$ rpki-client -vvf rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3234302e302f32342d3234203d3e20383334.roa File: 31342e3133372e3234302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: UpFFtqP4jK3VVGHyQ1fn1W5S410BNBGLmhCOzvii1u0= Subject key identifier: 57:92:7F:61:3A:A8:A5:DA:68:CF:6A:80:C5:AA:3D:2F:7A:24:A9:2A Certificate issuer: /CN=A912C2530000/serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Certificate serial: 53E19E975EEBC6240537C8C65B3728E5DC3956A5 Authority key identifier: 61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3234302e302f32342d3234203d3e20383334.roa Signing time: Mon 23 Mar 2026 00:47:56 +0000 ROA not before: Mon 23 Mar 2026 00:42:56 +0000 ROA not after: Mon 22 Mar 2027 00:47:56 +0000 asID: 834 IP address blocks: 14.137.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 13:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e1:9e:97:5e:eb:c6:24:05:37:c8:c6:5b:37:28:e5:dc:39:56:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2530000, serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Validity Not Before: Mar 23 00:42:56 2026 GMT Not After : Mar 22 00:47:56 2027 GMT Subject: CN=57927F613AA8A5DA68CF6A80C5AA3D2F7A24A92A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:30:7f:66:ae:33:99:a0:5e:b5:b8:59:3e:d0: b9:1a:b5:5f:5b:47:21:b5:cf:dc:4b:8b:83:97:91: 0c:77:95:13:4b:d9:d0:60:04:34:a4:4f:31:43:12: 1c:0f:f6:85:95:bd:3c:fb:dc:b0:88:f5:ac:64:a2: 4a:c0:8c:9b:9a:58:8f:9d:dd:a1:c2:c6:50:7a:1c: fd:27:ee:28:14:97:7a:13:ae:d7:77:63:e6:b4:3b: f3:05:b5:76:9f:5f:34:b3:d5:95:8d:0f:e2:0c:fa: 97:f0:8e:ea:6f:25:ea:96:7c:ad:d2:39:33:8c:0b: 69:2e:e0:d6:3b:76:a8:fc:e5:f9:4f:d3:8f:3d:9f: 8e:89:30:89:d8:98:23:46:2b:d5:c9:b1:1e:4f:4a: 25:9a:bf:b2:c9:f4:66:83:10:33:65:d2:f1:e4:d5: f4:4c:7a:d3:32:62:65:a0:0a:d2:38:6f:36:a4:60: 7f:19:8b:25:22:21:38:23:9b:43:2b:da:b5:5a:68: 2f:0d:5d:75:25:bf:9a:99:10:b0:98:9e:75:ff:70: 93:a3:62:77:46:ac:ac:49:53:83:5b:4e:82:66:00: eb:1e:89:68:19:12:f1:75:ba:81:d9:d4:8f:7d:67: 0f:5b:09:cb:f5:93:ac:b3:e9:39:7b:67:71:69:11: 02:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:92:7F:61:3A:A8:A5:DA:68:CF:6A:80:C5:AA:3D:2F:7A:24:A9:2A X509v3 Authority Key Identifier: keyid:61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3234302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.137.240.