$ rpki-client -vvf rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3234302e302f32342d3234203d3e2032393134.roa File: 31342e3133372e3234302e302f32342d3234203d3e2032393134.roa (raw, json) Hash identifier: 0Wfb3PiuGnfEMJFFbPCBQxAC43plOhJuJqqW4ElfBBk= Subject key identifier: 3F:BA:54:53:8A:10:16:37:7D:EA:10:24:D9:FA:DF:80:23:FC:90:0F Certificate issuer: /CN=A912C2530000/serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Certificate serial: 6C453E06568B2669CEAB4EEF9264E917F7089412 Authority key identifier: 61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3234302e302f32342d3234203d3e2032393134.roa Signing time: Sat 11 Apr 2026 22:36:46 +0000 ROA not before: Sat 11 Apr 2026 22:31:46 +0000 ROA not after: Sat 10 Apr 2027 22:36:46 +0000 asID: 2914 IP address blocks: 14.137.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 07:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:45:3e:06:56:8b:26:69:ce:ab:4e:ef:92:64:e9:17:f7:08:94:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2530000, serialNumber=6156BECA0310C700B8B4AF43C472D722BF6E1694 Validity Not Before: Apr 11 22:31:46 2026 GMT Not After : Apr 10 22:36:46 2027 GMT Subject: CN=3FBA54538A1016377DEA1024D9FADF8023FC900F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:54:07:0b:df:70:8b:b9:aa:57:3c:f0:12: 48:05:6f:9e:ff:e9:56:92:22:2b:fe:5b:84:58:dd: 35:41:ed:7f:21:d3:30:a7:1d:4c:a3:ba:73:0b:24: a2:d9:75:27:ff:48:0c:7f:92:90:c9:1c:6f:64:8d: 2f:71:85:ae:20:aa:b1:f9:1c:6e:1c:6f:3f:ef:b1: b6:54:5a:02:a7:c2:6c:d8:b7:cd:34:21:5a:01:8c: d3:38:41:98:c9:f5:52:97:9b:6d:f8:21:91:04:19: 89:87:29:74:5d:44:6d:f6:f5:51:e8:c5:61:8f:25: b6:43:37:88:c0:d3:49:51:d1:72:41:c8:5c:04:68: 1c:17:d0:15:86:e8:6a:3b:ac:67:e3:c2:04:1c:2c: 05:2c:e8:19:f6:65:81:e5:ed:93:2a:ee:3b:97:7c: 1d:f4:15:52:6b:5c:18:2a:fe:33:f9:09:c0:56:21: 0e:a7:e0:c9:79:99:be:1d:84:ec:5e:d1:e0:64:47: 88:85:ad:fa:fb:c6:00:a4:32:a4:22:76:42:64:85: d2:10:e6:66:1c:ab:34:72:8a:f0:b8:89:1e:ad:35: c8:01:09:88:1a:e9:75:ca:c8:78:a3:d0:29:5d:0b: c0:7a:04:a5:3b:95:55:9a:e6:dc:61:1d:53:ad:e3: 7a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BA:54:53:8A:10:16:37:7D:EA:10:24:D9:FA:DF:80:23:FC:90:0F X509v3 Authority Key Identifier: keyid:61:56:BE:CA:03:10:C7:00:B8:B4:AF:43:C4:72:D7:22:BF:6E:16:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/6156BECA0310C700B8B4AF43C472D722BF6E1694.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVa-ygMQxwC4tK9DxHLXIr9uFpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A912C2530000/0/31342e3133372e3234302e302f32342d3234203d3e2032393134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.137.240.