Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/6892F5F2663C11F08C247C68C4F9AE02.roa
File: 6892F5F2663C11F08C247C68C4F9AE02.roa (raw, json)
Hash identifier: QLCbgoMVS3G9VHYM06+C4WObA6B/KseYMNiE38jKgGw=
Subject key identifier: D0:D0:80:09:5F:B2:2B:2B:31:D7:10:13:7E:9C:67:FC:04:56:CD:9A
Certificate issuer: /CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA
Certificate serial: 1CAC
Authority key identifier: 42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/6892F5F2663C11F08C247C68C4F9AE02.roa
Signing time: Fri 24 Apr 2026 16:20:27 +0000
ROA not before: Fri 24 Apr 2026 16:20:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 132220
IP address blocks: 45.125.152.0/22 maxlen: 22
45.125.152.0/24 maxlen: 24
45.125.153.0/24 maxlen: 24
45.125.154.0/24 maxlen: 24
45.125.155.0/24 maxlen: 24
45.250.232.0/22 maxlen: 22
45.250.232.0/24 maxlen: 24
45.250.233.0/24 maxlen: 24
45.250.234.0/24 maxlen: 24
45.250.235.0/24 maxlen: 24
103.7.148.0/22 maxlen: 22
103.7.148.0/24 maxlen: 24
103.7.149.0/24 maxlen: 24
103.7.150.0/24 maxlen: 24
103.7.151.0/24 maxlen: 24
103.216.52.0/22 maxlen: 22
103.216.52.0/24 maxlen: 24
103.216.53.0/24 maxlen: 24
103.216.54.0/24 maxlen: 24
103.216.55.0/24 maxlen: 24
157.119.176.0/22 maxlen: 22
157.119.177.0/24 maxlen: 24
157.119.179.0/24 maxlen: 24
183.87.160.0/19 maxlen: 19
183.87.160.0/20 maxlen: 20
183.87.160.0/24 maxlen: 24
183.87.161.0/24 maxlen: 24
183.87.162.0/24 maxlen: 24
183.87.163.0/24 maxlen: 24
183.87.164.0/24 maxlen: 24
183.87.165.0/24 maxlen: 24
183.87.166.0/24 maxlen: 24
183.87.167.0/24 maxlen: 24
183.87.168.0/24 maxlen: 24
183.87.169.0/24 maxlen: 24
183.87.170.0/24 maxlen: 24
183.87.171.0/24 maxlen: 24
183.87.172.0/24 maxlen: 24
183.87.173.0/24 maxlen: 24
183.87.174.0/24 maxlen: 24
183.87.175.0/24 maxlen: 24
183.87.176.0/24 maxlen: 24
183.87.177.0/24 maxlen: 24
183.87.178.0/24 maxlen: 24
183.87.179.0/24 maxlen: 24
183.87.180.0/24 maxlen: 24
183.87.181.0/24 maxlen: 24
183.87.182.0/24 maxlen: 24
183.87.183.0/24 maxlen: 24
183.87.184.0/24 maxlen: 24
183.87.185.0/24 maxlen: 24
183.87.186.0/24 maxlen: 24
183.87.187.0/24 maxlen: 24
183.87.188.0/24 maxlen: 24
183.87.189.0/24 maxlen: 24
183.87.190.0/24 maxlen: 24
183.87.191.0/24 maxlen: 24
183.87.193.0/24 maxlen: 24
183.87.194.0/23 maxlen: 24
183.87.200.0/21 maxlen: 21
183.87.200.0/24 maxlen: 24
183.87.201.0/24 maxlen: 24
183.87.202.0/24 maxlen: 24
183.87.203.0/24 maxlen: 24
183.87.204.0/24 maxlen: 24
183.87.205.0/24 maxlen: 24
183.87.206.0/24 maxlen: 24
183.87.207.0/24 maxlen: 24
183.87.208.0/24 maxlen: 24
2403:7100::/32 maxlen: 32
2403:7100::/48 maxlen: 48
2403:7100:1::/48 maxlen: 48
2403:7100:2::/48 maxlen: 48
2403:7100:3::/48 maxlen: 48
2403:7100:4::/48 maxlen: 48
2403:7100:5::/48 maxlen: 48
2403:7100:6::/48 maxlen: 48
