Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a393a3a2f34382d3438203d3e203134363138.roa
File: 326130323a356265303a393a3a2f34382d3438203d3e203134363138.roa (raw, json)
Hash identifier: OKlyE+A/4i+fZpu9aRv7GvNGIhStBViDnuDPWiOWIYQ=
Subject key identifier: 97:06:76:02:51:C4:25:6F:8E:B9:39:A5:FC:2B:7B:CA:05:7B:CD:20
Certificate issuer: /CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Certificate serial: 5950AF415278CC5A62BAC4D6F930D0DDAA3AA551
Authority key identifier: 5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a393a3a2f34382d3438203d3e203134363138.roa
Signing time: Fri 27 Mar 2026 01:27:55 +0000
ROA not before: Fri 27 Mar 2026 01:22:55 +0000
ROA not after: Fri 26 Mar 2027 01:27:55 +0000
asID: 14618
IP address blocks: 2a02:5be0:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 19:56:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:50:af:41:52:78:cc:5a:62:ba:c4:d6:f9:30:d0:dd:aa:3a:a5:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ead10be7ec295336e4b5680e0d393b677c3649a
Validity
Not Before: Mar 27 01:22:55 2026 GMT
Not After : Mar 26 01:27:55 2027 GMT
Subject: CN=9706760251C4256F8EB939A5FC2B7BCA057BCD20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9c:f7:e6:46:f3:f2:d4:c3:d7:1e:ff:7a:43:
2c:05:3c:72:09:54:3b:ab:a1:54:c7:7f:e9:56:77:
8d:08:db:fc:4c:7f:71:39:35:fe:df:20:7d:37:bd:
94:4a:d0:b1:bc:27:8d:94:85:1f:f9:2a:8c:6b:f5:
05:b4:84:72:58:a8:07:63:81:3c:cd:af:e1:67:b2:
75:39:0f:6f:8f:54:ba:44:a4:ba:5c:8b:93:b3:2f:
c7:e2:94:08:d9:7c:d5:9a:0e:af:ad:2e:24:dc:84:
2f:82:a7:5a:eb:a1:db:c2:94:51:5b:34:ce:fd:ca:
92:ff:b3:ad:ef:82:88:d2:13:a9:65:f6:28:2c:3b:
66:5e:06:a3:a5:e6:8c:fb:08:99:5f:03:cc:19:32:
91:66:0c:e4:57:4c:57:01:1f:3f:bc:fa:0b:b5:1a:
f2:fb:fd:90:d2:41:49:08:67:f6:fc:e4:8f:a8:3a:
55:52:7f:aa:50:b2:5f:95:aa:15:c7:27:69:8c:fa:
89:61:7d:25:97:1c:af:a2:7c:34:60:5d:da:b8:a3:
b1:dd:49:0b:a5:5f:aa:3a:2c:a5:93:12:12:3a:b4:
45:1d:07:aa:17:74:4c:35:7a:63:7a:18:fe:54:07:
ae:e7:3e:49:f5:ee:d7:12:06:a8:2e:41:ac:8e:96:
fe:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:06:76:02:51:C4:25:6F:8E:B9:39:A5:FC:2B:7B:CA:05:7B:CD:20
X509v3 Authority Key Identifier:
keyid:5E:AD:10:BE:7E:C2:95:33:6E:4B:56:80:E0:D3:93:B6:77:C3:64:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/5EAD10BE7EC295336E4B5680E0D393B677C3649A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xq0Qvn7ClTNuS1aA4NOTtnfDZJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A9192A980000/3/326130323a356265303a393a3a2f34382d3438203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:5be0:9::/48
Signature Algorithm: sha256WithRSAEncryption
6d:28:b6:f4:72:09:02:f9:81:ae:02:20:3f:be:c2:bf:e3:ac:
50:ee:cc:c6:59:3c:b7:0b:b2:32:fc:c4:cf:22:c8:2b:6b:5d:
52:2a:7d:7c:cb:a3:84:85:11:df:c6:68:11:35:74:ea:e3:54:
a7:2f:8f:96:df:7d:c4:eb:e1:51:e8:9d:5b:7b:00:7d:30:86:
da:90:46:cb:e7:f9:1b:41:ee:5e:da:a9:68:0a:7d:00:34:3a:
17:ff:fd:90:a8:41:13:9a:c1:48:92:18:2f:9b:ac:b9:73:b6:
78:20:13:68:83:0d:26:c9:54:7e:5e:2d:92:20:0e:72:d1:6a:
e9:48:b6:6c:16:97:e5:7b:5c:d4:c9:61:70:83:26:20:eb:da:
ed:32:32:02:0e:a6:09:34:bc:fc:b8:57:f0:11:60:6d:a6:32:
72:6a:7d:d1:fd:11:31:f9:22:ea:a0:1b:71:1d:98:d1:0c:25:
bb:ce:99:ec:a2:7b:63:ce:a6:4d:ac:ce:0a:0f:58:4e:68:c7:
d7:8b:68:b0:11:09:82:2b:bf:a1:6f:0d:6c:f1:d9:94:5c:6e:
e6:ab:54:00:ce:09:10:f3:21:56:72:7d:66:ad:83:2d:5f:03:
fc:99:a6:9f:65:6f:16:0c:ff:46:b8:6a:69:d9:24:63:b9:2a:
2d:d6:1d:0b
-----BEGIN CERTIFICATE-----
MIIE8zCCA9ugAwIBAgIUWVCvQVJ4zFpiusTW+TDQ3ao6pVEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWVhZDEwYmU3ZWMyOTUzMzZlNGI1NjgwZTBkMzkzYjY3
N2MzNjQ5YTAeFw0yNjAzMjcwMTIyNTVaFw0yNzAzMjYwMTI3NTVaMDMxMTAvBgNV
BAMTKDk3MDY3NjAyNTFDNDI1NkY4RUI5MzlBNUZDMkI3QkNBMDU3QkNEMjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCknPfmRvPy1MPXHv96QywFPHIJ
VDuroVTHf+lWd40I2/xMf3E5Nf7fIH03vZRK0LG8J42UhR/5Koxr9QW0hHJYqAdj
gTzNr+FnsnU5D2+PVLpEpLpci5OzL8filAjZfNWaDq+tLiTchC+Cp1rrodvClFFb
NM79ypL/s63vgojSE6ll9igsO2ZeBqOl5oz7CJlfA8wZMpFmDORXTFcBHz+8+gu1
GvL7/ZDSQUkIZ/b85I+oOlVSf6pQsl+VqhXHJ2mM+olhfSWXHK+ifDRgXdq4o7Hd
SQulX6o6LKWTEhI6tEUdB6oXdEw1emN6GP5UB67nPkn17tcSBqguQayOlv5hAgMB
AAGjggH9MIIB+TAdBgNVHQ4EFgQUlwZ2AlHEJW+OuTml/Ct7ygV7zSAwHwYDVR0j
BBgwFoAUXq0Qvn7ClTNuS1aA4NOTtnfDZJowDgYDVR0PAQH/BAQDAgeAMHIGA1Ud
HwRrMGkwZ6BloGOGYXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRv
cnkvQTkxOTJBOTgwMDAwLzMvNUVBRDEwQkU3RUMyOTUzMzZFNEI1NjgwRTBEMzkz
QjY3N0MzNjQ5QS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3lu
YzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hxMFF2bjdDbFRO
dVMxYUE0Tk9UdG5mRFpKby5jZXIwgY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUH
MAuGcXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxOTJB
OTgwMDAwLzMvMzI2MTMwMzIzYTM1NjI2NTMwM2EzOTNhM2EyZjM0MzgyZDM0Mzgy
MDNkM2UyMDMxMzQzNjMxMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
IgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqAlvgAAkwDQYJKoZIhvcNAQEL
BQADggEBAG0otvRyCQL5ga4CID++wr/jrFDuzMZZPLcLsjL8xM8iyCtrXVIqfXzL
o4SFEd/GaBE1dOrjVKcvj5bffcTr4VHonVt7AH0whtqQRsvn+RtB7l7aqWgKfQA0
Ohf//ZCoQROawUiSGC+brLlztnggE2iDDSbJVH5eLZIgDnLRaulItmwWl+V7XNTJ
YXCDJiDr2u0yMgIOpgk0vPy4V/ARYG2mMnJqfdH9ETH5IuqgG3EdmNEMJbvOmeyi
e2POpk2szgoPWE5ox9eLaLARCYIrv6FvDWzx2ZRcbuarVADOCRDzIVZyfWatgy1f
A/yZpp9lbxYM/0a4amnZJGO5Ki3WHQs=
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:15 2026 by rpki-client