Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
File: 450B9058E3B511EF8A23824BC4F9AE02.roa (raw, json)
Hash identifier: jHkcfalYid0QP9eeZkeB1oxoL2f9nvRDwAus7bRovCk=
Subject key identifier: 7F:08:0A:CA:85:8F:B6:B3:8B:DD:18:C9:CB:C2:AE:E9:12:F5:B7:B9
Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
Certificate serial: 352B
Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
Signing time: Tue 14 Oct 2025 04:01:13 +0000
ROA not before: Tue 14 Oct 2025 04:01:13 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 132618
IP address blocks: 49.237.4.0/22 maxlen: 22
49.237.4.0/24 maxlen: 24
49.237.5.0/24 maxlen: 24
49.237.6.0/24 maxlen: 24
49.237.7.0/24 maxlen: 24
49.237.8.0/22 maxlen: 22
49.237.8.0/24 maxlen: 24
49.237.9.0/24 maxlen: 24
49.237.10.0/24 maxlen: 24
49.237.11.0/24 maxlen: 24
49.237.12.0/22 maxlen: 22
49.237.12.0/24 maxlen: 24
49.237.13.0/24 maxlen: 24
49.237.14.0/24 maxlen: 24
49.237.15.0/24 maxlen: 24
49.237.32.0/22 maxlen: 22
49.237.32.0/24 maxlen: 24
49.237.33.0/24 maxlen: 24
49.237.34.0/24 maxlen: 24
49.237.35.0/24 maxlen: 24
49.237.36.0/22 maxlen: 22
49.237.36.0/24 maxlen: 24
49.237.37.0/24 maxlen: 24
49.237.38.0/24 maxlen: 24
49.237.39.0/24 maxlen: 24
49.237.44.0/22 maxlen: 22
49.237.44.0/24 maxlen: 24
49.237.45.0/24 maxlen: 24
49.237.46.0/24 maxlen: 24
49.237.47.0/24 maxlen: 24
49.237.64.0/20 maxlen: 20
49.237.64.0/21 maxlen: 21
49.237.64.0/24 maxlen: 24
49.237.65.0/24 maxlen: 24
49.237.66.0/24 maxlen: 24
49.237.67.0/24 maxlen: 24
49.237.68.0/24 maxlen: 24
49.237.69.0/24 maxlen: 24
49.237.70.0/24 maxlen: 24
49.237.71.0/24 maxlen: 24
49.237.72.0/21 maxlen: 21
49.237.72.0/24 maxlen: 24
49.237.73.0/24 maxlen: 24
49.237.74.0/24 maxlen: 24
49.237.75.0/24 maxlen: 24
49.237.76.0/24 maxlen: 24
49.237.77.0/24 maxlen: 24
49.237.78.0/24 maxlen: 24
49.237.79.0/24 maxlen: 24
49.237.80.0/20 maxlen: 20
49.237.80.0/21 maxlen: 21
49.237.80.0/24 maxlen: 24
49.237.81.0/24 maxlen: 24
49.237.82.0/24 maxlen: 24
49.237.83.0/24 maxlen: 24
49.237.84.0/24 maxlen: 24
49.237.85.0/24 maxlen: 24
49.237.86.0/24 maxlen: 24
49.237.87.0/24 maxlen: 24
49.237.88.0/21 maxlen: 21
49.237.88.0/24 maxlen: 24
49.237.89.0/24 maxlen: 24
49.237.90.0/24 maxlen: 24
49.237.91.0/24 maxlen: 24
49.237.92.0/24 maxlen: 24
49.237.93.0/24 maxlen: 24
49.237.94.0/24 maxlen: 24
49.237.95.0/24 maxlen: 24
49.237.96.0/21 maxlen: 21
49.237.112.0/21 maxlen: 21
49.237.164.0/22 maxlen: 22
49.237.164.0/24 maxlen: 24
