Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1BAB/0B97601AF66411EA91CD2A53C4F9AE02/37A46070F6F211EA922F482BC4F9AE02.roa
File: 37A46070F6F211EA922F482BC4F9AE02.roa (raw, json)
Hash identifier: Vbr74q9xve9jPdFxxPBLIMyXEmdu/+7o68cL8ABmJn8=
Subject key identifier: E4:30:6E:85:61:D4:00:17:56:DB:80:40:EF:22:6B:53:B9:17:B7:47
Certificate issuer: /CN=A91E1BAB/serialNumber=48B9945987F676B46CED3DE12849A8A38F4068B5
Certificate serial: 0883
Authority key identifier: 48:B9:94:59:87:F6:76:B4:6C:ED:3D:E1:28:49:A8:A3:8F:40:68:B5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLmUWYf2drRs7T3hKEmoo49AaLU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E1BAB/0B97601AF66411EA91CD2A53C4F9AE02/37A46070F6F211EA922F482BC4F9AE02.roa
Signing time: Sun 01 Mar 2026 09:36:38 +0000
ROA not before: Tue 24 Jun 2025 21:18:34 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 17978
IP address blocks: 61.28.192.0/24 maxlen: 24
61.28.193.0/24 maxlen: 24
61.28.194.0/24 maxlen: 24
61.28.195.0/24 maxlen: 24
61.28.196.0/24 maxlen: 24
61.28.197.0/24 maxlen: 24
61.28.198.0/24 maxlen: 24
61.28.199.0/24 maxlen: 24
61.28.200.0/24 maxlen: 24
61.28.201.0/24 maxlen: 24
61.28.202.0/24 maxlen: 24
61.28.203.0/24 maxlen: 24
61.28.204.0/24 maxlen: 24
61.28.205.0/24 maxlen: 24
61.28.206.0/24 maxlen: 24
61.28.207.0/24 maxlen: 24
61.28.208.0/24 maxlen: 24
61.28.209.0/24 maxlen: 24
61.28.210.0/24 maxlen: 24
61.28.211.0/24 maxlen: 24
61.28.212.0/24 maxlen: 24
61.28.213.0/24 maxlen: 24
61.28.214.0/24 maxlen: 24
61.28.215.0/24 maxlen: 24
61.28.216.0/24 maxlen: 24
61.28.217.0/24 maxlen: 24
61.28.218.0/24 maxlen: 24
61.28.219.0/24 maxlen: 24
61.28.220.0/24 maxlen: 24
61.28.221.0/24 maxlen: 24
61.28.222.0/24 maxlen: 24
61.28.223.0/24 maxlen: 24
103.1.60.0/22 maxlen: 24
115.85.129.0/24 maxlen: 24
115.85.130.0/24 maxlen: 24
115.85.132.0/24 maxlen: 24
115.85.133.0/24 maxlen: 24
115.85.134.0/24 maxlen: 24
115.85.135.0/24 maxlen: 24
203.215.128.0/24 maxlen: 24
203.215.129.0/24 maxlen: 24
203.215.130.0/24 maxlen: 24
203.215.131.0/24 maxlen: 24
203.215.132.0/24 maxlen: 24
203.215.133.0/24 maxlen: 24
203.215.134.0/24 maxlen: 24
203.215.135.0/24 maxlen: 24
203.215.136.0/24 maxlen: 24
203.215.137.0/24 maxlen: 24
203.215.138.0/24 maxlen: 24
203.215.139.0/24 maxlen: 24
203.215.140.0/24 maxlen: 24
203.215.141.0/24 maxlen: 24
203.215.142.0/24 maxlen: 24
203.215.143.0/24 maxlen: 24
203.215.144.0/24 maxlen: 24
203.215.145.0/24 maxlen: 24
203.215.146.0/24 maxlen: 24
203.215.147.0/24 maxlen: 24
203.215.148.0/24 maxlen: 24
