Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
File: A460738A366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier: jeFZCUDWCzFwHnZ/DbXqEYhxOUNgAj+9UbDXvnBRgTk=
Subject key identifier: C2:E4:F0:B1:EB:2B:80:F0:EB:9F:CF:0A:EA:69:27:A0:9C:3F:BA:F6
Certificate issuer: /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA
Certificate serial: 019D
Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
Signing time: Mon 23 Jun 2025 03:22:25 +0000
ROA not before: Mon 23 Jun 2025 03:22:24 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 132280
IP address blocks: 45.250.176.0/22 maxlen: 22
45.250.176.0/24 maxlen: 24
103.14.8.0/22 maxlen: 22
103.14.8.0/24 maxlen: 24
119.110.192.0/18 maxlen: 19
119.110.192.0/21 maxlen: 22
119.110.196.0/24 maxlen: 24
119.110.197.0/24 maxlen: 24
119.110.198.0/24 maxlen: 24
119.110.199.0/24 maxlen: 24
119.110.200.0/21 maxlen: 22
119.110.201.0/24 maxlen: 24
119.110.208.0/21 maxlen: 22
119.110.208.0/24 maxlen: 24
119.110.215.0/24 maxlen: 24
119.110.216.0/21 maxlen: 22
119.110.220.0/24 maxlen: 24
119.110.223.0/24 maxlen: 24
119.110.224.0/21 maxlen: 22
119.110.228.0/24 maxlen: 24
119.110.232.0/21 maxlen: 22
119.110.233.0/24 maxlen: 24
119.110.236.0/22 maxlen: 23
119.110.240.0/21 maxlen: 22
119.110.246.0/24 maxlen: 24
119.110.248.0/21 maxlen: 22
119.110.248.0/23 maxlen: 23
119.110.252.0/24 maxlen: 24
119.110.254.0/24 maxlen: 24
119.110.255.0/24 maxlen: 24
2400:6280:4::/48 maxlen: 48
2400:6280:5::/48 maxlen: 48
2400:6280:6::/48 maxlen: 48
2400:6280:7::/48 maxlen: 48
2400:6280:8::/48 maxlen: 48
2400:6280:9::/48 maxlen: 48
2400:6280:a::/48 maxlen: 48
2400:6280:15::/48 maxlen: 48
2400:6280:16::/48 maxlen: 48
2400:6280:17::/48 maxlen: 48
2400:6280:43::/48 maxlen: 48
2400:6280:87::/48 maxlen: 48
2400:6280:96::/48 maxlen: 48
2400:6280:129::/48 maxlen: 48
2400:6280:13c::/48 maxlen: 48
2400:6280:140::/48 maxlen: 48
2400:6280:144::/48 maxlen: 48
2400:6280:148::/48 maxlen: 48
2400:6280:149::/48 maxlen: 48
2400:6280:150::/48 maxlen: 48
2400:6280:155::/48 maxlen: 48
2400:6280:158::/48 maxlen: 48
2400:6280:178::/48 maxlen: 48
2400:6280:6280::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl
rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 03:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413 (0x19d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C, serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA
Validity
Not Before: Jun 23 03:22:24 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=6858c870-e310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d8:1d:f3:19:12:f0:fb:8d:ae:18:f7:e0:d3:
6b:7f:f9:06:17:c9:a9:4c:7d:55:eb:04:3c:96:09:
a7:63:72:d1:b5:5c:13:78:c9:8c:a1:62:d5:5f:88:
36:7a:c1:d9:bd:2e:01:71:e8:8f:c7:f5:3d:d1:e3:
fa:df:32:2b:82:3e:16:e7:e8:5a:6f:62:d3:5e:c7:
46:32:8e:1a:18:61:35:76:b3:97:cc:09:b5:fa:bb:
0f:06:00:5e:30:d9:1a:54:b2:4f:71:27:24:53:7a:
47:82:f2:ee:87:28:62:a1:b2:b1:e0:09:e4:19:65:
7b:b9:16:b1:b5:13:3a:ef:e1:7f:64:8b:39:25:15:
fd:1a:37:f5:e7:32:ab:c8:27:fe:47:c3:3a:51:5d:
24:e0:0a:9b:4e:5f:a3:4e:04:fb:87:9c:d2:93:2a:
e9:64:1b:b9:9b:ab:a1:cf:3a:6c:74:a6:d1:17:7d:
f4:1a:db:ff:2a:1a:35:92:3d:02:24:d2:3c:fc:3f:
27:54:a0:9e:aa:96:df:4e:1a:a7:61:b4:6b:b6:b2:
d4:e3:ae:d9:fa:92:8b:fd:d1:b7:20:75:4c:68:db:
56:25:fc:72:2a:28:2b:15:50:17:38:8f:a3:74:57:
b2:43:5d:de:97:87:c2:3b:92:20:e9:24:76:e7:9b:
ca:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E4:F0:B1:EB:2B:80:F0:EB:9F:CF:0A:EA:69:27:A0:9C:3F:BA:F6
X509v3 Authority Key Identifier:
keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A460738A366311EEB376DC3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.250.176.0/22
103.14.8.0/22
119.110.192.0/18
IPv6:
2400:6280:4::-2400:6280:a:ffff:ffff:ffff:ffff:ffff
2400:6280:15::-2400:6280:17:ffff:ffff:ffff:ffff:ffff
2400:6280:43::/48
2400:6280:87::/48
2400:6280:96::/48
2400:6280:129::/48
2400:6280:13c::/48
2400:6280:140::/48
2400:6280:144::/48
2400:6280:148::/47
2400:6280:150::/48
2400:6280:155::/48
2400:6280:158::/48
2400:6280:178::/48
2400:6280:6280::/48
Signature Algorithm: sha256WithRSAEncryption
4d:eb:e8:a2:de:13:bd:16:58:f8:80:eb:e4:33:b4:c4:9b:27:
27:e0:82:90:fe:87:6e:bb:6c:48:fc:1a:7f:31:b5:4e:5b:d2:
39:4f:83:ec:ba:eb:19:ab:ec:06:46:4d:83:21:a2:15:ff:da:
c8:a3:27:08:64:22:37:9e:6c:4a:f0:19:56:d6:88:c5:1a:0d:
59:55:12:0a:55:f2:f6:42:f0:2e:0e:e5:60:ec:92:02:d4:30:
95:9e:ce:ba:e9:c9:7c:cf:a8:a1:b7:12:1e:ed:30:2e:d7:2a:
9d:f9:25:fa:0a:19:61:b8:d0:1c:94:c6:87:7e:16:43:2e:e5:
04:26:d3:ed:52:f0:49:f5:a4:19:fc:5c:d4:d1:ef:4b:85:d3:
f4:ff:26:19:f4:02:bc:a6:69:36:3e:63:67:eb:37:39:dd:ef:
df:34:22:c1:c3:98:2f:4d:2e:44:c4:8b:46:b8:33:58:f0:59:
50:d9:be:90:b8:a0:7d:72:64:e4:b2:4f:5d:04:dc:b8:cf:22:
98:d3:2a:2d:ea:90:df:71:ad:8e:db:63:f7:77:38:07:73:dd:
a9:9f:ce:9a:6c:54:84:f9:fc:bc:85:92:27:ee:6e:cc:1e:d6:
ea:14:59:4c:d1:46:18:62:c6:12:6c:6a:8f:8d:da:2e:e3:af:
d1:78:db:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 10:42:25 2025 by rpki-client