Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/1/3139342e3130342e3131302e302f32332d3233203d3e203339353838.roa
File: 3139342e3130342e3131302e302f32332d3233203d3e203339353838.roa (raw, json)
Hash identifier: rk6Y7tPy8Mo1oakuZi39/fIjJva75BwimkeClcNqXvw=
Subject key identifier: 51:7D:CA:80:D2:74:E2:52:65:41:55:F3:21:20:64:19:9B:8E:D1:15
Certificate issuer: /CN=d40581ca9ddaca9e110165b11dd2820dd7f532c0
Certificate serial: 40FA0432C68E7823750C506D602752F3CDFEEE10
Authority key identifier: D4:05:81:CA:9D:DA:CA:9E:11:01:65:B1:1D:D2:82:0D:D7:F5:32:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AWByp3ayp4RAWWxHdKCDdf1MsA.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/1/3139342e3130342e3131302e302f32332d3233203d3e203339353838.roa
Signing time: Fri 05 Jun 2026 12:30:56 +0000
ROA not before: Fri 05 Jun 2026 12:25:56 +0000
ROA not after: Fri 04 Jun 2027 12:30:56 +0000
asID: 39588
IP address blocks: 194.104.110.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/1/D40581CA9DDACA9E110165B11DD2820DD7F532C0.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/1/D40581CA9DDACA9E110165B11DD2820DD7F532C0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AWByp3ayp4RAWWxHdKCDdf1MsA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:39:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:fa:04:32:c6:8e:78:23:75:0c:50:6d:60:27:52:f3:cd:fe:ee:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40581ca9ddaca9e110165b11dd2820dd7f532c0
Validity
Not Before: Jun 5 12:25:56 2026 GMT
Not After : Jun 4 12:30:56 2027 GMT
Subject: CN=517DCA80D274E252654155F3212064199B8ED115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1f:80:cd:02:5e:66:76:47:dd:66:7d:96:57:
64:12:dd:75:75:da:2a:27:df:3e:fd:09:89:3c:72:
46:48:86:cd:a1:d2:c4:1c:d4:77:e3:4a:fc:bf:d1:
5f:90:2f:d5:51:0c:be:5e:05:7f:6e:95:6e:37:7b:
24:cb:da:9b:da:37:9c:8d:0f:6e:36:18:08:6e:64:
73:cc:ed:93:d6:3a:81:a1:df:b4:29:35:c2:65:da:
35:3c:d9:63:73:c7:7a:96:92:1f:55:60:ec:60:66:
20:5d:de:ca:48:7d:b3:d4:90:fd:f6:4c:31:cb:5c:
5f:78:9c:75:4e:a5:f2:ea:26:5b:12:8d:68:fa:55:
ce:fe:8a:c2:5d:9d:a6:be:8a:25:f3:32:af:92:0f:
64:d8:be:12:a3:1f:34:75:d4:81:5f:82:aa:7a:61:
ac:0a:92:aa:c1:09:ce:5c:ec:49:b0:39:80:74:cc:
51:46:be:cc:89:c3:16:d4:da:d5:0b:6c:27:0d:1d:
62:da:ec:a3:ce:bc:7e:2b:52:10:16:a1:e2:6c:82:
bc:2f:59:17:48:13:bd:be:9f:90:ed:f7:2e:12:46:
f8:e2:98:42:b4:67:ae:ee:07:8e:bf:38:63:df:30:
dc:22:bb:d2:d3:11:e9:4c:e1:fc:31:00:00:f0:7f:
86:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7D:CA:80:D2:74:E2:52:65:41:55:F3:21:20:64:19:9B:8E:D1:15
X509v3 Authority Key Identifier:
keyid:D4:05:81:CA:9D:DA:CA:9E:11:01:65:B1:1D:D2:82:0D:D7:F5:32:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/1/D40581CA9DDACA9E110165B11DD2820DD7F532C0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AWByp3ayp4RAWWxHdKCDdf1MsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/1/3139342e3130342e3131302e302f32332d3233203d3e203339353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.110.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:9a:23:84:51:44:07:86:33:ef:b4:c4:4a:bf:df:88:0f:8f:
65:2c:6c:86:61:45:53:51:de:63:e9:c9:f6:02:e2:02:77:4d:
64:24:4f:11:72:a0:06:8d:f0:92:95:67:6f:d8:b6:f8:e3:bc:
be:8a:c1:b0:00:90:20:c6:f3:4b:60:00:79:25:5d:51:cb:20:
7f:3b:a5:e2:f5:d0:6e:02:4a:2f:9a:71:f9:88:00:01:91:34:
66:e9:08:03:8f:be:0a:fd:63:3e:42:31:ec:de:bb:8c:4e:62:
73:70:0d:ae:d2:c0:14:22:d9:11:8c:a0:d8:fc:69:2c:a1:66:
ce:58:8f:37:04:cf:5a:cc:ab:ed:be:5d:6a:56:ab:78:97:b7:
72:88:8b:12:43:48:a0:39:34:39:5d:36:78:83:6c:c3:fd:f2:
32:32:dc:76:ea:48:a2:d4:b0:f5:32:37:5a:96:21:aa:94:c1:
c2:75:27:d4:9e:1e:8f:aa:94:8d:a0:01:89:90:9d:4a:c6:36:
a7:b9:e0:4d:76:f0:f5:b5:42:59:c6:b5:3a:7d:67:69:42:7f:
63:ac:3a:ce:85:18:f3:6a:19:b7:e5:cb:a2:15:58:a3:f2:82:
66:d2:62:92:42:0b:36:8e:40:4a:fa:d5:13:fb:27:d9:7a:15:
9f:68:7d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:35:55 2026 by rpki-client