Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/6892F5F2663C11F08C247C68C4F9AE02.roa
File: 6892F5F2663C11F08C247C68C4F9AE02.roa (raw, json)
Hash identifier: F0FrvUd5S7njvFtkK6nCX2p++W4EEKz1mREyLfZlAzc=
Subject key identifier: 21:F7:DB:6C:30:04:A4:1E:39:62:F2:55:6E:49:55:9D:23:8F:20:23
Certificate issuer: /CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA
Certificate serial: 1C8C
Authority key identifier: 42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/6892F5F2663C11F08C247C68C4F9AE02.roa
Signing time: Sun 01 Mar 2026 12:14:34 +0000
ROA not before: Mon 21 Jul 2025 14:10:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 132220
IP address blocks: 45.125.152.0/22 maxlen: 22
45.125.152.0/24 maxlen: 24
45.125.153.0/24 maxlen: 24
45.125.154.0/24 maxlen: 24
45.125.155.0/24 maxlen: 24
45.250.232.0/22 maxlen: 22
45.250.232.0/24 maxlen: 24
45.250.233.0/24 maxlen: 24
45.250.234.0/24 maxlen: 24
45.250.235.0/24 maxlen: 24
103.7.148.0/22 maxlen: 22
103.7.148.0/24 maxlen: 24
103.7.149.0/24 maxlen: 24
103.7.150.0/24 maxlen: 24
103.7.151.0/24 maxlen: 24
103.216.52.0/22 maxlen: 22
103.216.52.0/24 maxlen: 24
103.216.53.0/24 maxlen: 24
103.216.54.0/24 maxlen: 24
103.216.55.0/24 maxlen: 24
157.119.176.0/22 maxlen: 22
157.119.177.0/24 maxlen: 24
157.119.179.0/24 maxlen: 24
183.87.160.0/19 maxlen: 19
183.87.160.0/20 maxlen: 20
183.87.160.0/24 maxlen: 24
183.87.161.0/24 maxlen: 24
183.87.162.0/24 maxlen: 24
183.87.163.0/24 maxlen: 24
183.87.164.0/24 maxlen: 24
183.87.165.0/24 maxlen: 24
183.87.166.0/24 maxlen: 24
183.87.167.0/24 maxlen: 24
183.87.168.0/24 maxlen: 24
183.87.169.0/24 maxlen: 24
183.87.170.0/24 maxlen: 24
183.87.171.0/24 maxlen: 24
183.87.172.0/24 maxlen: 24
183.87.173.0/24 maxlen: 24
183.87.174.0/24 maxlen: 24
183.87.175.0/24 maxlen: 24
183.87.176.0/24 maxlen: 24
183.87.177.0/24 maxlen: 24
183.87.178.0/24 maxlen: 24
183.87.179.0/24 maxlen: 24
183.87.180.0/24 maxlen: 24
183.87.181.0/24 maxlen: 24
183.87.182.0/24 maxlen: 24
183.87.183.0/24 maxlen: 24
183.87.184.0/24 maxlen: 24
183.87.185.0/24 maxlen: 24
183.87.186.0/24 maxlen: 24
183.87.187.0/24 maxlen: 24
183.87.188.0/24 maxlen: 24
183.87.189.0/24 maxlen: 24
183.87.190.0/24 maxlen: 24
183.87.191.0/24 maxlen: 24
183.87.193.0/24 maxlen: 24
183.87.194.0/23 maxlen: 24
183.87.200.0/21 maxlen: 21
183.87.200.0/24 maxlen: 24
183.87.201.0/24 maxlen: 24
183.87.202.0/24 maxlen: 24
183.87.203.0/24 maxlen: 24
183.87.204.0/24 maxlen: 24
183.87.205.0/24 maxlen: 24
183.87.206.0/24 maxlen: 24
183.87.207.0/24 maxlen: 24
183.87.208.0/24 maxlen: 24
2403:7100::/32 maxlen: 32
2403:7100::/48 maxlen: 48
2403:7100:1::/48 maxlen: 48
2403:7100:2::/48 maxlen: 48
2403:7100:3::/48 maxlen: 48
2403:7100:4::/48 maxlen: 48
2403:7100:5::/48 maxlen: 48
2403:7100:6::/48 maxlen: 48
