Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/22E63812221211EF9624DB0CC4F9AE02.roa
File: 22E63812221211EF9624DB0CC4F9AE02.roa (raw, json)
Hash identifier: ctpsa/trJni9LM1rAYyksKSnW171LcLv21VwXaH0Ntc=
Subject key identifier: C3:A9:19:8E:20:17:4D:AA:E2:A9:5A:E2:59:24:6C:2D:1E:64:33:92
Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A
Certificate serial: 0D67
Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/22E63812221211EF9624DB0CC4F9AE02.roa
Signing time: Wed 06 May 2026 18:22:24 +0000
ROA not before: Wed 06 May 2026 18:22:23 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 10214
IP address blocks: 103.6.208.0/22 maxlen: 23
103.6.208.0/24 maxlen: 24
103.6.210.0/24 maxlen: 24
103.46.212.0/22 maxlen: 22
103.46.212.0/24 maxlen: 24
103.46.213.0/24 maxlen: 24
103.46.214.0/24 maxlen: 24
103.46.215.0/24 maxlen: 24
103.89.80.0/22 maxlen: 24
103.225.228.0/22 maxlen: 24
113.30.224.0/22 maxlen: 24
121.200.32.0/20 maxlen: 20
121.200.32.0/21 maxlen: 24
121.200.40.0/22 maxlen: 24
121.200.44.0/24 maxlen: 24
121.200.46.0/23 maxlen: 24
160.20.72.0/22 maxlen: 24
163.47.56.0/22 maxlen: 22
163.47.56.0/24 maxlen: 24
163.47.57.0/24 maxlen: 24
163.47.58.0/24 maxlen: 24
163.47.59.0/24 maxlen: 24
203.57.126.0/23 maxlen: 24
2001:df1:b400::/48 maxlen: 48
2400:ec40::/32 maxlen: 32
2400:ec40::/36 maxlen: 36
2400:ec40:1000::/36 maxlen: 36
2400:ec40:2000::/36 maxlen: 36
2400:ec40:3000::/36 maxlen: 36
2400:ec40:4000::/36 maxlen: 36
2400:ec40:4000::/40 maxlen: 40
2400:ec40:5000::/36 maxlen: 36
2400:ec40:5100::/40 maxlen: 40
2400:ec40:5200::/40 maxlen: 40
2400:ec40:6000::/36 maxlen: 36
2400:ec40:7000::/36 maxlen: 36
2400:ec40:8000::/36 maxlen: 36
2400:ec40:9000::/36 maxlen: 36
2400:ec40:a000::/36 maxlen: 36
2400:ec40:b000::/36 maxlen: 36
2400:ec40:c000::/36 maxlen: 36
2400:ec40:d000::/36 maxlen: 36
2400:ec40:e000::/36 maxlen: 36
2400:ec40:f000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl
rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 18:17:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3431 (0xd67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A
Validity
Not Before: May 6 18:22:23 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=69fb86df-dd6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:33:52:fd:51:af:39:c5:6c:f1:f8:a9:58:de:
10:d5:93:27:b6:e5:e2:cd:39:db:d5:e7:cf:dd:e2:
c4:3d:0d:d7:1f:ad:f8:e7:e9:25:8a:30:23:c2:d0:
a7:8f:6f:98:ce:48:90:b1:80:82:5c:65:a7:a5:7e:
29:df:f7:bb:cd:bd:2f:a2:4b:85:16:f2:7c:2e:72:
47:4a:1e:c1:9d:34:9b:7c:39:55:25:4a:68:74:ba:
50:f8:80:6a:25:64:02:6a:ae:1e:52:2f:92:51:0f:
34:18:a8:4e:90:af:06:22:73:1b:0e:47:a9:a5:66:
39:2c:79:0b:d6:10:b2:2f:72:c2:01:0d:fa:0e:1c:
90:68:d0:5f:d0:57:c4:08:9e:4b:dc:a7:9f:7c:4c:
cd:32:8b:11:fc:c1:11:42:e9:00:99:f9:76:5c:21:
8d:87:fe:b6:6c:bd:21:0d:4c:27:52:ba:69:23:dc:
a7:76:68:50:8b:e2:f1:1d:60:8e:87:54:17:6b:8d:
bc:db:17:0c:93:ed:1a:40:a1:c9:b8:51:c7:b3:1e:
cf:e2:2d:44:b4:70:d2:33:45:66:f0:f0:4a:fa:46:
7c:81:1e:ba:be:98:48:7d:e4:bf:dc:10:4d:80:8c:
c6:f9:22:8a:58:0f:7b:2e:b3:00:bd:24:b0:9b:08:
53:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A9:19:8E:20:17:4D:AA:E2:A9:5A:E2:59:24:6C:2D:1E:64:33:92
X509v3 Authority Key Identifier:
keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/22E63812221211EF9624DB0CC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.6.208.0/22
103.46.212.0/22
103.89.80.0/22
103.225.228.0/22
113.30.224.0/22
121.200.32.0/20
160.20.72.0/22
163.47.56.0/22
203.57.126.0/23
IPv6:
2001:df1:b400::/48
2400:ec40::/32
Signature Algorithm: sha256WithRSAEncryption
69:31:b5:f0:24:e8:60:a4:cd:80:7a:e8:ab:78:4e:ab:c0:39:
96:16:1c:53:63:44:73:91:10:1e:46:55:5e:52:40:b7:8c:4d:
a7:9f:6c:a1:77:57:09:02:f9:91:a1:b1:f1:19:2f:ca:2a:94:
83:b8:ca:69:28:f9:12:35:68:63:05:28:ec:1f:a9:6a:cf:e4:
10:b9:a2:56:77:91:9e:b8:b4:0a:0d:d8:95:b1:bb:2c:e3:bc:
11:a0:bf:81:c6:60:46:72:0a:7f:74:4a:1b:2f:5f:1a:97:15:
58:47:5a:d6:c4:eb:b7:f5:a1:b6:cb:49:0f:fa:21:e3:58:f3:
d8:83:1f:95:e5:9c:ac:36:78:02:ae:e9:f7:0a:7f:e6:73:ef:
68:30:ee:2b:c0:11:a9:75:cd:31:db:1a:7f:6b:03:e6:f0:9a:
ac:cf:91:d8:01:4a:30:9d:4b:a6:5a:3b:40:98:34:d7:ac:53:
1f:a1:a8:16:27:5a:d9:91:a3:d9:7a:10:cf:de:43:09:1b:ad:
09:c2:a5:5e:4a:ef:87:c5:7f:62:88:7f:af:80:65:37:de:f4:
24:5a:a6:61:4a:fd:70:ec:8a:94:06:98:81:1a:df:c7:fc:36:
04:8f:6e:9e:ce:4d:71:a0:96:f1:a5:b0:ca:8c:0c:ea:f5:37:
59:b8:0b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:07:35 2026 by rpki-client