Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/3138352e35382e38342e302f32342d3234203d3e203432343237.roa
File: 3138352e35382e38342e302f32342d3234203d3e203432343237.roa (raw, json)
Hash identifier: DYtW1K+rqArJV5uJrkC73nFQUNCga41FxW9gnJZs1qc=
Subject key identifier: EE:77:14:D3:2B:9A:38:4E:E7:93:37:4C:8C:76:9E:B8:66:8D:89:D8
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 1C61975A02E598B0073C7FBA8516B8784CE50B75
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/3138352e35382e38342e302f32342d3234203d3e203432343237.roa
Signing time: Fri 05 Jun 2026 12:30:54 +0000
ROA not before: Fri 05 Jun 2026 12:25:54 +0000
ROA not after: Fri 04 Jun 2027 12:30:54 +0000
asID: 42427
IP address blocks: 185.58.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:61:97:5a:02:e5:98:b0:07:3c:7f:ba:85:16:b8:78:4c:e5:0b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Jun 5 12:25:54 2026 GMT
Not After : Jun 4 12:30:54 2027 GMT
Subject: CN=EE7714D32B9A384EE793374C8C769EB8668D89D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6d:15:ae:08:b1:be:8e:f9:c9:b9:6d:c0:18:
0b:62:70:a9:e4:78:dd:11:b7:06:4a:df:05:e5:8c:
85:a8:22:97:07:d8:40:b7:79:8c:ae:5b:31:76:0e:
6b:38:a6:a9:6b:d0:f1:de:8c:cb:97:d4:3f:af:f8:
21:f9:e5:43:00:52:5c:23:76:4e:a7:3c:06:62:22:
2e:98:42:ec:6f:d5:09:ce:2b:37:80:86:a5:19:ff:
60:cf:fc:78:b4:05:52:a8:af:11:85:d5:f2:70:09:
ff:de:4b:9e:06:e6:24:33:aa:fb:7a:30:d3:7e:0b:
bc:f1:ee:e3:d3:15:fe:28:e6:32:5a:35:59:d4:de:
6f:6b:4a:0e:bc:54:c6:80:7b:30:dd:63:da:66:9c:
9a:6e:39:59:19:a9:6a:aa:82:0d:21:4f:13:6f:eb:
54:4f:e5:f4:5b:09:9d:70:a5:51:78:51:3c:d3:03:
74:bf:a5:64:45:e2:55:2f:2a:97:9b:26:d1:98:59:
91:2d:f7:e4:58:91:6e:de:19:4c:8c:50:c4:16:78:
01:b6:f6:1d:48:60:25:5d:88:4b:5e:5a:da:e5:5f:
62:44:d0:8c:bd:95:fb:bd:fe:9b:b7:5a:55:01:4b:
da:82:ee:43:26:d7:c4:d0:43:1d:75:a4:29:88:4a:
3d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:77:14:D3:2B:9A:38:4E:E7:93:37:4C:8C:76:9E:B8:66:8D:89:D8
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/3138352e35382e38342e302f32342d3234203d3e203432343237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.84.0/24
Signature Algorithm: sha256WithRSAEncryption
79:64:c4:45:c2:05:81:92:1d:f8:e6:1f:58:9d:14:61:dd:89:
c1:e9:f7:48:40:04:df:79:63:7e:21:ad:92:8c:44:45:99:f8:
f7:4e:00:82:5f:65:da:f4:c2:16:24:50:a3:e6:cb:49:15:9c:
ae:dc:45:c9:f4:2c:93:7e:51:63:e6:d3:56:8a:88:c0:13:36:
4b:6a:6a:7b:58:14:8d:25:1d:b2:ff:30:61:62:41:7d:af:70:
82:82:0d:c3:eb:32:33:2e:4c:09:9a:95:b4:b1:ed:cf:07:32:
a4:fc:8c:df:23:bb:36:d0:0b:37:24:66:b6:77:35:ae:07:a8:
7a:48:ad:99:39:0c:16:e9:f8:01:dc:39:7b:e8:d6:d6:48:dd:
cb:bd:d2:b5:59:9b:10:5b:b3:cf:f6:7b:91:2f:c2:c8:e9:4a:
1c:09:63:d3:28:50:37:51:57:0e:84:b0:1f:e3:86:6a:03:9c:
eb:34:1b:2e:a6:d6:53:38:7e:8c:34:88:1d:b7:75:04:29:70:
e7:66:f6:c1:74:5f:ff:05:ef:ea:5a:e2:41:49:e1:81:46:2f:
35:e9:a3:20:a3:9d:70:9b:ef:15:17:8a:37:57:26:42:6c:53:
b9:90:c9:f5:ea:78:8d:65:7c:aa:bf:0c:b8:53:4b:16:e5:da:
96:f6:0b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:22:16 2026 by rpki-client