Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/7BC4E6DE322C11EFBC879F31C4F9AE02.roa
File: 7BC4E6DE322C11EFBC879F31C4F9AE02.roa (raw, json)
Hash identifier: QfPpTbPYbyg6f/+zyVcju7GGADLJ9K5+x27Y0v5TgxY=
Subject key identifier: 78:B1:6C:62:C5:4B:37:7A:DD:85:F8:4F:BC:48:09:2E:41:8A:17:B0
Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
Certificate serial: 1708
Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/7BC4E6DE322C11EFBC879F31C4F9AE02.roa
Signing time: Sun 01 Mar 2026 17:45:51 +0000
ROA not before: Sun 10 Aug 2025 15:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24435
IP address blocks: 27.0.184.0/22 maxlen: 22
103.27.22.0/24 maxlen: 24
175.111.0.0/23 maxlen: 24
175.111.3.0/24 maxlen: 24
175.111.4.0/23 maxlen: 24
203.130.0.0/20 maxlen: 20
203.130.0.0/24 maxlen: 24
203.130.1.0/24 maxlen: 24
203.130.2.0/24 maxlen: 24
203.130.3.0/24 maxlen: 24
203.130.4.0/24 maxlen: 24
203.130.5.0/24 maxlen: 24
203.130.6.0/24 maxlen: 24
203.130.7.0/24 maxlen: 24
203.130.8.0/24 maxlen: 24
203.130.9.0/24 maxlen: 24
203.130.10.0/24 maxlen: 24
203.130.11.0/24 maxlen: 24
203.130.12.0/24 maxlen: 24
203.130.13.0/24 maxlen: 24
203.130.14.0/24 maxlen: 24
203.130.15.0/24 maxlen: 24
203.130.16.0/24 maxlen: 24
203.130.17.0/24 maxlen: 24
203.130.18.0/24 maxlen: 24
203.130.19.0/24 maxlen: 24
203.130.20.0/24 maxlen: 24
203.130.21.0/24 maxlen: 24
203.130.22.0/24 maxlen: 24
203.130.23.0/24 maxlen: 24
203.130.24.0/24 maxlen: 24
203.130.25.0/24 maxlen: 24
203.130.26.0/23 maxlen: 24
203.130.28.0/22 maxlen: 22
203.130.28.0/24 maxlen: 24
203.130.29.0/24 maxlen: 24
203.130.30.0/24 maxlen: 24
203.130.31.0/24 maxlen: 24
2001:fe8::/48 maxlen: 48
2001:fe8:1::/48 maxlen: 48
2001:fe8:2::/48 maxlen: 48
2001:fe8:3::/48 maxlen: 48
2001:fe8:9::/48 maxlen: 48
2001:fe8:10::/48 maxlen: 48
2001:fe8:11::/48 maxlen: 48
2001:fe8:48::/48 maxlen: 48
2001:fe8:4000::/48 maxlen: 48
2001:fe8:4001::/48 maxlen: 48
2001:fe8:4002::/48 maxlen: 48
2001:fe8:4003::/48 maxlen: 48
2001:fe8:4100::/48 maxlen: 48
2001:fe8:4101::/48 maxlen: 48
2001:fe8:8100::/48 maxlen: 48
2001:fe8:8101::/48 maxlen: 48
2001:fe8:8110::/48 maxlen: 48
2001:fe8:8111::/48 maxlen: 48
2001:fe8:8130::/48 maxlen: 48
2001:fe8:8131::/48 maxlen: 48
2001:fe8:9000::/48 maxlen: 48
2001:fe8:c001::/48 maxlen: 48
2001:fe8:c002::/48 maxlen: 48
2001:fe8:c100::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl
rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 00:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5896 (0x1708)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B1185, serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053