203.215.149.0/24 maxlen: 24
203.215.150.0/24 maxlen: 24
203.215.151.0/24 maxlen: 24
203.215.152.0/24 maxlen: 24
203.215.154.0/24 maxlen: 24
203.215.155.0/24 maxlen: 24
203.215.156.0/24 maxlen: 24
203.215.157.0/24 maxlen: 24
203.215.158.0/24 maxlen: 24
203.215.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E1BAB/0B97601AF66411EA91CD2A53C4F9AE02/SLmUWYf2drRs7T3hKEmoo49AaLU.crl
rsync://rpki.apnic.net/member_repository/A91E1BAB/0B97601AF66411EA91CD2A53C4F9AE02/SLmUWYf2drRs7T3hKEmoo49AaLU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLmUWYf2drRs7T3hKEmoo49AaLU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 20:35:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2179 (0x883)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E1BAB, serialNumber=48B9945987F676B46CED3DE12849A8A38F4068B5
Validity
Not Before: Jun 24 21:18:34 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=69a408a6-3d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3a:a9:93:f1:25:50:19:a4:07:83:05:51:88:
2c:c2:2b:91:1a:40:9a:95:64:67:2e:a2:e7:dc:06:
da:3f:0b:c3:b4:55:15:b4:7d:9d:7e:9c:f9:20:16:
1f:99:cd:16:53:1d:2e:e0:13:16:f1:03:eb:6c:6f:
23:a7:7d:40:cf:dc:72:c7:3f:db:3c:e0:cb:81:c5:
27:30:85:44:21:0e:a5:a1:6a:25:9d:e9:af:48:5f:
61:dc:d7:01:b1:af:3f:0b:6f:ac:4b:60:70:39:e9:
95:a5:53:3c:61:9d:ce:7e:aa:73:9a:82:0e:e8:b3:
84:3e:94:56:cf:92:0a:c1:a1:40:87:d3:34:91:a9:
3b:a4:99:c2:ff:99:bf:ef:b2:c7:9a:24:1d:8a:ef:
87:f5:11:06:6d:8d:89:8b:7f:00:f3:88:03:7a:e6:
0c:e7:cd:5f:79:ef:df:1d:a0:37:d6:9a:35:22:0e:
5b:f3:c9:31:06:c5:f5:81:f0:7b:98:0e:bc:82:72:
be:1c:1f:d5:64:ff:ed:e4:95:f8:42:af:08:f4:09:
01:72:d8:fe:f2:0c:95:31:fd:01:4d:09:c7:87:23:
77:3d:ee:5f:6f:84:d1:65:dd:e5:49:48:2e:dc:1c:
47:08:cd:79:7c:c4:dc:3f:2e:fc:4c:45:05:fb:0f:
6e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:30:6E:85:61:D4:00:17:56:DB:80:40:EF:22:6B:53:B9:17:B7:47
X509v3 Authority Key Identifier:
keyid:48:B9:94:59:87:F6:76:B4:6C:ED:3D:E1:28:49:A8:A3:8F:40:68:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E1BAB/0B97601AF66411EA91CD2A53C4F9AE02/SLmUWYf2drRs7T3hKEmoo49AaLU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLmUWYf2drRs7T3hKEmoo49AaLU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1BAB/0B97601AF66411EA91CD2A53C4F9AE02/37A46070F6F211EA922F482BC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
61.28.192.0/19
103.1.60.0/22
115.85.129.0-115.85.130.255
115.85.132.0/22
203.215.128.0-203.215.152.255
203.215.154.0-203.215.159.255
Signature Algorithm: sha256WithRSAEncryption
