Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa
File: 844EFBDA766C11EF8CE33A86C4F9AE02.roa (raw, json)
Hash identifier: lm3IrjRK+ELpMybzoro47lyRQ7ym81RZwyZ8pUMrjf8=
Subject key identifier: 2A:D5:03:86:8C:D1:49:0D:72:ED:35:D0:5F:5B:E9:17:D9:B5:0F:9B
Certificate issuer: /CN=A9162EE1/serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Certificate serial: 04DC
Authority key identifier: 60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa
Signing time: Mon 11 May 2026 13:22:54 +0000
ROA not before: Mon 11 May 2026 13:22:54 +0000
ROA not after: Wed 30 Dec 2026 00:00:00 +0000
asID: 147049
IP address blocks: 103.173.150.0/23 maxlen: 23
103.173.150.0/24 maxlen: 24
103.173.151.0/24 maxlen: 24
116.204.193.0/24 maxlen: 24
116.204.194.0/24 maxlen: 24
116.204.195.0/24 maxlen: 24
2407:e8c0::/48 maxlen: 48
2407:e8c0:1::/48 maxlen: 48
2407:e8c0:2::/48 maxlen: 48
2407:e8c0:3::/48 maxlen: 48
2407:e8c0:4::/48 maxlen: 48
2407:e8c0:5::/48 maxlen: 48
2407:e8c0:6::/48 maxlen: 48
2407:e8c0:7::/48 maxlen: 48
2407:e8c0:8::/48 maxlen: 48
2407:e8c0:9::/48 maxlen: 48
2407:e8c0:a::/48 maxlen: 48
2407:e8c0:b::/48 maxlen: 48
2407:e8c0:c::/48 maxlen: 48
2407:e8c0:d::/48 maxlen: 48
2407:e8c0:e::/48 maxlen: 48
2407:e8c0:f::/48 maxlen: 48
2407:e8c0:11::/48 maxlen: 48
2407:e8c0:12::/48 maxlen: 48
2407:e8c0:13::/48 maxlen: 48
2407:e8c0:1f::/48 maxlen: 48
2407:e8c0:20::/48 maxlen: 48
2407:e8c0:21::/48 maxlen: 48
2407:e8c0:22::/48 maxlen: 48
2407:e8c0:23::/48 maxlen: 48
2407:e8c0:24::/48 maxlen: 48
2407:e8c0:25::/48 maxlen: 48
2407:e8c0:4a00::/40 maxlen: 40
2407:e8c0:4b00::/40 maxlen: 40
2407:e8c0:4c00::/40 maxlen: 40
2407:e8c0:4d00::/40 maxlen: 40
2407:e8c0:4e00::/40 maxlen: 40
2407:e8c0:4f00::/40 maxlen: 40
2407:e8c0:5000::/40 maxlen: 40
2407:e8c0:5100::/40 maxlen: 40
2407:e8c0:5200::/40 maxlen: 40
2407:e8c0:5300::/40 maxlen: 40
2407:e8c0:5400::/40 maxlen: 40
2407:e8c0:5500::/40 maxlen: 40
2407:e8c0:5600::/40 maxlen: 40
2407:e8c0:5700::/40 maxlen: 40
2407:e8c0:5800::/40 maxlen: 40
2407:e8c0:5a00::/40 maxlen: 40
2407:e8c0:5b00::/40 maxlen: 40
2407:e8c0:6000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl
rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 18 May 2026 13:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1244 (0x4dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162EE1, serialNumber=6076BD0BA4DB797A72A68FEFF9BFB558C44398B2
Validity
Not Before: May 11 13:22:54 2026 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=6a01d82e-6fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1f:19:b9:76:c2:27:98:a6:1e:7d:07:f9:08:
62:d2:f0:bc:05:d9:1f:61:a2:c3:c9:ab:71:d2:c5:
44:bb:50:5f:bb:de:e5:3f:9b:4c:72:a8:01:2f:52:
ff:28:54:94:3c:3c:74:15:94:f2:3a:35:e4:fd:66:
36:d8:b9:bb:5f:49:a2:fb:22:5c:11:a9:d0:e3:62:
a1:de:44:6c:ad:8c:47:af:03:b9:55:f8:c7:dc:05:
d5:07:b2:71:31:7a:0f:0d:0f:fc:04:36:74:f1:4c:
d9:55:e3:09:4a:11:a5:21:96:7f:ac:88:e8:32:81:
8a:fe:28:50:c9:be:9c:e2:54:98:aa:a0:41:8d:d7:
a8:c2:04:ef:36:2f:ed:98:c2:42:7b:08:ab:ac:47:
01:dd:29:05:c4:0a:61:0f:92:d3:50:b4:0c:0f:8f:
13:e5:57:2f:cb:4b:5d:7d:46:a1:39:2d:48:f6:62:
85:8c:45:6d:23:ab:c1:79:f3:ca:b0:bc:3c:9f:c0:
0b:2d:2c:6b:9e:b0:d1:61:4c:e1:17:dd:07:1a:ed:
c2:ee:07:4c:e3:51:4d:55:7b:80:d8:7a:c6:3b:91:
bb:df:c8:05:e2:07:a1:67:dc:a5:a7:0c:25:b1:22:
87:eb:82:6f:3d:8e:54:af:5d:cb:8d:a5:0d:5d:46:
3f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D5:03:86:8C:D1:49:0D:72:ED:35:D0:5F:5B:E9:17:D9:B5:0F:9B
X509v3 Authority Key Identifier:
keyid:60:76:BD:0B:A4:DB:79:7A:72:A6:8F:EF:F9:BF:B5:58:C4:43:98:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/YHa9C6TbeXpypo_v-b-1WMRDmLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHa9C6TbeXpypo_v-b-1WMRDmLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162EE1/752D42E88FD211EC948A937EC4F9AE02/844EFBDA766C11EF8CE33A86C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.173.150.0/23
116.204.193.0-116.204.195.255
IPv6:
2407:e8c0::/44
2407:e8c0:11::-2407:e8c0:13:ffff:ffff:ffff:ffff:ffff
2407:e8c0:1f::-2407:e8c0:25:ffff:ffff:ffff:ffff:ffff
2407:e8c0:4a00::-2407:e8c0:58ff:ffff:ffff:ffff:ffff:ffff
2407:e8c0:5a00::/39
2407:e8c0:6000::/40
Signature Algorithm: sha256WithRSAEncryption
b6:9a:d3:e1:3c:46:ac:71:c5:f5:73:f6:00:8d:de:f1:18:c8:
fb:aa:97:61:af:6c:0a:02:f4:7c:e3:55:8e:ea:5e:0b:25:46:
1c:7f:f7:85:dc:40:62:f3:5d:04:81:fa:05:9e:e2:ea:fb:96:
25:f0:61:83:15:2b:ae:42:b9:c5:29:3b:84:aa:64:32:f2:bf:
f8:41:f5:12:82:bd:19:b4:ab:4d:6f:ed:03:74:dc:be:f3:cc:
a7:95:bc:2b:81:d8:5d:5f:13:03:f2:e0:9d:61:17:68:61:07:
2b:c1:87:3a:88:11:8e:cb:73:b8:7a:b9:bc:73:86:bc:8d:de:
d1:a0:0f:6f:88:a8:8e:8d:92:c6:c2:b4:ed:94:95:e5:e1:c4:
68:85:19:90:4d:8d:60:c4:d5:c7:83:53:70:8e:8e:3b:ac:10:
28:4c:bc:c0:fb:67:6e:61:23:32:67:01:2b:c4:ba:5e:30:03:
06:58:4c:79:31:32:24:07:17:5f:bd:a6:07:16:02:7e:82:c4:
f3:c1:5e:e1:db:ef:5b:de:54:dc:0e:a9:f2:54:2c:a0:fa:11:
9c:08:16:ca:b8:53:c1:fd:c1:c1:0a:17:38:ba:fb:d6:f3:04:
f6:cc:e5:d6:96:2e:dd:64:b3:11:ab:fa:47:83:1f:76:1a:56:
b5:39:85:0d
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjJFRTExMTAvBgNVBAUTKDYwNzZCRDBCQTREQjc5N0E3MkE2OEZFRkY5QkZCNTU4
QzQ0Mzk4QjIwHhcNMjYwNTExMTMyMjU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02YTAxZDgyZS02ZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuR8ZuXbCJ5imHn0H+Qhi0vC8BdkfYaLDyatx0sVEu1Bfu97lP5tMcqgBL1L/
KFSUPDx0FZTyOjXk/WY22Lm7X0mi+yJcEanQ42Kh3kRsrYxHrwO5VfjH3AXVB7Jx
MXoPDQ/8BDZ08UzZVeMJShGlIZZ/rIjoMoGK/ihQyb6c4lSYqqBBjdeowgTvNi/t
mMJCewirrEcB3SkFxAphD5LTULQMD48T5Vcvy0tdfUahOS1I9mKFjEVtI6vBefPK
sLw8n8ALLSxrnrDRYUzhF90HGu3C7gdM41FNVXuA2HrGO5G738gF4gehZ9ylpwwl
sSKH64JvPY5Ur13LjaUNXUY/awIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFCrVA4aM
0UkNcu010F9b6RfZtQ+bMB8GA1UdIwQYMBaAFGB2vQuk23l6cqaP7/m/tVjEQ5iy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkVFMS83NTJENDJFODhG
RDIxMUVDOTQ4QTkzN0VDNEY5QUUwMi9ZSGE5QzZUYmVYcHlwb192LWItMVdNUkRt
TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1lIYTlDNlRiZVhweXBvX3YtYi0xV01SRG1MSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjJFRTEvNzUyRDQyRTg4RkQyMTFFQzk0OEE5MzdFQzRGOUFFMDIvODQ0RUZCREE3
NjZDMTFFRjhDRTMzQTg2QzRGOUFFMDIucm9hMIGIBggrBgEFBQcBBwEB/wR5MHcw
GgQCAAEwFAMEAWetljAMAwQAdMzBAwQCdMzAMFkEAgACMFMDBwQkB+jAAAAwEgMH
ACQH6MAAEQMHAiQH6MAAEDASAwcAJAfowAAfAwcBJAfowAAkMBADBgEkB+jASgMG
ACQH6MBYAwYBJAfowFoDBgAkB+jAYDANBgkqhkiG9w0BAQsFAAOCAQEAtprT4TxG
rHHF9XP2AI3e8RjI+6qXYa9sCgL0fONVjupeCyVGHH/3hdxAYvNdBIH6BZ7i6vuW
JfBhgxUrrkK5xSk7hKpkMvK/+EH1EoK9GbSrTW/tA3TcvvPMp5W8K4HYXV8TA/Lg
nWEXaGEHK8GHOogRjstzuHq5vHOGvI3e0aAPb4iojo2SxsK07ZSV5eHEaIUZkE2N
YMTVx4NTcI6OO6wQKEy8wPtnbmEjMmcBK8S6XjADBlhMeTEyJAcXX72mBxYCfoLE
88Fe4dvvW95U3A6p8lQsoPoRnAgWyrhTwf3BwQoXOLr71vME9szl1pYu3WSzEav6
R4MfdhpWtTmFDQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:51:27 2026 by rpki-client