Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6A6E625CA97C11F09E96AF1DC4F9AE02.roa
File: 6A6E625CA97C11F09E96AF1DC4F9AE02.roa (raw, json)
Hash identifier: oMCRLZ5Vp8dkyRF/skJTO3j70Kmlb0mzVaP4GGnkoPY=
Subject key identifier: ED:44:DB:95:22:F5:11:32:F8:44:59:B0:E1:61:59:B6:88:EB:69:1E
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4EE3
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6A6E625CA97C11F09E96AF1DC4F9AE02.roa
Signing time: Wed 15 Oct 2025 04:08:09 +0000
ROA not before: Wed 15 Oct 2025 04:08:09 +0000
ROA not after: Sat 31 Oct 2026 00:00:00 +0000
asID: 135944
IP address blocks: 103.159.54.0/24 maxlen: 24
103.159.55.0/24 maxlen: 24
103.165.144.0/23 maxlen: 23
103.165.144.0/24 maxlen: 24
103.165.145.0/24 maxlen: 24
103.199.8.0/22 maxlen: 22
103.199.8.0/23 maxlen: 23
103.199.8.0/24 maxlen: 24
103.199.9.0/24 maxlen: 24
103.199.10.0/23 maxlen: 24
103.216.124.0/22 maxlen: 24
116.118.0.0/22 maxlen: 24
116.118.4.0/22 maxlen: 24
116.118.8.0/22 maxlen: 24
116.118.12.0/22 maxlen: 24
116.118.16.0/22 maxlen: 24
116.118.20.0/22 maxlen: 24
116.118.24.0/22 maxlen: 24
116.118.28.0/22 maxlen: 24
116.118.32.0/22 maxlen: 24
116.118.36.0/22 maxlen: 24
116.118.40.0/22 maxlen: 24
116.118.64.0/22 maxlen: 24
116.118.72.0/22 maxlen: 24
116.118.76.0/22 maxlen: 24
116.118.80.0/22 maxlen: 24
116.118.88.0/22 maxlen: 24
116.118.92.0/22 maxlen: 24
116.118.100.0/22 maxlen: 24
116.118.124.0/22 maxlen: 24
157.119.248.0/22 maxlen: 22
180.93.172.0/22 maxlen: 24
180.93.176.0/22 maxlen: 24
180.93.180.0/22 maxlen: 24
2001:df7:cc00::/48 maxlen: 48
2404:ef80::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Oct 2025 14:36:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20195 (0x4ee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Oct 15 04:08:09 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=68ef1e28-e7a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8f:b2:b1:e3:40:bd:12:91:d6:ce:3b:da:c4:
df:3b:48:bf:10:1e:af:40:19:cf:69:d7:12:df:da:
9e:2e:11:cd:a9:80:31:ae:b9:76:eb:43:d6:79:0f:
5a:ca:19:6f:5c:e6:53:96:f0:1d:4e:5d:c2:f2:bb:
82:26:03:5f:0b:6e:30:eb:7d:87:ae:8d:7e:f2:c6:
95:0b:6e:59:fc:6a:ed:02:80:c4:ad:77:cf:22:a9:
b6:2a:7e:a1:fd:f0:81:a1:d9:dc:c4:82:db:37:37:
49:52:56:5f:61:a4:5a:fb:e4:8d:a6:f2:0e:f4:c4:
56:04:ad:19:05:4b:46:e2:7b:23:c5:80:51:ab:6a:
79:2c:4c:c6:6e:34:e2:b0:3b:15:b9:09:12:83:52:
66:94:b9:74:c8:7d:69:0d:e4:26:26:19:52:70:0d:
e6:d1:71:12:2c:5a:d0:37:26:c7:7e:99:40:d4:c1:
78:79:5c:ea:00:94:75:54:13:80:aa:44:7c:d8:ce:
7d:81:fa:41:f7:f6:0b:2f:7b:44:8a:75:83:8b:ec:
29:11:11:15:62:81:20:9c:32:d7:74:73:2d:24:01:
c1:a3:3d:f9:9a:77:23:74:00:4a:6c:54:39:35:b3:
fc:3d:70:d1:35:bb:1e:00:c7:bc:88:cd:34:fd:65:
9b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:44:DB:95:22:F5:11:32:F8:44:59:B0:E1:61:59:B6:88:EB:69:1E
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6A6E625CA97C11F09E96AF1DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.54.0/23
103.165.144.0/23
103.199.8.0/22
103.216.124.0/22
116.118.0.0-116.118.43.255
116.118.64.0/22
116.118.72.0-116.118.83.255
116.118.88.0/21
116.118.100.0/22
116.118.124.0/22
157.119.248.0/22
180.93.172.0-180.93.183.255
IPv6:
2001:df7:cc00::/48
2404:ef80::/48
Signature Algorithm: sha256WithRSAEncryption
4c:ed:3b:ec:f3:e4:d3:60:d8:0e:7b:c6:3a:47:15:d3:f6:cf:
36:03:2f:3d:08:ba:11:b7:5d:a1:8f:5d:ae:2e:5e:98:2c:c3:
76:4f:92:c0:f7:d7:d4:62:1c:cb:a7:20:ad:a9:f3:3b:38:b1:
08:da:e5:9d:e0:85:7a:c8:fe:0f:69:51:91:4c:2e:07:b9:1c:
9a:d7:3c:82:3e:b8:43:28:21:3c:ed:1a:b5:14:5a:22:bd:bf:
20:f2:d3:0e:57:0f:b1:c1:63:f2:fc:e4:c7:ad:be:ed:64:fa:
ba:63:56:72:eb:cb:eb:7c:5b:b7:4f:67:1e:ed:f9:19:de:82:
d4:03:7a:d2:48:cf:36:df:42:79:d0:58:46:f8:16:ed:94:26:
6f:40:0b:3e:44:77:e9:8a:76:8f:d1:19:82:83:05:43:07:d0:
4e:78:41:dd:6f:f5:e9:27:a5:08:6c:46:19:4a:09:64:97:a4:
99:b2:e1:21:96:ee:d1:28:47:a7:76:aa:30:3e:28:ce:fe:6f:
9a:c6:92:20:2d:29:39:58:5e:57:7d:05:5c:68:f1:db:79:ca:
cc:10:88:17:fb:0a:9e:f8:0c:6d:91:c8:38:35:c7:b8:0c:cb:
00:dd:a7:17:0c:7c:be:aa:11:e2:1e:14:f6:8b:20:2a:89:9a:
48:99:00:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:23:32 2025 by rpki-client