Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
File: 450B9058E3B511EF8A23824BC4F9AE02.roa (raw, json)
Hash identifier: ty5I3DahkDwmuQG0MkBj34whcyz61V92kdrY50JAllc=
Subject key identifier: 3D:E9:F2:9C:55:91:E1:73:F6:FD:4C:E5:45:45:09:3B:16:FC:41:AA
Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
Certificate serial: 34E2
Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
Signing time: Tue 05 Aug 2025 11:32:43 +0000
ROA not before: Tue 05 Aug 2025 11:32:43 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 132618
IP address blocks: 49.237.4.0/22 maxlen: 22
49.237.4.0/24 maxlen: 24
49.237.5.0/24 maxlen: 24
49.237.6.0/24 maxlen: 24
49.237.7.0/24 maxlen: 24
49.237.8.0/22 maxlen: 22
49.237.8.0/24 maxlen: 24
49.237.9.0/24 maxlen: 24
49.237.10.0/24 maxlen: 24
49.237.11.0/24 maxlen: 24
49.237.32.0/22 maxlen: 22
49.237.32.0/24 maxlen: 24
49.237.33.0/24 maxlen: 24
49.237.34.0/24 maxlen: 24
49.237.35.0/24 maxlen: 24
49.237.36.0/22 maxlen: 22
49.237.36.0/24 maxlen: 24
49.237.37.0/24 maxlen: 24
49.237.38.0/24 maxlen: 24
49.237.39.0/24 maxlen: 24
49.237.64.0/21 maxlen: 21
49.237.64.0/24 maxlen: 24
49.237.65.0/24 maxlen: 24
49.237.66.0/24 maxlen: 24
49.237.67.0/24 maxlen: 24
49.237.68.0/24 maxlen: 24
49.237.69.0/24 maxlen: 24
49.237.70.0/24 maxlen: 24
49.237.71.0/24 maxlen: 24
49.237.72.0/21 maxlen: 21
49.237.72.0/24 maxlen: 24
49.237.73.0/24 maxlen: 24
49.237.74.0/24 maxlen: 24
49.237.75.0/24 maxlen: 24
49.237.76.0/24 maxlen: 24
49.237.77.0/24 maxlen: 24
49.237.78.0/24 maxlen: 24
49.237.79.0/24 maxlen: 24
49.237.80.0/21 maxlen: 21
49.237.80.0/24 maxlen: 24
49.237.81.0/24 maxlen: 24
49.237.82.0/24 maxlen: 24
49.237.83.0/24 maxlen: 24
49.237.84.0/24 maxlen: 24
49.237.85.0/24 maxlen: 24
49.237.86.0/24 maxlen: 24
49.237.87.0/24 maxlen: 24
49.237.88.0/21 maxlen: 21
49.237.88.0/24 maxlen: 24
49.237.89.0/24 maxlen: 24
49.237.90.0/24 maxlen: 24
49.237.91.0/24 maxlen: 24
49.237.92.0/24 maxlen: 24
49.237.93.0/24 maxlen: 24
49.237.94.0/24 maxlen: 24
49.237.95.0/24 maxlen: 24
49.237.96.0/21 maxlen: 21
49.237.112.0/21 maxlen: 21
49.237.164.0/22 maxlen: 22
49.237.164.0/24 maxlen: 24
49.237.165.0/24 maxlen: 24
49.237.166.0/24 maxlen: 24
49.237.167.0/24 maxlen: 24
49.237.168.0/22 maxlen: 22
49.237.168.0/24 maxlen: 24
49.237.169.0/24 maxlen: 24
49.237.170.0/24 maxlen: 24
49.237.171.0/24 maxlen: 24
49.237.176.0/22 maxlen: 22
49.237.176.0/24 maxlen: 24
49.237.177.0/24 maxlen: 24
49.237.178.0/24 maxlen: 24
49.237.179.0/24 maxlen: 24
49.237.180.0/22 maxlen: 22
49.237.180.0/24 maxlen: 24
49.237.181.0/24 maxlen: 24
49.237.182.0/24 maxlen: 24
49.237.183.0/24 maxlen: 24
49.237.204.0/23 maxlen: 23
223.24.172.0/23 maxlen: 23
223.24.192.0/21 maxlen: 21
223.24.192.0/24 maxlen: 24
223.24.193.0/24 maxlen: 24
223.24.194.0/24 maxlen: 24
223.24.195.0/24 maxlen: 24
223.24.196.0/24 maxlen: 24
223.24.197.0/24 maxlen: 24
223.24.198.0/24 maxlen: 24
223.24.199.0/24 maxlen: 24
223.24.200.0/21 maxlen: 21
223.24.200.0/24 maxlen: 24
223.24.201.0/24 maxlen: 24
223.24.202.0/24 maxlen: 24
223.24.203.0/24 maxlen: 24
223.24.204.0/24 maxlen: 24
223.24.205.0/24 maxlen: 24
