Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
File: 450B9058E3B511EF8A23824BC4F9AE02.roa (raw, json)
Hash identifier: zYsWSb6Yl11A1fr48d//3yneCAQxTmVwyPNNY8GXq+o=
Subject key identifier: FC:2D:B3:DC:B7:07:00:A3:B3:4B:66:90:3F:46:6A:99:19:2E:FE:6D
Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
Certificate serial: 3537
Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
Signing time: Tue 28 Oct 2025 15:30:57 +0000
ROA not before: Tue 28 Oct 2025 15:30:57 +0000
ROA not after: Wed 30 Dec 2026 00:00:00 +0000
asID: 132618
IP address blocks: 49.237.4.0/22 maxlen: 22
49.237.4.0/24 maxlen: 24
49.237.5.0/24 maxlen: 24
49.237.6.0/24 maxlen: 24
49.237.7.0/24 maxlen: 24
49.237.8.0/22 maxlen: 22
49.237.8.0/24 maxlen: 24
49.237.9.0/24 maxlen: 24
49.237.10.0/24 maxlen: 24
49.237.11.0/24 maxlen: 24
49.237.12.0/22 maxlen: 22
49.237.12.0/24 maxlen: 24
49.237.13.0/24 maxlen: 24
49.237.14.0/24 maxlen: 24
49.237.15.0/24 maxlen: 24
49.237.32.0/22 maxlen: 22
49.237.32.0/24 maxlen: 24
49.237.33.0/24 maxlen: 24
49.237.34.0/24 maxlen: 24
49.237.35.0/24 maxlen: 24
49.237.36.0/22 maxlen: 22
49.237.36.0/24 maxlen: 24
49.237.37.0/24 maxlen: 24
49.237.38.0/24 maxlen: 24
49.237.39.0/24 maxlen: 24
49.237.44.0/22 maxlen: 22
49.237.44.0/24 maxlen: 24
49.237.45.0/24 maxlen: 24
49.237.46.0/24 maxlen: 24
49.237.47.0/24 maxlen: 24
49.237.64.0/20 maxlen: 20
49.237.64.0/21 maxlen: 21
49.237.64.0/24 maxlen: 24
49.237.65.0/24 maxlen: 24
49.237.66.0/24 maxlen: 24
49.237.67.0/24 maxlen: 24
49.237.68.0/24 maxlen: 24
49.237.69.0/24 maxlen: 24
49.237.70.0/24 maxlen: 24
49.237.71.0/24 maxlen: 24
49.237.72.0/21 maxlen: 21
49.237.72.0/24 maxlen: 24
49.237.73.0/24 maxlen: 24
49.237.74.0/24 maxlen: 24
49.237.75.0/24 maxlen: 24
49.237.76.0/24 maxlen: 24
49.237.77.0/24 maxlen: 24
49.237.78.0/24 maxlen: 24
49.237.79.0/24 maxlen: 24
49.237.80.0/20 maxlen: 20
49.237.80.0/21 maxlen: 21
49.237.80.0/24 maxlen: 24
49.237.81.0/24 maxlen: 24
49.237.82.0/24 maxlen: 24
49.237.83.0/24 maxlen: 24
49.237.84.0/24 maxlen: 24
49.237.85.0/24 maxlen: 24
49.237.86.0/24 maxlen: 24
49.237.87.0/24 maxlen: 24
49.237.88.0/21 maxlen: 21
49.237.88.0/24 maxlen: 24
49.237.89.0/24 maxlen: 24
49.237.90.0/24 maxlen: 24
49.237.91.0/24 maxlen: 24
49.237.92.0/24 maxlen: 24
49.237.93.0/24 maxlen: 24
49.237.94.0/24 maxlen: 24
49.237.95.0/24 maxlen: 24
49.237.96.0/21 maxlen: 21
49.237.112.0/21 maxlen: 21
49.237.164.0/22 maxlen: 22
