Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/442A935E2F1F11F0A35F5757C4F9AE02.roa
File: 442A935E2F1F11F0A35F5757C4F9AE02.roa (raw, json)
Hash identifier: D4FdDOMn9kYOe8wUYl/7g0SwBt2d9VcBYOrZDNcFK0M=
Subject key identifier: BB:11:2F:DC:12:9E:A8:F9:60:C9:B5:F7:2E:E5:D1:C4:44:7C:A2:E6
Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
Certificate serial: 1A7D
Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/442A935E2F1F11F0A35F5757C4F9AE02.roa
Signing time: Mon 21 Jul 2025 06:38:09 +0000
ROA not before: Mon 21 Jul 2025 06:38:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17882
IP address blocks: 14.1.124.0/24 maxlen: 24
14.1.125.0/24 maxlen: 24
14.1.126.0/24 maxlen: 24
14.1.127.0/24 maxlen: 24
103.11.192.0/24 maxlen: 24
103.11.193.0/24 maxlen: 24
103.11.194.0/24 maxlen: 24
103.11.195.0/24 maxlen: 24
103.48.184.0/24 maxlen: 24
103.48.185.0/24 maxlen: 24
103.48.186.0/24 maxlen: 24
103.48.187.0/24 maxlen: 24
103.79.156.0/23 maxlen: 24
103.212.116.0/24 maxlen: 24
103.212.117.0/24 maxlen: 24
103.212.118.0/24 maxlen: 24
103.212.119.0/24 maxlen: 24
103.219.136.0/24 maxlen: 24
103.219.137.0/24 maxlen: 24
103.219.138.0/24 maxlen: 24
103.219.139.0/24 maxlen: 24
103.239.56.0/24 maxlen: 24
103.239.57.0/24 maxlen: 24
103.239.58.0/24 maxlen: 24
103.239.59.0/24 maxlen: 24
122.201.16.0/24 maxlen: 24
122.201.17.0/24 maxlen: 24
122.201.18.0/24 maxlen: 24
122.201.19.0/24 maxlen: 24
122.201.20.0/24 maxlen: 24
122.201.21.0/24 maxlen: 24
122.201.23.0/24 maxlen: 24
122.201.24.0/24 maxlen: 24
122.201.25.0/24 maxlen: 24
122.201.26.0/24 maxlen: 24
122.201.27.0/24 maxlen: 24
122.201.28.0/24 maxlen: 24
122.201.29.0/24 maxlen: 24
122.201.30.0/24 maxlen: 24
122.201.31.0/24 maxlen: 24
139.5.216.0/24 maxlen: 24
139.5.217.0/24 maxlen: 24
139.5.218.0/24 maxlen: 24
139.5.219.0/24 maxlen: 24
202.70.32.0/24 maxlen: 24
202.70.33.0/24 maxlen: 24
202.70.34.0/24 maxlen: 24
202.70.35.0/24 maxlen: 24
202.70.36.0/24 maxlen: 24
202.70.37.0/24 maxlen: 24
202.70.38.0/24 maxlen: 24
202.70.39.0/24 maxlen: 24
202.70.40.0/24 maxlen: 24
202.70.41.0/24 maxlen: 24
202.70.42.0/24 maxlen: 24
202.70.43.0/24 maxlen: 24
202.70.44.0/24 maxlen: 24
202.70.45.0/24 maxlen: 24
202.70.46.0/24 maxlen: 24
202.70.47.0/24 maxlen: 24
203.17.23.0/24 maxlen: 24
203.21.120.0/24 maxlen: 24
203.23.49.0/24 maxlen: 24
203.23.199.0/24 maxlen: 24
203.98.76.0/23 maxlen: 24
2405:5700::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl
rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 16:26:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6781 (0x1a7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
Validity
Not Before: Jul 21 06:38:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=687de051-5460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:88:1f:e4:80:84:5c:36:1e:2b:fb:09:4a:c7:
ea:97:3e:8f:1b:f3:94:62:4c:08:66:83:06:7e:39:
78:88:1f:6f:63:fd:3a:64:d7:a7:3e:d8:97:50:b9:
c4:00:67:ca:ae:90:8c:17:e4:69:ac:2e:c3:b4:45:
e2:f1:f4:5e:9e:3e:9b:c9:f5:8d:da:60:b4:92:84:
52:8f:eb:3b:3d:f5:c1:02:05:22:3d:96:7d:2c:4f:
a5:7d:e5:d0:d3:5a:43:cf:53:a2:11:a5:ab:87:d9:
29:fe:1b:a6:3d:d8:7a:ec:b2:6d:8e:73:71:e2:c5:
b6:9e:eb:ed:4c:1d:34:86:f8:c5:2a:db:88:69:0c:
17:ca:a3:4e:e4:d3:2c:f3:aa:c3:d0:a0:b6:5e:41:
7c:8d:15:aa:57:a1:7c:ec:77:e7:84:b0:2c:3c:f0:
78:81:5d:26:a6:f8:f2:8b:f8:83:b7:9e:31:b0:1e:
dc:c7:55:7b:a8:73:f5:5e:3d:50:3c:6d:65:c2:08:
9c:a0:82:4b:a9:d3:4c:33:6f:45:31:45:35:15:69:
5b:04:a5:d0:30:f7:ec:e5:d4:99:16:68:c6:4e:df:
fd:bd:54:59:f8:bb:68:f6:3d:9a:43:fa:53:1a:ad:
6c:74:49:31:89:4c:10:47:82:eb:c6:ca:ec:de:d4:
89:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:11:2F:DC:12:9E:A8:F9:60:C9:B5:F7:2E:E5:D1:C4:44:7C:A2:E6
X509v3 Authority Key Identifier:
keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/442A935E2F1F11F0A35F5757C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.1.124.0/22
103.11.192.0/22
103.48.184.0/22
103.79.156.0/23
103.212.116.0/22
103.219.136.0/22
103.239.56.0/22
122.201.16.0-122.201.21.255
122.201.23.0-122.201.31.255
139.5.216.0/22
202.70.32.0/20
203.17.23.0/24
203.21.120.0/24
203.23.49.0/24
203.23.199.0/24
203.98.76.0/23
IPv6:
2405:5700::/32
Signature Algorithm: sha256WithRSAEncryption
0c:95:44:3e:15:9f:d7:00:39:e4:6d:16:4f:7f:f3:eb:01:bb:
db:7b:4a:a3:34:e3:25:fa:0b:e0:95:07:27:20:1b:7d:2d:e1:
fc:eb:53:4a:c2:39:6f:e9:22:20:01:c4:f1:cc:d6:ea:9e:5f:
03:a5:c5:40:4c:06:a7:da:b2:db:f5:88:52:4b:c6:c8:8d:c2:
d2:bc:17:53:71:a6:ac:a0:a3:2d:6f:01:09:1c:e9:35:fe:cd:
44:27:e1:0a:cc:47:ac:29:cd:b2:cb:56:5c:37:d2:e1:03:02:
0f:c1:55:1b:3a:a4:0a:a9:55:f4:ef:b0:2b:7a:3b:07:e9:41:
6a:c6:0a:37:f9:f8:50:84:8e:7a:1c:8e:55:96:f9:bc:02:63:
a4:be:77:e4:02:5b:ce:26:6b:5d:f6:c6:ad:db:34:cf:1f:fa:
0e:8a:ee:24:43:b3:d1:ae:5c:3c:d2:06:d2:6a:cb:cb:1e:6b:
ee:31:61:62:99:9a:2f:98:66:be:cd:a5:96:ff:25:c2:2a:4e:
30:86:90:44:17:f5:23:2a:fe:1b:a2:11:3a:13:e6:53:f2:bb:
9c:6e:74:73:11:4d:52:6e:83:74:d0:65:6f:14:b4:9c:2b:44:
1a:a2:3c:58:00:76:a5:96:a2:5d:06:4e:02:06:1b:bd:d1:62:
1c:a6:ee:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 05:43:08 2025 by rpki-client