223.24.206.0/24 maxlen: 24
223.24.207.0/24 maxlen: 24
223.24.208.0/21 maxlen: 21
223.24.208.0/24 maxlen: 24
223.24.209.0/24 maxlen: 24
223.24.210.0/24 maxlen: 24
223.24.211.0/24 maxlen: 24
223.24.212.0/24 maxlen: 24
223.24.213.0/24 maxlen: 24
223.24.214.0/24 maxlen: 24
223.24.215.0/24 maxlen: 24
223.24.216.0/21 maxlen: 21
223.24.216.0/24 maxlen: 24
223.24.217.0/24 maxlen: 24
223.24.218.0/24 maxlen: 24
223.24.219.0/24 maxlen: 24
223.24.220.0/24 maxlen: 24
223.24.221.0/24 maxlen: 24
223.24.222.0/24 maxlen: 24
223.24.223.0/24 maxlen: 24
223.24.224.0/21 maxlen: 21
223.24.240.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl
rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 Aug 2025 05:57:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13538 (0x34e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
Validity
Not Before: Aug 5 11:32:43 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=6891ebda-9f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e7:e5:3c:96:cd:a0:59:d0:8d:5c:5b:5d:37:
29:9c:1a:d1:f4:60:b6:81:bc:97:72:59:36:90:26:
66:68:68:70:e5:01:d0:11:9e:1d:48:ed:e2:92:b8:
03:80:07:6d:c7:f8:f0:d2:4e:2e:94:af:9d:32:d0:
a3:8b:22:08:6a:11:61:7d:fc:1d:a7:79:fb:79:6e:
6a:3c:fb:6e:a3:f6:58:ad:c6:b8:90:f6:cd:65:26:
3d:a2:48:d8:43:c3:57:54:22:59:48:f2:82:4d:cb:
d5:e7:1e:6d:5e:a3:cc:79:df:9a:db:f7:1e:2a:73:
4e:15:5e:c6:9b:84:6b:0c:9b:1f:82:55:57:1b:15:
2b:5d:04:3e:4d:79:cd:7b:58:cd:56:ff:dd:5a:73:
a6:4e:1c:63:1b:aa:27:42:23:e0:5c:d3:5f:3b:f2:
55:d9:d0:91:d2:91:d2:c1:78:9a:c3:d9:1a:01:a6:
b2:1f:ef:17:1e:f6:59:31:58:8b:1a:98:bf:0a:ae:
63:4c:12:b8:d5:83:a4:0f:33:82:92:1b:3f:88:bd:
1f:d6:7f:5f:62:e1:43:99:59:18:5c:71:37:d6:a0:
e0:12:16:cd:d1:b7:ed:ce:f4:b8:62:4c:19:82:68:
49:7f:38:47:00:32:5e:99:67:da:10:46:50:d2:64:
01:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E9:F2:9C:55:91:E1:73:F6:FD:4C:E5:45:45:09:3B:16:FC:41:AA
X509v3 Authority Key Identifier:
keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.237.4.0-49.237.11.255
49.237.32.0/21
49.237.64.0-49.237.103.255
49.237.112.0/21
49.237.164.0-49.237.171.255
49.237.176.0/21
49.237.204.0/23
223.24.172.0/23
223.24.192.0-223.24.231.255
223.24.240.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:01:f2:a9:e2:38:02:92:af:32:cd:88:35:ee:12:60:60:15:
c8:2c:ad:ab:07:2c:44:98:a0:78:af:bf:ed:f6:30:f5:91:24:
a8:c3:d3:d9:ae:04:be:71:3e:82:b5:7a:9f:b3:2e:be:ac:02:
b9:9e:10:75:80:5e:60:f0:5d:82:c7:7f:99:92:98:35:89:bc:
15:f0:f2:8b:ab:fa:4e:01:d1:d9:7f:56:d2:fc:ba:a7:84:fe:
50:19:df:82:1e:bf:c2:a4:37:15:6a:f2:8a:6e:44:09:58:81:
bd:a4:06:6c:89:92:19:83:bf:f0:a9:df:79:99:57:5c:7b:f4:
cc:44:f0:ce:cb:bf:55:39:88:5e:d9:36:5d:6e:1f:9c:e2:60:
55:a9:b9:c2:39:86:5e:8e:87:41:ee:41:ec:1e:bc:8f:0a:cd:
c3:37:ad:52:92:c8:d7:cb:60:bc:49:50:b0:47:9e:fe:d1:34:
b1:46:47:a4:d4:55:3e:b2:03:e6:0c:69:27:e9:8d:d7:db:32:
ee:64:45:21:f9:7f:75:74:ae:27:41:0b:da:2b:13:ff:b1:b3:
08:7c:c5:69:6b:a3:6b:48:93:1f:48:ab:ed:88:21:56:29:a5:
52:d2:35:80:ea:4f:29:c5:00:73:e6:3f:7c:b7:cc:1b:8d:e5:
fe:56:67:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:19:19 2025 by rpki-client