$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa File: A41A01F2812311ED9367FC43C4F9AE02.roa (raw, json) Hash identifier: Vrq9FGhzoiIWfc7ihIhJLVXO9ydP/lyM17l84uTIdWw= Subject key identifier: 66:71:E8:35:A6:1E:06:4A:B8:49:02:29:06:C4:E1:D0:79:7E:FE:89 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A75 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:35:41 +0000 ROA not before: Thu 08 Jan 2026 17:13:59 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63949 IP address blocks: 45.118.132.0/22 maxlen: 24 103.3.60.0/22 maxlen: 24 103.29.68.0/22 maxlen: 24 2400:8900::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6773 (0x1a75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:59 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a486fd-b68e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:32:b9:56:23:bd:c0:42:0a:82:1f:e2:c6:04: 13:d2:2f:96:d0:df:90:88:0e:44:71:55:87:bc:76: b7:70:26:21:9a:fe:79:88:92:48:51:62:4d:21:ed: 64:20:50:72:d6:0f:ed:57:76:ea:af:75:ad:65:c1: b8:3f:6f:83:ab:66:f6:cc:11:ef:a7:80:6d:ab:b9: b1:89:0b:cc:f9:8c:77:82:93:e1:de:7c:29:e4:ae: 63:86:f1:d5:e5:d0:23:89:94:ea:85:38:ef:dd:98: c6:88:ef:8f:41:a1:29:b0:3a:02:26:2f:35:e4:8a: cd:4f:e4:84:e6:28:ad:17:2b:e2:bb:21:7f:c8:f9: d8:65:d0:2d:88:4f:28:d7:89:61:c8:f4:c0:33:05: 20:f7:77:f0:ad:40:d4:8f:eb:2d:0c:0d:de:e5:87: de:be:46:0c:3a:14:83:51:71:97:54:f8:f2:bb:56: c6:76:57:79:ad:b5:6d:99:dc:f6:8c:f7:13:06:73: a2:e4:2e:b4:d3:19:f1:38:6c:89:d1:81:7a:80:e4: 49:89:88:8f:b4:e9:50:a7:57:c4:9c:bf:90:d3:7a: 4f:9d:8e:fa:b7:ef:35:d9:79:20:16:c6:e7:fb:fd: 63:7b:32:31:43:11:e0:fb:ae:2b:f9:c8:e1:7f:38: 6e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:71:E8:35:A6:1E:06:4A:B8:49:02:29:06:C4:E1:D0:79:7E:FE:89 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.118.132.0/22 103.3.60.0/22 103.29.68.0/22 IPv6: 2400:8900::/29 Signature Algorithm: sha256WithRSAEncryption 4d:86:33:fb:85:22:73:29:73:81:8f:92:cb:50:69:c4:11:10: e5:a8:5a:ff:0f:a9:56:28:cd:ed:62:63:ec:c1:00:c6:20:a6: c4:79:fd:41:97:81:d5:3a:e9:4d:73:8d:db:74:d2:3f:2d:d1: ce:38:06:ee:ac:8d:09:57:92:d0:da:af:94:74:e8:64:0a:b1: 31:f2:00:4d:f2:7f:7a:f9:80:27:21:c3:ff:06:75:23:e1:0f: 5c:d0:1d:4f:da:2b:77:fb:c2:22:e0:dc:dc:56:30:6d:d3:50: c9:12:3b:41:f8:9f:15:7b:e6:c5:b9:39:52:72:58:47:24:a9: 97:49:fe:23:86:99:13:2b:04:12:c5:29:27:29:00:d4:f1:1f: 7c:aa:7b:84:9e:78:b7:1b:29:a6:11:41:00:5d:2c:92:d9:4b: 6b:e3:6e:1f:9b:e5:0c:a9:6c:36:61:a6:9e:37:49:b7:a5:c0: c6:4d:47:1b:a6:67:58:82:af:26:2f:9b:14:5c:5f:f0:c1:18: 2c:42:13:4f:f3:2f:80:7c:93:41:13:11:38:54:e1:11:e8:e3: ad:ba:02:e2:81:c7:f7:f1:54:f6:1f:fb:49:0c:9b:3b:00:b5: 58:9a:04:f0:4e:8f:92:95:ad:e2:d1:83:71:b7:18:c7:ee:41: f4:09:e3:54 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICGnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzU5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZmZC1iNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zK5ViO9wEIKgh/ixgQT0i+W0N+QiA5EcVWHvHa3cCYhmv55iJJIUWJNIe1k IFBy1g/tV3bqr3WtZcG4P2+Dq2b2zBHvp4Btq7mxiQvM+Yx3gpPh3nwp5K5jhvHV 5dAjiZTqhTjv3ZjGiO+PQaEpsDoCJi815IrNT+SE5iitFyviuyF/yPnYZdAtiE8o 14lhyPTAMwUg93fwrUDUj+stDA3e5YfevkYMOhSDUXGXVPjyu1bGdld5rbVtmdz2 jPcTBnOi5C600xnxOGyJ0YF6gORJiYiPtOlQp1fEnL+Q03pPnY76t+812XkgFsbn +/1jezIxQxHg+64r+cjhfzhu5wIDAQABo4ICezCCAncwHQYDVR0OBBYEFGZx6DWm HgZKuEkCKQbE4dB5fv6JMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQTQxQTAxRjI4 MTIzMTFFRDkzNjdGQzQzQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCLXaEAwQCZwM8AwQCZx1EMA0EAgACMAcDBQMkAIkAMA0GCSqGSIb3 DQEBCwUAA4IBAQBNhjP7hSJzKXOBj5LLUGnEERDlqFr/D6lWKM3tYmPswQDGIKbE ef1Bl4HVOulNc43bdNI/LdHOOAburI0JV5LQ2q+UdOhkCrEx8gBN8n96+YAnIcP/ BnUj4Q9c0B1P2it3+8Ii4NzcVjBt01DJEjtB+J8Ve+bFuTlSclhHJKmXSf4jhpkT KwQSxSknKQDU8R98qnuEnni3GymmEUEAXSyS2Utr424fm+UMqWw2YaaeN0m3pcDG TUcbpmdYgq8mL5sUXF/wwRgsQhNP8y+AfJNBExE4VOER6OOtugLigcf38VT2H/tJ DJs7ALVYmgTwTo+Sla3i0YNxtxjH7kH0CeNU -----END CERTIFICATE-----Generated at Mon Mar 2 04:18:29 2026 by rpki-client