Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa
File: AD4CF94A6D1711F085288D45C4F9AE02.roa (raw, json)
Hash identifier: RTblgIoEHF1HYX8gaejt9bqyKVzhfg344Z5+749rN7w=
Subject key identifier: 7D:D3:3F:D2:83:4B:73:40:7A:AE:15:99:BA:C4:14:11:53:C3:92:7D
Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E
Certificate serial: 0C29
Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa
Signing time: Sun 01 Mar 2026 18:25:07 +0000
ROA not before: Fri 17 Oct 2025 06:05:54 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 6453
IP address blocks: 49.124.160.0/19 maxlen: 19
49.124.195.0/24 maxlen: 24
49.124.203.0/24 maxlen: 24
49.124.211.0/24 maxlen: 24
49.124.214.0/24 maxlen: 24
49.125.128.0/20 maxlen: 20
49.125.160.0/19 maxlen: 19
115.164.0.0/24 maxlen: 24
115.164.2.0/24 maxlen: 24
115.164.4.0/24 maxlen: 24
115.164.5.0/24 maxlen: 24
115.164.14.0/24 maxlen: 24
115.164.16.0/24 maxlen: 24
115.164.18.0/24 maxlen: 24
115.164.21.0/24 maxlen: 24
115.164.33.0/24 maxlen: 24
115.164.40.0/21 maxlen: 21
115.164.48.0/20 maxlen: 20
115.164.64.0/24 maxlen: 24
115.164.72.0/21 maxlen: 21
115.164.80.0/20 maxlen: 20
115.164.110.0/24 maxlen: 24
115.164.112.0/24 maxlen: 24
115.164.113.0/24 maxlen: 24
115.164.119.0/24 maxlen: 24
115.164.128.0/24 maxlen: 24
115.164.130.0/24 maxlen: 24
115.164.132.0/24 maxlen: 24
115.164.142.0/24 maxlen: 24
115.164.146.0/24 maxlen: 24
115.164.161.0/24 maxlen: 24
115.164.168.0/21 maxlen: 21
115.164.176.0/20 maxlen: 20
115.164.200.0/21 maxlen: 21
115.164.208.0/20 maxlen: 20
115.164.240.0/24 maxlen: 24
115.164.247.0/24 maxlen: 24
182.62.8.0/24 maxlen: 24
182.62.16.0/20 maxlen: 20
182.62.32.0/20 maxlen: 20
182.62.48.0/20 maxlen: 20
182.62.64.0/20 maxlen: 20
182.62.144.0/20 maxlen: 20
182.62.160.0/20 maxlen: 20
182.62.176.0/20 maxlen: 20
182.62.192.0/20 maxlen: 20
182.62.210.0/24 maxlen: 24
182.62.224.0/20 maxlen: 20
182.62.240.0/20 maxlen: 20
182.63.7.0/24 maxlen: 24
182.63.32.0/20 maxlen: 20
182.63.40.0/21 maxlen: 21
182.63.48.0/20 maxlen: 20
182.63.56.0/21 maxlen: 21
182.63.71.0/24 maxlen: 24
182.63.96.0/20 maxlen: 20
182.63.104.0/21 maxlen: 21
182.63.112.0/20 maxlen: 20
182.63.120.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl
rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 00:11:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3113 (0xc29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E
Validity
Not Before: Oct 17 06:05:54 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69a48482-7e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:25:10:0c:b1:07:a8:77:79:4e:ef:8f:b5:56:
