$ rpki-client -vvf rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3232392e302f32342d3234203d3e203336303032.roa File: 31342e3133372e3232392e302f32342d3234203d3e203336303032.roa (raw, json) Hash identifier: JMZ+Bq7j68uMbPjAiXaw60H1hXS1crHiJGcyDLyFC6E= Subject key identifier: DE:88:15:47:72:9C:EB:D6:22:B5:67:F4:5E:61:83:75:38:9A:30:B5 Certificate issuer: /CN=A912C2530000/serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Certificate serial: 3469231F010D3F0C2CFD1F98DF40F5BD9FF1E89D Authority key identifier: 61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3232392e302f32342d3234203d3e203336303032.roa Signing time: Tue 02 Jun 2026 14:02:50 +0000 ROA not before: Tue 02 Jun 2026 13:57:50 +0000 ROA not after: Tue 01 Jun 2027 14:02:50 +0000 asID: 36002 IP address blocks: 14.137.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 13:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:69:23:1f:01:0d:3f:0c:2c:fd:1f:98:df:40:f5:bd:9f:f1:e8:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2530000, serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Validity Not Before: Jun 2 13:57:50 2026 GMT Not After : Jun 1 14:02:50 2027 GMT Subject: CN=DE881547729CEBD622B567F45E618375389A30B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:63:a8:23:5a:5e:39:07:ed:a4:ec:ce:b2:b2: c6:67:1a:ad:82:08:29:16:72:35:cc:73:06:03:38: 5d:43:88:38:68:10:ed:dd:3b:46:42:91:a6:40:1d: 4c:ec:77:e0:01:0a:f1:aa:60:47:2f:77:e2:28:5a: cd:f4:ae:ea:07:7d:48:97:54:2e:ac:58:e5:27:81: b8:ca:e9:23:20:36:4a:c0:af:70:5e:c9:c7:21:59: f2:d5:ee:61:f2:0f:88:40:d9:ed:4a:7d:ae:78:a3: 39:95:9f:5c:4b:0e:fb:98:8f:27:af:79:5e:34:0a: 82:f9:61:a0:b5:41:73:12:da:88:5e:71:a3:92:f4: 01:13:5e:55:dc:da:bd:22:75:f5:3e:72:98:2c:1f: 20:b8:7c:0b:cf:c8:20:bd:6a:1c:cc:69:f6:c2:47: 64:e4:c2:92:13:54:fc:f6:e4:57:3d:d2:01:5d:c2: eb:76:70:9d:86:8f:85:ff:5e:6b:db:53:68:f6:5a: bc:67:8a:b3:db:c3:b3:82:f4:60:67:95:8e:ce:82: 07:35:c2:0e:13:65:55:b0:74:07:7e:83:b5:7f:33: a4:18:4f:f7:d2:1e:02:e6:cd:06:0f:f7:64:ee:d7: f8:32:57:29:f4:a6:e7:da:0a:74:0f:48:c7:94:22: a6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:88:15:47:72:9C:EB:D6:22:B5:67:F4:5E:61:83:75:38:9A:30:B5 X509v3 Authority Key Identifier: keyid:61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3232392e302f32342d3234203d3e203336303032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.137.229.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:af:98:66:91:e3:61:d1:89:96:3f:98:2f:4d:ca:03:f3:b8: 2f:0e:19:62:4e:ac:49:53:2b:55:a4:39:de:33:58:80:58:22: 47:6f:de:5d:69:f1:11:46:22:9d:ca:cd:c5:df:02:00:4e:ac: ad:1e:bb:cf:bf:8a:ad:a5:bc:36:dd:e6:d7:4a:50:45:df:3c: 1e:e1:ca:0e:10:3a:2e:66:c4:e3:25:d9:49:97:9f:35:ee:fd: 37:e7:a5:27:d0:c9:94:9d:a0:e8:d8:37:07:29:ec:03:f4:20: 8d:bb:7c:85:e8:e7:ae:4f:64:3b:99:f9:97:4a:50:75:41:2f: fb:56:ad:2a:79:17:a9:41:88:8e:a6:3a:6a:19:56:ef:5d:cf: e6:36:c5:34:70:c3:da:6f:e8:fa:00:1a:2f:c6:d7:7e:d9:2d: dd:1b:61:0c:07:0b:b2:0c:2f:da:c6:b7:b0:4c:f5:e9:0b:1e: e6:cd:00:43:9d:4b:56:ca:ac:ec:41:8e:29:05:db:46:9e:77: 47:64:a3:0d:04:36:37:5d:f3:6a:74:05:2b:5e:dd:78:de:e4: a2:34:fc:60:0c:7f:45:8e:fb:dd:82:67:e6:ac:50:f7:42:24: ef:33:18:44:6b:80:bb:2f:1c:69:9f:31:02:f1:d8:cd:21:6d: 6c:bb:15:d2 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUNGkjHwENPwws/R+Y30D1vZ/x6J0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMkMyNTMwMDAwMTEwLwYDVQQFEyg2MTU2QkVDQTAz MTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0MB4XDTI2MDYwMjEzNTc1MFoX DTI3MDYwMTE0MDI1MFowMzExMC8GA1UEAxMoREU4ODE1NDc3MjlDRUJENjIyQjU2 N0Y0NUU2MTgzNzUzODlBMzBCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpjqCNaXjkH7aTszrKyxmcarYIIKRZyNcxzBgM4XUOIOGgQ7d07RkKRpkAd TOx34AEK8apgRy934ihazfSu6gd9SJdULqxY5SeBuMrpIyA2SsCvcF7JxyFZ8tXu YfIPiEDZ7Up9rnijOZWfXEsO+5iPJ695XjQKgvlhoLVBcxLaiF5xo5L0ARNeVdza vSJ19T5ymCwfILh8C8/IIL1qHMxp9sJHZOTCkhNU/PbkVz3SAV3C63ZwnYaPhf9e a9tTaPZavGeKs9vDs4L0YGeVjs6CBzXCDhNlVbB0B36DtX8zpBhP99IeAubNBg/3 ZO7X+DJXKfSm59oKdA9Ix5QipvUCAwEAAaOCAhEwggINMB0GA1UdDgQWBBTeiBVH cpzr1iK1Z/ReYYN1OJowtTAfBgNVHSMEGDAWgBRhVr7KAxDHALi0r0PEctciv24W lDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyQzI1MzAwMDAvMC82MTU2QkVD QTAzMTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9ZVmEteWdNUXh3 QzR0SzlEeEhMWElyOXVGcFEuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMkMy NTMwMDAwLzAvMzEzNDJlMzEzMzM3MmUzMjMyMzkyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzMzM2MzAzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQADonlMA0GCSqGSIb3DQEBCwUAA4IB AQALr5hmkeNh0YmWP5gvTcoD87gvDhliTqxJUytVpDneM1iAWCJHb95dafERRiKd ys3F3wIATqytHrvPv4qtpbw23ebXSlBF3zwe4coOEDouZsTjJdlJl5817v0356Un 0MmUnaDo2DcHKewD9CCNu3yF6OeuT2Q7mfmXSlB1QS/7Vq0qeRepQYiOpjpqGVbv Xc/mNsU0cMPab+j6ABovxtd+2S3dG2EMBwuyDC/axrewTPXpCx7mzQBDnUtWyqzs QY4pBdtGnndHZKMNBDY3XfNqdAUrXt143uSiNPxgDH9FjvvdgmfmrFD3QiTvMxhE a4C7LxxpnzEC8djNIW1suxXS -----END CERTIFICATE-----Generated at Thu Jun 4 03:19:44 2026 by rpki-client