Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/517E7D1AB0EC11E5A6934B42C4F9AE02.roa
File: 517E7D1AB0EC11E5A6934B42C4F9AE02.roa (raw, json)
Hash identifier: 04Ktf7aHmtk6w5MhGrvObQ/LJOb4uBLGbSar+Thl/fM=
Subject key identifier: AD:6B:9C:5C:89:8E:3A:A7:31:27:26:F6:9B:46:82:41:67:86:BC:E1
Certificate issuer: /CN=A918AA4D/serialNumber=D5C8F1DC94D3C3481D6C69536956A4A528D5EDC3
Certificate serial: 3061
Authority key identifier: D5:C8:F1:DC:94:D3:C3:48:1D:6C:69:53:69:56:A4:A5:28:D5:ED:C3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cjx3JTTw0gdbGlTaVakpSjV7cM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/517E7D1AB0EC11E5A6934B42C4F9AE02.roa
Signing time: Wed 02 Jul 2025 15:52:18 +0000
ROA not before: Wed 02 Jul 2025 15:52:18 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 10024
IP address blocks: 27.125.196.0/22 maxlen: 22
27.125.196.0/23 maxlen: 23
27.125.196.0/24 maxlen: 24
27.125.197.0/24 maxlen: 24
27.125.198.0/23 maxlen: 23
27.125.198.0/24 maxlen: 24
27.125.199.0/24 maxlen: 24
43.245.16.0/22 maxlen: 22
43.245.16.0/23 maxlen: 23
43.245.16.0/24 maxlen: 24
43.245.17.0/24 maxlen: 24
43.245.18.0/23 maxlen: 23
43.245.18.0/24 maxlen: 24
43.245.19.0/24 maxlen: 24
103.3.200.0/22 maxlen: 22
103.3.200.0/23 maxlen: 23
103.3.200.0/24 maxlen: 24
103.3.201.0/24 maxlen: 24
103.3.202.0/23 maxlen: 23
103.3.202.0/24 maxlen: 24
103.3.203.0/24 maxlen: 24
119.75.192.0/20 maxlen: 20
119.75.192.0/23 maxlen: 23
119.75.192.0/24 maxlen: 24
119.75.193.0/24 maxlen: 24
119.75.194.0/23 maxlen: 23
119.75.194.0/24 maxlen: 24
119.75.195.0/24 maxlen: 24
119.75.196.0/23 maxlen: 23
119.75.196.0/24 maxlen: 24
119.75.197.0/24 maxlen: 24
119.75.198.0/23 maxlen: 23
119.75.198.0/24 maxlen: 24
119.75.199.0/24 maxlen: 24
119.75.200.0/23 maxlen: 23
119.75.200.0/24 maxlen: 24
119.75.201.0/24 maxlen: 24
119.75.202.0/23 maxlen: 23
119.75.202.0/24 maxlen: 24
119.75.203.0/24 maxlen: 24
119.75.204.0/23 maxlen: 23
119.75.204.0/24 maxlen: 24
119.75.205.0/24 maxlen: 24
119.75.206.0/23 maxlen: 23
119.75.206.0/24 maxlen: 24
119.75.207.0/24 maxlen: 24
203.92.64.0/18 maxlen: 18
203.92.64.0/23 maxlen: 23
203.92.64.0/24 maxlen: 24
203.92.65.0/24 maxlen: 24
203.92.66.0/23 maxlen: 23
203.92.66.0/24 maxlen: 24
203.92.67.0/24 maxlen: 24
203.92.68.0/23 maxlen: 23
203.92.68.0/24 maxlen: 24
203.92.69.0/24 maxlen: 24
203.92.70.0/23 maxlen: 23
203.92.70.0/24 maxlen: 24
203.92.71.0/24 maxlen: 24
203.92.72.0/23 maxlen: 23
203.92.72.0/24 maxlen: 24
203.92.73.0/24 maxlen: 24
203.92.74.0/23 maxlen: 23
203.92.74.0/24 maxlen: 24
203.92.75.0/24 maxlen: 24
