Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/1803FFC65E5F11EBBE37FA4CC4F9AE02.roa
File: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (raw, json)
Hash identifier: dYx5rg+ikh6rVRuWFPmqQgmz1ejCnGZL23u6GCNg5Bw=
Subject key identifier: C3:36:1D:EA:A6:90:47:8F:47:2F:03:44:95:32:82:A7:B5:30:4E:CD
Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F
Certificate serial: 1133
Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/1803FFC65E5F11EBBE37FA4CC4F9AE02.roa
Signing time: Mon 02 Mar 2026 17:21:39 +0000
ROA not before: Mon 02 Mar 2026 17:21:39 +0000
ROA not after: Wed 31 Mar 2027 00:00:00 +0000
asID: 138544
IP address blocks: 103.132.180.0/22 maxlen: 22
103.132.180.0/23 maxlen: 23
103.132.180.0/24 maxlen: 24
103.132.181.0/24 maxlen: 24
103.132.182.0/24 maxlen: 24
103.132.183.0/24 maxlen: 24
2404:3d40::/32 maxlen: 32
2404:3d40::/48 maxlen: 48
2404:3d40:1::/48 maxlen: 48
2404:3d40:2::/48 maxlen: 48
2404:3d40:3::/48 maxlen: 48
2404:3d40:4::/48 maxlen: 48
2404:3d40:5::/48 maxlen: 48
2404:3d40:6::/48 maxlen: 48
2404:3d40:7::/48 maxlen: 48
2404:3d40:8::/48 maxlen: 48
2404:3d40:9::/48 maxlen: 48
2404:3d40:a::/48 maxlen: 48
2404:3d40:b::/48 maxlen: 48
2404:3d40:c::/48 maxlen: 48
2404:3d40:d::/48 maxlen: 48
2404:3d40:e::/48 maxlen: 48
2404:3d40:f::/48 maxlen: 48
2404:3d40:10::/48 maxlen: 48
2404:3d40:11::/48 maxlen: 48
2404:3d40:12::/48 maxlen: 48
2404:3d40:13::/48 maxlen: 48
2404:3d40:14::/48 maxlen: 48
2404:3d40:15::/48 maxlen: 48
2404:3d40:16::/48 maxlen: 48
2404:3d40:17::/48 maxlen: 48
2404:3d40:18::/48 maxlen: 48
2404:3d40:19::/48 maxlen: 48
2404:3d40:1a::/48 maxlen: 48
2404:3d40:1b::/48 maxlen: 48
2404:3d40:1c::/48 maxlen: 48
2404:3d40:1d::/48 maxlen: 48
2404:3d40:1e::/48 maxlen: 48
2404:3d40:1f::/48 maxlen: 48
2404:3d40:20::/48 maxlen: 48
2404:3d40:21::/48 maxlen: 48
2404:3d40:22::/48 maxlen: 48
2404:3d40:23::/48 maxlen: 48
2404:3d40:24::/48 maxlen: 48
2404:3d40:25::/48 maxlen: 48
2404:3d40:26::/48 maxlen: 48
2404:3d40:27::/48 maxlen: 48
2404:3d40:28::/48 maxlen: 48
2404:3d40:29::/48 maxlen: 48
2404:3d40:2a::/48 maxlen: 48
2404:3d40:2b::/48 maxlen: 48
2404:3d40:2c::/48 maxlen: 48
2404:3d40:2d::/48 maxlen: 48
2404:3d40:2e::/48 maxlen: 48
2404:3d40:2f::/48 maxlen: 48
2404:3d40:30::/48 maxlen: 48
2404:3d40:31::/48 maxlen: 48
2404:3d40:32::/48 maxlen: 48
2404:3d40:33::/48 maxlen: 48
2404:3d40:34::/48 maxlen: 48
2404:3d40:35::/48 maxlen: 48
2404:3d40:36::/48 maxlen: 48
2404:3d40:37::/48 maxlen: 48
2404:3d40:38::/48 maxlen: 48
2404:3d40:39::/48 maxlen: 48
2404:3d40:3a::/48 maxlen: 48
