Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C8BF9494270811F0A1072D7FC4F9AE02.roa
File: C8BF9494270811F0A1072D7FC4F9AE02.roa (raw, json)
Hash identifier: 1jWfO8SRKrc1LTQ6+YvVaC8RSk+WBLDARuglbj5fQrs=
Subject key identifier: C7:A2:85:92:89:A0:FA:C0:E4:15:2B:95:08:20:8E:23:21:99:54:50
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: C28E
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C8BF9494270811F0A1072D7FC4F9AE02.roa
Signing time: Wed 13 Aug 2025 10:38:37 +0000
ROA not before: Wed 13 Aug 2025 10:38:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 18002
IP address blocks: 14.102.1.0/24 maxlen: 24
14.102.2.0/23 maxlen: 24
14.102.2.0/24 maxlen: 24
14.102.3.0/24 maxlen: 24
14.102.12.0/23 maxlen: 24
14.102.15.0/24 maxlen: 24
14.102.22.0/23 maxlen: 24
14.102.22.0/24 maxlen: 24
14.102.23.0/24 maxlen: 24
14.102.24.0/22 maxlen: 24
14.102.24.0/24 maxlen: 24
14.102.25.0/24 maxlen: 24
14.102.26.0/24 maxlen: 24
14.102.27.0/24 maxlen: 24
14.102.32.0/22 maxlen: 24
14.102.32.0/24 maxlen: 24
14.102.33.0/24 maxlen: 24
14.102.34.0/24 maxlen: 24
14.102.35.0/24 maxlen: 24
14.102.36.0/23 maxlen: 24
14.102.36.0/24 maxlen: 24
14.102.37.0/24 maxlen: 24
14.102.38.0/24 maxlen: 24
14.102.40.0/22 maxlen: 24
14.102.40.0/24 maxlen: 24
14.102.41.0/24 maxlen: 24
14.102.42.0/24 maxlen: 24
14.102.43.0/24 maxlen: 24
14.102.44.0/24 maxlen: 24
14.102.45.0/24 maxlen: 24
14.102.48.0/24 maxlen: 24
14.102.50.0/24 maxlen: 24
14.102.56.0/23 maxlen: 24
14.102.56.0/24 maxlen: 24
14.102.57.0/24 maxlen: 24
14.102.59.0/24 maxlen: 24
14.102.64.0/22 maxlen: 24
14.102.64.0/24 maxlen: 24
14.102.65.0/24 maxlen: 24
14.102.66.0/24 maxlen: 24
14.102.67.0/24 maxlen: 24
14.102.68.0/22 maxlen: 24
14.102.68.0/24 maxlen: 24
14.102.69.0/24 maxlen: 24
14.102.70.0/24 maxlen: 24
14.102.71.0/24 maxlen: 24
14.102.72.0/22 maxlen: 24
14.102.72.0/24 maxlen: 24
14.102.73.0/24 maxlen: 24
14.102.74.0/24 maxlen: 24
14.102.75.0/24 maxlen: 24
14.102.76.0/23 maxlen: 24
14.102.78.0/24 maxlen: 24
14.102.80.0/23 maxlen: 24
14.102.80.0/24 maxlen: 24
14.102.81.0/24 maxlen: 24
14.102.82.0/24 maxlen: 24
14.102.88.0/24 maxlen: 24
14.102.91.0/24 maxlen: 24
14.102.92.0/23 maxlen: 24
14.102.95.0/24 maxlen: 24
14.102.96.0/23 maxlen: 24
14.102.96.0/24 maxlen: 24
14.102.97.0/24 maxlen: 24
14.102.100.0/23 maxlen: 24
14.102.103.0/24 maxlen: 24
14.102.104.0/22 maxlen: 24
14.102.104.0/24 maxlen: 24
14.102.105.0/24 maxlen: 24
14.102.106.0/23 maxlen: 24
14.102.108.0/22 maxlen: 24
14.102.108.0/24 maxlen: 24
14.102.109.0/24 maxlen: 24
14.102.110.0/24 maxlen: 24
14.102.111.0/24 maxlen: 24
14.102.112.0/22 maxlen: 24
14.102.112.0/24 maxlen: 24
14.102.113.0/24 maxlen: 24
14.102.114.0/24 maxlen: 24
14.102.115.0/24 maxlen: 24
14.102.116.0/22 maxlen: 24
14.102.116.0/24 maxlen: 24
