$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa File: 12D4E3D41AA411F0A196BA66C4F9AE02.roa (raw, json) Hash identifier: Wb9fqxh/2GhJbzzPZAroheRX0Q4IRD6pGw48st/qKjM= Subject key identifier: 4C:15:C9:89:8F:01:CC:13:A5:F8:37:69:A6:EB:0E:C1:DD:BA:32:E4 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 0232 Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:22:51 +0000 ROA not before: Tue 16 Dec 2025 16:40:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 197537 IP address blocks: 185.254.242.0/24 maxlen: 24 213.139.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Dec 16 16:40:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a483fb-6073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:26:4d:35:8c:ed:83:fa:a7:9e:d5:46:05: 6b:8e:2d:61:27:46:7c:73:2a:a3:b3:89:57:a8:c6: c1:e3:79:f2:74:c5:c5:ad:a7:78:f0:ef:83:48:81: c8:64:8f:5d:47:14:0d:bd:42:ed:f7:69:ed:5f:8e: 6e:da:bd:24:19:90:04:7f:c3:a2:db:fe:db:49:93: ab:ef:20:88:62:f8:0f:a4:db:0f:ee:1b:c5:b4:60: 97:ff:23:22:c4:a5:84:50:df:b3:20:71:91:de:b3: c6:7f:b8:6f:40:5b:6c:37:9d:ff:c4:29:3a:9a:c3: cd:3a:96:31:56:4d:a8:cf:51:9b:08:52:46:0c:fd: bb:4d:ff:2b:3f:d7:5d:9b:1b:c2:82:ad:25:c9:12: 5b:c1:e0:24:3c:a2:aa:f5:18:2c:1b:7f:88:21:ca: 7a:bb:5b:ee:22:68:70:65:90:cc:cb:0d:c9:79:2c: 60:84:f8:71:bd:62:51:30:7e:5a:64:de:16:e0:1c: c6:e9:f2:22:4b:4a:8b:f9:b5:90:d2:0d:87:d4:08: 36:3b:8d:7e:93:ba:6f:6d:3e:85:66:5b:f1:21:1f: 58:90:39:c0:95:ba:ae:2b:c0:97:78:93:d9:e3:6b: aa:aa:2e:6e:11:da:83:8c:ef:c9:7d:17:7d:a2:2d: 1d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:15:C9:89:8F:01:CC:13:A5:F8:37:69:A6:EB:0E:C1:DD:BA:32:E4 X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 185.254.242.0/24 213.139.232.0/24 Signature Algorithm: sha256WithRSAEncryption 37:0f:fb:64:7d:ed:ad:df:2a:ab:21:c7:e7:a8:9d:52:44:da: 09:1a:10:d7:bb:6f:68:e2:25:e5:63:23:00:a2:fa:ba:f0:c6: b1:74:8d:5e:62:7b:19:d9:48:b2:21:19:be:a7:13:60:61:49: 94:1d:2a:5a:5f:7c:34:7d:a5:d4:68:75:20:88:fe:84:4c:e5: 1e:8c:52:f3:ff:ad:36:b4:f5:ed:d1:af:11:13:2d:0b:d7:d9: 78:e9:5d:9f:f8:2a:6d:9c:f8:59:fa:43:99:eb:8c:30:09:aa: 55:d0:eb:e6:4f:2f:69:f5:1c:9b:a1:79:11:88:c7:3b:b7:77: 8f:0c:c2:ac:f0:bb:96:df:96:2b:e2:dc:2a:c5:79:a6:fb:a4: f6:11:7e:7d:9c:81:db:27:5b:ad:a2:94:3e:8b:f1:35:fc:7a: 79:8d:82:34:41:06:6e:36:30:c0:81:5b:fc:ce:45:a9:6c:9f: 29:21:6a:6f:2f:47:ae:08:af:a0:94:2d:7f:87:77:53:69:5d: 3c:29:ee:0c:13:50:f3:5b:50:12:11:5a:2c:d8:c8:a1:1d:ae: 07:a7:8a:27:9b:d0:47:f6:f7:80:99:71:b1:c0:09:67:17:dc: 0f:6d:94:d6:0b:10:33:30:f9:c0:7b:00:3c:30:08:22:0a:37: 90:fa:ed:11 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjUxMjE2MTY0MDU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODNmYi02MDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBwmTTWM7YP6p57VRgVrji1hJ0Z8cyqjs4lXqMbB43nydMXFrad48O+DSIHI ZI9dRxQNvULt92ntX45u2r0kGZAEf8Oi2/7bSZOr7yCIYvgPpNsP7hvFtGCX/yMi xKWEUN+zIHGR3rPGf7hvQFtsN53/xCk6msPNOpYxVk2oz1GbCFJGDP27Tf8rP9dd mxvCgq0lyRJbweAkPKKq9RgsG3+IIcp6u1vuImhwZZDMyw3JeSxghPhxvWJRMH5a ZN4W4BzG6fIiS0qL+bWQ0g2H1Ag2O41+k7pvbT6FZlvxIR9YkDnAlbquK8CXeJPZ 42uqqi5uEdqDjO/JfRd9oi0dhwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEwVyYmP AcwTpfg3aabrDsHdujLkMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNjI5RThCMjAzQjIzMTFFRUE0M0IwMjE5QzRGOUFFMDIvMTJENEUzRDQx QUE0MTFGMEExOTZCQTY2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAuf7yAwQA1YvoMA0GCSqGSIb3DQEBCwUAA4IBAQA3D/tkfe2t3yqr IcfnqJ1SRNoJGhDXu29o4iXlYyMAovq68MaxdI1eYnsZ2UiyIRm+pxNgYUmUHSpa X3w0faXUaHUgiP6ETOUejFLz/602tPXt0a8REy0L19l46V2f+CptnPhZ+kOZ64ww CapV0OvmTy9p9RyboXkRiMc7t3ePDMKs8LuW35Yr4twqxXmm+6T2EX59nIHbJ1ut opQ+i/E1/Hp5jYI0QQZuNjDAgVv8zkWpbJ8pIWpvL0euCK+glC1/h3dTaV08Ke4M E1DzW1ASEVos2MihHa4Hp4onm9BH9veAmXGxwAlnF9wPbZTWCxAzMPnAewA8MAgi CjeQ+u0R -----END CERTIFICATE-----Generated at Mon Mar 2 15:27:52 2026 by rpki-client