Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/B378944629EB11F1A56364AEA0833773.roa
File: B378944629EB11F1A56364AEA0833773.roa (raw, json)
Hash identifier: FWRF2CGF/AE1Ig9kYHW81rC361IQXXVUx54ZpsddgpY=
Subject key identifier: 21:44:31:B8:22:BD:C5:81:E1:82:AA:2E:7C:7E:00:ED:51:4C:11:FF
Certificate issuer: /CN=A91304A9/serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A
Certificate serial: 5C
Authority key identifier: 3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/B378944629EB11F1A56364AEA0833773.roa
Signing time: Fri 27 Mar 2026 17:49:31 +0000
ROA not before: Fri 27 Mar 2026 17:49:31 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 19194
IP address blocks: 63.223.67.0/24 maxlen: 24
63.223.69.0/24 maxlen: 24
63.223.71.0/24 maxlen: 24
63.223.74.0/24 maxlen: 24
63.223.76.0/24 maxlen: 24
63.223.78.0/24 maxlen: 24
63.223.79.0/24 maxlen: 24
63.223.80.0/24 maxlen: 24
63.223.81.0/24 maxlen: 24
63.223.82.0/24 maxlen: 24
63.223.83.0/24 maxlen: 24
63.223.85.0/24 maxlen: 24
63.223.86.0/24 maxlen: 24
63.223.91.0/24 maxlen: 24
63.223.92.0/24 maxlen: 24
63.223.93.0/24 maxlen: 24
63.223.95.0/24 maxlen: 24
63.223.96.0/24 maxlen: 24
63.223.97.0/24 maxlen: 24
63.223.100.0/24 maxlen: 24
63.223.103.0/24 maxlen: 24
63.223.104.0/24 maxlen: 24
63.223.105.0/24 maxlen: 24
63.223.108.0/24 maxlen: 24
63.223.110.0/24 maxlen: 24
63.223.111.0/24 maxlen: 24
63.223.113.0/24 maxlen: 24
63.223.116.0/24 maxlen: 24
63.223.118.0/24 maxlen: 24
63.223.119.0/24 maxlen: 24
63.223.120.0/24 maxlen: 24
63.223.121.0/24 maxlen: 24
63.223.122.0/24 maxlen: 24
63.223.124.0/24 maxlen: 24
63.223.125.0/24 maxlen: 24
63.223.126.0/24 maxlen: 24
63.223.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl
rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 Apr 2026 17:49:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92 (0x5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91304A9, serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A
Validity
Not Before: Mar 27 17:49:31 2026 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=69c6c32b-62fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5e:d4:38:f5:1d:53:3e:0e:83:91:3b:be:0f:
02:fd:5c:c1:dc:b5:d0:f2:54:17:20:08:dd:d3:17:
2c:a7:5e:19:0e:35:39:7f:ae:5d:2b:f2:7c:4c:fd:
7e:bb:fb:29:5d:8b:29:be:f4:51:e1:d8:0a:9f:14:
9e:6b:f8:c4:53:33:cb:61:4b:c9:f5:c8:af:36:11:
12:26:62:87:fd:5c:56:63:94:9e:99:1b:87:23:6c:
cc:0b:19:86:fa:3f:48:f7:3b:e9:cb:43:34:c4:07:
4c:82:a8:1e:ec:e6:f7:e0:89:e6:82:52:74:95:3c:
6b:d5:12:b3:f8:81:e7:b8:e2:b2:13:bc:19:5e:ee:
a7:c0:7d:16:07:33:fa:0c:15:c1:b5:d2:84:58:88:
27:ca:52:d8:10:cb:f4:09:45:dd:ce:44:d7:0d:1f:
5e:1e:8a:4c:ef:3b:99:23:03:f0:1d:e3:e2:8c:84:
f7:4f:76:ba:8f:e3:3b:53:c3:15:c8:bb:63:76:38:
f4:78:5f:4a:f9:ba:22:c6:2e:7f:c8:19:4f:9a:b9:
5d:11:50:b3:58:37:be:a2:bd:24:99:45:e7:b2:41:
bf:80:ac:3b:7f:7c:9d:6f:52:ba:77:82:f1:25:e5:
78:ea:d3:e8:03:12:d7:2a:84:33:95:a1:ba:24:4b:
ea:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:44:31:B8:22:BD:C5:81:E1:82:AA:2E:7C:7E:00:ED:51:4C:11:FF
X509v3 Authority Key Identifier:
keyid:3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/B378944629EB11F1A56364AEA0833773.roa
sbgp-ipAddrBlock: critical
IPv4:
63.223.67.0/24
63.223.69.0/24
63.223.71.0/24
63.223.74.0/24
63.223.76.0/24
63.223.78.0-63.223.83.255
63.223.85.0-63.223.86.255
63.223.91.0-63.223.93.255
63.223.95.0-63.223.97.255
63.223.100.0/24
63.223.103.0-63.223.105.255
63.223.108.0/24
63.223.110.0/23
63.223.113.0/24
63.223.116.0/24
63.223.118.0-63.223.122.255
63.223.124.0/22
Signature Algorithm: sha256WithRSAEncryption
47:e9:11:97:89:78:87:bf:39:f2:fe:d2:55:d8:fe:ad:eb:34:
04:75:e8:64:a6:7f:59:4e:d8:e6:fe:26:e7:f0:09:d9:9c:15:
17:9c:d5:93:94:3b:1e:5b:23:2c:9a:13:f5:02:8b:28:cc:4a:
08:92:6d:d1:01:7c:a2:c7:96:e8:84:c2:ea:40:c1:18:7c:52:
59:53:e1:f8:e9:2c:6a:cd:da:79:1b:89:49:a5:d9:9e:1d:72:
65:87:08:e2:3d:8d:b8:92:80:e5:3b:f3:f4:84:32:6f:32:e2:
86:35:36:1f:0b:6b:73:f6:46:6b:e9:4f:7f:92:bd:ec:0e:da:
47:bc:31:dd:69:64:00:47:7b:48:7e:10:9c:1f:d5:70:dd:1e:
4e:b7:77:20:ec:e0:e7:fe:79:9a:60:c6:da:07:1e:b5:15:88:
d8:f7:40:f9:24:34:06:17:ff:c9:93:a2:97:fa:d3:df:c3:ea:
8c:7e:5d:df:86:91:32:3e:3f:bd:a2:c8:51:0d:1b:d9:b6:c0:
06:d4:fc:3f:a0:56:62:3c:e9:28:c0:c5:4a:ca:0e:1d:f2:60:
26:eb:86:79:ef:c2:1e:9a:cc:eb:3d:02:16:0f:48:6a:4e:08:
84:cf:29:9f:85:8f:e1:41:74:7c:97:66:87:2c:c5:e1:55:08:
e4:fd:49:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 19:00:22 2026 by rpki-client