$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF4F/C5E2D71E041911ED91576528C4F9AE02/41F88F22042111ED888BB024C4F9AE02.roa File: 41F88F22042111ED888BB024C4F9AE02.roa (raw, json) Hash identifier: P8/5kr8bHdI9BV8115gmvyOf1Tob/Bbi8osi5OVZzfc= Subject key identifier: 61:80:A7:8C:62:95:5F:89:20:F7:60:CC:CD:42:3E:6F:AC:31:2C:E8 Certificate issuer: /CN=A915BF4F/serialNumber=A0DE572A46CF324BAE08C3E930BCAFE739A015D1 Certificate serial: 032F Authority key identifier: A0:DE:57:2A:46:CF:32:4B:AE:08:C3:E9:30:BC:AF:E7:39:A0:15:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oN5XKkbPMkuuCMPpMLyv5zmgFdE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BF4F/C5E2D71E041911ED91576528C4F9AE02/41F88F22042111ED888BB024C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:05:03 +0000 ROA not before: Thu 03 Jul 2025 02:06:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132730 IP address blocks: 103.240.112.0/22 maxlen: 22 103.240.112.0/24 maxlen: 24 103.240.113.0/24 maxlen: 24 103.240.114.0/24 maxlen: 24 103.240.115.0/24 maxlen: 24 120.136.24.0/21 maxlen: 21 120.136.24.0/24 maxlen: 24 120.136.25.0/24 maxlen: 24 120.136.26.0/24 maxlen: 24 120.136.27.0/24 maxlen: 24 120.136.28.0/24 maxlen: 24 120.136.29.0/24 maxlen: 24 120.136.30.0/24 maxlen: 24 120.136.31.0/24 maxlen: 24 124.108.48.0/21 maxlen: 21 124.108.48.0/24 maxlen: 24 124.108.49.0/24 maxlen: 24 124.108.50.0/24 maxlen: 24 124.108.51.0/24 maxlen: 24 124.108.52.0/23 maxlen: 24 124.108.54.0/24 maxlen: 24 124.108.55.0/24 maxlen: 24 183.81.184.0/21 maxlen: 21 183.81.184.0/24 maxlen: 24 183.81.185.0/24 maxlen: 24 183.81.186.0/24 maxlen: 24 183.81.187.0/24 maxlen: 24 183.81.188.0/24 maxlen: 24 183.81.189.0/24 maxlen: 24 183.81.190.0/24 maxlen: 24 183.81.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BF4F/C5E2D71E041911ED91576528C4F9AE02/oN5XKkbPMkuuCMPpMLyv5zmgFdE.crl rsync://rpki.apnic.net/member_repository/A915BF4F/C5E2D71E041911ED91576528C4F9AE02/oN5XKkbPMkuuCMPpMLyv5zmgFdE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oN5XKkbPMkuuCMPpMLyv5zmgFdE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:55:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 815 (0x32f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BF4F, serialNumber=A0DE572A46CF324BAE08C3E930BCAFE739A015D1 Validity Not Before: Jul 3 02:06:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42b6f-cbe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cf:8a:93:8b:db:ac:36:5c:d6:28:95:cf:6c: 02:84:ed:27:4b:63:05:50:ea:f6:be:83:d3:85:2f: b4:5f:b9:36:2b:fb:1f:ef:ce:cc:9e:a7:ce:05:b7: e7:0d:50:a5:3d:7a:52:43:3c:f3:c0:3d:b3:20:86: 30:3f:31:3a:a1:28:1a:b4:db:fc:87:17:d1:7f:aa: 68:fd:25:21:27:30:c8:e1:2e:e6:18:99:96:ad:84: a9:29:6b:fd:42:69:47:e5:50:58:22:e7:dd:42:57: 26:b7:8b:21:7a:25:9d:46:96:83:30:4f:2f:30:be: 19:6e:b3:09:14:65:81:ed:67:c1:6d:65:29:41:56: be:b3:b2:52:43:48:ed:6f:c6:97:ef:4b:8a:5a:bf: 1a:83:ae:8e:97:c6:c5:df:c2:14:94:36:5f:c8:49: 4c:92:1a:37:3d:56:9c:3d:a3:b4:d8:ef:98:34:d0: 83:0e:4a:85:02:c9:4d:31:73:9d:d9:08:42:23:17: 09:1e:89:51:43:f1:1c:3d:f2:a9:4d:08:0e:de:19: 6d:06:1b:c0:e6:da:65:12:92:bb:09:c4:43:90:2c: 7c:69:c1:37:c3:e8:69:57:48:93:43:9f:71:b2:23: 