Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a373a3a2f34382d3438203d3e203136353039.roa
File: 326130323a356265303a373a3a2f34382d3438203d3e203136353039.roa (raw, json)
Hash identifier: h7QcHm2sO8Ouv3GXuexGMxSvI7GPzSNYo0LHJYqH61A=
Subject key identifier: 36:C1:6B:5C:A4:DE:3D:BF:88:85:25:50:D3:B5:F4:F2:71:0F:3F:5A
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 7AF38E43DC202EEB7DB50BF98FDE8937BEBADC65
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a373a3a2f34382d3438203d3e203136353039.roa
Signing time: Thu 19 Jun 2025 10:58:47 +0000
ROA not before: Thu 19 Jun 2025 10:53:47 +0000
ROA not after: Thu 18 Jun 2026 10:58:47 +0000
asID: 16509
IP address blocks: 2a02:5be0:7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Jul 2025 06:54:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:f3:8e:43:dc:20:2e:eb:7d:b5:0b:f9:8f:de:89:37:be:ba:dc:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Jun 19 10:53:47 2025 GMT
Not After : Jun 18 10:58:47 2026 GMT
Subject: CN=36C16B5CA4DE3DBF88852550D3B5F4F2710F3F5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:17:ad:32:23:c5:b5:3c:94:2f:7d:cd:f2:78:
49:77:43:ac:48:bb:f7:52:02:39:ba:e8:30:81:ea:
9f:18:d6:0e:32:3a:50:9a:db:35:9e:8c:48:42:15:
46:36:56:af:7c:ff:1d:ad:65:01:a5:a8:f7:48:6a:
9d:01:67:05:f9:08:3a:32:94:e5:6e:52:f1:2b:e6:
26:e7:81:53:ad:3c:77:fc:ad:2d:c4:25:b6:f3:97:
96:49:cd:72:c2:d2:d6:af:f0:c3:15:c0:17:5c:62:
2f:0b:44:df:4d:d8:0a:93:2d:6e:f0:74:65:52:63:
b6:9c:04:c6:7f:05:36:ef:2f:2c:bc:e5:d6:7d:9e:
32:31:8b:fd:f7:2b:8a:b1:9b:58:12:db:ae:a3:e5:
91:48:be:ab:bd:74:86:26:67:5b:1b:25:a6:53:a4:
b6:09:20:1d:7f:8b:2e:47:a2:56:09:41:33:45:8d:
14:8c:c1:5c:6a:f2:79:7f:e6:1c:9c:92:46:e2:ca:
5d:7c:2e:7d:d7:93:17:3a:1d:84:d1:f7:ed:56:0c:
6b:e0:99:bd:31:97:6b:58:d0:7a:2c:ac:91:2e:30:
00:d8:40:95:71:16:80:97:b6:3d:7a:3c:f2:67:26:
23:c5:f2:bc:b4:3a:3c:d1:5e:19:b3:b4:6f:5a:0c:
ed:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C1:6B:5C:A4:DE:3D:BF:88:85:25:50:D3:B5:F4:F2:71:0F:3F:5A
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a373a3a2f34382d3438203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:7::/48
Signature Algorithm: sha256WithRSAEncryption
34:ce:04:aa:6b:a1:09:a0:61:d6:92:2b:85:54:52:f7:30:60:
76:e9:fb:c4:a7:5c:f9:d4:af:4d:cc:c0:24:c5:e8:33:80:6e:
7e:51:a2:75:fd:d2:92:e5:d0:a7:71:3c:10:c2:98:e1:ef:bf:
c8:a1:a6:65:2d:8f:b0:28:15:a5:62:f5:89:a0:fc:e7:53:6a:
70:d2:d9:3e:4e:71:69:88:d2:e0:10:d7:d7:ab:18:b5:fd:fb:
23:8c:03:0c:a2:f3:4c:70:c5:e2:03:e5:40:ee:20:90:8f:d5:
67:73:f4:ec:a0:39:80:8b:80:47:ac:6f:e0:7c:e1:00:3c:2c:
73:59:a3:09:15:74:43:56:64:76:cf:7e:56:ce:ab:6a:39:4b:
ba:bd:45:4b:72:93:b5:16:d8:05:c4:4c:4f:e7:6d:2f:0b:fe:
11:bc:7c:83:68:11:44:d4:06:53:7a:e5:1a:e3:d8:7e:eb:df:
cc:44:f5:43:cd:97:f1:8a:57:68:9b:39:83:98:33:e7:fc:c8:
e4:4e:36:17:ba:77:35:fb:5e:18:a4:c4:ac:8b:0e:4f:0e:23:
57:82:b7:9f:e5:16:ee:cf:12:48:4a:ce:d2:63:7a:46:54:52:
17:ae:29:43:34:26:75:81:95:4e:f8:82:36:72:f7:63:f6:a4:
9a:93:37:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 08:42:48 2025 by rpki-client