Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2661C316449411F18033B929AA833773.roa
File: 2661C316449411F18033B929AA833773.roa (raw, json)
Hash identifier: My2VKTleXo9nFOP58F+UlPmkyHXlxFGIQW9+tQDNwiA=
Subject key identifier: 74:80:E8:AB:4A:0A:BB:6A:61:69:E9:9A:69:2A:F8:F6:70:F6:46:DF
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: DFA3
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2661C316449411F18033B929AA833773.roa
Signing time: Thu 30 Apr 2026 12:57:32 +0000
ROA not before: Thu 30 Apr 2026 12:57:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 4755
IP address blocks: 1.6.229.0/24 maxlen: 24
1.6.230.0/24 maxlen: 24
1.7.229.0/24 maxlen: 24
1.22.36.0/24 maxlen: 24
1.23.62.0/24 maxlen: 24
103.15.74.0/24 maxlen: 24
103.29.197.0/24 maxlen: 24
103.53.21.0/24 maxlen: 24
103.57.216.0/24 maxlen: 24
103.57.217.0/24 maxlen: 24
103.57.218.0/24 maxlen: 24
103.57.219.0/24 maxlen: 24
103.81.88.0/22 maxlen: 24
103.98.54.0/24 maxlen: 24
103.109.211.0/24 maxlen: 24
103.109.224.0/24 maxlen: 24
103.109.225.0/24 maxlen: 24
103.109.227.0/24 maxlen: 24
103.112.230.0/23 maxlen: 24
103.115.236.0/23 maxlen: 24
103.160.172.0/23 maxlen: 24
103.167.152.0/24 maxlen: 24
103.173.132.0/24 maxlen: 24
103.237.84.0/24 maxlen: 24
113.193.25.0/24 maxlen: 24
113.193.48.0/24 maxlen: 24
113.193.128.0/24 maxlen: 24
163.128.107.0/24 maxlen: 24
202.52.134.0/24 maxlen: 24
202.162.229.0/24 maxlen: 24
202.162.230.0/24 maxlen: 24
202.162.232.0/24 maxlen: 24
202.162.233.0/24 maxlen: 24
202.177.153.0/24 maxlen: 24
202.177.157.0/24 maxlen: 24
2001:df0:7400::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 20 May 2026 11:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57251 (0xdfa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Apr 30 12:57:32 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69f351bb-f24d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:17:36:2b:18:b7:e8:54:1e:8a:1d:a8:67:7f:
0d:f7:71:2f:b3:e9:e5:37:25:6a:c6:1e:82:5c:14:
40:6c:1e:75:4b:8e:fa:d3:40:a5:7b:5b:64:ae:4c:
61:5f:e9:66:e9:8b:c1:70:80:43:3f:33:7c:73:8d:
bb:2b:b3:56:9c:e5:73:8f:3d:cf:e8:90:7f:2b:6a:
14:3e:49:03:4d:30:03:58:90:ef:0d:e3:16:65:fd:
ae:a1:64:1a:00:b1:f1:46:71:a4:0c:16:b5:bf:63:
a8:da:2c:5f:b8:c2:fd:09:3a:72:05:8d:a5:60:5b:
18:e2:dc:49:db:68:97:d8:68:9a:a0:58:6d:af:10:
11:51:4f:8b:bb:74:ed:61:c2:27:be:15:14:f5:83:
e7:b4:8d:d2:80:19:c8:4c:3a:4e:de:36:19:e0:23:
24:18:de:0f:46:71:9c:83:98:9d:00:99:26:48:75:
e8:e7:50:10:76:e6:4b:e8:c7:d3:3f:52:03:41:e4:
61:d4:35:5b:ef:a8:b4:41:b9:0f:91:0b:3c:53:0a:
d3:82:85:b8:cb:d3:63:8f:00:9d:82:14:00:07:98:
73:94:8d:7b:76:51:3a:bb:a2:c6:86:d8:ca:e1:62:
04:5d:ad:dd:fb:ec:c8:be:60:6e:f5:9e:96:5c:7a:
2d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:80:E8:AB:4A:0A:BB:6A:61:69:E9:9A:69:2A:F8:F6:70:F6:46:DF
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2661C316449411F18033B929AA833773.roa
sbgp-ipAddrBlock: critical
IPv4:
1.6.229.0-1.6.230.255
1.7.229.0/24
1.22.36.0/24
1.23.62.0/24
103.15.74.0/24
103.29.197.0/24
103.53.21.0/24
103.57.216.0/22
103.81.88.0/22
103.98.54.0/24
103.109.211.0/24
103.109.224.0/23
103.109.227.0/24
103.112.230.0/23
103.115.236.0/23
103.160.172.0/23
103.167.152.0/24
103.173.132.0/24
103.237.84.0/24
113.193.25.0/24
113.193.48.0/24
113.193.128.0/24
163.128.107.0/24
202.52.134.0/24
202.162.229.0-202.162.230.255
202.162.232.0/23
202.177.153.0/24
202.177.157.0/24
IPv6:
2001:df0:7400::/48
Signature Algorithm: sha256WithRSAEncryption
3e:24:89:ea:48:c0:6f:31:d0:7c:ab:16:81:75:31:0e:f2:2d:
64:a9:21:2e:67:f7:5a:62:f9:75:fb:bc:4d:1f:70:c7:04:28:
85:f3:65:00:7e:c1:1f:b2:d2:60:52:3a:f5:6d:bc:6e:23:2b:
3b:47:2c:04:e1:cb:86:4d:1c:31:b7:61:07:b7:59:24:d1:93:
90:d6:a3:84:15:c5:7c:d8:d6:ef:f2:ae:6b:00:08:dc:7f:d2:
db:6b:80:4d:9e:a7:61:bf:6a:fc:14:b4:4e:57:6a:4f:6e:33:
0b:1c:6b:e1:62:05:0a:48:ff:9d:cb:5d:a9:8d:e2:8d:ef:71:
07:db:a2:f9:fd:7d:38:a1:bc:25:c7:c3:94:b6:d7:b5:a3:0f:
b3:ee:50:39:58:cb:76:c5:c2:15:04:26:06:d8:88:4a:49:e7:
3c:24:32:d3:fe:df:5b:45:9b:f5:65:52:e9:06:cd:1d:34:9f:
09:0c:a9:22:5c:17:c6:2e:ed:e0:53:cb:28:70:90:08:7b:8a:
3f:f4:7a:4d:63:fe:38:69:94:7e:86:ea:80:81:e2:a5:ad:9c:
5b:0c:f0:8a:87:92:27:f0:27:ea:2e:10:d5:9a:e4:ca:0c:4b:
6c:28:91:7d:29:15:cc:2a:91:ba:02:a2:a2:dd:ff:09:5b:cd:
00:cf:84:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:42:12 2026 by rpki-client