2404:3d40:3b::/48 maxlen: 48
2404:3d40:3c::/48 maxlen: 48
2404:3d40:3d::/48 maxlen: 48
2404:3d40:3e::/48 maxlen: 48
2404:3d40:3f::/48 maxlen: 48
2404:3d40:40::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl
rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 31 Mar 2026 17:08:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4403 (0x1133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F
Validity
Not Before: Mar 2 17:21:39 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=69a5c722-944f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0b:69:d1:91:e1:bd:bb:f9:19:60:68:e9:df:
a9:65:70:85:e6:50:c4:36:34:99:a5:1b:ed:d2:7d:
93:93:5c:f4:f8:50:df:f8:7c:c2:bb:b1:6b:c9:53:
23:d1:ff:b0:c2:75:15:8a:a4:3b:ba:fe:ed:a3:1b:
0f:dd:2a:bf:21:42:dc:56:3e:25:88:ab:df:37:8b:
06:78:68:32:89:34:1f:ce:a4:87:fa:b7:0b:cd:4d:
62:70:79:ec:a0:4c:f3:c3:f9:47:09:26:d9:fc:94:
5e:6e:bb:e8:62:74:83:2e:16:ac:e6:1e:75:a8:eb:
dc:89:42:5f:17:d7:06:3a:05:c5:4a:a7:ab:16:23:
5e:04:45:aa:b8:e0:10:f1:0f:da:02:70:95:83:a9:
75:08:60:a6:02:d6:ed:18:f5:45:0d:54:ab:12:f7:
9d:59:2c:82:6b:f4:19:4b:36:48:26:38:f1:2c:14:
4e:6f:af:63:42:0e:41:74:e7:30:92:74:31:e4:7b:
62:2a:2b:d2:d6:90:c7:22:52:a9:88:a9:d0:a5:33:
8d:fb:bc:57:6d:85:12:cc:18:6b:fa:d6:be:94:4f:
93:dc:92:01:71:e3:b3:62:f6:43:84:ee:ca:ab:be:
cc:30:0a:db:0b:4b:af:d4:c3:e2:d7:aa:36:0e:a2:
3d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:36:1D:EA:A6:90:47:8F:47:2F:03:44:95:32:82:A7:B5:30:4E:CD
X509v3 Authority Key Identifier:
keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/1803FFC65E5F11EBBE37FA4CC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.132.180.0/22
IPv6:
2404:3d40::/32
Signature Algorithm: sha256WithRSAEncryption
19:76:9c:52:65:3e:38:40:5b:0a:83:b6:0e:f0:84:d4:9a:43:
c8:76:b5:44:25:b1:37:31:b7:64:aa:96:a5:51:bf:ec:36:eb:
96:fb:40:21:14:dd:06:7f:af:66:58:d2:1a:e1:33:58:b9:49:
ea:00:86:7e:2b:d9:95:6f:93:ba:05:b4:c2:99:7b:ae:e8:4a:
7c:39:1b:df:60:0e:8a:5d:25:a6:f2:8b:8c:66:72:ea:61:78:
07:bc:c2:14:e3:1c:dd:c1:0d:0a:4f:30:f8:63:41:f8:7b:4a:
45:78:9c:2f:be:05:97:e8:8b:d8:2c:47:d0:3a:e6:85:5e:93:
09:e2:45:0c:d4:fc:88:5e:64:41:f4:fa:72:f6:81:09:51:b7:
db:7c:d0:c4:86:66:65:7a:7d:b5:c1:29:ff:31:2c:25:80:73:
b8:48:48:db:74:21:fe:ff:46:2f:01:bd:ac:95:3a:e6:65:09:
db:b3:a8:21:ff:31:3f:a3:4a:ae:5c:71:36:47:10:72:63:b9:
a3:d2:b3:00:4d:f8:4a:0e:fd:1a:98:cd:63:a1:53:10:e0:8d:
ab:26:56:34:01:8f:23:e9:db:68:59:6f:9e:8b:88:3d:ec:25:
61:97:a0:a1:7c:eb:2b:eb:f1:b1:d2:cd:cc:0b:c5:b9:c0:71:
8b:25:66:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:03:11 2026 by rpki-client