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:b9:78:2e:34:27:f3:f8:fa:c1:f2:60:4b:dc:2d:b0:3b:8d: d5:7b:1a:a0:f6:24:47:5c:ed:8b:b4:5e:97:b9:41:91:f4:6c: e5:4d:9f:be:4b:f3:fd:ad:7d:1d:ca:b3:93:24:0e:71:ea:e3: 12:11:e6:4d:dd:a4:2a:8f:3a:21:77:85:06:37:b4:64:c5:40: 0c:28:df:68:31:6c:ca:4b:3c:99:15:14:08:3a:ec:06:85:5c: 0d:92:85:a0:0c:7c:e6:d7:13:a0:b0:1d:76:4a:4f:d8:2f:38: 39:2c:f5:05:0b:f9:d7:e1:75:e7:22:ae:35:38:82:47:4f:2f: 75:38:06:62:65:40:bd:a8:ba:66:4c:a8:bc:39:ad:a2:03:9a: 08:af:7f:34:6b:1b:96:b4:c1:45:65:c9:62:d6:9c:44:cb:0a: 01:cb:0f:2a:a4:d8:45:5d:ca:0e:d5:45:b9:fd:83:8f:6b:34: bf:da:70:ab:67:0a:1c:a9:a8:64:1a:11:07:e5:01:1a:c8:25: 0f:4d:6d:e1:bc:ac:f7:34:8e:20:5a:62:28:38:9c:00:c0:69: 5a:39:4e:dd:f2:04:3d:42:f5:60:85:49:ab:4d:50:ff:34:73: df:e3:2b:2d:4c:bf:58:c2:19:1b:6d:b5:3c:75:4a:43:fa:c4: 8d:f0:33:d8 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIUU+Gel17rxiQFN8jGWzco5dw5VqUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMkMyNTMwMDAwMTEwLwYDVQQFEyg2MTU2QkVDQTAz MTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0MB4XDTI2MDMyMzAwNDI1NloX DTI3MDMyMjAwNDc1NlowMzExMC8GA1UEAxMoNTc5MjdGNjEzQUE4QTVEQTY4Q0Y2 QTgwQzVBQTNEMkY3QTI0QTkyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI0wf2auM5mgXrW4WT7QuRq1X1tHIbXP3EuLg5eRDHeVE0vZ0GAENKRPMUMS HA/2hZW9PPvcsIj1rGSiSsCMm5pYj53docLGUHoc/SfuKBSXehOu13dj5rQ78wW1 dp9fNLPVlY0P4gz6l/CO6m8l6pZ8rdI5M4wLaS7g1jt2qPzl+U/Tjz2fjokwidiY I0Yr1cmxHk9KJZq/ssn0ZoMQM2XS8eTV9Ex60zJiZaAK0jhvNqRgfxmLJSIhOCOb QyvatVpoLw1ddSW/mpkQsJiedf9wk6Nid0asrElTg1tOgmYA6x6JaBkS8XW6gdnU j31nD1sJy/WTrLPpOXtncWkRAhsCAwEAAaOCAg0wggIJMB0GA1UdDgQWBBRXkn9h Oqil2mjPaoDFqj0veiSpKjAfBgNVHSMEGDAWgBRhVr7KAxDHALi0r0PEctciv24W lDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyQzI1MzAwMDAvMC82MTU2QkVD QTAzMTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9ZVmEteWdNUXh3 QzR0SzlEeEhMWElyOXVGcFEuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMkMy NTMwMDAwLzAvMzEzNDJlMzEzMzM3MmUzMjM0MzAyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYB BQUHAQcBAf8EEDAOMAwEAgABMAYDBAAOifAwDQYJKoZIhvcNAQELBQADggEBAGu5 eC40J/P4+sHyYEvcLbA7jdV7GqD2JEdc7Yu0Xpe5QZH0bOVNn75L8/2tfR3Ks5Mk DnHq4xIR5k3dpCqPOiF3hQY3tGTFQAwo32gxbMpLPJkVFAg67AaFXA2ShaAMfObX E6CwHXZKT9gvODks9QUL+dfhdecirjU4gkdPL3U4BmJlQL2oumZMqLw5raIDmgiv fzRrG5a0wUVlyWLWnETLCgHLDyqk2EVdyg7VRbn9g49rNL/acKtnChypqGQaEQfl ARrIJQ9NbeG8rPc0jiBaYig4nADAaVo5Tt3yBD1C9WCFSatNUP80c9/jKy1Mv1jC GRtttTx1SkP6xI3wM9g= -----END CERTIFICATE-----Generated at Thu Mar 26 17:59:09 2026 by rpki-client