Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/D4002378F15211EAA1BAB944C4F9AE02.roa
File: D4002378F15211EAA1BAB944C4F9AE02.roa (raw, json)
Hash identifier: VOE8IEA3jtZkECGWWtAjNYHInClJ3+qemfqJlhoQGPs=
Subject key identifier: 6E:9D:0E:BF:1F:12:66:05:5B:30:CA:85:2F:68:4C:5A:5F:1A:9E:49
Certificate issuer: /CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85
Certificate serial: 336F
Authority key identifier: 49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/D4002378F15211EAA1BAB944C4F9AE02.roa
Signing time: Sat 02 May 2026 16:17:37 +0000
ROA not before: Sat 02 May 2026 16:17:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 17908
IP address blocks: 59.163.172.0/23 maxlen: 23
59.165.64.0/20 maxlen: 20
59.165.80.0/20 maxlen: 20
59.165.104.0/21 maxlen: 21
61.11.0.0/24 maxlen: 24
61.11.20.0/24 maxlen: 24
61.11.24.0/22 maxlen: 22
61.11.28.0/24 maxlen: 24
61.11.30.0/23 maxlen: 23
61.17.0.0/21 maxlen: 21
61.17.12.0/22 maxlen: 22
61.17.16.0/21 maxlen: 21
61.17.17.0/24 maxlen: 24
61.17.18.0/24 maxlen: 24
61.17.21.0/24 maxlen: 24
61.17.22.0/24 maxlen: 24
61.17.34.0/24 maxlen: 24
61.17.36.0/22 maxlen: 22
61.17.44.0/22 maxlen: 22
61.17.48.0/21 maxlen: 21
61.17.57.0/24 maxlen: 24
61.17.72.0/22 maxlen: 22
61.17.83.0/24 maxlen: 24
61.17.108.0/24 maxlen: 24
61.17.112.0/20 maxlen: 20
61.17.112.0/21 maxlen: 21
61.17.124.0/22 maxlen: 22
61.17.128.0/19 maxlen: 19
61.17.180.0/22 maxlen: 22
61.17.197.0/24 maxlen: 24
61.17.208.0/21 maxlen: 21
61.17.216.0/21 maxlen: 21
61.17.216.0/22 maxlen: 22
61.17.218.0/24 maxlen: 24
61.17.219.0/24 maxlen: 24
61.17.221.0/24 maxlen: 24
61.17.222.0/24 maxlen: 24
61.17.224.0/22 maxlen: 22
61.17.226.0/24 maxlen: 24
61.17.227.0/24 maxlen: 24
61.17.228.0/23 maxlen: 23
61.17.236.0/23 maxlen: 23
61.17.238.0/24 maxlen: 24
61.17.240.0/20 maxlen: 20
115.109.0.0/17 maxlen: 17
115.109.6.0/23 maxlen: 23
115.109.128.0/21 maxlen: 21
115.109.136.0/23 maxlen: 23
115.109.138.0/24 maxlen: 24
115.109.139.0/24 maxlen: 24
115.109.140.0/24 maxlen: 24
115.109.141.0/24 maxlen: 24
115.109.144.0/22 maxlen: 22
115.109.148.0/23 maxlen: 23
115.109.150.0/24 maxlen: 24
115.109.151.0/24 maxlen: 24
115.109.152.0/22 maxlen: 22
115.109.156.0/22 maxlen: 22
115.109.166.0/23 maxlen: 23
115.109.176.0/20 maxlen: 20
115.109.192.0/21 maxlen: 21
115.109.200.0/21 maxlen: 21
115.109.208.0/20 maxlen: 20
115.109.212.0/23 maxlen: 23
115.109.224.0/21 maxlen: 21
115.109.232.0/21 maxlen: 21
115.109.248.0/21 maxlen: 21
202.54.48.0/23 maxlen: 23
202.54.131.0/24 maxlen: 24
203.199.227.0/24 maxlen: 24
203.199.228.0/24 maxlen: 24
219.64.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl
rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 15:27:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13167 (0x336f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914CE75, serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85
