$ rpki-client -vvf rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233372e302f32342d3234203d3e203333333535.roa File: 31342e3133372e3233372e302f32342d3234203d3e203333333535.roa (raw, json) Hash identifier: tdZgviidGVEkzW/v238miaG1q03QmaeBgR1BXoSlvd8= Subject key identifier: FE:57:93:98:C2:AE:74:FB:41:9E:70:CC:0A:DB:07:36:5A:4F:25:14 Certificate issuer: /CN=A912C2530000/serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Certificate serial: 0A673A96EEC9BAE0D73321AB2DB9237B026F5230 Authority key identifier: 61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233372e302f32342d3234203d3e203333333535.roa Signing time: Thu 02 Apr 2026 10:15:28 +0000 ROA not before: Thu 02 Apr 2026 10:10:28 +0000 ROA not after: Thu 01 Apr 2027 10:15:28 +0000 asID: 33355 IP address blocks: 14.137.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 Apr 2026 12:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:67:3a:96:ee:c9:ba:e0:d7:33:21:ab:2d:b9:23:7b:02:6f:52:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2530000, serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Validity Not Before: Apr 2 10:10:28 2026 GMT Not After : Apr 1 10:15:28 2027 GMT Subject: CN=FE579398C2AE74FB419E70CC0ADB07365A4F2514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:32:c4:19:ab:fe:e4:22:60:7c:3b:01:f4:5a: c2:85:8a:57:0f:38:5b:d4:ce:82:5f:2e:e9:ec:67: 00:37:3b:a9:70:ca:c0:25:eb:a3:ef:1e:08:87:b0: 9d:24:a5:d5:c4:6e:e6:20:96:a2:16:a5:6c:c6:cc: d2:7a:58:64:39:46:1a:cb:c5:5f:e4:6f:f6:5c:fe: f3:0f:54:01:48:e2:53:db:d7:aa:f8:7b:05:56:ea: 1e:c6:6e:7c:a3:57:6a:fc:3a:01:bc:eb:25:ed:6b: b7:22:2b:c8:13:35:49:e0:4f:d9:12:e3:01:35:25: d3:98:7f:37:b5:c5:c5:6e:1f:b4:7c:bc:45:f1:5f: 06:c6:1c:3a:66:93:59:90:de:f9:e4:c0:ac:d7:4f: 29:96:c7:49:49:92:7c:e3:2d:b3:be:cd:59:2a:89: 17:9a:27:bd:14:c0:cb:05:eb:95:fc:b0:c8:99:0a: 99:02:2d:0f:32:3d:2f:0b:08:58:3b:51:2a:19:34: 9a:b3:a7:2c:4c:2b:5a:b4:97:56:99:35:6d:1d:f2: 0a:08:f6:d1:bb:a8:79:2e:9b:8c:7b:26:65:9a:89: 37:fe:ed:ad:76:80:1f:41:1a:6a:60:eb:b5:a7:f7: e7:0e:67:fa:50:82:20:66:37:45:ff:1a:b7:f7:a4: 27:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:57:93:98:C2:AE:74:FB:41:9E:70:CC:0A:DB:07:36:5A:4F:25:14 X509v3 Authority Key Identifier: keyid:61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233372e302f32342d3234203d3e203333333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.137.237.0/24 Signature Algorithm: sha256WithRSAEncryption 37:40:2c:e9:61:43:e8:42:c5:ae:10:a0:7d:83:65:ab:e5:7d: 