Validity
Not Before: Aug 10 15:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69a47b4f-bf8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:73:72:93:cc:1c:a2:11:59:8d:a0:05:63:5c:
d6:2d:57:77:e2:52:81:f7:2c:cf:69:9a:a8:53:30:
38:60:6d:0d:26:a7:75:5f:d3:b7:00:94:98:6d:d7:
a2:73:6e:50:fc:44:70:d7:30:9a:62:d1:58:40:9f:
eb:0c:e6:55:4b:de:d7:96:1e:b3:62:9b:2f:54:2d:
04:a9:be:e4:96:d6:e2:0e:c5:ea:59:2b:65:3f:04:
c3:63:4f:4b:29:2a:99:8c:9a:c0:66:f7:5e:8e:fa:
70:be:cd:16:a7:c5:21:30:ac:7e:50:fd:e1:16:3a:
a0:d2:94:ff:cd:f1:52:2f:1e:5e:bc:5e:33:24:cb:
ee:89:c2:5f:af:22:cd:ac:e4:e7:9b:b7:35:ce:7a:
96:cb:f7:c8:2b:6b:9a:04:5c:a9:ef:7b:6f:24:ed:
e9:88:52:91:84:ed:ee:cb:2e:0a:ff:d4:1c:7c:2c:
d7:c4:1d:59:f4:4d:46:17:9a:2f:4e:05:7c:82:05:
ed:c3:99:86:ec:68:33:21:4d:86:2e:2a:80:ca:6b:
60:1d:d7:be:b1:dd:77:34:d7:78:a8:79:28:c4:2c:
f0:3c:71:ce:73:95:39:ac:a9:b3:41:3b:d1:47:39:
e9:fb:27:57:04:21:ce:82:03:db:14:2e:5f:fb:67:
7b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B1:6C:62:C5:4B:37:7A:DD:85:F8:4F:BC:48:09:2E:41:8A:17:B0
X509v3 Authority Key Identifier:
keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/7BC4E6DE322C11EFBC879F31C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
27.0.184.0/22
103.27.22.0/24
175.111.0.0/23
175.111.3.0-175.111.5.255
203.130.0.0/19
IPv6:
2001:fe8::/46
2001:fe8:9::/48
2001:fe8:10::/47
2001:fe8:48::/48
2001:fe8:4000::/46
2001:fe8:4100::/47
2001:fe8:8100::/47
2001:fe8:8110::/47
2001:fe8:8130::/47
2001:fe8:9000::/48
2001:fe8:c001::-2001:fe8:c002:ffff:ffff:ffff:ffff:ffff
2001:fe8:c100::/48
Signature Algorithm: sha256WithRSAEncryption
01:4b:19:2b:1c:9b:aa:f5:df:87:0e:01:97:f1:a7:8f:56:9e:
16:98:eb:c9:09:dd:88:45:bc:db:fb:c6:91:0d:9a:09:ce:24:
1f:8e:ea:22:c2:61:cd:ab:45:e2:0c:f5:ac:bf:64:bb:13:21:
8c:d1:3a:1b:28:6b:cc:74:8c:7b:17:2b:97:3c:64:a0:b8:29:
dd:11:22:62:01:24:a1:04:2d:2a:fb:42:77:9f:d2:2e:ce:8e:
33:c1:a5:18:38:05:e0:3d:28:15:1d:b4:30:c2:9c:56:13:48:
5d:bb:97:00:50:0a:20:2f:c0:21:b2:4e:36:19:ce:a2:05:c0:
ee:c6:f7:c3:ab:8b:6b:42:e2:a8:d0:9c:6e:9f:00:f6:e9:ed:
84:5b:59:57:04:0a:f1:e1:ed:1a:35:75:8b:3a:c8:22:d0:89:
45:87:86:30:62:ce:14:99:67:9e:68:c3:e9:ad:6b:40:2c:a6:
04:14:77:1d:46:3e:0f:f8:db:f0:e3:81:04:68:06:21:9e:18:
42:6e:31:64:f1:84:a1:39:c5:2d:c9:e9:34:35:ee:6a:5c:ce:
b0:2a:05:53:e8:43:da:30:bc:88:ff:0f:eb:64:48:bc:4a:ed:
e2:a5:34:77:44:a9:30:c2:b1:53:3f:16:65:49:b4:a9:8d:91:
9d:bc:93:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:40:31 2026 by rpki-client