Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
File: CCF0C1920EBA11ECB2C2867AC4F9AE02.roa (raw, json)
Hash identifier: nWS9s+HK5wPDrPuEICFs+8KocJdOwtwcQLtIUKC+IaA=
Subject key identifier: F5:DF:E4:05:A8:D5:07:B1:C7:87:84:DB:14:25:54:E9:D5:29:F5:32
Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Certificate serial: 29C9
Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
Signing time: Thu 12 Mar 2026 06:37:07 +0000
ROA not before: Thu 12 Mar 2026 06:37:07 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 24440
IP address blocks: 36.255.44.0/22 maxlen: 24
43.242.100.0/22 maxlen: 24
58.65.192.0/19 maxlen: 24
61.5.128.0/19 maxlen: 24
101.53.224.0/19 maxlen: 24
103.7.60.0/22 maxlen: 24
103.18.8.0/22 maxlen: 24
103.18.12.0/22 maxlen: 24
103.18.20.0/22 maxlen: 24
103.26.80.0/22 maxlen: 24
103.26.84.0/22 maxlen: 24
103.31.92.0/22 maxlen: 24
103.31.100.0/22 maxlen: 24
103.31.104.0/22 maxlen: 24
103.244.172.0/22 maxlen: 24
103.244.176.0/22 maxlen: 24
103.245.132.0/22 maxlen: 24
103.245.192.0/22 maxlen: 24
119.13.184.0/21 maxlen: 24
124.29.192.0/18 maxlen: 24
175.107.192.0/18 maxlen: 24
202.47.32.0/19 maxlen: 24
202.163.64.0/19 maxlen: 24
202.163.96.0/19 maxlen: 24
203.101.160.0/19 maxlen: 24
218.100.85.0/24 maxlen: 24
2001:4538::/32 maxlen: 32
2001:4538:41::/48 maxlen: 48
2400:adc0:9::/64 maxlen: 64
2400:adc0:200::/48 maxlen: 48
2400:adc0:201::/48 maxlen: 48
2400:adc0:4000::/48 maxlen: 48
2400:adc0:4001::/48 maxlen: 48
2400:adc0:4002::/48 maxlen: 48
2400:adc0:4003::/48 maxlen: 48
2400:adc0:4004::/48 maxlen: 48
2400:adc0:4005::/48 maxlen: 48
2400:adc0:4006::/48 maxlen: 48
2400:adc0:4007::/48 maxlen: 48
2400:adc0:4008::/48 maxlen: 48
2400:adc0:4009::/48 maxlen: 48
2400:adc0:4010::/48 maxlen: 48
2400:adc0:4011::/48 maxlen: 48
2400:adc0:4012::/48 maxlen: 48
2400:adc0:4013::/48 maxlen: 48
2400:adc0:4014::/48 maxlen: 48
2400:adc0:4020::/48 maxlen: 48
2400:adc0:4030::/48 maxlen: 48
2400:adc0:4040::/48 maxlen: 48
2400:adc0:4104::/48 maxlen: 48
2400:adc0:4203::/48 maxlen: 48
2400:adc0:4204::/48 maxlen: 48
2400:adc0:4300::/48 maxlen: 48
2400:adc0:4301::/48 maxlen: 48
2400:adc0:4302::/48 maxlen: 48
2400:adc0:4303::/48 maxlen: 48
2400:adc0:4310::/48 maxlen: 48
2400:adc0:4311::/48 maxlen: 48
2400:adc0:4500::/48 maxlen: 48
2400:adc0:4600::/48 maxlen: 48
2400:adc0:4610::/48 maxlen: 48
2400:adc0:4611::/48 maxlen: 48
2400:adc0:4700::/48 maxlen: 48
2400:adc0:4710::/48 maxlen: 48
2400:adc0:4711::/48 maxlen: 48
2400:adc0:4900::/48 maxlen: 48
2400:adc0:4910::/48 maxlen: 48
2400:adc0:4a10::/48 maxlen: 48
2400:adc0:4b10::/48 maxlen: 48
2400:adc0:c001::/48 maxlen: 48
2400:adc0:c003::/48 maxlen: 48
2400:adc0:c030::/48 maxlen: 48
2400:adc0:c102::/48 maxlen: 48