2403:7100:7::/48 maxlen: 48
2403:7100:8::/48 maxlen: 48
2403:7100:9::/48 maxlen: 48
2403:7100:a::/48 maxlen: 48
2403:7100:b::/48 maxlen: 48
2403:7100:10::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl
rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 31 Mar 2026 16:07:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7308 (0x1c8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9182F75, serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA
Validity
Not Before: Jul 21 14:10:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69a42daa-bdce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:19:b2:cf:6f:6c:ab:90:de:dd:c7:d6:c0:e5:
ad:39:18:36:bb:e3:5c:58:d3:2e:9c:01:3a:6a:8e:
d9:f8:99:00:3b:73:ba:7a:2b:63:c2:2f:e8:74:f8:
69:94:50:9a:b8:d2:ea:18:a8:84:56:61:e9:40:f9:
c5:0c:52:d1:b4:05:01:5c:98:99:e4:52:69:d6:24:
16:1c:ba:bb:34:96:6c:b7:9e:34:ba:7a:5e:36:70:
f9:a5:5c:47:60:7e:5e:bd:14:cb:b7:68:07:f9:3c:
3c:18:f4:8c:3a:23:85:27:6b:f1:b0:c2:6f:9c:b6:
3a:95:22:6a:bc:fe:40:6f:6b:71:8a:9b:5a:01:53:
69:ab:cc:86:88:0c:b5:df:a4:dc:8c:f7:21:e6:10:
2b:d3:6c:78:51:53:25:7c:d9:53:51:c8:19:43:90:
33:69:4c:fe:f1:7a:89:b5:d6:13:04:86:d7:95:8b:
cf:db:db:97:ad:af:15:ff:b0:4a:e1:b7:6c:a4:2b:
be:d4:31:4b:8c:76:23:8d:4d:96:c5:03:47:0c:bf:
4f:d7:c7:8b:21:15:8e:b4:fe:5b:9f:8e:4d:32:93:
cf:99:1a:65:16:cb:46:a3:7a:8f:c5:8f:6f:33:b1:
93:64:06:58:f1:8d:d4:54:be:bb:33:d2:7d:24:95:
41:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F7:DB:6C:30:04:A4:1E:39:62:F2:55:6E:49:55:9D:23:8F:20:23
X509v3 Authority Key Identifier:
keyid:42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/6892F5F2663C11F08C247C68C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
45.125.152.0/22
45.250.232.0/22
103.7.148.0/22
103.216.52.0/22
157.119.176.0/22
183.87.160.0/19
183.87.193.0-183.87.195.255
183.87.200.0-183.87.208.255
IPv6:
2403:7100::/32
Signature Algorithm: sha256WithRSAEncryption
69:29:51:c4:14:9f:9c:5c:e4:47:a2:c8:78:91:31:52:71:62:
da:32:67:00:56:4c:0d:4f:38:4e:da:5b:3e:07:e2:61:9c:95:
74:8f:7a:e8:b9:4e:7d:6f:55:45:38:47:6b:71:24:33:e0:29:
44:65:40:6f:52:3b:3f:12:21:b7:e3:65:8a:3d:fa:b9:42:8c:
db:24:4b:19:94:0f:be:38:7a:da:05:1b:5c:ba:6b:d2:bf:05:
cd:6c:ca:15:7b:80:71:30:99:60:c6:2e:e2:32:02:98:a9:1d:
f6:fe:31:3c:17:8b:f6:f8:b7:a8:9c:05:d3:f9:ef:1b:33:fe:
44:98:17:f8:b8:41:ea:f5:44:aa:33:49:f1:a0:04:af:6e:a8:
6b:78:34:4d:4b:46:43:53:80:2c:50:1b:52:c4:21:83:4f:d9:
34:25:c8:6e:11:9c:56:2d:95:8f:ee:60:31:4e:c4:c6:20:03:
f5:c0:e0:c6:a6:06:15:32:ec:e6:c6:20:2e:1a:e7:30:30:df:
fb:6d:36:a9:9f:29:1f:84:13:2d:0a:ef:34:a7:db:0c:d4:ac:
5b:27:e5:d1:0d:b4:91:93:c0:13:cf:2c:b8:8a:32:d3:6f:51:
eb:d3:61:67:7f:d0:ce:40:ad:72:2e:32:74:4f:81:3a:33:90:
4a:54:4b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:53 2026 by rpki-client