$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa File: 1071470CF41311EA9FD4EE0FC4F9AE02.roa (raw, json) Hash identifier: 1vdmt5syl+1wS6hiP5UtJcWq0wH3yVRkEp1VhNBiO/Q= Subject key identifier: 6F:B0:4E:1E:45:5B:64:0D:DE:71:77:0E:4C:D6:21:A0:48:40:FB:59 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A6C Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:35:33 +0000 ROA not before: Thu 08 Jan 2026 17:13:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 213120 IP address blocks: 103.41.68.0/22 maxlen: 22 103.41.68.0/24 maxlen: 24 103.41.69.0/24 maxlen: 24 103.41.70.0/24 maxlen: 24 103.41.71.0/24 maxlen: 24 114.141.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6764 (0x1a6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:50 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a486f5-1596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:53:46:25:f5:cf:25:84:7f:90:06:11:f9:2c: b0:36:05:43:1b:67:a4:c6:c5:66:16:b9:35:c7:bd: a9:3f:86:46:83:32:6e:5e:47:21:44:54:32:f2:dd: 90:6c:00:d1:69:f5:f1:f1:b7:6d:38:57:0b:57:1e: d0:6a:1c:e4:04:7d:74:a1:8e:89:16:2c:1f:47:bd: 87:b7:85:97:94:a4:d2:19:dd:0b:a6:c8:6d:1a:c6: 49:d0:37:47:cb:10:93:9b:50:da:a2:01:de:78:35: 60:91:e8:89:76:95:ca:7e:bd:e9:e0:a1:db:50:a3: ae:f4:75:2b:33:b6:a4:1c:e4:a2:2d:71:97:24:7a: 7a:c6:cd:cf:04:a0:92:31:e3:f3:8b:ff:d0:6e:e7: 5c:c9:13:1c:8d:2f:85:78:ae:3c:85:9b:d9:96:4e: 7b:09:57:2c:76:c1:53:bd:21:7a:0f:33:d2:f6:df: e4:4b:b4:0f:1a:32:6e:fb:f5:05:3f:61:8e:e2:7b: 8d:80:d9:76:ff:e6:2e:ec:fb:00:57:86:67:ba:69: 8f:ba:9b:d7:83:99:a9:42:55:87:96:ef:91:aa:53: 85:63:bc:72:8d:ee:21:e9:d6:0a:1b:5a:61:8b:0c: da:e4:e1:94:9b:c3:b0:69:35:2b:d1:a2:ce:ee:a2: f4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B0:4E:1E:45:5B:64:0D:DE:71:77:0E:4C:D6:21:A0:48:40:FB:59 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.41.68.0/22 114.141.72.0/24 Signature Algorithm: sha256WithRSAEncryption 47:31:9c:eb:04:a9:11:da:51:b9:45:da:14:61:5e:14:ef:2b: 68:4b:a2:38:42:14:a7:ba:86:eb:26:1b:f8:a4:ff:a9:bf:38: ec:b0:e6:fa:0f:ae:c3:8e:2b:0b:a0:c5:87:8d:ae:2a:24:af: c3:97:ae:13:32:c3:f3:38:83:5e:a6:e7:20:1c:65:ec:a3:19: 86:45:1b:ec:9a:79:1a:91:f9:4a:2a:69:f2:6c:e3:6c:75:38: 4d:c8:2d:4e:41:8f:58:11:04:32:b2:36:c8:74:9b:1d:f6:d9: 1c:50:5c:02:b5:55:ac:d6:f4:cd:52:54:5f:19:b8:c2:ed:e5: f7:24:50:0c:c7:50:e9:53:a0:60:0a:1e:5b:c8:f9:78:8d:49: 53:d3:a6:6e:35:41:61:db:15:9b:af:74:83:0b:7a:81:60:eb: 9f:a5:76:72:b6:b6:aa:0f:43:d2:0e:10:69:02:df:10:a5:d6: ea:d5:d7:ae:cb:7a:a6:4a:16:f8:74:f8:88:fe:d8:77:c7:97: 9c:9d:5e:40:a0:a4:be:0a:eb:4e:8d:d5:dd:f2:89:62:3f:e2: 5b:95:46:ef:94:9b:1e:fd:1f:d0:53:9b:ce:14:c1:f9:2a:c8: 71:a1:94:57:db:f8:67:2b:89:0d:b5:a8:6d:f0:f9:a8:35:f6: cb:fd:df:b6 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICGmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZmNS0xNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1NGJfXPJYR/kAYR+SywNgVDG2ekxsVmFrk1x72pP4ZGgzJuXkchRFQy8t2Q bADRafXx8bdtOFcLVx7QahzkBH10oY6JFiwfR72Ht4WXlKTSGd0LpshtGsZJ0DdH yxCTm1DaogHeeDVgkeiJdpXKfr3p4KHbUKOu9HUrM7akHOSiLXGXJHp6xs3PBKCS MePzi//QbudcyRMcjS+FeK48hZvZlk57CVcsdsFTvSF6DzPS9t/kS7QPGjJu+/UF P2GO4nuNgNl2/+Yu7PsAV4ZnummPupvXg5mpQlWHlu+RqlOFY7xyje4h6dYKG1ph iwza5OGUm8OwaTUr0aLO7qL0XwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFG+wTh5F W2QN3nF3DkzWIaBIQPtZMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvMTA3MTQ3MENG NDEzMTFFQTlGRDRFRTBGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZylEAwQAco1IMA0GCSqGSIb3DQEBCwUAA4IBAQBHMZzrBKkR2lG5 RdoUYV4U7ytoS6I4QhSnuobrJhv4pP+pvzjssOb6D67DjisLoMWHja4qJK/Dl64T MsPzOINepucgHGXsoxmGRRvsmnkakflKKmnybONsdThNyC1OQY9YEQQysjbIdJsd 9tkcUFwCtVWs1vTNUlRfGbjC7eX3JFAMx1DpU6BgCh5byPl4jUlT06ZuNUFh2xWb r3SDC3qBYOufpXZytraqD0PSDhBpAt8Qpdbq1deuy3qmShb4dPiI/th3x5ecnV5A oKS+CutOjdXd8oliP+JblUbvlJse/R/QU5vOFMH5KshxoZRX2/hnK4kNtaht8Pmo NfbL/d+2 -----END CERTIFICATE-----Generated at Mon Mar 2 12:41:23 2026 by rpki-client