5b:59:5f:7b:45:64:b1:bb:17:48:c9:7a:09:ad:ab:58:5d:7a:
04:81:c7:84:b2:98:5e:bf:30:01:56:f2:07:bb:25:be:ac:18:
14:6f:91:ed:1f:a9:7a:32:de:31:f8:b8:df:58:9e:e6:28:78:
b1:47:3e:a1:a0:5b:ff:61:eb:b5:76:99:60:2c:21:03:ae:f9:
1b:99:27:a5:90:b3:8f:eb:8c:80:8c:09:e0:4c:e0:21:37:6b:
c9:11:f1:ee:50:ee:60:da:da:33:d1:46:68:ba:a2:99:b7:c0:
d8:99:ad:24:dd:70:46:58:97:cb:5e:a5:65:c1:3e:46:e6:ea:
35:4d:b8:f1:fe:54:c9:b8:66:33:5f:46:a1:d7:ad:39:fe:42:
2f:b2:29:80:c0:53:a2:2a:fd:f9:1b:a2:bf:c5:26:5b:6e:a7:
5b:0d:18:77:ce:a8:24:10:d6:d5:6f:20:ce:b0:76:d7:1c:29:
52:fb:15:1c:d5:88:fd:25:f4:bc:c4:74:d8:56:03:4e:ad:92:
4d:8e:5c:4c:eb:73:b9:f5:5c:e6:3c:e6:47:a5:fb:e5:3b:d6:
a7:1f:2a:80:c3:dd:e9:a9:88:1a:77:93:31:c4:5b:19:97:2c:
57:8a:0f:ee:09:b6:3c:1e:48:85:2c:47:05:e6:43:2c:1f:b7:
4e:18:17:01
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgICCIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTFCQUIxMTAvBgNVBAUTKDQ4Qjk5NDU5ODdGNjc2QjQ2Q0VEM0RFMTI4NDlBOEEz
OEY0MDY4QjUwHhcNMjUwNjI0MjExODM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02OWE0MDhhNi0zZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvDqpk/ElUBmkB4MFUYgswiuRGkCalWRnLqLn3AbaPwvDtFUVtH2dfpz5IBYf
mc0WUx0u4BMW8QPrbG8jp31Az9xyxz/bPODLgcUnMIVEIQ6loWolnemvSF9h3NcB
sa8/C2+sS2BwOemVpVM8YZ3OfqpzmoIO6LOEPpRWz5IKwaFAh9M0kak7pJnC/5m/
77LHmiQdiu+H9REGbY2Ji38A84gDeuYM581fee/fHaA31po1Ig5b88kxBsX1gfB7
mA68gnK+HB/VZP/t5JX4Qq8I9AkBctj+8gyVMf0BTQnHhyN3Pe5fb4TRZd3lSUgu
3BxHCM15fMTcPy78TEUF+w9uJwIDAQABo4ICljCCApIwHQYDVR0OBBYEFOQwboVh
1AAXVtuAQO8ia1O5F7dHMB8GA1UdIwQYMBaAFEi5lFmH9na0bO094ShJqKOPQGi1
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUJBQi8wQjk3NjAxQUY2
NjQxMUVBOTFDRDJBNTNDNEY5QUUwMi9TTG1VV1lmMmRyUnM3VDNoS0Vtb280OUFh
TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NMbVVXWWYyZHJSczdUM2hLRW1vbzQ5QWFMVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTFCQUIvMEI5NzYwMUFGNjY0MTFFQTkxQ0QyQTUzQzRGOUFFMDIvMzdBNDYwNzBG
NkYyMTFFQTkyMkY0ODJCQzRGOUFFMDIucm9hMFUGCCsGAQUFBwEHAQH/BEYwRDBC
BAIAATA8AwQFPRzAAwQCZwE8MAwDBABzVYEDBABzVYIDBAJzVYQwDAMEB8vXgAME
AMvXmDAMAwQBy9eaAwQFy9eAMA0GCSqGSIb3DQEBCwUAA4IBAQBbWV97RWSxuxdI
yXoJratYXXoEgceEsphevzABVvIHuyW+rBgUb5HtH6l6Mt4x+LjfWJ7mKHixRz6h
oFv/Yeu1dplgLCEDrvkbmSelkLOP64yAjAngTOAhN2vJEfHuUO5g2toz0UZouqKZ
t8DYma0k3XBGWJfLXqVlwT5G5uo1Tbjx/lTJuGYzX0ah1605/kIvsimAwFOiKv35
G6K/xSZbbqdbDRh3zqgkENbVbyDOsHbXHClS+xUc1Yj9JfS8xHTYVgNOrZJNjlxM
63O59VzmPOZHpfvlO9anHyqAw93pqYgad5MxxFsZlyxXig/uCbY8HkiFLEcF5kMs
H7dOGBcB
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:33:24 2026 by rpki-client