Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa
File: 326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa (raw, json)
Hash identifier: kTiT9c+lhWKhQTkAvsh0itp/wyB1+NPfdIKzhLHQNV8=
Subject key identifier: 47:1B:6D:50:88:E1:4A:B5:35:78:7D:5D:B7:E7:56:5D:7E:F7:FC:5F
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 21311545CA8BBF743816A9B13D19730ABED4DE02
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa
Signing time: Fri 05 Jun 2026 12:30:55 +0000
ROA not before: Fri 05 Jun 2026 12:25:55 +0000
ROA not after: Fri 04 Jun 2027 12:30:55 +0000
asID: 39588
IP address blocks: 2a02:5be0:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:31:15:45:ca:8b:bf:74:38:16:a9:b1:3d:19:73:0a:be:d4:de:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Jun 5 12:25:55 2026 GMT
Not After : Jun 4 12:30:55 2027 GMT
Subject: CN=471B6D5088E14AB535787D5DB7E7565D7EF7FC5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:3f:ed:9d:5a:08:3b:6c:7e:df:b8:e9:cf:
25:a6:55:20:3f:83:67:f7:63:87:93:78:da:91:a1:
b3:92:12:49:94:d3:ce:35:14:1a:12:6a:e9:87:68:
06:7f:9a:ee:99:88:c5:c6:77:53:97:e4:91:fc:d2:
f4:f5:e4:57:aa:73:17:d4:fe:bb:cf:84:39:03:bd:
7e:04:f8:89:ad:84:e6:c2:a0:40:6e:1c:79:34:45:
04:ee:07:92:5c:01:b3:6e:5b:0b:96:c5:d1:df:1d:
62:29:8b:8f:0c:7b:65:43:c9:9c:7f:78:06:99:7a:
39:f4:b0:7f:4c:94:5e:97:da:d6:3c:a6:d4:1f:8f:
71:9f:2d:e9:30:92:38:d8:8c:4d:2b:e7:c8:1f:59:
d9:f2:97:da:9c:ba:42:a1:aa:f0:43:9d:f0:ca:61:
40:b7:5b:3d:8d:41:98:3c:12:29:6d:89:34:3c:c8:
b7:3b:f7:2c:40:70:dc:a8:86:bd:9e:c8:f9:d7:87:
93:b3:55:b8:76:ab:95:9f:f2:47:4f:15:58:37:5b:
ff:2f:23:6e:eb:41:fb:1f:3e:9c:4d:7c:1a:db:de:
8d:f2:ea:1f:16:4c:d0:bb:54:a8:d4:98:fb:be:a3:
40:21:7b:e0:ea:23:58:50:04:df:95:78:8f:92:b3:
7d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:1B:6D:50:88:E1:4A:B5:35:78:7D:5D:B7:E7:56:5D:7E:F7:FC:5F
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:2::/48
Signature Algorithm: sha256WithRSAEncryption
2c:07:75:e8:19:62:c2:84:c9:e0:53:b0:49:01:80:7d:6b:a3:
61:c7:9e:66:d1:43:76:bf:c7:4b:86:8b:b8:6a:be:4c:23:52:
78:f8:1e:30:d2:ab:4d:1b:db:6d:ce:d9:a8:10:d8:97:91:4d:
83:30:74:6c:5e:87:5e:7a:5a:cc:1e:42:45:a8:8d:8d:66:b7:
73:02:7d:df:b1:fc:a4:44:13:1b:83:a0:d0:df:a7:42:48:95:
d5:5d:bd:87:2c:92:a1:ae:92:ce:8a:29:b5:47:38:37:e4:03:
24:2e:03:a6:da:de:85:56:3d:6b:ce:97:9a:b2:21:47:d3:54:
21:19:ed:cc:12:ba:38:48:81:da:6f:bf:0a:75:7f:fd:33:f8:
8c:e4:2c:d9:22:fa:f7:7a:aa:33:9e:c0:30:be:b0:75:e0:9c:
03:20:04:29:e7:14:e7:f8:32:af:79:d7:20:6c:0e:e5:3b:56:
7b:e7:c3:80:4f:dc:42:be:37:69:2a:bf:46:27:ec:c1:e7:66:
76:39:7e:40:31:c2:04:8e:af:89:2a:90:2a:9b:fa:7e:d0:ed:
d4:11:7f:e1:ea:b4:fd:15:f5:e3:b4:d3:0b:e8:92:d5:4a:bd:
81:9d:d4:14:c3:47:0a:b7:22:22:a6:09:42:a8:8b:13:85:7f:
31:2d:2f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:28:33 2026 by rpki-client