2403:7100:7::/48 maxlen: 48
2403:7100:8::/48 maxlen: 48
2403:7100:9::/48 maxlen: 48
2403:7100:a::/48 maxlen: 48
2403:7100:b::/48 maxlen: 48
2403:7100:10::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl
rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 16:12:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7340 (0x1cac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9182F75, serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA
Validity
Not Before: Apr 24 16:20:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69eb984b-ee8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9c:d9:b6:96:c8:fd:b4:47:71:f0:eb:2e:00:
a6:cb:ac:45:de:53:8d:af:db:d0:20:19:97:f0:48:
00:22:86:65:2c:30:39:3a:ab:d0:17:ba:0f:38:25:
c7:d9:63:8d:7e:c7:c4:d7:10:81:17:59:d7:a9:ad:
03:dc:64:3e:d9:e9:47:42:89:3f:b0:50:21:1c:04:
b2:de:d4:86:6b:bd:c6:c8:a8:20:a5:11:fe:6b:9d:
05:75:ef:6d:75:d7:51:ce:72:b6:b6:a5:9c:dc:df:
c6:a7:a2:b3:8b:e9:49:44:30:a9:2a:d5:0c:02:33:
28:45:b7:c0:84:10:4b:ca:1a:91:29:a5:0f:45:62:
71:ff:20:0c:ed:a7:42:02:a9:35:ab:28:31:5b:9f:
b0:8d:9c:c9:9c:07:49:b6:c9:35:c2:19:51:a2:52:
e7:80:bb:2c:95:9f:13:6c:f4:05:61:8d:2c:64:cb:
cd:02:9b:d8:be:26:34:e0:4d:35:4e:35:0a:2d:78:
7c:6c:de:72:a8:93:93:3c:33:9c:55:20:63:7a:02:
10:aa:bf:41:c0:a0:cd:1a:6b:9f:6d:cd:55:01:10:
9a:bf:0b:c0:b0:3b:fb:50:c2:7a:a8:f1:54:ba:3c:
a5:67:62:bc:6e:92:80:2b:a4:6d:27:36:a3:6d:95:
5d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D0:80:09:5F:B2:2B:2B:31:D7:10:13:7E:9C:67:FC:04:56:CD:9A
X509v3 Authority Key Identifier:
keyid:42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/6892F5F2663C11F08C247C68C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
45.125.152.0/22
45.250.232.0/22
103.7.148.0/22
103.216.52.0/22
157.119.176.0/22
183.87.160.0/19
183.87.193.0-183.87.195.255
183.87.200.0-183.87.208.255
IPv6:
2403:7100::/32
Signature Algorithm: sha256WithRSAEncryption
5d:17:d9:be:05:f5:36:07:f1:57:90:bb:1f:2c:27:4b:6a:95:
14:36:14:93:de:32:19:bb:aa:dc:c8:8b:cf:77:bc:4a:96:90:
d5:3e:7e:a8:26:68:57:de:de:fa:73:46:93:22:05:9a:ca:3a:
7d:1a:fe:98:49:58:99:2a:4e:f6:fc:39:67:a6:86:d6:33:eb:
2c:3d:4f:ae:50:d6:3b:8b:8e:82:c3:8b:53:91:f6:b0:8d:60:
b7:c9:ea:4e:06:18:61:e2:8f:f6:3d:85:ba:22:fb:c0:8d:ac:
e9:d3:cc:06:34:7c:6b:83:22:4e:47:02:99:a4:cb:e9:b4:1f:
07:20:c2:8b:4b:e3:5a:4d:66:61:c8:f3:75:56:3e:d0:ee:14:
a1:d6:a5:3e:14:80:4b:2b:11:e5:49:fb:68:28:01:d1:22:ad:
8c:d0:35:77:3e:17:07:8e:ec:70:ea:69:38:54:ff:81:cf:51:
a7:8e:d6:0b:f5:43:a3:eb:31:0f:63:71:89:d2:1e:29:9e:bb:
cb:41:4a:22:b1:bc:10:78:fe:c7:2a:4e:f2:04:c0:e3:ff:83:
d5:d0:40:d9:32:c7:41:15:e4:6d:62:e0:eb:c1:29:1f:7a:ce:
58:99:37:9d:81:ec:22:d2:a9:ad:84:45:46:55:a3:70:46:9a:
6e:2c:c8:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:46:19 2026 by rpki-client