49.237.164.0/24 maxlen: 24
49.237.165.0/24 maxlen: 24
49.237.166.0/24 maxlen: 24
49.237.167.0/24 maxlen: 24
49.237.168.0/22 maxlen: 22
49.237.168.0/24 maxlen: 24
49.237.169.0/24 maxlen: 24
49.237.170.0/24 maxlen: 24
49.237.171.0/24 maxlen: 24
49.237.172.0/22 maxlen: 22
49.237.172.0/24 maxlen: 24
49.237.173.0/24 maxlen: 24
49.237.174.0/24 maxlen: 24
49.237.175.0/24 maxlen: 24
49.237.176.0/22 maxlen: 22
49.237.176.0/24 maxlen: 24
49.237.177.0/24 maxlen: 24
49.237.178.0/24 maxlen: 24
49.237.179.0/24 maxlen: 24
49.237.180.0/22 maxlen: 22
49.237.180.0/24 maxlen: 24
49.237.181.0/24 maxlen: 24
49.237.182.0/24 maxlen: 24
49.237.183.0/24 maxlen: 24
49.237.184.0/22 maxlen: 22
49.237.184.0/24 maxlen: 24
49.237.185.0/24 maxlen: 24
49.237.186.0/24 maxlen: 24
49.237.187.0/24 maxlen: 24
49.237.188.0/22 maxlen: 22
49.237.188.0/24 maxlen: 24
49.237.189.0/24 maxlen: 24
49.237.190.0/24 maxlen: 24
49.237.191.0/24 maxlen: 24
49.237.200.0/22 maxlen: 22
49.237.200.0/24 maxlen: 24
49.237.201.0/24 maxlen: 24
49.237.202.0/24 maxlen: 24
49.237.203.0/24 maxlen: 24
49.237.204.0/23 maxlen: 23
223.24.172.0/22 maxlen: 22
223.24.172.0/23 maxlen: 23
223.24.172.0/24 maxlen: 24
223.24.173.0/24 maxlen: 24
223.24.174.0/24 maxlen: 24
223.24.175.0/24 maxlen: 24
223.24.192.0/20 maxlen: 20
223.24.192.0/21 maxlen: 21
223.24.192.0/24 maxlen: 24
223.24.193.0/24 maxlen: 24
223.24.194.0/24 maxlen: 24
223.24.195.0/24 maxlen: 24
223.24.196.0/24 maxlen: 24
223.24.197.0/24 maxlen: 24
223.24.198.0/24 maxlen: 24
223.24.199.0/24 maxlen: 24
223.24.200.0/21 maxlen: 21
223.24.200.0/24 maxlen: 24
223.24.201.0/24 maxlen: 24
223.24.202.0/24 maxlen: 24
223.24.203.0/24 maxlen: 24
223.24.204.0/24 maxlen: 24
223.24.205.0/24 maxlen: 24
223.24.206.0/24 maxlen: 24
223.24.207.0/24 maxlen: 24
223.24.208.0/20 maxlen: 20
223.24.208.0/21 maxlen: 21
223.24.208.0/24 maxlen: 24
223.24.209.0/24 maxlen: 24
223.24.210.0/24 maxlen: 24
223.24.211.0/24 maxlen: 24
223.24.212.0/24 maxlen: 24
223.24.213.0/24 maxlen: 24
223.24.214.0/24 maxlen: 24
223.24.215.0/24 maxlen: 24
223.24.216.0/21 maxlen: 21
223.24.216.0/24 maxlen: 24
223.24.217.0/24 maxlen: 24
223.24.218.0/24 maxlen: 24
223.24.219.0/24 maxlen: 24
223.24.220.0/24 maxlen: 24
223.24.221.0/24 maxlen: 24
223.24.222.0/24 maxlen: 24
223.24.223.0/24 maxlen: 24
223.24.224.0/21 maxlen: 21
223.24.240.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl
rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 11 Nov 2025 15:04:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13623 (0x3537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
Validity
Not Before: Oct 28 15:30:57 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=6900e1b1-ec3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:19:81:7e:0f:c6:98:de:d2:36:bf:53:45:63:
26:56:04:eb:89:25:ba:e7:bf:2d:16:8c:ac:13:12:
b8:be:8a:d0:c8:45:22:ee:5c:74:67:97:a0:90:84:
62:6c:b9:ea:90:69:bb:da:86:b8:c9:75:90:dd:0d:
0b:f7:0c:5b:88:bd:b3:dd:65:f9:b8:00:a0:46:ee:
e7:e2:7c:d1:c7:a8:59:eb:cf:d2:a7:c2:e0:8d:28:
7a:4c:58:0a:cf:2c:8a:22:8d:e4:ba:43:2d:54:d5:
b9:d0:05:c5:84:3a:12:d2:3d:94:87:a1:72:cb:d0:
20:2c:fd:7d:cc:a0:7a:6e:d4:e0:1f:05:f7:4f:b9:
d0:26:7a:4c:63:6a:1c:af:d0:db:9f:9b:22:8e:99:
3b:68:91:79:ee:80:ef:96:58:12:c4:ec:9b:6c:d9:
2e:1e:77:39:49:1b:2f:92:b2:48:75:dc:ab:c1:64:
11:24:0f:2b:1c:c1:90:d7:da:ea:4a:55:80:2f:26:
e2:07:6a:b9:87:be:c5:e6:06:d2:5a:d3:a9:d7:83:
15:5d:63:b3:6b:ac:7d:49:24:60:31:d8:fa:40:27:
0c:46:85:90:d9:fa:ab:0e:4f:2a:0b:81:5f:8c:4f:
a2:1c:d5:7d:fd:e3:38:f5:26:ad:d4:3a:db:8c:e5:
f0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:2D:B3:DC:B7:07:00:A3:B3:4B:66:90:3F:46:6A:99:19:2E:FE:6D
X509v3 Authority Key Identifier:
keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.237.4.0-49.237.15.255
49.237.32.0/21
49.237.44.0/22
49.237.64.0-49.237.103.255
49.237.112.0/21
49.237.164.0-49.237.191.255
49.237.200.0-49.237.205.255
223.24.172.0/22
223.24.192.0-223.24.231.255
223.24.240.0/21
Signature Algorithm: sha256WithRSAEncryption
65:d6:64:65:fc:2a:dc:aa:ca:c5:91:92:a1:44:e9:39:08:e1:
64:67:74:34:de:85:b5:54:b4:0d:0c:e8:64:b7:51:7c:98:7a:
36:9d:b0:15:88:8b:9a:90:b5:be:31:76:46:69:d7:22:7a:92:
89:88:d4:fd:51:fa:a1:59:d3:a2:8e:ef:95:af:e2:84:11:ad:
c8:5f:e4:1b:83:29:c6:a8:93:39:da:3e:03:d1:02:55:57:eb:
80:09:f7:e9:52:74:b0:d3:08:9e:c2:19:c0:7c:36:52:ce:88:
3b:a4:92:6f:6d:25:81:ac:a3:4d:c3:d8:55:30:00:3a:92:6b:
aa:17:81:05:d9:34:78:9b:f2:eb:a1:63:52:bd:62:73:8a:a3:
37:33:5e:0d:4a:70:dd:4e:64:ba:9e:a4:83:21:39:40:91:fe:
ac:99:69:6b:83:a9:de:9b:6f:f5:7a:03:8c:79:bf:5e:e7:3b:
31:ae:30:a4:98:ce:24:51:27:c9:c2:16:1c:a5:64:7e:9d:c7:
d2:ea:85:90:19:60:53:42:90:b3:77:ea:64:28:e7:9c:9f:46:
67:2a:eb:54:6f:72:81:ba:5b:1a:fc:a9:a8:44:5d:57:44:eb:
a0:6f:5e:16:a7:c7:3e:98:ad:10:5a:a1:d3:9e:56:f6:ea:8e:
c1:ec:8d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:35:09 2025 by rpki-client