiGBSIPVPXV
gOPHcBP2cOTNZW3i17vb6iODgQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFGICsVSn
aR5YQivUfX3moHMVqYnpMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2
NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5
VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy
RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvNkJBMTBEOEVB
RDk1MTFFRkFBN0I0QzFBQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe
BAIAATAYAwQHU3YAAwQHV3wAAwQGWX6AAwQGWX+AMA0GCSqGSIb3DQEBCwUAA4IB
AQBsENhTDveTs0SQxKvxhiZKlw2n3d1+ScEZYw9BZxQE50Wxi27/hZAS/lCTcTpE
j4UTHVcuoCTLYIWC2xDpddwd/J56+dlgvu7uT1ey1fr8uGbPMaTWIj/ty3kzOiXb
qgfbwsVeyHt0KjKPVVekYP50dQdSNwVMxBtzhojTfuzy5kStBUUeOXkudkbic83a
nUoiCur7slaA8ggJMA9p70mfeCOCDRD12VtltssmDQqLFjOGRmjTDZhhnC/wFbPY
s6g0nMTH/Q7tOkzcpcC+AaqxcmiyJXSf1kY0lULpsXEjMVsCJrWtx3lBTjMTbIW5
lcibeIqed+n4997LJEZB+KpW
-----END CERTIFICATE-----
Generated at Sat Jun 13 15:38:11 2026 by rpki-client