Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/442A935E2F1F11F0A35F5757C4F9AE02.roa
File: 442A935E2F1F11F0A35F5757C4F9AE02.roa (raw, json)
Hash identifier: Kuw7O4GbqUm/LsdHrCx6y55gHQykPcsm3zG17OVPWXo=
Subject key identifier: B6:7D:B4:02:89:BE:69:7F:45:9A:F1:EE:4E:22:C3:7D:4E:F9:A2:A1
Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
Certificate serial: 1B16
Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/442A935E2F1F11F0A35F5757C4F9AE02.roa
Signing time: Tue 28 Apr 2026 17:20:57 +0000
ROA not before: Tue 28 Apr 2026 17:20:57 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 17882
IP address blocks: 14.1.124.0/24 maxlen: 24
14.1.125.0/24 maxlen: 24
14.1.126.0/24 maxlen: 24
14.1.127.0/24 maxlen: 24
103.11.192.0/24 maxlen: 24
103.11.193.0/24 maxlen: 24
103.11.194.0/24 maxlen: 24
103.11.195.0/24 maxlen: 24
103.48.184.0/24 maxlen: 24
103.48.185.0/24 maxlen: 24
103.48.186.0/24 maxlen: 24
103.48.187.0/24 maxlen: 24
103.79.156.0/23 maxlen: 24
103.212.116.0/24 maxlen: 24
103.212.117.0/24 maxlen: 24
103.212.118.0/24 maxlen: 24
103.212.119.0/24 maxlen: 24
103.219.136.0/24 maxlen: 24
103.219.137.0/24 maxlen: 24
103.219.138.0/24 maxlen: 24
103.219.139.0/24 maxlen: 24
103.239.56.0/24 maxlen: 24
103.239.57.0/24 maxlen: 24
103.239.58.0/24 maxlen: 24
103.239.59.0/24 maxlen: 24
122.201.16.0/24 maxlen: 24
122.201.17.0/24 maxlen: 24
122.201.18.0/24 maxlen: 24
122.201.19.0/24 maxlen: 24
122.201.20.0/24 maxlen: 24
122.201.21.0/24 maxlen: 24
122.201.23.0/24 maxlen: 24
122.201.24.0/24 maxlen: 24
122.201.25.0/24 maxlen: 24
122.201.26.0/24 maxlen: 24
122.201.27.0/24 maxlen: 24
122.201.28.0/24 maxlen: 24
122.201.29.0/24 maxlen: 24
122.201.30.0/24 maxlen: 24
122.201.31.0/24 maxlen: 24
139.5.216.0/24 maxlen: 24
139.5.217.0/24 maxlen: 24
139.5.218.0/24 maxlen: 24
139.5.219.0/24 maxlen: 24
202.70.32.0/24 maxlen: 24
202.70.33.0/24 maxlen: 24
202.70.34.0/24 maxlen: 24
202.70.35.0/24 maxlen: 24
202.70.36.0/24 maxlen: 24
202.70.37.0/24 maxlen: 24
202.70.38.0/24 maxlen: 24
202.70.39.0/24 maxlen: 24
202.70.40.0/24 maxlen: 24
202.70.41.0/24 maxlen: 24
202.70.42.0/24 maxlen: 24
202.70.43.0/24 maxlen: 24
202.70.44.0/24 maxlen: 24
202.70.45.0/24 maxlen: 24
202.70.46.0/24 maxlen: 24
202.70.47.0/24 maxlen: 24
203.17.23.0/24 maxlen: 24
203.21.120.0/24 maxlen: 24
203.23.49.0/24 maxlen: 24
203.23.199.0/24 maxlen: 24
203.98.76.0/23 maxlen: 24
2405:5700::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl
rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 16:19:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6934 (0x1b16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758
Validity
Not Before: Apr 28 17:20:57 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69f0ec79-8e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0e:09:9d:74:94:2b:34:f1:54:79:fc:05:0f:
3d:52:7d:71:33:4a:7d:33:7a:65:06:a0:79:d6:16:
63:27:eb:9e:3d:57:d4:b1:b2:90:b3:05:8c:8f:ba:
c8:35:06:cb:51:8b:9c:68:4c:f6:1f:2f:7d:80:fe:
6b:f0:ea:cf:a8:f9:74:67:bd:68:bb:85:23:ba:e0:
c0:f1:a3:b8:13:ae:b8:cf:72:9a:c7:b1:b8:cf:07:
56:b2:3c:27:9e:a1:32:40:44:9d:45:ce:09:9b:c2:
d6:ab:6b:1d:5e:08:c1:23:6c:38:97:5b:86:3b:15:
22:b9:77:a9:63:5c:29:7e:99:06:f3:fd:fd:3f:eb:
17:a4:91:91:a2:dc:1b:12:b4:a6:59:3e:29:75:06:
3e:7e:9d:08:34:b9:b8:36:d7:3b:72:62:27:cd:2c:
a5:4d:53:f0:cc:e8:ab:eb:fc:54:c7:44:06:dc:6a:
4b:e0:5f:23:cf:bd:71:39:0f:76:3b:1c:c2:2a:9f:
1c:c7:5f:0c:56:02:d2:b9:86:0f:f8:09:fb:92:10:
13:e4:e1:32:2e:e6:d7:03:a7:22:e8:2a:54:70:57:
0b:0a:82:22:e5:19:a1:f1:c5:7b:ed:8c:a7:f2:20:
7d:d3:38:51:84:bc:c7:af:b3:73:8f:1a:6f:84:54:
12:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7D:B4:02:89:BE:69:7F:45:9A:F1:EE:4E:22:C3:7D:4E:F9:A2:A1
X509v3 Authority Key Identifier:
keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/442A935E2F1F11F0A35F5757C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
14.1.124.0/22
103.11.192.0/22
103.48.184.0/22
103.79.156.0/23
103.212.116.0/22
103.219.136.0/22
103.239.56.0/22
122.201.16.0-122.201.21.255
122.201.23.0-122.201.31.255
139.5.216.0/22
202.70.32.0/20
203.17.23.0/24
203.21.120.0/24
203.23.49.0/24
203.23.199.0/24
203.98.76.0/23
IPv6:
2405:5700::/32
Signature Algorithm: sha256WithRSAEncryption
54:b2:f9:31:1f:0a:6e:37:c1:9b:01:da:eb:cf:0e:8e:93:eb:
d6:f6:57:68:3f:fa:3b:f7:84:48:e8:98:9a:9f:60:53:3f:59:
31:3b:63:6f:4f:a9:e9:4e:15:17:4f:74:16:e3:dc:f2:b8:25:
ba:38:0c:a3:ef:e1:db:15:a3:5c:69:72:75:a1:9b:df:0e:03:
fa:99:2c:77:55:0f:f6:9c:7b:67:73:d3:ad:6d:bb:0b:76:0f:
83:f4:f0:07:e9:cd:d6:a4:72:4d:ba:83:a3:d6:9b:36:08:8d:
7d:49:d0:46:a2:39:86:6d:54:4e:30:5a:f6:1e:ea:97:f3:af:
28:48:65:55:17:b7:9d:08:df:7c:3f:d2:db:c9:96:4a:82:a1:
27:79:4e:a1:e0:b4:3f:68:64:2b:97:91:c9:5a:43:39:d0:47:
fe:a0:d9:7d:fa:37:70:81:c2:6d:d9:71:5a:36:9d:14:66:57:
2e:26:1c:1a:6c:b0:dc:9f:3a:d1:f7:9a:d5:38:b7:38:35:3f:
25:b6:eb:f8:98:ea:6b:88:e3:10:be:fd:57:53:cc:d0:39:7f:
2a:99:f2:f2:f7:18:7f:92:ea:4d:c1:9c:3e:f9:21:14:6a:3a:
3e:97:01:dc:15:8d:e6:30:42:a9:fa:36:9b:32:ce:ce:15:fe:
44:05:bb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:57:20 2026 by rpki-client