Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/3134372e32382e33362e302f32342d3234203d3e203134363138.roa
File: 3134372e32382e33362e302f32342d3234203d3e203134363138.roa (raw, json)
Hash identifier: kWOEuwtLfXoQ74qIBgW9WxMKO4cAZY0P1QD7sHRtUeQ=
Subject key identifier: 8D:BE:1F:D4:4F:15:AE:2D:D3:6B:9B:E3:29:84:2E:E2:1D:0F:0A:0F
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 31149B1AFED56F1466F7AABB5CD64437B6D016AB
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/3134372e32382e33362e302f32342d3234203d3e203134363138.roa
Signing time: Fri 05 Jun 2026 12:30:55 +0000
ROA not before: Fri 05 Jun 2026 12:25:55 +0000
ROA not after: Fri 04 Jun 2027 12:30:55 +0000
asID: 14618
IP address blocks: 147.28.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:14:9b:1a:fe:d5:6f:14:66:f7:aa:bb:5c:d6:44:37:b6:d0:16:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Jun 5 12:25:55 2026 GMT
Not After : Jun 4 12:30:55 2027 GMT
Subject: CN=8DBE1FD44F15AE2DD36B9BE329842EE21D0F0A0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cd:a9:6b:54:8b:fa:ea:8f:b2:03:63:9d:7a:
ad:b0:0b:13:bb:45:72:e0:34:57:20:ef:4a:a7:bd:
c6:dd:fd:72:59:bd:7e:db:b4:5e:dd:7e:d2:cc:89:
a4:8c:ea:69:b3:ea:31:53:d4:0e:fc:89:e9:1f:14:
f0:f7:62:4c:6e:40:0b:9a:da:45:22:2c:24:94:2a:
6a:ce:84:c8:2f:85:29:2f:0a:0b:f1:bd:7b:48:85:
4b:2f:68:12:8a:54:26:ed:dc:ad:5b:28:8c:76:6b:
cf:af:8c:f8:33:73:72:26:cf:39:31:aa:6a:e0:ce:
b0:53:c6:f4:3c:ec:2b:be:b7:60:31:8c:26:e9:f5:
25:67:85:e9:cb:a0:bd:ae:3d:81:de:2c:b7:75:f2:
c4:28:62:cb:55:fb:7a:07:a4:2b:31:1f:e7:f7:14:
15:c8:5c:44:2f:b6:73:6b:74:94:89:aa:53:92:58:
4a:8f:da:36:de:b2:31:f0:da:60:aa:da:4f:e1:b5:
00:90:19:0d:be:68:ea:f6:ea:d3:b8:cd:59:2e:a6:
76:72:64:3b:68:2e:2c:4f:2c:c2:b6:08:ac:fc:16:
18:50:2d:50:9a:8b:e9:d1:38:58:ba:62:06:91:e8:
ba:81:77:bc:84:5e:09:29:7e:52:83:f4:64:b4:0b:
d7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BE:1F:D4:4F:15:AE:2D:D3:6B:9B:E3:29:84:2E:E2:1D:0F:0A:0F
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/3134372e32382e33362e302f32342d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.28.36.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e2:d3:18:97:65:81:fb:b3:a5:f5:eb:51:e4:14:46:e6:09:
94:85:30:0f:6a:29:79:c6:bf:38:63:f4:26:20:dc:81:d6:55:
f2:18:30:f6:e4:e0:33:b0:80:19:b2:26:1a:ff:f0:16:ae:ea:
91:54:7e:f0:6f:c6:e2:e6:8e:dd:ba:40:87:55:08:1e:ea:c5:
a5:8c:c9:2b:86:5b:4a:b1:04:f2:82:ea:8f:37:e8:39:99:e8:
01:07:39:b7:78:0d:c4:28:e7:eb:a4:cf:ae:25:59:68:69:4f:
ae:23:47:2a:b5:44:bc:1a:2e:4b:d6:37:be:5f:0f:b0:2b:6b:
e9:98:d8:3e:9b:ad:16:f5:7a:be:98:35:c0:c0:63:fc:76:88:
4b:8a:af:f6:cc:02:c0:de:ea:24:98:9d:18:f2:e6:c9:3d:8e:
a7:6a:c4:2e:fa:41:79:bd:b9:9b:e6:d2:84:4d:39:37:11:30:
f4:a3:19:4a:54:75:b0:00:95:e7:28:66:d0:8c:68:b1:ec:be:
8d:82:d1:a9:40:27:59:38:5d:28:13:0d:30:0b:9c:05:cd:49:
a8:ab:8e:1a:4f:77:83:ec:63:f6:1b:84:a3:9c:db:f7:68:6b:
c4:6e:98:f1:3a:fe:df:50:a4:a2:ce:e7:3e:59:fb:60:a2:4a:
e8:d5:6d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:21:25 2026 by rpki-client