203.92.76.0/23 maxlen: 23
203.92.76.0/24 maxlen: 24
203.92.77.0/24 maxlen: 24
203.92.78.0/23 maxlen: 23
203.92.78.0/24 maxlen: 24
203.92.79.0/24 maxlen: 24
203.92.80.0/23 maxlen: 23
203.92.80.0/24 maxlen: 24
203.92.81.0/24 maxlen: 24
203.92.82.0/23 maxlen: 23
203.92.82.0/24 maxlen: 24
203.92.83.0/24 maxlen: 24
203.92.84.0/23 maxlen: 23
203.92.84.0/24 maxlen: 24
203.92.85.0/24 maxlen: 24
203.92.86.0/23 maxlen: 23
203.92.86.0/24 maxlen: 24
203.92.87.0/24 maxlen: 24
203.92.88.0/23 maxlen: 23
203.92.88.0/24 maxlen: 24
203.92.89.0/24 maxlen: 24
203.92.90.0/23 maxlen: 23
203.92.90.0/24 maxlen: 24
203.92.91.0/24 maxlen: 24
203.92.92.0/23 maxlen: 23
203.92.92.0/24 maxlen: 24
203.92.93.0/24 maxlen: 24
203.92.94.0/23 maxlen: 23
203.92.94.0/24 maxlen: 24
203.92.95.0/24 maxlen: 24
203.92.96.0/23 maxlen: 23
203.92.96.0/24 maxlen: 24
203.92.97.0/24 maxlen: 24
203.92.98.0/23 maxlen: 23
203.92.98.0/24 maxlen: 24
203.92.99.0/24 maxlen: 24
203.92.100.0/23 maxlen: 23
203.92.100.0/24 maxlen: 24
203.92.101.0/24 maxlen: 24
203.92.102.0/23 maxlen: 23
203.92.102.0/24 maxlen: 24
203.92.103.0/24 maxlen: 24
203.92.104.0/23 maxlen: 23
203.92.104.0/24 maxlen: 24
203.92.105.0/24 maxlen: 24
203.92.106.0/23 maxlen: 23
203.92.106.0/24 maxlen: 24
203.92.107.0/24 maxlen: 24
203.92.108.0/23 maxlen: 23
203.92.108.0/24 maxlen: 24
203.92.109.0/24 maxlen: 24
203.92.110.0/23 maxlen: 23
203.92.110.0/24 maxlen: 24
203.92.111.0/24 maxlen: 24
203.92.112.0/23 maxlen: 23
203.92.112.0/24 maxlen: 24
203.92.113.0/24 maxlen: 24
203.92.114.0/23 maxlen: 23
203.92.114.0/24 maxlen: 24
203.92.115.0/24 maxlen: 24
203.92.116.0/23 maxlen: 23
203.92.116.0/24 maxlen: 24
203.92.117.0/24 maxlen: 24
203.92.118.0/23 maxlen: 23
203.92.118.0/24 maxlen: 24
203.92.119.0/24 maxlen: 24
203.92.120.0/23 maxlen: 23
203.92.120.0/24 maxlen: 24
203.92.121.0/24 maxlen: 24
203.92.122.0/23 maxlen: 23
203.92.122.0/24 maxlen: 24
203.92.123.0/24 maxlen: 24
203.92.124.0/23 maxlen: 23
203.92.124.0/24 maxlen: 24
203.92.125.0/24 maxlen: 24
203.92.126.0/23 maxlen: 23
203.92.126.0/24 maxlen: 24
203.92.127.0/24 maxlen: 24
2406:a400::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/1cjx3JTTw0gdbGlTaVakpSjV7cM.crl
rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/1cjx3JTTw0gdbGlTaVakpSjV7cM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cjx3JTTw0gdbGlTaVakpSjV7cM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 09 Jul 2025 15:52:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12385 (0x3061)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918AA4D, serialNumber=D5C8F1DC94D3C3481D6C69536956A4A528D5EDC3
