Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a373a3a2f34382d3438203d3e203339353838.roa
File: 326130323a356265303a373a3a2f34382d3438203d3e203339353838.roa (raw, json)
Hash identifier: mtuNCYFyX7/moLieq9KImVrx9mT6U4v4dtSUhK/Rs4k=
Subject key identifier: DD:52:B4:D5:1C:CB:C1:53:E8:D5:0A:B8:25:DA:9D:3E:10:1B:F7:4A
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 43F1A8206520CCACC39632B51BE20CE094EA938B
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a373a3a2f34382d3438203d3e203339353838.roa
Signing time: Thu 21 May 2026 11:15:49 +0000
ROA not before: Thu 21 May 2026 11:10:49 +0000
ROA not after: Thu 20 May 2027 11:15:49 +0000
asID: 39588
IP address blocks: 2a02:5be0:7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:f1:a8:20:65:20:cc:ac:c3:96:32:b5:1b:e2:0c:e0:94:ea:93:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: May 21 11:10:49 2026 GMT
Not After : May 20 11:15:49 2027 GMT
Subject: CN=DD52B4D51CCBC153E8D50AB825DA9D3E101BF74A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b7:66:18:93:8c:90:77:69:64:96:b2:d6:d5:
65:15:69:08:e3:a3:a4:68:ef:ba:e0:64:f2:a0:8c:
08:f2:95:86:8e:64:c9:19:1a:c6:69:ca:32:0b:dc:
9b:77:d2:ab:18:e0:b1:47:c2:59:42:aa:df:2a:50:
d0:97:1d:eb:e6:6e:ee:84:03:58:6d:b2:94:07:6c:
52:b8:e2:21:7f:6f:a2:ee:6a:44:be:25:61:bc:1e:
93:db:92:ff:64:22:ae:59:9f:af:0e:a2:d8:7e:98:
1d:f5:fe:01:20:94:79:cc:7d:42:1a:15:55:3d:38:
9b:8f:11:b9:a8:9a:ac:e2:08:28:0c:b4:7d:13:34:
ee:96:bc:38:99:5e:79:e1:4c:4e:51:ac:26:da:1d:
09:7f:0e:3f:18:91:60:30:7d:69:a9:ad:7e:5d:0c:
34:5f:0b:3f:38:cb:08:14:67:08:dd:b9:ef:94:34:
79:8a:94:64:8c:28:c5:7a:63:4c:94:b0:b2:2e:a2:
d3:59:35:53:16:60:44:e2:83:5c:7f:41:eb:0c:73:
8f:71:95:9d:75:79:24:fc:e8:d9:56:76:f5:00:56:
e0:5d:e6:5f:c5:84:42:fd:96:12:33:db:4e:e1:4d:
b8:e9:27:ad:0b:58:c0:40:7b:fa:e0:30:80:55:fd:
24:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:52:B4:D5:1C:CB:C1:53:E8:D5:0A:B8:25:DA:9D:3E:10:1B:F7:4A
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a373a3a2f34382d3438203d3e203339353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:7::/48
Signature Algorithm: sha256WithRSAEncryption
85:1a:09:10:aa:8c:dc:46:d9:7d:8e:8b:78:22:d4:29:2f:61:
88:50:9e:5e:77:dc:d2:fc:e8:5f:0f:c9:3f:6a:7d:29:01:8d:
17:bb:6c:9c:11:6c:5b:d2:32:e0:c9:c5:20:62:c9:41:0c:a9:
18:15:ac:bc:c3:84:2b:57:ca:b1:c0:ec:18:33:66:e9:cf:52:
cf:2f:d3:ae:e0:d2:ab:0f:5b:8e:c5:d8:0a:fa:ab:ad:72:85:
e4:d3:05:93:0e:f8:10:67:f5:64:ab:d3:9b:a7:f0:b5:c8:5d:
f0:dd:10:cc:93:24:63:30:3a:d9:50:6b:49:3f:97:15:4d:15:
b3:b3:96:26:8b:49:1b:b6:b9:02:98:5c:6a:19:3e:2b:ed:53:
ef:7b:ab:0d:2f:9c:4c:43:bd:14:8e:84:e1:be:1a:2b:7c:d2:
5b:42:73:86:55:50:59:c7:81:18:ba:a3:4c:a4:62:d5:53:e4:
87:dd:b2:fe:6f:c5:c2:b6:a9:40:79:c6:69:de:32:01:2f:81:
2f:56:2d:c3:98:18:06:a8:c0:cb:58:90:dc:04:c8:4a:84:b9:
c4:88:f1:86:01:fc:85:c2:11:f3:70:a3:fd:50:3c:c7:19:1c:
2b:5e:8d:3a:0f:31:59:df:bb:82:97:23:18:09:eb:5d:8a:76:
92:45:3d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:15:42 2026 by rpki-client