Validity
Not Before: May 2 16:17:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69f623a1-b242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:80:33:d2:0b:f4:cf:73:41:c9:88:21:98:39:
93:ea:08:14:6a:f0:59:dc:34:e1:99:04:6a:90:28:
58:11:07:4c:00:ad:83:f9:9b:41:9d:b0:e3:8b:2b:
78:49:ea:19:58:03:ed:91:35:25:69:8c:75:c9:e8:
2b:83:60:f4:cc:cf:bc:68:7e:56:3c:cd:ee:c8:4d:
ca:4c:05:13:7b:53:5d:61:a1:41:eb:63:85:21:3f:
84:c3:da:59:96:f8:67:b0:db:93:b1:dc:d0:08:c6:
6e:47:17:e3:7f:58:f1:d4:76:e5:0d:ce:a1:ef:49:
47:f6:c5:55:76:41:7b:c2:5e:74:f1:1d:f1:20:7e:
29:c9:d5:1c:22:fd:0c:7a:d5:a1:0b:53:e2:bc:0b:
56:a2:6f:73:66:12:5e:ff:fe:5a:37:77:2f:37:89:
40:6b:27:e7:ce:c1:53:3e:03:db:6a:15:96:a0:fb:
22:ba:84:35:91:d3:96:b8:74:f9:e6:51:02:55:ed:
b4:52:ac:86:6f:f6:31:f3:72:f1:74:5f:54:59:d5:
40:d4:a8:cd:82:6e:5b:c3:f6:48:3f:6d:ca:28:af:
1e:72:df:ab:0e:65:43:66:48:80:5c:2f:2c:24:3c:
16:2a:a7:da:2a:96:c4:2f:f0:5e:33:52:8e:c5:2a:
cf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9D:0E:BF:1F:12:66:05:5B:30:CA:85:2F:68:4C:5A:5F:1A:9E:49
X509v3 Authority Key Identifier:
keyid:49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/D4002378F15211EAA1BAB944C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
59.163.172.0/23
59.165.64.0/19
59.165.104.0/21
61.11.0.0/24
61.11.20.0/24
61.11.24.0-61.11.28.255
61.11.30.0/23
61.17.0.0/21
61.17.12.0-61.17.23.255
61.17.34.0/24
61.17.36.0/22
61.17.44.0-61.17.55.255
61.17.57.0/24
61.17.72.0/22
61.17.83.0/24
61.17.108.0/24
61.17.112.0-61.17.159.255
61.17.180.0/22
61.17.197.0/24
61.17.208.0-61.17.229.255
61.17.236.0-61.17.238.255
61.17.240.0/20
115.109.0.0-115.109.141.255
115.109.144.0/20
115.109.166.0/23
115.109.176.0-115.109.239.255
115.109.248.0/21
202.54.48.0/23
202.54.131.0/24
203.199.227.0-203.199.228.255
219.64.5.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:05:dd:c0:e8:ea:fd:7d:36:c0:8e:c1:1b:ac:7b:37:eb:d4:
5a:11:e2:c9:4e:b1:99:3f:b9:69:6a:5d:a2:78:36:61:9b:03:
80:36:43:04:9e:1c:c3:5b:9a:ce:29:12:c5:7d:46:28:9c:a3:
15:5e:28:95:ef:31:e5:35:ae:5e:d3:86:1a:b5:06:76:df:6d:
1e:b7:48:cb:f3:59:0d:55:09:d6:89:26:1b:3b:db:0b:62:ce:
ae:75:e9:7a:c1:09:a4:fd:05:3e:4f:96:07:35:73:3e:2e:da:
66:e1:25:b0:b5:a4:5a:89:54:c8:6b:d2:c7:19:4e:0b:6a:e5:
5f:bf:b9:f9:7c:b6:d2:ca:b9:c7:42:e8:a6:dd:ba:26:da:8c:
47:7a:da:a8:6a:2b:bf:13:42:c4:67:de:a9:72:58:8e:2f:1e:
4f:e7:5f:63:88:4f:cd:c1:e3:aa:24:61:35:ae:28:6f:fb:52:
7c:8e:61:bb:42:3a:08:74:a0:be:73:52:81:c2:6d:5f:d4:52:
19:92:a1:50:85:75:f7:a1:56:0c:ca:c1:e1:b7:a6:39:af:ae:
98:f0:03:aa:13:38:94:3b:d1:45:24:c3:56:4d:fb:41:75:60:
cf:8e:d2:93:d8:dd:13:73:9a:22:5d:ce:7f:93:6d:c1:23:66:
73:c4:15:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:38:49 2026 by rpki-client