be:fe:7b:d3:d9:e5:95:87:17:05:7e:33:e6:74:8c:
54:c3:4f:29:50:96:7c:7e:8e:a2:21:f0:dd:c0:24:
7d:98:c6:96:3e:50:17:93:ee:ea:db:5c:a2:b3:fd:
61:93:9d:91:e5:31:dd:7e:a5:87:0f:75:06:22:f3:
d1:69:70:27:46:1b:ff:13:f3:4b:19:71:97:0d:a4:
f6:78:e0:9d:5f:49:d2:91:91:de:ca:50:f1:cb:42:
e5:61:e5:bd:bc:6d:4c:72:1e:c2:e1:84:8f:2e:7c:
bf:87:67:84:89:36:98:af:aa:32:d7:29:4a:88:8e:
0a:18:5e:40:21:52:1c:3b:f0:b7:8b:79:d4:3f:5e:
c6:b0:88:a4:cd:63:c6:7c:e1:8f:4b:ed:97:84:81:
54:fa:6f:e2:f0:ae:d0:17:95:04:2c:fa:d0:a3:a7:
4a:22:ff:78:f5:fb:b0:4b:16:55:6c:a7:dd:ef:23:
1a:b3:be:87:e6:ac:6b:cf:fd:c7:ac:02:97:97:2a:
21:b4:20:82:79:7d:ef:c1:c7:64:b8:d9:1c:8c:e7:
5f:17:dc:f4:1b:6a:c9:16:88:5e:f2:1c:8d:a7:50:
1c:be:3f:3f:c3:9a:02:fe:ec:46:98:f9:6d:2f:2a:
a8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D3:3F:D2:83:4B:73:40:7A:AE:15:99:BA:C4:14:11:53:C3:92:7D
X509v3 Authority Key Identifier:
keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
49.124.160.0/19
49.124.195.0/24
49.124.203.0/24
49.124.211.0/24
49.124.214.0/24
49.125.128.0/20
49.125.160.0/19
115.164.0.0/24
115.164.2.0/24
115.164.4.0/23
115.164.14.0/24
115.164.16.0/24
115.164.18.0/24
115.164.21.0/24
115.164.33.0/24
115.164.40.0-115.164.64.255
115.164.72.0-115.164.95.255
115.164.110.0/24
115.164.112.0/23
115.164.119.0/24
115.164.128.0/24
115.164.130.0/24
115.164.132.0/24
115.164.142.0/24
115.164.146.0/24
115.164.161.0/24
115.164.168.0-115.164.191.255
115.164.200.0-115.164.223.255
115.164.240.0/24
115.164.247.0/24
182.62.8.0/24
182.62.16.0-182.62.79.255
182.62.144.0-182.62.207.255
182.62.210.0/24
182.62.224.0/19
182.63.7.0/24
182.63.32.0/19
182.63.71.0/24
182.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
c3:29:7d:6e:cc:8c:ff:d8:99:d4:14:92:a1:9e:5a:3d:07:aa:
3a:7e:ff:86:84:9f:02:41:ad:53:31:4b:71:13:20:ab:68:3f:
af:3e:2e:b9:fd:08:95:9a:f6:73:0c:4b:ef:88:44:a6:9a:6d:
09:29:9b:0c:93:69:7c:8e:39:76:c8:1b:97:65:c5:80:53:81:
5a:0d:33:3b:8f:f3:98:61:3e:e6:7f:34:80:62:71:a7:23:c3:
22:03:03:17:40:e7:b7:ac:69:74:72:a5:e7:d5:89:34:31:7e:
27:22:f4:c0:28:86:8d:db:73:92:e7:09:06:04:2c:82:bf:17:
ef:d5:f1:5f:f9:b9:cb:d1:57:b6:9d:9e:ce:89:ca:cb:99:1b:
a6:01:33:6c:10:e7:db:15:ac:42:35:59:2c:3d:06:e6:70:20:
f2:f3:a6:47:f5:70:30:90:3f:d2:fd:6b:0f:66:e3:03:e9:cd:
44:23:a3:03:39:7d:67:b5:d1:55:1f:18:e1:8c:e6:d0:87:9e:
dd:40:0f:0d:43:91:4b:49:67:a3:47:0e:24:ae:7a:81:2c:35:
99:d9:53:f0:3b:c0:b4:d1:09:f8:02:12:40:2e:55:c2:78:6d:
97:5d:16:45:26:e6:56:51:0b:fd:a5:c5:7a:8a:da:f7:22:08:
d3:ec:83:42
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:52:04 2026 by rpki-client