$ rpki-client -vvf rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233312e302f32342d3234203d3e20383334.roa File: 31342e3133372e3233312e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: bUL6cdLQCE0VZsqzSstRxQMK8AKzofk/xFYW0p1V9hg= Subject key identifier: AB:E7:1B:1C:19:8C:78:31:88:63:37:65:C4:63:CA:3F:06:AD:0F:4D Certificate issuer: /CN=A912C2530000/serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Certificate serial: 7AD8DDA22D5CCF1197E628A0C3533303AC29BDD1 Authority key identifier: 61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233312e302f32342d3234203d3e20383334.roa Signing time: Wed 25 Feb 2026 00:28:53 +0000 ROA not before: Wed 25 Feb 2026 00:23:53 +0000 ROA not after: Wed 24 Feb 2027 00:28:53 +0000 asID: 834 IP address blocks: 14.137.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 14:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d8:dd:a2:2d:5c:cf:11:97:e6:28:a0:c3:53:33:03:ac:29:bd:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2530000, serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Validity Not Before: Feb 25 00:23:53 2026 GMT Not After : Feb 24 00:28:53 2027 GMT Subject: CN=ABE71B1C198C783188633765C463CA3F06AD0F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:36:ba:11:29:97:af:f0:8b:50:d4:5a:fa:94: 82:99:22:cb:b6:42:10:dc:7c:d9:e9:5e:04:15:8d: fd:e3:f6:3b:f6:f1:ae:c8:cd:b6:4f:0b:a1:53:19: cb:0a:0f:4c:70:21:76:cc:f0:f6:7e:22:46:9b:d8: 98:b3:6d:e1:ba:26:e3:b6:dc:aa:0a:44:4a:21:4e: eb:f9:fa:b4:54:95:db:1a:19:1f:ee:13:49:c1:e0: e4:53:08:47:e8:7f:3a:8f:87:87:56:0f:d0:24:e8: 3a:c2:ef:1d:16:a6:b0:fc:e4:bd:c4:1b:3c:67:7b: db:ec:f2:bf:d5:2c:71:cc:3d:19:20:3e:d1:10:1f: f3:88:e3:6a:55:a1:2d:31:74:7e:77:03:8e:da:45: a5:04:db:c1:00:ac:a8:7b:7d:17:07:a6:6d:17:e6: 4b:a0:d6:2e:57:8c:2e:15:91:8a:ed:8f:84:a5:ec: 5d:5d:89:d9:90:fc:a2:fc:53:51:12:af:df:fc:20: ea:95:3e:b1:0b:73:f1:74:0e:61:79:0f:f7:14:4f: 77:82:2d:e0:af:c7:36:1c:15:6c:b4:bd:3d:92:98: 78:bb:c4:17:96:33:4e:5c:22:10:02:e2:c3:33:b1: 07:70:25:d0:09:fa:a4:ad:48:02:56:7c:c1:f1:be: ca:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E7:1B:1C:19:8C:78:31:88:63:37:65:C4:63:CA:3F:06:AD:0F:4D X509v3 Authority Key Identifier: keyid:61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233312e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.137.231.0/24 Signature Algorithm: sha256WithRSAEncryption a4:b1:2e:b4:d8:d8:10:c6:dc:25:d8:0d:a5:84:ff:e9:77:f7: cc:d2:77:02:83:03:45:c8:ee:9c:3f:ef:1b:f9:b8:99:3e:7d: c7:79:d8:77:e6:e7:c4:67:6f:a7:1c:dd:f5:1f:bc:9e:28:47: 86:f3:a2:40:8d:7b:19:78:7b:83:4b:f5:5e:8b:6e:07:bf:52: 2d:23:ea:97:ad:41:32:dc:a2:65:c3:72:0a:02:ad:a2:0f:73: 08:27:2e:bc:96:35:2b:69:d5:a5:4a:79:b5:02:38:61:53:76: 7c:42:b7:75:ec:65:5b:2f:78:19:e2:65:3a:4c:01:ff:92:37: 6e:62:62:2b:04:6d:2e:b5:43:a6:1d:1d:cf:e2:67:ca:f5:02: 9c:32:3d:c1:e1:35:14:3c:db:55:70:9d:fc:7d:d2:7f:b9:b3: 10:f4:54:e2:34:3a:cd:99:22:28:56:40:41:29:1a:ae:5f:35: 91:a8:ff:f5:6a:9a:a1:34:c1:95:84:e2:d2:fb:e6:bd:56:b3: 24:bf:0e:ea:2c:0a:d7:80:ff:ab:ec:a7:27:30:12:3d:e9:cd: dc:aa:3c:fc:09:13:84:04:dd:be:d5:59:77:9f:72:e8:32:24: a4:35:d0:35:12:98:99:cb:ce:72:68:2f:4a:0f:2c:5c:e7:ab: 21:28:ef:e8 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIUetjdoi1czxGX5iigw1MzA6wpvdEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxMkMyNTMwMDAwMTEwLwYDVQQFEyg2MTU2QkVDQTAz MTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0MB4XDTI2MDIyNTAwMjM1M1oX DTI3MDIyNDAwMjg1M1owMzExMC8GA1UEAxMoQUJFNzFCMUMxOThDNzgzMTg4NjMz NzY1QzQ2M0NBM0YwNkFEMEY0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPg2uhEpl6/wi1DUWvqUgpkiy7ZCENx82eleBBWN/eP2O/bxrsjNtk8LoVMZ ywoPTHAhdszw9n4iRpvYmLNt4bom47bcqgpESiFO6/n6tFSV2xoZH+4TScHg5FMI R+h/Oo+Hh1YP0CToOsLvHRamsPzkvcQbPGd72+zyv9Usccw9GSA+0RAf84jjalWh LTF0fncDjtpFpQTbwQCsqHt9FwembRfmS6DWLleMLhWRiu2PhKXsXV2J2ZD8ovxT URKv3/wg6pU+sQtz8XQOYXkP9xRPd4It4K/HNhwVbLS9PZKYeLvEF5YzTlwiEALi wzOxB3Al0An6pK1IAlZ8wfG+ypkCAwEAAaOCAg0wggIJMB0GA1UdDgQWBBSr5xsc GYx4MYhjN2XEY8o/Bq0PTTAfBgNVHSMEGDAWgBRhVr7KAxDHALi0r0PEctciv24W lDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyQzI1MzAwMDAvMC82MTU2QkVD QTAzMTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9ZVmEteWdNUXh3 QzR0SzlEeEhMWElyOXVGcFEuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMkMy NTMwMDAwLzAvMzEzNDJlMzEzMzM3MmUzMjMzMzEyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYB BQUHAQcBAf8EEDAOMAwEAgABMAYDBAAOiecwDQYJKoZIhvcNAQELBQADggEBAKSx LrTY2BDG3CXYDaWE/+l398zSdwKDA0XI7pw/7xv5uJk+fcd52Hfm58Rnb6cc3fUf vJ4oR4bzokCNexl4e4NL9V6Lbge/Ui0j6petQTLcomXDcgoCraIPcwgnLryWNStp 1aVKebUCOGFTdnxCt3XsZVsveBniZTpMAf+SN25iYisEbS61Q6YdHc/iZ8r1Apwy PcHhNRQ821Vwnfx90n+5sxD0VOI0Os2ZIihWQEEpGq5fNZGo//VqmqE0wZWE4tL7 5r1WsyS/DuosCteA/6vspycwEj3pzdyqPPwJE4QE3b7VWXefcugyJKQ10DUSmJnL znJoL0oPLFznqyEo7+g= -----END CERTIFICATE-----Generated at Sun Mar 1 21:47:40 2026 by rpki-client