49.237.165.0/24 maxlen: 24
49.237.166.0/24 maxlen: 24
49.237.167.0/24 maxlen: 24
49.237.168.0/22 maxlen: 22
49.237.168.0/24 maxlen: 24
49.237.169.0/24 maxlen: 24
49.237.170.0/24 maxlen: 24
49.237.171.0/24 maxlen: 24
49.237.172.0/22 maxlen: 22
49.237.172.0/24 maxlen: 24
49.237.173.0/24 maxlen: 24
49.237.174.0/24 maxlen: 24
49.237.175.0/24 maxlen: 24
49.237.176.0/22 maxlen: 22
49.237.176.0/24 maxlen: 24
49.237.177.0/24 maxlen: 24
49.237.178.0/24 maxlen: 24
49.237.179.0/24 maxlen: 24
49.237.180.0/22 maxlen: 22
49.237.180.0/24 maxlen: 24
49.237.181.0/24 maxlen: 24
49.237.182.0/24 maxlen: 24
49.237.183.0/24 maxlen: 24
49.237.184.0/22 maxlen: 22
49.237.184.0/24 maxlen: 24
49.237.185.0/24 maxlen: 24
49.237.186.0/24 maxlen: 24
49.237.187.0/24 maxlen: 24
49.237.188.0/22 maxlen: 22
49.237.188.0/24 maxlen: 24
49.237.189.0/24 maxlen: 24
49.237.190.0/24 maxlen: 24
49.237.191.0/24 maxlen: 24
49.237.200.0/22 maxlen: 22
49.237.200.0/24 maxlen: 24
49.237.201.0/24 maxlen: 24
49.237.202.0/24 maxlen: 24
49.237.203.0/24 maxlen: 24
49.237.204.0/23 maxlen: 23
223.24.172.0/22 maxlen: 22
223.24.172.0/23 maxlen: 23
223.24.172.0/24 maxlen: 24
223.24.173.0/24 maxlen: 24
223.24.174.0/24 maxlen: 24
223.24.175.0/24 maxlen: 24
223.24.192.0/20 maxlen: 20
223.24.192.0/21 maxlen: 21
223.24.192.0/24 maxlen: 24
223.24.193.0/24 maxlen: 24
223.24.194.0/24 maxlen: 24
223.24.195.0/24 maxlen: 24
223.24.196.0/24 maxlen: 24
223.24.197.0/24 maxlen: 24
223.24.198.0/24 maxlen: 24
223.24.199.0/24 maxlen: 24
223.24.200.0/21 maxlen: 21
223.24.200.0/24 maxlen: 24
223.24.201.0/24 maxlen: 24
223.24.202.0/24 maxlen: 24
223.24.203.0/24 maxlen: 24
223.24.204.0/24 maxlen: 24
223.24.205.0/24 maxlen: 24
223.24.206.0/24 maxlen: 24
223.24.207.0/24 maxlen: 24
223.24.208.0/20 maxlen: 20
223.24.208.0/21 maxlen: 21
223.24.208.0/24 maxlen: 24
223.24.209.0/24 maxlen: 24
223.24.210.0/24 maxlen: 24
223.24.211.0/24 maxlen: 24
223.24.212.0/24 maxlen: 24
223.24.213.0/24 maxlen: 24
223.24.214.0/24 maxlen: 24
223.24.215.0/24 maxlen: 24
223.24.216.0/21 maxlen: 21
223.24.216.0/24 maxlen: 24
223.24.217.0/24 maxlen: 24
223.24.218.0/24 maxlen: 24
223.24.219.0/24 maxlen: 24
223.24.220.0/24 maxlen: 24
223.24.221.0/24 maxlen: 24
223.24.222.0/24 maxlen: 24
223.24.223.0/24 maxlen: 24
223.24.224.0/21 maxlen: 21
223.24.240.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl
rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 27 Oct 2025 15:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13611 (0x352b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
Validity
Not Before: Oct 14 04:01:13 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=68edcb08-32fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:56:d8:9c:72:22:39:d5:51:71:bc:cf:a0:69:
62:02:1f:39:ab:8a:32:81:00:ef:26:45:a8:03:35:
13:57:5d:22:02:7a:53:22:82:d3:86:c8:04:a0:be:
a3:86:8d:53:8c:20:b1:df:fb:5e:52:b0:da:f5:54:
a4:f3:76:b6:40:ab:ff:d7:2f:62:ae:0a:9a:83:2d:
d4:15:e4:11:81:13:9b:99:e9:16:c3:37:2d:cb:8c:
fb:8b:3b:6f:02:e4:83:b8:d5:76:3f:60:e8:50:36:
01:8b:b4:6b:f6:1c:65:83:2e:34:e7:b3:89:9b:32:
41:34:09:ab:77:44:11:55:a9:31:45:98:a3:b1:3b:
29:d1:0c:ae:49:14:66:65:8b:ec:5a:16:f0:e9:fb:
a5:99:bc:3f:31:9a:07:53:79:c8:6e:cf:20:08:2c:
89:df:0a:95:85:0e:a1:14:43:46:ad:c5:50:4b:d8:
fb:9e:57:0b:cc:2a:fe:32:22:18:77:63:aa:14:c5:
30:64:b9:cf:fa:d3:9b:d9:2a:a5:de:02:2c:90:3c:
61:09:f1:79:86:c8:51:fd:5a:54:cf:07:78:ff:7a:
87:c9:b8:73:b2:bd:08:f1:7c:fb:14:bb:1a:1f:14:
e6:9e:f3:3a:9c:5b:4b:41:65:0c:da:5b:37:9d:3d:
58:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:08:0A:CA:85:8F:B6:B3:8B:DD:18:C9:CB:C2:AE:E9:12:F5:B7:B9
X509v3 Authority Key Identifier:
keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/450B9058E3B511EF8A23824BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.237.4.0-49.237.15.255
49.237.32.0/21
49.237.44.0/22
49.237.64.0-49.237.103.255
49.237.112.0/21
49.237.164.0-49.237.191.255
49.237.200.0-49.237.205.255
223.24.172.0/22
223.24.192.0-223.24.231.255
223.24.240.0/21
Signature Algorithm: sha256WithRSAEncryption
50:ed:69:00:dc:17:f0:ca:3e:b4:33:6f:ec:bb:ea:80:4c:8c:
a8:e9:d4:89:ea:fd:28:af:88:b9:89:55:8e:03:6b:fe:11:be:
23:1c:7e:ea:47:a1:79:23:5b:d6:ba:d9:08:44:eb:b3:e7:88:
c8:20:63:5a:3b:ca:c8:dd:13:5f:1b:d8:cd:95:d7:c5:a4:d8:
f9:f8:04:76:32:b2:c7:d3:b1:17:75:cb:49:aa:15:d9:cc:ac:
20:9b:d5:00:f2:aa:32:35:9d:e7:99:32:0b:00:5f:9d:f2:9a:
ea:fb:6a:33:6a:ce:f2:da:14:f6:ac:75:96:04:4e:18:b2:b2:
25:bd:44:28:2b:e8:c1:7b:e3:5b:af:d3:95:f5:fb:7c:18:0a:
67:56:a1:af:12:e2:97:b2:d4:5d:7d:6c:52:b7:88:c0:a9:fe:
ba:e0:4c:04:58:31:5e:be:e5:6b:7f:39:9f:7f:66:2b:d8:b3:
d7:e9:a0:cc:ce:4a:46:d4:32:d4:82:e7:fc:89:ce:43:b9:38:
c0:05:5e:6c:2f:d4:7c:59:4a:cb:b2:df:8b:21:f4:d4:83:95:
3d:2c:bd:9b:ce:0f:fe:53:27:36:0c:94:89:0b:e7:aa:fd:54:
a3:26:6f:b3:ad:f9:d7:aa:95:b9:8b:fa:2f:84:47:bc:81:1f:
c0:30:26:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:37:06 2025 by rpki-client