Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/70F51BEE4B0D11EF94975151C4F9AE02.roa
File: 70F51BEE4B0D11EF94975151C4F9AE02.roa (raw, json)
Hash identifier: HSoL53wcuF162+Jp6uFyYtOESNj0gd6QJK8BOXEE1V0=
Subject key identifier: FF:8F:78:A2:E1:1A:02:9E:45:35:8A:A9:DA:84:91:64:B5:3E:B6:8F
Certificate issuer: /CN=A9199197/serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7
Certificate serial: 0955
Authority key identifier: 68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/70F51BEE4B0D11EF94975151C4F9AE02.roa
Signing time: Fri 17 Apr 2026 03:26:40 +0000
ROA not before: Fri 17 Apr 2026 03:26:40 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 45609
IP address blocks: 27.56.0.0/13 maxlen: 24
103.235.8.0/22 maxlen: 24
106.192.0.0/11 maxlen: 24
110.224.0.0/14 maxlen: 24
117.96.0.0/17 maxlen: 22
117.96.0.0/18 maxlen: 24
117.96.64.0/19 maxlen: 24
117.96.96.0/20 maxlen: 24
117.96.112.0/21 maxlen: 24
117.96.120.0/22 maxlen: 24
117.96.124.0/23 maxlen: 23
117.96.128.0/20 maxlen: 24
117.96.144.0/21 maxlen: 24
117.96.153.0/24 maxlen: 24
117.96.154.0/24 maxlen: 24
117.96.160.0/20 maxlen: 24
117.96.176.0/20 maxlen: 24
117.97.0.0/17 maxlen: 19
117.97.0.0/18 maxlen: 24
117.97.64.0/19 maxlen: 20
117.97.64.0/20 maxlen: 24
117.97.80.0/21 maxlen: 21
117.97.80.0/22 maxlen: 24
117.97.91.0/24 maxlen: 24
117.97.92.0/24 maxlen: 24
117.97.93.0/24 maxlen: 24
117.97.94.0/24 maxlen: 24
117.97.128.0/17 maxlen: 24
117.98.0.0/17 maxlen: 24
150.129.212.0/22 maxlen: 24
223.176.0.0/12 maxlen: 24
223.224.32.0/19 maxlen: 24
223.224.64.0/18 maxlen: 24
223.224.128.0/17 maxlen: 24
223.225.0.0/16 maxlen: 24
223.226.0.0/15 maxlen: 24
223.228.0.0/14 maxlen: 24
223.232.0.0/13 maxlen: 24
2401:4900:800::/37 maxlen: 48
2401:4900:1000::/37 maxlen: 48
2401:4900:1800::/37 maxlen: 48
2401:4900:2000::/37 maxlen: 48
2401:4900:2800::/37 maxlen: 48
2401:4900:3000::/37 maxlen: 48
2401:4900:3800::/37 maxlen: 48
2401:4900:4000::/37 maxlen: 48
2401:4900:4800::/37 maxlen: 48
2401:4900:5000::/37 maxlen: 48
2401:4900:5800::/37 maxlen: 48
2401:4900:6000::/37 maxlen: 48
2401:4900:7000::/37 maxlen: 48
2401:4900:7800::/37 maxlen: 48
2401:4900:8000::/37 maxlen: 48
2401:4900:9000::/37 maxlen: 48
2401:4900:a000::/37 maxlen: 48
2401:4900:a800::/37 maxlen: 44
2401:4900:b000::/37 maxlen: 48
2401:4900:b800::/37 maxlen: 48
2401:4900:c000::/37 maxlen: 48
2401:4900:c800::/37 maxlen: 48
2401:4900:d000::/37 maxlen: 48
2401:4900:d800::/37 maxlen: 44
2401:4900:e000::/37 maxlen: 44
2401:4900:e800::/37 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl
rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 04:26:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389 (0x955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199197, serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7
Validity
Not Before: Apr 17 03:26:40 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69e1a870-6a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:04:c1:f0:b0:db:20:8a:a2:be:1a:1f:db:35:
67:84:31:ab:66:b2:79:eb:24:f6:c8:5b:6b:ad:f6:
d1:78:80:11:8b:08:87:96:78:5b:f9:b7:d6:82:f1:
0a:c9:1d:88:27:80:b4:95:45:e3:21:17:c1:83:ee:
8a:ed:f1:67:b0:3c:8b:18:44:0e:8f:80:f0:a6:21:
94:fe:ad:b4:c2:32:51:5c:af:36:49:ae:60:b8:d0:
04:31:fb:85:35:bb:01:2f:41:ff:f9:dc:eb:7d:35:
d6:42:3f:14:8f:1d:25:79:47:a8:c8:23:ff:6c:d8:
0c:8d:42:64:05:65:86:c3:ad:95:e6:b8:b1:8b:5f:
31:a4:e0:e3:43:8c:3e:1e:f9:96:7b:02:59:35:53:
0b:4b:d1:44:17:e4:c0:41:b6:6a:19:78:33:7e:c7:
0f:ee:02:a8:d8:dd:ab:c6:f2:2c:3c:fe:22:44:ab:
dc:1e:12:24:2c:09:48:e4:44:79:eb:1f:6d:4f:b7:
9b:50:2a:8b:4f:9b:35:e5:c5:1c:4e:21:ca:f5:f6:
61:1d:37:8f:6f:df:72:39:7b:6e:9c:33:b8:f2:56:
93:fd:d5:98:c4:e3:18:db:87:2c:eb:99:4d:58:b2:
a7:82:e5:af:66:1b:0d:51:29:0f:f1:06:cc:a1:7d:
0c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8F:78:A2:E1:1A:02:9E:45:35:8A:A9:DA:84:91:64:B5:3E:B6:8F
X509v3 Authority Key Identifier:
keyid:68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/70F51BEE4B0D11EF94975151C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
27.56.0.0/13
103.235.8.0/22
106.192.0.0/11
110.224.0.0/14
117.96.0.0-117.96.151.255
117.96.153.0-117.96.154.255
117.96.160.0/19
117.97.0.0-117.98.127.255
150.129.212.0/22
223.176.0.0/12
223.224.32.0-223.239.255.255
IPv6:
2401:4900:800::-2401:4900:67ff:ffff:ffff:ffff:ffff:ffff
2401:4900:7000::-2401:4900:87ff:ffff:ffff:ffff:ffff:ffff
2401:4900:9000::/37
2401:4900:a000::-2401:4900:efff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
c1:d1:2c:9d:5b:7a:41:62:68:07:ab:fa:ad:bc:e6:84:b8:76:
83:41:3a:2c:b9:3c:aa:ae:31:d9:ef:20:46:6e:d2:f1:88:13:
e1:e5:a7:df:34:e1:85:bd:b7:45:8c:66:0d:f0:dc:b8:ec:f6:
2a:a7:60:bb:c9:88:b9:55:f6:13:31:89:e6:10:dc:a4:10:1d:
46:22:1b:86:a7:bb:3d:ba:3a:cb:1a:e0:09:c1:78:db:a8:46:
c7:d6:ab:9d:0b:44:b4:3f:d5:34:41:7f:13:0b:d2:ff:6a:c8:
3c:c0:38:83:f6:0d:57:d7:ec:8a:cb:bf:66:c6:2a:b2:f0:27:
bc:50:af:5e:e9:e6:b2:8c:2d:93:69:57:c3:55:64:d7:40:eb:
12:d4:4e:e7:7f:c0:70:3d:41:21:80:9c:e2:4f:53:03:88:7e:
d5:42:06:ef:0e:d6:ea:cb:8f:71:fe:c2:32:ef:b6:08:b2:d6:
60:05:e6:b4:17:62:f1:49:ab:8b:39:61:7d:87:a7:5a:02:a4:
f4:15:e2:ab:c2:44:a8:11:ef:9e:75:3a:2d:45:bf:bf:5c:ed:
da:af:9e:a3:36:72:8a:c6:0c:b1:d3:b4:6b:84:9b:14:04:aa:
da:37:ab:d9:f6:23:7e:ba:33:f9:bf:6a:e2:d2:98:27:ae:05:
b7:47:4b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:04:54 2026 by rpki-client