Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
File: B7BC1B76506A11EDBB3A804AC4F9AE02.roa (raw, json)
Hash identifier: j0xrsPerWvAmq5TrfXCCAXxhmW7uoVGvVR9TrXHmI/c=
Subject key identifier: 4C:26:88:7A:F7:0B:D7:86:15:E3:3E:76:70:E8:A2:F9:76:BF:30:73
Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Certificate serial: 0778
Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
Signing time: Mon 18 Aug 2025 09:10:09 +0000
ROA not before: Mon 18 Aug 2025 09:10:09 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 38166
IP address blocks: 166.81.5.0/24 maxlen: 24
166.81.9.0/24 maxlen: 24
166.81.10.0/24 maxlen: 24
166.81.11.0/24 maxlen: 24
166.81.12.0/24 maxlen: 24
166.81.13.0/24 maxlen: 24
166.81.14.0/24 maxlen: 24
166.81.15.0/24 maxlen: 24
166.81.16.0/24 maxlen: 24
166.81.17.0/24 maxlen: 24
166.81.18.0/24 maxlen: 24
166.81.19.0/24 maxlen: 24
166.81.20.0/24 maxlen: 24
166.81.21.0/24 maxlen: 24
166.81.22.0/24 maxlen: 24
166.81.23.0/24 maxlen: 24
166.81.24.0/24 maxlen: 24
166.81.25.0/24 maxlen: 24
166.81.26.0/24 maxlen: 24
166.81.27.0/24 maxlen: 24
166.81.28.0/24 maxlen: 24
166.81.29.0/24 maxlen: 24
166.81.30.0/24 maxlen: 24
166.81.33.0/24 maxlen: 24
166.81.34.0/24 maxlen: 24
166.81.35.0/24 maxlen: 24
166.81.38.0/24 maxlen: 24
166.81.39.0/24 maxlen: 24
166.81.40.0/24 maxlen: 24
166.81.51.0/24 maxlen: 24
166.81.52.0/24 maxlen: 24
166.81.53.0/24 maxlen: 24
166.81.54.0/24 maxlen: 24
166.81.55.0/24 maxlen: 24
166.81.56.0/24 maxlen: 24
166.81.57.0/24 maxlen: 24
166.81.58.0/24 maxlen: 24
166.81.59.0/24 maxlen: 24
166.81.60.0/24 maxlen: 24
166.81.61.0/24 maxlen: 24
166.81.62.0/24 maxlen: 24
166.81.65.0/24 maxlen: 24
166.81.66.0/24 maxlen: 24
166.81.67.0/24 maxlen: 24
166.81.68.0/24 maxlen: 24
166.81.69.0/24 maxlen: 24
166.81.70.0/24 maxlen: 24
166.81.77.0/24 maxlen: 24
166.81.78.0/24 maxlen: 24
166.81.79.0/24 maxlen: 24
166.81.80.0/24 maxlen: 24
166.81.81.0/24 maxlen: 24
166.81.83.0/24 maxlen: 24
166.81.84.0/24 maxlen: 24
166.81.85.0/24 maxlen: 24
166.81.87.0/24 maxlen: 24
166.81.88.0/24 maxlen: 24
166.81.89.0/24 maxlen: 24
166.81.90.0/24 maxlen: 24
166.81.95.0/24 maxlen: 24
166.81.96.0/24 maxlen: 24
166.81.97.0/24 maxlen: 24
166.81.98.0/24 maxlen: 24
166.81.99.0/24 maxlen: 24
166.81.100.0/24 maxlen: 24
166.81.101.0/24 maxlen: 24
166.81.102.0/24 maxlen: 24
166.81.103.0/24 maxlen: 24
166.81.104.0/24 maxlen: 24
166.81.105.0/24 maxlen: 24
166.81.106.0/24 maxlen: 24
166.81.246.0/24 maxlen: 24
166.81.247.0/24 maxlen: 24
166.81.248.0/24 maxlen: 24
166.81.249.0/24 maxlen: 24
166.81.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl
rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 22:34:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1912 (0x778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC31B, serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8
Validity
Not Before: Aug 18 09:10:09 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=68a2edf0-7403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:64:dc:e7:a3:8a:fa:ab:08:31:bf:37:f7:93:
fd:2a:e8:17:37:b1:b6:72:be:9f:d3:be:b2:e9:32:
08:0c:68:fe:85:ae:70:19:6a:6d:a6:7c:f7:32:9b:
8d:55:69:98:19:67:21:8a:9c:bf:21:79:68:b0:6b:
16:4e:ca:be:25:72:fa:00:ab:f8:c9:ef:31:36:ef:
af:6f:b7:e6:64:0c:1e:e2:bf:dd:ae:08:9a:28:64:
1e:f9:c3:4c:9b:33:32:02:ea:41:16:53:d0:13:6a:
3c:a1:2a:ef:d6:51:42:4a:79:98:25:3b:49:a3:5e:
ad:70:b3:12:30:ee:82:91:60:7a:55:f5:60:0a:38:
79:20:46:d0:27:4a:b4:d4:73:3c:4a:b9:a5:a2:b3:
19:af:ff:83:db:8d:1f:a4:24:48:66:76:8d:fb:46:
2b:c3:94:69:b7:bb:fa:e5:a7:9d:e9:45:ae:d9:71:
2a:d4:e4:e1:67:87:8a:1a:7a:fa:54:70:2e:07:01:
ce:37:03:29:d0:41:05:6e:0d:ed:c2:86:52:13:72:
f3:9a:42:42:52:1b:6e:92:3f:28:0a:78:17:f9:9b:
e2:93:fc:f0:1b:00:42:ce:0a:d8:21:6e:eb:9a:b1:
a9:6e:b2:f1:2a:fb:25:97:74:56:1a:ff:91:fe:88:
58:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:26:88:7A:F7:0B:D7:86:15:E3:3E:76:70:E8:A2:F9:76:BF:30:73
X509v3 Authority Key Identifier:
keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/B7BC1B76506A11EDBB3A804AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
166.81.5.0/24
166.81.9.0-166.81.30.255
166.81.33.0-166.81.35.255
166.81.38.0-166.81.40.255
166.81.51.0-166.81.62.255
166.81.65.0-166.81.70.255
166.81.77.0-166.81.81.255
166.81.83.0-166.81.85.255
166.81.87.0-166.81.90.255
166.81.95.0-166.81.106.255
166.81.246.0-166.81.250.255
Signature Algorithm: sha256WithRSAEncryption
0d:1d:09:88:30:18:23:f3:1b:e0:e6:e4:d6:80:90:bf:2e:a6:
00:f1:42:df:0b:8c:7f:f1:ca:19:e3:11:51:12:94:dd:dc:48:
4d:90:1a:8a:1e:bf:ff:00:cd:84:f0:a6:a8:39:f6:f4:4e:90:
90:1f:6c:1d:2e:83:f7:96:fe:a2:6c:81:a7:53:a2:b1:b3:46:
09:bf:0b:4e:22:ab:6f:7d:27:ac:e1:b2:8d:b1:2e:ce:98:2d:
c8:3d:10:9a:be:31:52:c7:9e:26:be:ba:c2:cd:56:85:c8:dc:
ec:0c:be:df:21:0e:3d:5b:e0:18:a1:b6:4f:4a:e4:d6:f0:e1:
16:29:e9:b5:c5:0d:41:10:3f:ac:bb:2a:6f:d4:0a:6a:a0:88:
7a:b1:ad:58:9e:52:5e:db:fa:43:57:43:f4:e9:fd:5c:e4:84:
39:87:4a:a9:ea:78:87:63:c0:73:73:8d:f7:95:15:63:a5:b6:
a6:35:46:78:46:55:ca:38:93:54:f9:b8:ef:be:3f:be:ce:e4:
16:e9:8c:47:2f:98:02:b4:20:c0:40:8e:34:c1:75:4f:17:6e:
37:45:43:23:27:e6:6a:a8:6d:68:8b:c8:9d:fa:be:31:91:77:
b3:17:d1:5f:e9:41:01:f9:7e:73:6b:6d:95:6b:a5:01:d8:cb:
25:ed:a0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:32:37 2025 by rpki-client