4f:e9:aa:da:ac:05:03:2b:84:28:42:ca:0a:72:56: 1c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:80:A7:8C:62:95:5F:89:20:F7:60:CC:CD:42:3E:6F:AC:31:2C:E8 X509v3 Authority Key Identifier: keyid:A0:DE:57:2A:46:CF:32:4B:AE:08:C3:E9:30:BC:AF:E7:39:A0:15:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BF4F/C5E2D71E041911ED91576528C4F9AE02/oN5XKkbPMkuuCMPpMLyv5zmgFdE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oN5XKkbPMkuuCMPpMLyv5zmgFdE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF4F/C5E2D71E041911ED91576528C4F9AE02/41F88F22042111ED888BB024C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.240.112.0/22 120.136.24.0/21 124.108.48.0/21 183.81.184.0/21 Signature Algorithm: sha256WithRSAEncryption 93:81:e2:06:16:ca:48:8d:9a:b5:e6:d0:a2:0f:b7:f6:5a:46: 81:4e:20:6e:a1:a7:2f:93:56:02:83:29:78:4f:af:08:b6:c4: 82:a3:e0:f8:76:f6:7c:a2:9a:7e:f1:da:90:7c:9b:5a:8e:c0: e2:7f:b5:5d:33:b5:a4:53:3c:98:ff:47:69:53:e9:b3:1e:7c: f3:20:84:06:e0:6b:4c:03:80:bd:b6:72:5d:ea:5f:26:c1:c9: 4e:c0:33:60:14:14:25:ec:ac:c5:05:09:30:21:ee:ad:8e:f2: 96:26:66:ba:d8:54:db:29:7b:ee:2a:f1:be:78:6a:c6:52:79: 0f:ec:87:a4:74:83:0f:e4:98:94:af:ff:49:d1:5e:d1:3b:6a: 7b:74:65:03:02:d6:73:3d:5a:ff:f9:12:62:a9:99:cc:50:e1: eb:52:a7:1f:e9:a6:4c:76:1a:48:2f:5f:e6:7f:ea:d7:9a:54: 0d:f2:3f:15:c0:16:66:c9:2d:33:a2:79:51:c1:fb:70:0b:2c: 63:3a:39:41:ac:86:9f:80:51:67:71:20:ec:10:94:96:6e:ae: e4:ed:a4:99:7b:ad:34:fd:5e:dd:56:60:7b:2e:2d:71:09:e3: 88:32:4f:48:ba:c3:a8:76:36:3a:7c:a9:e5:a4:6d:fa:38:6d: fc:db:48:e9 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGNEYxMTAvBgNVBAUTKEEwREU1NzJBNDZDRjMyNEJBRTA4QzNFOTMwQkNBRkU3 MzlBMDE1RDEwHhcNMjUwNzAzMDIwNjMyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmI2Zi1jYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAys+Kk4vbrDZc1iiVz2wChO0nS2MFUOr2voPThS+0X7k2K/sf787MnqfOBbfn DVClPXpSQzzzwD2zIIYwPzE6oSgatNv8hxfRf6po/SUhJzDI4S7mGJmWrYSpKWv9 QmlH5VBYIufdQlcmt4sheiWdRpaDME8vML4ZbrMJFGWB7WfBbWUpQVa+s7JSQ0jt b8aX70uKWr8ag66Ol8bF38IUlDZfyElMkho3PVacPaO02O+YNNCDDkqFAslNMXOd 2QhCIxcJHolRQ/EcPfKpTQgO3hltBhvA5tplEpK7CcRDkCx8acE3w+hpV0iTQ59x siNP6ararAUDK4QoQsoKclYckwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFGGAp4xi lV+JIPdgzM1CPm+sMSzoMB8GA1UdIwQYMBaAFKDeVypGzzJLrgjD6TC8r+c5oBXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkY0Ri9DNUUyRDcxRTA0 MTkxMUVEOTE1NzY1MjhDNEY5QUUwMi9vTjVYS2tiUE1rdXVDTVBwTUx5djV6bWdG ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ONVhLa2JQTWt1dUNNUHBNTHl2NXptZ0ZkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGNEYvQzVFMkQ3MUUwNDE5MTFFRDkxNTc2NTI4QzRGOUFFMDIvNDFGODhGMjIw NDIxMTFFRDg4OEJCMDI0QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCZ/BwAwQDeIgYAwQDfGwwAwQDt1G4MA0GCSqGSIb3DQEBCwUAA4IB AQCTgeIGFspIjZq15tCiD7f2WkaBTiBuoacvk1YCgyl4T68ItsSCo+D4dvZ8opp+ 8dqQfJtajsDif7VdM7WkUzyY/0dpU+mzHnzzIIQG4GtMA4C9tnJd6l8mwclOwDNg FBQl7KzFBQkwIe6tjvKWJma62FTbKXvuKvG+eGrGUnkP7IekdIMP5JiUr/9J0V7R O2p7dGUDAtZzPVr/+RJiqZnMUOHrUqcf6aZMdhpIL1/mf+rXmlQN8j8VwBZmyS0z onlRwftwCyxjOjlBrIafgFFncSDsEJSWbq7k7aSZe600/V7dVmB7Li1xCeOIMk9I usOodjY6fKnlpG36OG3820jp -----END CERTIFICATE-----Generated at Mon Mar 2 14:26:16 2026 by rpki-client