Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa
File: AD4CF94A6D1711F085288D45C4F9AE02.roa (raw, json)
Hash identifier: nim0r8cX0AWo+u+y8biXKnG294pD1aj3IrEpuP3v1ew=
Subject key identifier: 8E:27:F1:15:26:1A:BD:D2:DA:1F:A4:8E:B4:D7:2C:6B:09:AF:CE:0F
Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E
Certificate serial: 0C68
Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa
Signing time: Fri 12 Jun 2026 19:22:21 +0000
ROA not before: Fri 12 Jun 2026 19:22:21 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 6453
IP address blocks: 49.124.160.0/19 maxlen: 19
49.124.195.0/24 maxlen: 24
49.124.203.0/24 maxlen: 24
49.124.211.0/24 maxlen: 24
49.124.214.0/24 maxlen: 24
49.125.128.0/20 maxlen: 20
49.125.160.0/19 maxlen: 19
115.164.0.0/24 maxlen: 24
115.164.2.0/24 maxlen: 24
115.164.4.0/24 maxlen: 24
115.164.5.0/24 maxlen: 24
115.164.14.0/24 maxlen: 24
115.164.16.0/24 maxlen: 24
115.164.18.0/24 maxlen: 24
115.164.21.0/24 maxlen: 24
115.164.33.0/24 maxlen: 24
115.164.40.0/21 maxlen: 21
115.164.48.0/20 maxlen: 20
115.164.64.0/24 maxlen: 24
115.164.72.0/21 maxlen: 21
115.164.80.0/20 maxlen: 20
115.164.110.0/24 maxlen: 24
115.164.112.0/24 maxlen: 24
115.164.113.0/24 maxlen: 24
115.164.119.0/24 maxlen: 24
115.164.128.0/24 maxlen: 24
115.164.130.0/24 maxlen: 24
115.164.132.0/24 maxlen: 24
115.164.142.0/24 maxlen: 24
115.164.146.0/24 maxlen: 24
115.164.161.0/24 maxlen: 24
115.164.168.0/21 maxlen: 21
115.164.176.0/20 maxlen: 20
115.164.200.0/21 maxlen: 21
115.164.208.0/20 maxlen: 20
115.164.240.0/24 maxlen: 24
115.164.247.0/24 maxlen: 24
182.62.8.0/24 maxlen: 24
182.62.16.0/20 maxlen: 20
182.62.32.0/20 maxlen: 20
182.62.48.0/20 maxlen: 20
182.62.64.0/20 maxlen: 20
182.62.144.0/20 maxlen: 20
182.62.160.0/20 maxlen: 20
182.62.176.0/20 maxlen: 20
182.62.192.0/20 maxlen: 20
182.62.210.0/24 maxlen: 24
182.62.224.0/20 maxlen: 20
182.62.240.0/20 maxlen: 20
182.63.7.0/24 maxlen: 24
182.63.32.0/20 maxlen: 20
182.63.40.0/21 maxlen: 21
182.63.48.0/20 maxlen: 20
182.63.56.0/21 maxlen: 21
182.63.71.0/24 maxlen: 24
182.63.96.0/20 maxlen: 20
182.63.104.0/21 maxlen: 21
182.63.112.0/20 maxlen: 20
182.63.120.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl
rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 19 Jun 2026 19:22:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3176 (0xc68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E
Validity
Not Before: Jun 12 19:22:21 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a2c5c6d-dcdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4c:e1:91:ca:59:35:11:ba:23:b4:17:21:2c:
1f:c3:41:26:c4:e8:ae:fc:28:ad:a7:c9:4a:82:45:
e5:d9:69:e2:c1:c2:a5:d6:b7:3d:61:6a:ae:88:9c:
8b:ac:bc:ee:76:75:ef:e3:15:fe:86:c6:af:d5:a0:
2d:7c:84:db:d3:a0:ff:2d:8f:08:ba:5a:97:a4:01:
2c:c9:b9:b1:24:91:ff:32:a2:5f:5c:83:e8:89:d9:
da:0f:ab:96:3c:14:1a:a5:87:ad:d8:a4:d1:ec:5f:
3b:95:ef:d9:83:fb:a2:13:9e:9c:cd:23:a3:bf:83:
26:5b:b6:11:a5:45:63:b3:72:98:36:ed:c6:7c:06:
f6:2b:8d:a4:d9:87:b3:4a:ad:91:9e:04:af:2e:09:
72:70:93:0e:5b:87:04:b1:4a:05:79:ed:13:eb:99:
db:0f:71:5c:55:d3:4a:78:0a:cb:78:d6:2e:6b:f1:
02:fb:41:ba:1f:38:6b:58:9e:09:be:ef:cb:b9:33:
ae:c1:6c:09:a0:c6:c2:69:d3:18:32:65:0d:3a:cf:
3b:46:21:0a:eb:bb:1c:98:ac:21:5d:60:bb:17:e1:
ba:81:b0:cf:88:55:3b:86:bb:a6:d6:3c:21:e8:c9:
91:aa:50:5a:56:36:fe:55:af:13:c6:3a:e5:c6:6d:
05:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:27:F1:15:26:1A:BD:D2:DA:1F:A4:8E:B4:D7:2C:6B:09:AF:CE:0F
X509v3 Authority Key Identifier:
keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
49.124.160.0/19
49.124.195.0/24
49.124.203.0/24
49.124.211.0/24
49.124.214.0/24
49.125.128.0/20
49.125.160.0/19
115.164.0.0/24
115.164.2.0/24
115.164.4.0/23
115.164.14.0/24
115.164.16.0/24
115.164.18.0/24
115.164.21.0/24
115.164.33.0/24
115.164.40.0-115.164.64.255
115.164.72.0-115.164.95.255
115.164.110.0/24
115.164.112.0/23
115.164.119.0/24
115.164.128.0/24
115.164.130.0/24
115.164.132.0/24
115.164.142.0/24
115.164.146.0/24
115.164.161.0/24
115.164.168.0-115.164.191.255
115.164.200.0-115.164.223.255
115.164.240.0/24
115.164.247.0/24
182.62.8.0/24
182.62.16.0-182.62.79.255
182.62.144.0-182.62.207.255
182.62.210.0/24
182.62.224.0/19
182.63.7.0/24
182.63.32.0/19
182.63.71.0/24
182.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
03:77:5f:f7:6d:d7:10:b8:0e:8d:e4:22:4b:26:3f:ed:3f:76:
d7:bc:3b:d1:c3:27:08:1d:03:c4:83:d8:32:5d:8f:c2:25:08:
32:b7:8e:6f:3b:70:11:c0:91:b3:7c:b0:89:7f:73:fb:f7:0c:
ed:92:07:7a:3a:84:5d:4b:36:4c:1b:9d:87:fa:ec:4f:75:cf:
a0:b2:16:f6:d7:1b:84:a1:87:88:7c:6d:1a:58:e9:23:55:6d:
57:d1:ba:83:17:6e:e1:95:85:d6:d0:88:ae:25:84:c0:7e:43:
de:b0:d7:6f:34:71:f8:d8:19:d0:b0:4c:0e:0b:58:a5:43:66:
a8:77:51:97:34:2c:ae:80:82:d2:e1:3f:b7:08:8c:9e:3b:e5:
9c:29:18:2d:fa:f3:73:8b:eb:7d:9a:51:3a:1d:da:e4:bb:1d:
33:fd:1d:5e:83:6f:49:c5:77:c6:bd:dc:16:b8:c2:c1:46:82:
e6:84:cc:c1:9e:44:d1:94:f7:12:c0:c9:2e:05:07:95:bd:9e:
77:69:c0:85:02:a3:93:d2:6e:5d:ef:3b:e3:3b:61:49:4e:3b:
84:80:53:a3:7b:1f:31:11:66:34:67:f5:bf:e8:d8:33:e0:a2:
32:a1:dd:41:99:5a:f6:d7:b6:76:af:0c:1c:a2:6e:75:52:79:
20:b4:1c:bb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 13 14:30:36 2026 by rpki-client