$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa File: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (raw, json) Hash identifier: cDlDJUGZn7R/T+BNtx5SoPKWRYaEnJYFspu2vfBh0pY= Subject key identifier: 96:78:8F:50:AB:9D:78:25:5A:6B:E9:AA:1D:C5:67:4A:3A:4E:2A:07 Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 0272 Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:28:36 +0000 ROA not before: Fri 12 Dec 2025 16:13:29 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 2511 IP address blocks: 192.5.216.0/24 maxlen: 24 192.26.94.0/24 maxlen: 24 192.47.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Dec 12 16:13:29 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45b24-3af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cc:3e:a7:80:52:e6:6e:d5:0a:d1:13:5e:7d: 8e:3e:69:d3:5d:50:3b:ec:a7:1a:30:90:49:89:30: fc:60:6b:35:92:df:47:51:f5:d7:97:45:8c:31:43: 33:86:cd:81:2e:ae:e8:d5:8e:9b:aa:00:be:6f:1e: 1a:6f:32:2c:ca:1d:b5:54:4a:84:4c:c8:c6:c8:f2: c9:87:fe:5d:47:89:aa:36:23:bb:0d:e7:dd:9c:da: e0:5a:c8:45:33:08:19:a0:34:59:ee:76:87:8e:da: 0b:a6:11:90:06:4f:74:96:27:26:4e:f8:ba:a7:96: b0:ce:8a:f7:e1:a9:73:8c:bc:d3:bf:b3:cf:c7:6a: fa:5c:54:db:7f:0e:14:1a:b0:86:d6:66:63:3e:38: 9d:5b:4a:fc:3f:5c:4e:55:cf:eb:95:ea:7f:4c:0e: ef:45:4f:e6:4a:0b:66:4a:76:3e:4f:73:3f:c4:38: e8:cf:d3:cc:cf:e1:46:da:22:47:af:93:50:4a:4b: e4:66:12:a8:72:18:4c:2c:dc:ce:1b:e1:9b:56:96: a0:ad:3f:27:04:55:14:ff:9d:ce:5f:fa:4c:f5:7f: 88:da:c8:fd:93:a5:a9:7a:d7:d8:6b:4d:51:e7:8e: 76:80:de:d5:ec:7e:4a:ef:a4:90:31:ec:42:a5:20: 50:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:78:8F:50:AB:9D:78:25:5A:6B:E9:AA:1D:C5:67:4A:3A:4E:2A:07 X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/4C3A869614DF11EEAB46A86DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.5.216.0/24 192.26.94.0/24 192.47.167.0/24 Signature Algorithm: sha256WithRSAEncryption 58:de:e9:47:3f:5d:9c:9a:75:17:01:1e:a7:c7:c5:67:38:5e: d0:2d:f0:1f:b5:b8:79:c5:a2:f2:c4:76:fe:94:2a:61:8f:d4: 1e:82:16:84:85:ba:a8:a5:5a:dc:cf:35:ee:bf:c9:a3:84:93: 0d:ac:3c:8b:b2:cc:b3:38:e0:88:20:86:91:4e:04:ad:9e:0c: b3:4a:45:44:5f:c5:35:5a:e4:41:ad:20:cd:b4:70:ee:84:62: 51:7e:ac:6b:89:0b:b0:9d:10:80:8a:c0:90:00:51:b6:6d:ca: cc:2e:ea:8c:55:d7:30:83:e1:c6:2d:39:42:38:46:1c:5e:8f: 78:31:a1:3d:bd:4c:44:f6:b7:66:2b:77:f4:aa:ef:d6:5b:21: 0c:48:cf:20:91:57:c5:c8:ee:cf:d9:5c:88:e4:1e:83:43:5a: f6:f8:a0:13:51:ef:6b:3b:1c:fc:a2:02:58:11:69:c0:4f:21: e8:40:c9:17:b2:1d:6a:35:00:8b:ed:25:89:a3:12:36:34:5b: a5:fb:7f:f9:53:fd:0c:24:ed:ed:f7:f2:72:cc:c5:d1:7c:b4: 76:3f:b8:ab:b7:cf:88:0f:7b:8d:05:0c:e5:e2:b6:32:36:8c: 91:d7:9b:db:7a:03:de:b5:e4:ed:f2:e2:b5:dc:09:18:70:e1: d7:04:c4:a3 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUxMjEyMTYxMzI5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWIyNC0zYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8w+p4BS5m7VCtETXn2OPmnTXVA77KcaMJBJiTD8YGs1kt9HUfXXl0WMMUMz hs2BLq7o1Y6bqgC+bx4abzIsyh21VEqETMjGyPLJh/5dR4mqNiO7DefdnNrgWshF MwgZoDRZ7naHjtoLphGQBk90licmTvi6p5awzor34alzjLzTv7PPx2r6XFTbfw4U GrCG1mZjPjidW0r8P1xOVc/rlep/TA7vRU/mSgtmSnY+T3M/xDjoz9PMz+FG2iJH r5NQSkvkZhKochhMLNzOG+GbVpagrT8nBFUU/53OX/pM9X+I2sj9k6WpetfYa01R 5452gN7V7H5K76SQMexCpSBQTwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFJZ4j1Cr nXglWmvpqh3FZ0o6TioHMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMUEvQjQ1RjNGQzQ4MTlBMTFFRDhENjFCQTJCQzRGOUFFMDIvNEMzQTg2OTYx NERGMTFFRUFCNDZBODZEQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAwAXYAwQAwBpeAwQAwC+nMA0GCSqGSIb3DQEBCwUAA4IBAQBY3ulH P12cmnUXAR6nx8VnOF7QLfAftbh5xaLyxHb+lCphj9QeghaEhbqopVrczzXuv8mj hJMNrDyLssyzOOCIIIaRTgStngyzSkVEX8U1WuRBrSDNtHDuhGJRfqxriQuwnRCA isCQAFG2bcrMLuqMVdcwg+HGLTlCOEYcXo94MaE9vUxE9rdmK3f0qu/WWyEMSM8g kVfFyO7P2VyI5B6DQ1r2+KATUe9rOxz8ogJYEWnATyHoQMkXsh1qNQCL7SWJoxI2 NFul+3/5U/0MJO3t9/JyzMXRfLR2P7irt8+ID3uNBQzl4rYyNoyR15vbegPeteTt 8uK13AkYcOHXBMSj -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:18 2026 by rpki-client