Validity
Not Before: Jul 2 15:52:18 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=686555b1-0f8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:13:87:13:bb:f5:6f:a5:52:e1:d9:ea:42:e1:
f8:12:1a:6e:b9:d1:27:cf:b4:a1:81:01:3c:8c:7c:
09:20:42:45:62:8b:39:e8:65:72:5f:eb:aa:f3:b2:
ec:89:fa:4f:6c:6a:12:a9:ca:da:1a:f9:4a:47:4b:
1c:c7:4a:a1:c4:f8:6f:48:cb:88:4f:51:6f:e9:f4:
19:b6:d7:5c:02:9c:2a:42:e8:ba:f6:26:33:f2:10:
23:c9:43:b9:45:6d:06:ca:be:40:6e:9b:eb:82:01:
7c:e0:1c:ac:c9:07:26:4e:75:db:8b:6e:92:ac:07:
5f:d1:9e:de:21:5c:46:40:07:89:88:4b:c6:81:e0:
db:3d:22:0a:59:9e:df:77:16:f8:e5:d1:c4:ba:83:
2c:7a:40:7d:73:c0:46:30:7c:37:ad:7e:10:ad:91:
31:e1:d1:64:99:e6:c5:d6:41:a3:0f:00:c8:c5:1a:
84:b9:46:9b:3d:96:0e:54:2f:c6:c3:99:db:71:50:
56:ef:9e:29:d8:cb:5c:8e:80:26:79:14:56:70:09:
81:3c:05:f5:e4:de:c6:56:49:be:27:1d:cb:7e:18:
1b:fe:4d:06:83:ed:2a:d1:87:b7:04:de:7c:ab:97:
f9:0e:58:d9:53:b7:12:d0:31:e9:13:5f:6e:5d:97:
3b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:6B:9C:5C:89:8E:3A:A7:31:27:26:F6:9B:46:82:41:67:86:BC:E1
X509v3 Authority Key Identifier:
keyid:D5:C8:F1:DC:94:D3:C3:48:1D:6C:69:53:69:56:A4:A5:28:D5:ED:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/1cjx3JTTw0gdbGlTaVakpSjV7cM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cjx3JTTw0gdbGlTaVakpSjV7cM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AA4D/6C055824058711E3BFE57CA15911EA32/517E7D1AB0EC11E5A6934B42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.125.196.0/22
43.245.16.0/22
103.3.200.0/22
119.75.192.0/20
203.92.64.0/18
IPv6:
2406:a400::/32
Signature Algorithm: sha256WithRSAEncryption
8c:0b:7b:da:90:c1:35:59:d1:1e:6b:40:da:d1:55:3c:df:be:
0f:35:c0:b1:34:e0:7c:31:cd:6c:4e:fc:5a:04:ff:05:18:92:
d6:6f:81:f0:cf:c4:9b:ae:28:aa:70:ec:79:7a:bd:0d:c3:4a:
6b:af:f8:78:77:fd:c5:17:c6:55:67:76:22:e4:1b:77:c4:7d:
b0:40:20:f1:57:06:a0:ab:29:01:d9:ae:55:f7:fa:ca:f2:4b:
25:0d:e6:be:49:ad:86:3d:d1:9e:59:09:8b:40:25:60:8c:e6:
34:c9:e3:16:b9:5b:51:8d:ea:d1:4d:82:a4:48:32:38:2c:51:
c4:88:72:91:d7:16:45:bb:34:92:7f:ab:b1:8f:25:d3:9f:84:
3c:75:b4:b3:e3:40:1e:10:f3:5c:1e:55:d2:66:33:de:33:30:
74:d0:d9:7a:e6:96:8d:58:8a:aa:81:88:00:41:6c:d9:e5:a6:
fe:b1:6a:e2:78:1e:78:78:b2:ef:a9:c6:d2:84:e2:ff:fe:af:
18:89:8d:bb:df:f8:98:2f:b8:9a:49:5a:15:d6:a3:16:4c:c3:
e1:3e:20:f5:b7:46:76:7f:be:fa:2b:ec:03:43:51:2a:cf:7f:
1b:dd:11:2c:a7:df:68:cf:8e:5b:f0:c4:23:52:32:9f:2f:8b:
21:a4:40:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 12:13:22 2025 by rpki-client