14.102.117.0/24 maxlen: 24
14.102.118.0/24 maxlen: 24
14.102.119.0/24 maxlen: 24
14.102.120.0/22 maxlen: 24
14.102.120.0/24 maxlen: 24
14.102.121.0/24 maxlen: 24
14.102.122.0/24 maxlen: 24
14.102.123.0/24 maxlen: 24
14.102.125.0/24 maxlen: 24
14.102.126.0/23 maxlen: 24
14.102.126.0/24 maxlen: 24
14.102.127.0/24 maxlen: 24
43.251.212.0/22 maxlen: 24
61.14.228.0/23 maxlen: 24
61.14.231.0/24 maxlen: 24
103.5.200.0/22 maxlen: 24
103.59.189.0/24 maxlen: 24
103.87.101.0/24 maxlen: 24
103.87.102.0/23 maxlen: 24
103.158.131.0/24 maxlen: 24
103.160.24.0/24 maxlen: 24
103.173.200.0/24 maxlen: 24
103.175.72.0/24 maxlen: 24
103.175.73.0/24 maxlen: 24
110.172.130.0/23 maxlen: 24
110.172.132.0/24 maxlen: 24
110.172.134.0/23 maxlen: 24
110.172.136.0/24 maxlen: 24
110.172.138.0/23 maxlen: 24
110.172.140.0/24 maxlen: 24
110.172.145.0/24 maxlen: 24
110.172.147.0/24 maxlen: 24
110.172.150.0/24 maxlen: 24
110.172.151.0/24 maxlen: 24
110.172.152.0/22 maxlen: 24
110.172.156.0/22 maxlen: 24
110.172.160.0/23 maxlen: 24
110.172.162.0/24 maxlen: 24
110.172.164.0/24 maxlen: 24
110.172.166.0/23 maxlen: 24
110.172.168.0/24 maxlen: 24
110.172.170.0/23 maxlen: 24
110.172.174.0/23 maxlen: 24
110.172.177.0/24 maxlen: 24
110.172.178.0/23 maxlen: 24
110.172.184.0/22 maxlen: 24
111.235.64.0/22 maxlen: 24
114.69.228.0/22 maxlen: 24
114.69.240.0/24 maxlen: 24
114.69.242.0/23 maxlen: 24
114.69.248.0/23 maxlen: 24
114.69.252.0/22 maxlen: 24
118.91.176.0/23 maxlen: 24
118.91.178.0/24 maxlen: 24
118.91.189.0/24 maxlen: 24
118.91.191.0/24 maxlen: 24
202.89.64.0/24 maxlen: 24
202.89.65.0/24 maxlen: 24
202.89.66.0/24 maxlen: 24
202.89.67.0/24 maxlen: 24
202.89.68.0/24 maxlen: 24
202.89.69.0/24 maxlen: 24
202.89.70.0/24 maxlen: 24
202.89.71.0/24 maxlen: 24
202.89.72.0/24 maxlen: 24
202.89.74.0/24 maxlen: 24
202.89.76.0/24 maxlen: 24
202.89.77.0/24 maxlen: 24
202.89.78.0/24 maxlen: 24
2402:5b00::/44 maxlen: 44
2402:5b00:20::/44 maxlen: 44
2402:5b00:40::/44 maxlen: 44
2402:5b00:b0::/44 maxlen: 44
2402:5b00:d0::/44 maxlen: 44
2402:5b00:e0::/44 maxlen: 44
2402:5b00:f0::/44 maxlen: 44
2402:5b00:110::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 15:25:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49806 (0xc28e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Aug 13 10:38:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=689c6b2d-e01e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:48:78:2f:31:27:f8:9f:14:3e:87:e4:9a:e7:
f1:d3:ff:04:72:ae:14:ca:39:d2:34:eb:72:8e:ce:
ab:40:70:fa:e1:f2:20:bf:64:d2:e3:d1:f4:02:a3:
e4:ce:d0:4a:8d:ad:93:e6:6b:38:64:57:f3:8e:23:
0b:47:2f:fe:31:ec:61:1d:7e:fa:c0:92:6a:b6:a7:
39:40:13:c3:3c:ff:7b:35:06:37:ac:6a:ae:2d:3c:
3e:50:14:a7:5b:8b:ba:8a:11:52:9a:08:33:82:c8:
0b:20:e6:a2:57:08:96:e9:e4:56:b0:a4:8f:bf:de:
46:e2:e6:7f:d1:6a:57:f8:4a:95:34:0a:16:5b:84:
09:df:0f:fe:ce:40:82:fd:93:7a:38:ab:7f:86:05:
cc:c9:79:bd:a0:d0:60:94:75:00:d5:37:ea:ae:76:
45:eb:5f:1b:ac:f6:6e:40:bf:63:c8:2b:d3:c0:99:
27:df:6a:71:ec:d5:b9:c3:e4:e3:b8:a4:68:cb:14:
e2:16:8c:13:cf:ca:9c:86:41:1d:31:1a:b3:30:df:
3e:d5:ca:2d:5b:80:85:1f:1f:f9:f6:89:81:30:23:
5d:d4:93:0e:5e:09:91:0b:8a:47:00:0b:99:28:2f:
28:1d:b9:76:45:76:07:55:45:57:f5:20:bd:ac:9f:
a1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A2:85:92:89:A0:FA:C0:E4:15:2B:95:08:20:8E:23:21:99:54:50
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C8BF9494270811F0A1072D7FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.102.1.0-14.102.3.255
14.102.12.0/23
14.102.15.0/24
14.102.22.0-14.102.27.255
14.102.32.0-14.102.38.255
14.102.40.0-14.102.45.255
14.102.48.0/24
14.102.50.0/24
14.102.56.0/23
14.102.59.0/24
14.102.64.0-14.102.78.255
14.102.80.0-14.102.82.255
14.102.88.0/24
14.102.91.0-14.102.93.255
14.102.95.0-14.102.97.255
14.102.100.0/23
14.102.103.0-14.102.123.255
14.102.125.0-14.102.127.255
43.251.212.0/22
61.14.228.0/23
61.14.231.0/24
103.5.200.0/22
103.59.189.0/24
103.87.101.0-103.87.103.255
103.158.131.0/24
103.160.24.0/24
103.173.200.0/24
103.175.72.0/23
110.172.130.0-110.172.132.255
110.172.134.0-110.172.136.255
110.172.138.0-110.172.140.255
110.172.145.0/24
110.172.147.0/24
110.172.150.0-110.172.162.255
110.172.164.0/24
110.172.166.0-110.172.168.255
110.172.170.0/23
110.172.174.0/23
110.172.177.0-110.172.179.255
110.172.184.0/22
111.235.64.0/22
114.69.228.0/22
114.69.240.0/24
114.69.242.0/23
114.69.248.0/23
114.69.252.0/22
118.91.176.0-118.91.178.255
118.91.189.0/24
118.91.191.0/24
202.89.64.0-202.89.72.255
202.89.74.0/24
202.89.76.0-202.89.78.255
IPv6:
2402:5b00::/44
2402:5b00:20::/44
2402:5b00:40::/44
2402:5b00:b0::/44
2402:5b00:d0::-2402:5b00:ff:ffff:ffff:ffff:ffff:ffff
2402:5b00:110::/44
Signature Algorithm: sha256WithRSAEncryption
8f:6d:ab:da:6f:bd:70:67:e3:ec:69:41:4c:4f:82:23:36:b3:
26:5b:56:cf:d3:28:29:8c:7c:d7:32:4c:bc:ef:46:ee:3c:09:
2d:8c:7f:b4:ee:6c:a2:aa:9d:8f:32:99:de:b1:f7:38:25:92:
27:15:24:d5:de:ab:7b:5f:8a:98:7c:36:1b:d8:4c:28:ac:90:
7c:52:6d:db:42:78:51:d1:7d:bd:db:01:da:87:07:56:ec:ab:
14:97:97:63:2d:09:be:51:f1:2a:37:1f:57:71:f4:a6:01:7d:
81:76:8c:79:9e:73:bf:cb:2e:49:56:ba:ea:90:74:b8:76:ac:
55:4f:9c:a6:91:f4:25:a1:f4:4d:a6:23:6c:46:44:91:d3:64:
56:03:91:eb:c1:21:2c:52:56:06:cb:ce:2e:66:54:ef:d1:63:
01:54:29:38:c4:62:52:d0:e5:a6:db:09:07:c8:36:5c:2e:83:
de:0a:f0:20:92:ed:f7:d7:2c:28:c9:32:b7:26:f5:fe:d7:cb:
87:38:3e:39:d6:01:a2:1a:d0:bd:00:77:6d:23:2e:77:ae:6d:
a9:95:73:3b:f6:52:40:16:c7:64:95:90:5d:14:26:29:97:be:
94:07:cf:bc:bf:98:e7:12:4c:3c:10:8f:3b:8c:97:2f:09:23:
52:a6:9a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 02:33:53 2025 by rpki-client