2400:adc0:c103::/48 maxlen: 48
2400:adc0:c210::/48 maxlen: 48
2400:adc0:c211::/48 maxlen: 48
2400:adc0:c310::/48 maxlen: 48
2400:adc0:c410::/48 maxlen: 48
2400:adc0:c510::/48 maxlen: 48
2400:adc2:100::/48 maxlen: 48
2400:adc2:300::/40 maxlen: 40
2400:adc2:400::/40 maxlen: 40
2400:adc2:600::/40 maxlen: 40
2400:adc2:700::/40 maxlen: 40
2400:adc2:900::/40 maxlen: 40
2400:adc2:a00::/40 maxlen: 40
2400:adc4::/40 maxlen: 40
2400:adc4:100::/40 maxlen: 40
2400:adc4:800::/40 maxlen: 40
2400:adc4:900::/40 maxlen: 40
2400:adc5::/42 maxlen: 42
2400:adc5:40::/42 maxlen: 42
2400:adc5:80::/42 maxlen: 42
2400:adc5:c0::/42 maxlen: 42
2400:adc5:100::/42 maxlen: 42
2400:adc5:140::/42 maxlen: 42
2400:adc5:180::/42 maxlen: 42
2400:adc5:1c0::/42 maxlen: 42
2400:adc5:300::/42 maxlen: 42
2400:adc5:340::/42 maxlen: 42
2400:adc5:380::/42 maxlen: 42
2400:adc5:3c0::/42 maxlen: 42
2400:adc5:400::/42 maxlen: 42
2400:adc5:440::/42 maxlen: 42
2400:adc5:480::/42 maxlen: 42
2400:adc5:4c0::/42 maxlen: 42
2400:adca::/40 maxlen: 40
2400:adca:100::/40 maxlen: 40
2400:add9::/40 maxlen: 40
2400:add9:100::/40 maxlen: 40
2400:add9:200::/40 maxlen: 40
2400:add9:300::/40 maxlen: 40
2400:addb:800::/40 maxlen: 40
2400:addb:900::/40 maxlen: 40
2400:addd:2000::/40 maxlen: 40
2400:addd:2100::/40 maxlen: 40
2400:addd:2800::/40 maxlen: 40
2400:addd:2900::/40 maxlen: 40
2400:addd:4900::/40 maxlen: 40
2400:adde::/40 maxlen: 40
2400:adde:100::/40 maxlen: 40
2400:addf:800::/40 maxlen: 40
2400:addf:900::/40 maxlen: 40
2400:addf:1000::/40 maxlen: 40
2400:addf:1100::/40 maxlen: 40
2400:addf:2900::/40 maxlen: 40
2400:addf:3900::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 15:38:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10697 (0x29c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Validity
Not Before: Mar 12 06:37:07 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69b25f12-e5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:05:32:8b:42:ad:a9:2b:d3:11:2e:43:23:34:
b9:5e:d2:22:ff:2f:83:5b:00:3a:ed:44:85:5d:7c:
d0:7b:55:c0:c0:a8:09:c4:d9:66:c6:d6:01:bd:b3:
59:d6:24:a3:e2:01:f3:73:b8:9f:11:16:1b:31:0c:
d9:e0:3b:ba:5d:e0:f2:96:db:25:e9:13:67:5a:13:
b6:30:3e:a1:3d:58:87:39:bb:39:0a:21:84:16:24:
ad:39:38:11:84:49:e6:16:58:fe:3e:0e:9b:99:19:
a4:0c:e2:ee:6e:dd:46:2c:94:89:9d:0d:3f:cf:16:
ec:e5:c7:cd:45:34:3c:2e:e1:b6:c5:87:91:95:98:
ff:81:c2:d4:06:b3:94:48:60:3b:25:de:1e:60:6d:
df:5b:44:82:55:73:5b:dc:47:3d:98:c6:c3:b2:25:
70:e7:b1:6f:bc:6a:68:04:29:f0:2e:c9:b1:34:fb:
5e:59:e7:6f:42:21:7e:9f:c7:1c:88:be:7f:b6:f8:
9f:d7:34:d6:70:6d:aa:c3:5b:70:08:99:e2:a5:89:
7d:9a:b5:53:93:b1:9a:47:af:ac:9c:f6:50:2e:e2:
7f:64:85:f4:13:ee:dc:6f:d9:ae:f9:c2:1f:c1:63:
bd:d4:33:bb:95:89:fa:d5:c2:d6:11:2b:40:48:27:
