Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa
File: 326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa (raw, json)
Hash identifier: aUwLLKE7y7sJq/QJwcfenpnzU77C3bkBQSHOU48cLEY=
Subject key identifier: C2:9B:4E:50:E0:A0:0C:13:88:A8:B0:72:93:A4:BA:3A:01:35:66:59
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 22781A030BC73177C61FE8345C631907D4B11E85
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa
Signing time: Fri 04 Jul 2025 12:05:11 +0000
ROA not before: Fri 04 Jul 2025 12:00:11 +0000
ROA not after: Fri 03 Jul 2026 12:05:11 +0000
asID: 39588
IP address blocks: 2a02:5be0:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 14:04:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:78:1a:03:0b:c7:31:77:c6:1f:e8:34:5c:63:19:07:d4:b1:1e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Jul 4 12:00:11 2025 GMT
Not After : Jul 3 12:05:11 2026 GMT
Subject: CN=C29B4E50E0A00C1388A8B07293A4BA3A01356659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:45:54:5d:cc:31:bb:cb:3a:31:fa:0a:78:d9:
6f:4a:9b:8a:0b:de:19:dc:de:ab:44:e5:88:63:0d:
66:ac:87:60:aa:5e:25:b7:ce:bc:87:a3:f5:8c:93:
8a:cb:81:5a:2d:39:1f:80:15:62:0a:eb:61:a8:11:
c3:68:39:10:06:e6:87:64:9d:4c:17:99:58:48:30:
4e:c3:45:0f:c4:e2:ca:dd:84:8a:06:ea:55:32:6e:
cb:72:58:4f:a2:dc:42:d1:99:1d:bc:f8:c6:7c:3c:
32:dc:e2:c3:cc:23:67:d1:c0:3c:5a:0c:72:28:59:
09:30:c5:a8:fa:80:fd:c2:b3:9a:56:04:93:e6:1e:
7a:93:85:df:19:dd:85:8a:c1:1e:4f:1a:2e:b6:db:
7b:3f:05:00:a3:cd:a2:6a:e0:4b:4a:a6:9a:03:76:
47:24:0f:89:78:c9:fe:c1:9d:7e:3a:e0:95:a4:01:
7a:20:98:16:1b:87:01:4b:89:70:09:32:38:c7:60:
32:42:b7:0a:61:88:84:39:44:85:8a:de:84:bf:a9:
c0:29:2a:e4:53:1d:35:c5:ae:a7:94:37:74:62:98:
0a:7b:b2:97:42:10:82:39:3f:c3:9a:26:da:1a:c8:
b4:6d:49:6c:8f:fe:b9:14:bd:fa:82:15:c1:2d:8d:
89:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:9B:4E:50:E0:A0:0C:13:88:A8:B0:72:93:A4:BA:3A:01:35:66:59
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a323a3a2f34382d3438203d3e203339353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:2::/48
Signature Algorithm: sha256WithRSAEncryption
77:58:34:2e:01:b8:52:34:09:8c:73:83:ac:a8:1b:ef:aa:e2:
38:3f:8f:07:73:88:69:4f:4d:bd:89:2e:af:cc:f4:1c:95:06:
c3:7c:ac:03:62:60:b9:16:01:68:84:eb:44:be:22:28:81:cc:
d2:e0:3d:18:6f:96:f7:5e:f2:45:c5:b3:ff:04:32:af:79:93:
5c:a3:c0:11:a0:80:5c:fe:79:25:f7:d0:51:b0:8e:e6:2c:0a:
ce:92:fc:53:e7:3a:c6:fa:74:eb:12:4c:4f:d0:d8:7d:4c:bf:
7e:41:01:2d:5e:70:6e:e8:7d:23:11:e2:47:66:c3:69:9e:d7:
c5:c8:9c:8c:99:25:ff:39:0d:b3:e5:f8:6b:f1:26:12:e0:e1:
69:d3:82:5a:90:65:56:7a:46:a1:30:02:3c:ef:da:a0:44:00:
eb:0b:8b:db:ca:48:12:be:5f:13:eb:71:f8:8e:7a:26:23:9e:
76:0a:fc:1c:68:84:c2:b5:3a:f7:c8:2f:69:dc:6b:91:f9:08:
a2:60:58:4a:cc:c6:e6:d0:58:e4:7f:50:27:f7:f6:99:9b:53:
61:dd:6a:30:10:08:c6:4d:75:18:f9:21:ef:26:83:87:0d:01:
a6:18:66:55:56:8e:86:fe:c6:86:09:05:51:90:fa:03:bf:96:
95:be:40:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 21:05:49 2025 by rpki-client