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:46:09:6e:25:b6:5a:bb:f3:68:67:69:a4:10:c5:02:34:4d: 2c:78:ea:ec:d4:83:e2:cd:ce:ed:c1:de:31:28:cc:b5:92:2b: ad:a6:90:ab:07:01:f8:50:8c:16:c7:f9:0c:68:20:fb:8d:46: c7:89:4f:01:b2:06:0a:42:77:a1:a0:a7:28:df:a9:09:7c:be: 9d:2a:bd:e6:d1:de:30:38:4f:83:03:4d:7d:2b:4f:0b:97:cd: 54:5e:50:fa:03:47:d0:95:9c:68:e7:6a:87:d7:8b:ce:21:89: 0e:5b:ff:ef:be:69:66:bb:9a:e8:38:4a:1b:13:c1:ad:e8:99: a3:d7:f8:32:45:a6:bd:58:02:74:7c:be:51:eb:a5:6e:81:43: 9e:f8:c1:e1:d6:4a:8b:d5:f9:a5:e1:06:24:1e:10:96:62:96: 49:f6:da:28:5c:92:7d:4f:6a:18:af:ce:bf:90:e2:f4:15:74: 1f:c5:43:a2:2c:c8:80:68:e5:3a:61:40:e7:7a:5e:39:ca:6c: 6e:ae:fb:db:4f:59:3a:f0:77:80:6d:30:28:76:55:c0:b0:4a: 3d:9d:10:a7:b7:ba:8f:4c:be:d8:95:9f:e8:ff:08:28:28:af: e7:d2:8a:4f:03:e5:82:b0:61:5a:79:1d:fe:b1:98:52:f3:63: f6:e9:dc:e3 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgIUbEU+BlaLJmnOq07vkmTpF/cIlBIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMkMyNTMwMDAwMTEwLwYDVQQFEyg2MTU2QkVDQTAz MTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0MB4XDTI2MDQxMTIyMzE0NloX DTI3MDQxMDIyMzY0NlowMzExMC8GA1UEAxMoM0ZCQTU0NTM4QTEwMTYzNzdERUEx MDI0RDlGQURGODAyM0ZDOTAwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjWVAcL33CLuapXPPASSAVvnv/pVpIiK/5bhFjdNUHtfyHTMKcdTKO6cwsk otl1J/9IDH+SkMkcb2SNL3GFriCqsfkcbhxvP++xtlRaAqfCbNi3zTQhWgGM0zhB mMn1UpebbfghkQQZiYcpdF1Ebfb1UejFYY8ltkM3iMDTSVHRckHIXARoHBfQFYbo ajusZ+PCBBwsBSzoGfZlgeXtkyruO5d8HfQVUmtcGCr+M/kJwFYhDqfgyXmZvh2E 7F7R4GRHiIWt+vvGAKQypCJ2QmSF0hDmZhyrNHKK8LiJHq01yAEJiBrpdcrIeKPQ KV0LwHoEpTuVVZrm3GEdU63jesUCAwEAAaOCAg8wggILMB0GA1UdDgQWBBQ/ulRT ihAWN33qECTZ+t+AI/yQDzAfBgNVHSMEGDAWgBRhVr7KAxDHALi0r0PEctciv24W lDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTEyQzI1MzAwMDAvMC82MTU2QkVD QTAzMTBDNzAwQjhCNEFGNDNDNDcyRDcyMkJGNkUxNjk0LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9ZVmEteWdNUXh3 QzR0SzlEeEhMWElyOXVGcFEuY2VyMIGJBggrBgEFBQcBCwR9MHsweQYIKwYBBQUH MAuGbXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxMkMy NTMwMDAwLzAvMzEzNDJlMzEzMzM3MmUzMjM0MzAyZTMwMmYzMjM0MmQzMjM0MjAz ZDNlMjAzMjM5MzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAA6J8DANBgkqhkiG9w0BAQsFAAOCAQEA SkYJbiW2WrvzaGdppBDFAjRNLHjq7NSD4s3O7cHeMSjMtZIrraaQqwcB+FCMFsf5 DGgg+41Gx4lPAbIGCkJ3oaCnKN+pCXy+nSq95tHeMDhPgwNNfStPC5fNVF5Q+gNH 0JWcaOdqh9eLziGJDlv/775pZrua6DhKGxPBreiZo9f4MkWmvVgCdHy+UeulboFD nvjB4dZKi9X5peEGJB4QlmKWSfbaKFySfU9qGK/Ov5Di9BV0H8VDoizIgGjlOmFA 53peOcpsbq77209ZOvB3gG0wKHZVwLBKPZ0Qp7e6j0y+2JWf6P8IKCiv59KKTwPl grBhWnkd/rGYUvNj9unc4w== -----END CERTIFICATE-----Generated at Sun Apr 19 12:49:23 2026 by rpki-client