2e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DF:E4:05:A8:D5:07:B1:C7:87:84:DB:14:25:54:E9:D5:29:F5:32
X509v3 Authority Key Identifier:
keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/CCF0C1920EBA11ECB2C2867AC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
36.255.44.0/22
43.242.100.0/22
58.65.192.0/19
61.5.128.0/19
101.53.224.0/19
103.7.60.0/22
103.18.8.0/21
103.18.20.0/22
103.26.80.0/21
103.31.92.0/22
103.31.100.0-103.31.107.255
103.244.172.0-103.244.179.255
103.245.132.0/22
103.245.192.0/22
119.13.184.0/21
124.29.192.0/18
175.107.192.0/18
202.47.32.0/19
202.163.64.0/18
203.101.160.0/19
218.100.85.0/24
IPv6:
2001:4538::/32
2400:adc0:9::/64
2400:adc0:200::/47
2400:adc0:4000::-2400:adc0:4009:ffff:ffff:ffff:ffff:ffff
2400:adc0:4010::-2400:adc0:4014:ffff:ffff:ffff:ffff:ffff
2400:adc0:4020::/48
2400:adc0:4030::/48
2400:adc0:4040::/48
2400:adc0:4104::/48
2400:adc0:4203::-2400:adc0:4204:ffff:ffff:ffff:ffff:ffff
2400:adc0:4300::/46
2400:adc0:4310::/47
2400:adc0:4500::/48
2400:adc0:4600::/48
2400:adc0:4610::/47
2400:adc0:4700::/48
2400:adc0:4710::/47
2400:adc0:4900::/48
2400:adc0:4910::/48
2400:adc0:4a10::/48
2400:adc0:4b10::/48
2400:adc0:c001::/48
2400:adc0:c003::/48
2400:adc0:c030::/48
2400:adc0:c102::/47
2400:adc0:c210::/47
2400:adc0:c310::/48
2400:adc0:c410::/48
2400:adc0:c510::/48
2400:adc2:100::/48
2400:adc2:300::-2400:adc2:4ff:ffff:ffff:ffff:ffff:ffff
2400:adc2:600::/39
2400:adc2:900::-2400:adc2:aff:ffff:ffff:ffff:ffff:ffff
2400:adc4::/39
2400:adc4:800::/39
2400:adc5::/39
2400:adc5:300::-2400:adc5:4ff:ffff:ffff:ffff:ffff:ffff
2400:adca::/39
2400:add9::/38
2400:addb:800::/39
2400:addd:2000::/39
2400:addd:2800::/39
2400:addd:4900::/40
2400:adde::/39
2400:addf:800::/39
2400:addf:1000::/39
2400:addf:2900::/40
2400:addf:3900::/40
Signature Algorithm: sha256WithRSAEncryption
78:ae:73:bd:50:72:d0:b3:0a:d5:d3:ed:21:a3:3a:54:82:3a:
3e:9e:b3:ba:8c:33:d1:4f:28:e8:52:f3:8d:0b:a9:a8:5c:59:
c2:25:b5:6e:49:21:25:1c:75:53:5a:b8:32:5b:e0:7f:7a:cc:
6e:9a:81:8a:ae:a6:8d:25:8d:41:d2:12:f7:e2:ff:2a:75:08:
b1:cf:03:be:3f:c0:12:22:47:76:9c:50:12:02:a1:2f:d4:1f:
44:7c:39:c4:d5:dd:0b:f2:a9:83:65:36:72:b9:13:a7:91:2b:
85:c2:ce:08:ac:86:20:95:7f:40:93:b9:f3:88:fa:a4:bc:28:
02:3d:4c:57:f4:65:8b:f8:5f:f3:cb:7d:65:36:02:c9:15:59:
bf:6b:76:4f:34:06:b4:f1:fa:87:2b:6b:7e:a9:4e:e6:ff:8c:
bf:6a:18:8c:f8:8e:b0:d9:42:ff:9b:42:0d:5e:32:5f:3d:5a:
7d:11:6f:e9:e7:23:d8:8a:86:2d:4e:10:dc:58:3d:b5:e0:ee:
4e:2b:f1:4e:9d:8f:e2:91:1f:33:99:f6:87:01:a1:da:78:63:
a9:3b:30:0a:20:9e:65:57:0a:f2:e4:11:35:83:04:73:ee:fa:
32:42:71:29:8a:9c:bb:ef:56:1f:54:7d:8b:00:1f:64:b4:96:
19:97:5e:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 04:09:06 2026 by rpki-client