$ rpki-client -vvf rpki.sub.apnic.net/repository/A916FC1D0000/0/34392e3231332e36322e302f32332d3234203d3e20323130343430.roa File: 34392e3231332e36322e302f32332d3234203d3e20323130343430.roa (raw, json) Hash identifier: AUjuz8k+523UsNo4frUmHqvXrlcSAfH5RY7JCVdW0gc= Subject key identifier: 12:20:33:FD:61:B0:15:B3:0D:34:A7:68:3C:D6:78:4E:22:AD:EE:2C Certificate issuer: /CN=A916FC1D0000/serialNumber=76993140DD5AB22EA33ECE7A9292FA3CB420C368 Certificate serial: 254A19F89E7139B0220F3893576D504519721CFC Authority key identifier: 76:99:31:40:DD:5A:B2:2E:A3:3E:CE:7A:92:92:FA:3C:B4:20:C3:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpkxQN1asi6jPs56kpL6PLQgw2g.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/34392e3231332e36322e302f32332d3234203d3e20323130343430.roa Signing time: Mon 26 Jan 2026 17:18:26 +0000 ROA not before: Mon 26 Jan 2026 17:13:26 +0000 ROA not after: Mon 25 Jan 2027 17:18:26 +0000 asID: 210440 IP address blocks: 49.213.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/76993140DD5AB22EA33ECE7A9292FA3CB420C368.crl rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/76993140DD5AB22EA33ECE7A9292FA3CB420C368.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpkxQN1asi6jPs56kpL6PLQgw2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 10:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4a:19:f8:9e:71:39:b0:22:0f:38:93:57:6d:50:45:19:72:1c:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FC1D0000, serialNumber=76993140DD5AB22EA33ECE7A9292FA3CB420C368 Validity Not Before: Jan 26 17:13:26 2026 GMT Not After : Jan 25 17:18:26 2027 GMT Subject: CN=122033FD61B015B30D34A7683CD6784E22ADEE2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:21:cd:c2:20:51:53:fa:89:f1:a3:be:a3: a5:05:a5:ee:70:a3:17:c9:4b:bb:cd:29:e2:0d:36: e7:89:e5:99:b7:7b:8d:89:b9:10:a3:da:8f:12:de: c4:76:35:cb:09:66:da:b3:0e:01:b1:f5:c2:c0:d2: 73:b7:91:a4:4f:7d:19:b1:7c:7a:7e:6a:78:bc:8e: 26:4e:01:f3:1f:2b:be:a7:fc:32:8a:74:e2:d7:6b: be:b8:fe:97:57:aa:8f:45:2d:90:e4:36:ba:f0:e2: f2:b2:17:c4:03:73:31:b4:ff:48:08:1a:b5:a6:c0: ac:e1:75:14:c8:16:11:16:bd:8b:11:ce:f6:da:49: ce:8d:29:68:de:b4:5d:aa:a9:e5:5d:2c:8f:e4:ec: 42:97:63:42:76:56:11:3c:5c:b4:27:24:b1:84:3d: 9f:59:c1:ae:2d:00:66:ef:6f:69:88:ef:b1:7b:6b: 4b:e2:87:98:29:d3:f6:46:f3:c5:9f:88:6a:21:43: 3d:f2:9c:06:e1:d4:37:0e:60:7e:7a:e0:53:b0:fe: 51:29:06:bc:ec:60:4a:81:a6:cd:9f:38:b4:18:46: 91:30:e5:02:54:bb:04:7f:3f:bc:80:60:86:e5:de: 5b:93:c1:5c:e7:c3:c1:31:68:8a:19:3b:f9:31:64: 9a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:20:33:FD:61:B0:15:B3:0D:34:A7:68:3C:D6:78:4E:22:AD:EE:2C X509v3 Authority Key Identifier: keyid:76:99:31:40:DD:5A:B2:2E:A3:3E:CE:7A:92:92:FA:3C:B4:20:C3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/76993140DD5AB22EA33ECE7A9292FA3CB420C368.