Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
File: A460738A366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier: 0NoO1H2x4iLqPGTPjj6vdQCUi1d5uzF87/kugyQBVZA=
Subject key identifier: 9D:A5:46:24:3A:BA:C0:CD:F8:97:0C:37:A9:9A:71:7F:1E:31:EC:F6
Certificate issuer: /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA
Certificate serial: 01DC
Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
Signing time: Fri 12 Sep 2025 05:55:43 +0000
ROA not before: Fri 12 Sep 2025 05:55:43 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 132280
IP address blocks: 45.250.176.0/22 maxlen: 22
45.250.176.0/24 maxlen: 24
103.14.8.0/22 maxlen: 22
103.14.8.0/24 maxlen: 24
119.110.192.0/18 maxlen: 19
119.110.192.0/21 maxlen: 22
119.110.196.0/24 maxlen: 24
119.110.197.0/24 maxlen: 24
119.110.198.0/24 maxlen: 24
119.110.199.0/24 maxlen: 24
119.110.200.0/21 maxlen: 22
119.110.201.0/24 maxlen: 24
119.110.208.0/21 maxlen: 22
119.110.208.0/24 maxlen: 24
119.110.215.0/24 maxlen: 24
119.110.216.0/21 maxlen: 22
119.110.220.0/24 maxlen: 24
119.110.223.0/24 maxlen: 24
119.110.224.0/21 maxlen: 22
119.110.228.0/24 maxlen: 24
119.110.232.0/21 maxlen: 22
119.110.233.0/24 maxlen: 24
119.110.236.0/22 maxlen: 23
119.110.240.0/21 maxlen: 22
119.110.246.0/24 maxlen: 24
119.110.248.0/21 maxlen: 22
119.110.248.0/23 maxlen: 23
119.110.252.0/24 maxlen: 24
119.110.254.0/24 maxlen: 24
119.110.255.0/24 maxlen: 24
2400:6280::/32 maxlen: 32
2400:6280:4::/48 maxlen: 48
2400:6280:5::/48 maxlen: 48
2400:6280:6::/48 maxlen: 48
2400:6280:7::/48 maxlen: 48
2400:6280:8::/48 maxlen: 48
2400:6280:9::/48 maxlen: 48
2400:6280:a::/48 maxlen: 48
2400:6280:15::/48 maxlen: 48
2400:6280:16::/48 maxlen: 48
2400:6280:17::/48 maxlen: 48
2400:6280:43::/48 maxlen: 48
2400:6280:87::/48 maxlen: 48
2400:6280:96::/48 maxlen: 48
2400:6280:104::/48 maxlen: 48
2400:6280:10a::/48 maxlen: 48
2400:6280:113::/48 maxlen: 48
2400:6280:11e::/48 maxlen: 48
2400:6280:128::/48 maxlen: 48
2400:6280:129::/48 maxlen: 48
2400:6280:135::/48 maxlen: 48
2400:6280:13a::/48 maxlen: 48
2400:6280:13c::/48 maxlen: 48
2400:6280:140::/48 maxlen: 48
2400:6280:143::/48 maxlen: 48
2400:6280:144::/48 maxlen: 48
2400:6280:147::/48 maxlen: 48
2400:6280:148::/48 maxlen: 48
2400:6280:149::/48 maxlen: 48
2400:6280:150::/48 maxlen: 48
2400:6280:155::/48 maxlen: 48
2400:6280:158::/48 maxlen: 48
2400:6280:161::/48 maxlen: 48
2400:6280:174::/48 maxlen: 48
2400:6280:175::/48 maxlen: 48
2400:6280:178::/48 maxlen: 48
2400:6280:17f::/48 maxlen: 48
2400:6280:181::/48 maxlen: 48
2400:6280:18a::/48 maxlen: 48
2400:6280:18b::/48 maxlen: 48
