$ rpki-client -vvf rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233362e302f32332d3234203d3e20383334.roa File: 31342e3133372e3233362e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: 0znyIQXXGYMunWIVFzB8zmNMNeSvlRA+9wS2E87FKOY= Subject key identifier: 78:7E:4C:A8:77:3E:67:72:83:A7:4E:37:89:F1:BD:36:58:11:FA:EC Certificate issuer: /CN=A912C2530000/serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Certificate serial: 21E7DEF4BDB490C6690BC7B9289031729F135978 Authority key identifier: 61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233362e302f32332d3234203d3e20383334.roa Signing time: Thu 19 Feb 2026 12:17:14 +0000 ROA not before: Thu 19 Feb 2026 12:12:14 +0000 ROA not after: Thu 18 Feb 2027 12:17:14 +0000 asID: 834 IP address blocks: 14.137.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 14:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:e7:de:f4:bd:b4:90:c6:69:0b:c7:b9:28:90:31:72:9f:13:59:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2530000, serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Validity Not Before: Feb 19 12:12:14 2026 GMT Not After : Feb 18 12:17:14 2027 GMT Subject: CN=787E4CA8773E677283A74E3789F1BD365811FAEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7d:09:6d:a2:39:72:7b:1c:5e:f3:9d:4e:26: b6:e8:d8:e2:17:48:cd:9b:2f:0c:76:9e:5e:7d:70: 9e:8a:b0:26:ea:29:ed:92:16:2f:d3:34:57:ba:0b: 3e:aa:89:91:79:9d:b8:79:01:2d:52:96:ed:f5:ef: 47:44:62:26:28:db:5d:fb:0c:42:95:ed:fb:81:be: ad:23:8b:0f:bf:4e:e1:15:b7:83:6d:d9:91:c4:6d: b9:c7:ab:e5:64:91:e1:e9:e7:a4:62:b6:f4:a0:08: b9:ef:8c:70:09:75:aa:d9:ce:35:53:96:df:ac:c0: d7:1e:d0:d5:78:a2:bf:82:ba:ea:92:1a:3d:47:26: 03:d3:36:b3:ee:d3:8c:c3:98:0f:6c:80:7d:71:44: 36:c9:48:1d:d6:df:88:56:a7:0f:c7:5d:0a:63:d6: 80:be:eb:29:96:e6:c6:a5:5b:e7:78:9c:53:49:36: 36:b9:41:bf:c0:71:2c:a6:cc:ae:cc:5e:43:d2:06: 1f:d9:5b:dc:8c:a1:34:66:fa:ef:3d:62:74:2b:80: 2d:c9:49:0d:25:ee:27:6a:87:77:32:c4:32:9d:98: 55:f6:f9:b1:0a:08:23:79:89:b5:38:44:70:31:4b: 79:f3:16:98:bb:7b:21:1b:9c:52:67:14:03:1f:2c: f9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7E:4C:A8:77:3E:67:72:83:A7:4E:37:89:F1:BD:36:58:11:FA:EC X509v3 Authority Key Identifier: keyid:61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3233362e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.137.236.0/23 Signature Algorithm: sha256WithRSAEncryption b0:51:5a:f8:03:72:0e:a5:62:54:78:ea:c0:28:fa:f0:b5:ef: fe:e8:45:f4:86:93:ee:b9:5c:62:82:93:93:5b:20:77:18:1a: bf:fe:c0:42:3e:84:c7:e5:d5:24:d0:0d:76:f4:08:c8:9b:e4: ff:2e:1c:ac:f0:7d:41:cb:45:78:b4:c0:35:68:55:ff:94:fb: c9:c2:ea:62:b3:6a:66:38:f9:de:ea:be:76:fa:12:63:d3:34: 60:5b:b3:ff:11:dd:0e:3c:87:54:d4:23:f5:28:8c:bc:45:d8: 12:ab:d9:42:c0:87:72:2a:7d:9b:d9:00:c5:8d:68:28:e8:d9: 38:d1:28:c9:00:6f:aa:65:7e:9f:b7:b0:fb:bf:4c:a7:40:fa: 14:b2:a6:c0:73:71:a6:a7:98:a5:e5:46:2b:89:b4:ad:a1:38: 3b:b7:d8:e0:e1:f8:81:ab:ed:aa:06:c5:0e:f9:40:a1:9a:84: 99:05:9d:b5:1b:10:b9:3d:5d:55:d1:cc:8f:f9:cc:2c:21:c3: ee:5f:6a:2f:17:57:30:c6:0d:81:fb:36:75:92:ec:b3:97:61: 41:e0:a5:bb:c1:94:50:3b:16:87:3b:d5:94:fa:a8:5e:f3:67: 32:7b:c3:ee:4f:60:08:fc:fb:46:53:d6:59:7c:e5:12:4c:e2: e5:25:49:5c -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIUIefe9L20kMZpC8e5KJAxcp8TWXgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxMkMyNTMwMDAwMTEwLwYDVQQFEyg2MTU2QkVDQTAz MTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0MB4XDTI2MDIxOTEyMTIxNFoX DTI3MDIxODEyMTcxNFowMzExMC8GA1UEAxMoNzg3RTRDQTg3NzNFNjc3MjgzQTc0 RTM3ODlGMUJEMzY1ODExRkFFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMV9CW2iOXJ7HF7znU4mtujY4hdIzZsvDHaeXn1wnoqwJuop7ZIWL9M0V7oL PqqJkXmduHkBLVKW7fXvR0RiJijbXfsMQpXt+4G+rSOLD79O4RW3g23ZkcRtucer 5WSR4ennpGK29KAIue+McAl1qtnONVOW36zA1x7Q1Xiiv4K66pIaPUcmA9M2s+7T jMOYD2yAfXFENslIHdbfiFanD8ddCmPWgL7rKZbmxqVb53icU0k2NrlBv8BxLKbM rsxeQ9IGH9lb3IyhNGb67z1idCuALclJDSXuJ2qHdzLEMp2YVfb5sQoII3mJtThE cDFLefMWmLt7IRucUmcUAx8s+V8CAwEAAaOCAg0wggIJMB0GA1UdDgQWBBR4fkyo dz5ncoOnTjeJ8b02WBH67DAfBgNVHSMEGDAWgBRhVr7KAxDHALi0r0PEctciv24W lDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyQzI1MzAwMDAvMC82MTU2QkVD QTAzMTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9ZVmEteWdNUXh3 QzR0SzlEeEhMWElyOXVGcFEuY2VyMIGHBggrBgEFBQcBCwR7MHkwdwYIKwYBBQUH MAuGa3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMkMy NTMwMDAwLzAvMzEzNDJlMzEzMzM3MmUzMjMzMzYyZTMwMmYzMjMzMmQzMjM0MjAz ZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYB BQUHAQcBAf8EEDAOMAwEAgABMAYDBAEOiewwDQYJKoZIhvcNAQELBQADggEBALBR WvgDcg6lYlR46sAo+vC17/7oRfSGk+65XGKCk5NbIHcYGr/+wEI+hMfl1STQDXb0 CMib5P8uHKzwfUHLRXi0wDVoVf+U+8nC6mKzamY4+d7qvnb6EmPTNGBbs/8R3Q48 h1TUI/UojLxF2BKr2ULAh3IqfZvZAMWNaCjo2TjRKMkAb6plfp+3sPu/TKdA+hSy psBzcaanmKXlRiuJtK2hODu32ODh+IGr7aoGxQ75QKGahJkFnbUbELk9XVXRzI/5 zCwhw+5fai8XVzDGDYH7NnWS7LOXYUHgpbvBlFA7Foc71ZT6qF7zZzJ7w+5PYAj8 +0ZT1ll85RJM4uUlSVw= -----END CERTIFICATE-----Generated at Sun Mar 1 21:47:31 2026 by rpki-client