04:ba:74:86:2b:21:3f:2a:06:99:a0:71:09:3a:8a:05:90:f6: c0:90:d1:51:90:b7:eb:2d:28:6c:33:14:2a:26:c4:0f:7f:7a: 80:62:53:e5:41:86:c0:91:be:53:8a:9c:23:16:cd:75:da:1f: d5:10:f1:d0:2b:23:bf:06:b6:da:50:a5:ba:3f:b7:bd:19:75: 7f:cd:38:46:0a:39:9e:f4:55:4b:d3:8d:cb:0c:09:f4:70:87: 66:b2:45:08:69:76:f4:8d:b6:1e:8e:56:60:c8:0c:07:51:3b: 94:55:6b:89:40:73:e2:48:ec:cd:ee:4b:96:b6:16:c8:26:d6: f1:3b:f2:34:88:f9:44:12:8f:a7:f7:c6:6c:f9:52:0d:18:b5: 4e:c6:ac:35:36:41:0d:17:65:5d:19:ab:4e:9e:91:fb:05:6b: 32:d5:3f:f4:bc:52:cf:1b:ad:23:61:27:b3:7f:d9:a5:fa:07: f5:86:ea:74:67:32:74:e3:86:dd:e3:71:12:85:28:9b:89:1a: 91:6b:4d:31:5b:e8:58:6c:2b:fe:0c:c1:24:5a:da:09:b1:8b: 21:67:cf:56:fd:da:cc:92:67:8c:97:8c:50:ab:98:14:f6:48: 82:41:fe:42 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUCmc6lu7JuuDXMyGrLbkjewJvUjAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMkMyNTMwMDAwMTEwLwYDVQQFEyg2MTU2QkVDQTAz MTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0MB4XDTI2MDQwMjEwMTAyOFoX DTI3MDQwMTEwMTUyOFowMzExMC8GA1UEAxMoRkU1NzkzOThDMkFFNzRGQjQxOUU3 MENDMEFEQjA3MzY1QTRGMjUxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8yxBmr/uQiYHw7AfRawoWKVw84W9TOgl8u6exnADc7qXDKwCXro+8eCIew nSSl1cRu5iCWohalbMbM0npYZDlGGsvFX+Rv9lz+8w9UAUjiU9vXqvh7BVbqHsZu fKNXavw6AbzrJe1rtyIryBM1SeBP2RLjATUl05h/N7XFxW4ftHy8RfFfBsYcOmaT WZDe+eTArNdPKZbHSUmSfOMts77NWSqJF5onvRTAywXrlfywyJkKmQItDzI9LwsI WDtRKhk0mrOnLEwrWrSXVpk1bR3yCgj20buoeS6bjHsmZZqJN/7trXaAH0EaamDr taf35w5n+lCCIGY3Rf8at/ekJy8CAwEAAaOCAhEwggINMB0GA1UdDgQWBBT+V5OY wq50+0GecMwK2wc2Wk8lFDAfBgNVHSMEGDAWgBRhVr7KAxDHALi0r0PEctciv24W lDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyQzI1MzAwMDAvMC82MTU2QkVD QTAzMTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9ZVmEteWdNUXh3 QzR0SzlEeEhMWElyOXVGcFEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMkMy NTMwMDAwLzAvMzEzNDJlMzEzMzM3MmUzMjMzMzcyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzMzMzMzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQADontMA0GCSqGSIb3DQEBCwUAA4IB AQA3QCzpYUPoQsWuEKB9g2Wr5X0EunSGKyE/KgaZoHEJOooFkPbAkNFRkLfrLShs MxQqJsQPf3qAYlPlQYbAkb5TipwjFs112h/VEPHQKyO/BrbaUKW6P7e9GXV/zThG Cjme9FVL043LDAn0cIdmskUIaXb0jbYejlZgyAwHUTuUVWuJQHPiSOzN7kuWthbI JtbxO/I0iPlEEo+n98Zs+VINGLVOxqw1NkENF2VdGatOnpH7BWsy1T/0vFLPG60j YSezf9ml+gf1hup0ZzJ044bd43EShSibiRqRa00xW+hYbCv+DMEkWtoJsYshZ89W /drMkmeMl4xQq5gU9kiCQf5C -----END CERTIFICATE-----Generated at Sun Apr 5 21:04:18 2026 by rpki-client