2400:6280:18c::/48 maxlen: 48
2400:6280:193::/48 maxlen: 48
2400:6280:195::/48 maxlen: 48
2400:6280:203::/48 maxlen: 48
2400:6280:207::/48 maxlen: 48
2400:6280:208::/48 maxlen: 48
2400:6280:6280::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl
rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 05:55:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476 (0x1dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C, serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA
Validity
Not Before: Sep 12 05:55:43 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=68c3b5df-db72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7e:5e:e4:d4:9b:68:da:3b:8a:30:3a:00:17:
7e:e4:19:0f:a7:20:be:d5:79:4d:19:a5:a8:2d:6d:
32:fd:c5:9a:59:9d:41:bf:fe:26:4f:bd:7e:7e:0c:
b9:1f:6e:7f:30:ce:a5:a8:d2:d2:26:a7:fa:90:95:
e1:9e:de:8a:57:2d:bc:23:3a:13:5c:c9:59:93:28:
3e:7b:bc:88:d3:1b:f7:57:37:5e:6d:55:7d:74:c5:
88:12:2c:90:18:a4:82:c3:83:7c:be:28:2f:b8:45:
48:c3:5b:54:70:6e:0c:3b:29:2b:13:6f:3e:2f:88:
4e:e6:11:8f:95:5f:4a:b7:93:3c:31:fa:74:da:a5:
5b:26:f8:7b:25:c4:04:fd:ba:ab:bf:28:aa:ae:6f:
1e:f6:b1:e4:a4:8c:b6:86:04:13:e6:39:28:a8:81:
8c:09:9c:da:32:53:19:71:83:63:35:94:8d:74:54:
14:c9:86:92:9e:f7:b5:c1:64:eb:80:20:00:28:6c:
93:ba:f4:8e:cb:0a:88:ed:fb:2a:19:24:fc:1d:62:
58:c3:f8:69:61:6b:eb:8a:0d:c5:24:99:40:ad:e2:
f1:d9:83:00:54:3f:62:e1:c2:0a:73:e5:ca:e3:62:
cc:bf:b6:57:12:ff:66:d1:fd:81:5c:4e:0c:85:21:
f0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A5:46:24:3A:BA:C0:CD:F8:97:0C:37:A9:9A:71:7F:1E:31:EC:F6
X509v3 Authority Key Identifier:
keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.250.176.0/22
103.14.8.0/22
119.110.192.0/18
IPv6:
2400:6280::/32
Signature Algorithm: sha256WithRSAEncryption
72:75:c4:95:91:f8:26:1d:d1:97:5e:9d:9c:f3:e5:df:b6:2a:
38:47:52:18:47:42:9d:83:23:40:15:e4:31:6b:c2:c9:7e:13:
46:58:03:03:d4:c0:c1:2a:88:8b:10:79:b8:a7:52:12:90:44:
be:c2:c2:37:65:b0:1a:64:60:76:6e:cf:a9:3e:cf:f8:85:a5:
a3:0f:d3:5a:48:ad:46:11:01:de:13:00:d4:38:1c:e3:b9:79:
24:1e:73:13:89:3a:58:67:e0:bf:97:68:e6:69:ba:13:b2:6b:
be:7a:8a:aa:1c:e3:d7:d8:c9:50:c9:2a:29:d1:b4:ba:39:a1:
a2:60:26:f8:86:49:52:81:7d:6b:a0:f9:6a:c3:07:43:a2:c5:
4f:9e:22:dd:4d:ab:d2:6d:8f:93:7a:5a:ff:da:e6:34:c1:bc:
3d:78:82:32:1a:ec:5a:cd:20:0f:36:8d:35:e5:a6:e3:ab:af:
de:df:e6:ad:68:3e:a2:a4:ec:e3:f9:e8:d1:28:7c:17:25:a0:
b3:5c:0f:9b:32:cb:59:0c:da:ea:5f:8a:fd:7d:3c:03:f0:b7:
6a:e9:be:33:39:b4:df:ca:5b:f5:a2:83:e3:37:2a:23:da:04:
fd:d4:bd:80:a4:3c:5b:2a:e3:f7:78:c3:e1:ec:f8:0e:8f:cf:
4e:63:5a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:40:32 2025 by rpki-client