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpkxQN1asi6jPs56kpL6PLQgw2g.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A916FC1D0000/0/34392e3231332e36322e302f32332d3234203d3e20323130343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.213.62.0/23 Signature Algorithm: sha256WithRSAEncryption b0:d1:ad:fb:e5:aa:78:34:5f:67:0d:26:cf:62:f5:9d:77:26: 78:1e:10:c1:aa:94:00:f6:bd:2e:44:22:49:d0:59:d2:07:d9: 7d:c2:42:bc:b1:13:d1:f2:d5:ab:78:6e:b1:0d:2c:4f:27:f2: 82:46:cc:76:a8:21:87:b3:39:37:1c:c6:79:3c:d7:3a:7c:7e: af:f8:b9:cd:72:2b:9c:1b:65:47:8c:ac:2b:e9:45:40:0e:90: 8d:1d:68:1b:bb:5e:c1:eb:d8:2a:fd:58:04:17:7d:fa:f6:9c: 21:6c:38:4b:74:33:1e:3f:35:a1:b7:04:44:90:28:3a:31:da: f5:3f:fb:66:41:14:cf:71:b9:d2:ae:ab:84:01:7c:71:95:51: 6e:23:c0:4b:0f:9f:78:c9:39:e4:ec:9f:d3:3b:6c:10:89:8c: d6:bb:6d:3c:2a:37:6b:6d:e0:cd:ff:41:12:40:55:a7:4e:15: 2a:1c:1b:5f:82:69:3e:ab:42:72:86:56:8c:64:be:04:c2:5d: db:ed:35:04:f3:a5:88:18:c2:1c:45:46:8f:4b:8d:a8:7c:16: ec:69:dc:d7:b9:b2:9f:5c:b3:27:63:44:e9:d9:2e:1d:f4:f8: bf:e6:87:a2:95:cc:58:46:2b:86:3b:a8:d9:7d:d7:61:97:86: 90:2e:fd:a6 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUJUoZ+J5xObAiDziTV21QRRlyHPwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxNkZDMUQwMDAwMTEwLwYDVQQFEyg3Njk5MzE0MERE NUFCMjJFQTMzRUNFN0E5MjkyRkEzQ0I0MjBDMzY4MB4XDTI2MDEyNjE3MTMyNloX DTI3MDEyNTE3MTgyNlowMzExMC8GA1UEAxMoMTIyMDMzRkQ2MUIwMTVCMzBEMzRB NzY4M0NENjc4NEUyMkFERUUyQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjnIc3CIFFT+onxo76jpQWl7nCjF8lLu80p4g0254nlmbd7jYm5EKPajxLe xHY1ywlm2rMOAbH1wsDSc7eRpE99GbF8en5qeLyOJk4B8x8rvqf8Mop04tdrvrj+ l1eqj0UtkOQ2uvDi8rIXxANzMbT/SAgatabArOF1FMgWERa9ixHO9tpJzo0paN60 Xaqp5V0sj+TsQpdjQnZWETxctCcksYQ9n1nBri0AZu9vaYjvsXtrS+KHmCnT9kbz xZ+IaiFDPfKcBuHUNw5gfnrgU7D+USkGvOxgSoGmzZ84tBhGkTDlAlS7BH8/vIBg huXeW5PBXOfDwTFoihk7+TFkmvECAwEAAaOCAhEwggINMB0GA1UdDgQWBBQSIDP9 YbAVsw00p2g81nhOIq3uLDAfBgNVHSMEGDAWgBR2mTFA3VqyLqM+znqSkvo8tCDD aDAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE2RkMxRDAwMDAvMC83Njk5MzE0 MERENUFCMjJFQTMzRUNFN0E5MjkyRkEzQ0I0MjBDMzY4LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9kcGt4UU4xYXNp NmpQczU2a3BMNlBMUWd3MmcuY2VyMIGLBggrBgEFBQcBCwR/MH0wewYIKwYBBQUH MAuGb3JzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxNkZD MUQwMDAwLzAvMzQzOTJlMzIzMTMzMmUzNjMyMmUzMDJmMzIzMzJkMzIzNDIwM2Qz ZTIwMzIzMTMwMzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBMdU+MA0GCSqGSIb3DQEBCwUAA4IB AQCw0a375ap4NF9nDSbPYvWddyZ4HhDBqpQA9r0uRCJJ0FnSB9l9wkK8sRPR8tWr eG6xDSxPJ/KCRsx2qCGHszk3HMZ5PNc6fH6v+LnNciucG2VHjKwr6UVADpCNHWgb u17B69gq/VgEF3369pwhbDhLdDMePzWhtwREkCg6Mdr1P/tmQRTPcbnSrquEAXxx lVFuI8BLD594yTnk7J/TO2wQiYzWu208KjdrbeDN/0ESQFWnThUqHBtfgmk+q0Jy hlaMZL4Ewl3b7TUE86WIGMIcRUaPS42ofBbsadzXubKfXLMnY0Tp2S4d9Pi/5oei lcxYRiuGO6jZfddhl4aQLv2m -----END CERTIFICATE-----Generated at Sun Mar 1 20:05:50 2026 by rpki-client