$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/315D1630DDD911EFBAA4D977C4F9AE02.roa File: 315D1630DDD911EFBAA4D977C4F9AE02.roa (raw, json) Hash identifier: IDTH0cAlA2j29Quymic14S26EVLhL7W0jgxsTtfpz7w= Subject key identifier: 9A:FE:38:A0:8A:B0:71:FA:3D:01:DD:8C:25:00:8B:EF:0C:15:0E:1C Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Certificate serial: 0AFE Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/315D1630DDD911EFBAA4D977C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:36:10 +0000 ROA not before: Sat 08 Nov 2025 19:40:25 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 24233 IP address blocks: 103.1.52.0/22 maxlen: 22 116.255.42.0/24 maxlen: 24 123.176.118.0/24 maxlen: 24 125.253.9.0/24 maxlen: 24 125.253.19.0/24 maxlen: 24 125.253.58.0/24 maxlen: 24 125.253.59.0/24 maxlen: 24 203.132.68.0/23 maxlen: 23 203.132.76.0/22 maxlen: 22 203.132.80.0/21 maxlen: 21 203.132.82.0/24 maxlen: 24 203.212.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2814 (0xafe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E475, serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1 Validity Not Before: Nov 8 19:40:25 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4871a-276b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:17:da:2e:6d:9b:4b:33:e7:82:bd:20:c4:f3: 91:1b:61:92:15:e9:41:7f:71:ba:38:2a:04:8d:ea: f4:60:12:2d:66:b9:63:1a:d5:d1:23:d6:c6:27:86: 8d:b1:c4:c2:06:db:ca:a3:53:6b:f7:f9:49:e3:76: 58:dc:7e:f3:81:d9:88:da:2b:d5:6b:7d:54:e3:e8: dd:32:45:ce:30:ff:23:35:8e:51:26:a6:ff:d2:fa: 9c:30:7a:36:1f:b2:11:14:16:00:70:95:25:9c:18: 5b:bd:d7:be:b2:3a:7f:cd:78:a7:6c:42:69:f4:6e: a1:c0:69:dd:31:5e:2b:e6:f1:30:10:70:64:1a:90: ae:90:54:7c:c3:c4:c8:be:d4:49:5d:1b:89:78:28: 2d:2d:08:1c:13:76:82:ca:8e:44:ad:83:d5:4d:6b: cd:04:27:0f:d8:5a:76:27:ba:74:aa:9c:43:7d:3c: 8c:fc:27:fa:0f:f5:f4:aa:b9:35:5c:b3:30:3e:97: 48:33:8b:90:53:f0:f5:ff:6c:5c:63:0a:31:00:70: 71:56:7c:d0:d7:11:66:14:c0:e6:bf:ae:c7:6a:b4: b1:56:c2:be:fb:0c:d7:ba:d3:a0:ef:70:26:00:fe: a4:4d:30:ed:49:bc:c8:58:a4:21:03:fc:2f:99:47: ee:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:FE:38:A0:8A:B0:71:FA:3D:01:DD:8C:25:00:8B:EF:0C:15:0E:1C X509v3 Authority Key Identifier: keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/315D1630DDD911EFBAA4D977C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.1.52.0/22 116.255.42.0/24 123.176.118.0/24 125.253.9.0/24 125.253.19.0/24 125.253.58.0/23 203.132.68.0/23 203.132.76.0-203.132.87.255 203.212.16.0/21 Signature Algorithm: sha256WithRSAEncryption 3b:ba:a1:02:b4:9d:d0:65:cd:42:d9:a8:8f:37:3c:59:56:cc: 68:04:e3:76:ab:52:b4:06:2f:ea:8b:df:d3:c8:07:cf:cc:e0: a2:b2:ab:a9:de:0a:37:a8:7c:8f:88:0b:c3:b0:a9:99:ee:15: 6f:90:81:43:b5:dc:ca:e5:d4:79:7f:8b:34:79:8e:2c:c3:e9: 48:b0:85:3a:fe:74:f5:62:47:e3:a3:84:b3:86:d7:bb:cb:7f: 3b:2c:b7:8f:41:6d:09:06:96:66:7c:12:de:2e:79:98:e9:fa: 49:7c:1b:c9:2a:fd:0c:ca:02:03:b0:31:d5:6d:e8:4c:64:ba: db:a9:77:cc:fb:80:3b:3b:b6:9b:06:14:16:e2:9b:b8:bf:ed: 09:34:46:00:96:79:6b:f0:25:b4:e3:ab:f7:e8:f9:d4:ac:30: e0:db:96:31:41:52:0a:78:22:46:d5:42:55:0c:c8:f3:91:56: 25:1f:70:5e:a5:f7:8d:51:c0:60:f4:be:15:5e:ce:5d:31:b9: 22:f3:46:47:f8:5c:21:85:7d:95:d5:84:2b:55:89:c5:8a:4e: 48:7a:b0:98:d4:c8:8a:1e:9b:7b:6b:16:15:3f:c9:2b:d2:7e: 3a:01:f2:14:8d:af:34:f9:fa:1e:17:29:dd:21:0f:f6:c2:34: 33:18:f8:3f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU0NzUxMTAvBgNVBAUTKDc0NUZGNEYwNjNBQjVEMTcxRTA1MjUxQjMxRTI5NEE0 QkM3OTczQjEwHhcNMjUxMTA4MTk0MDI1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODcxYS0yNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hfaLm2bSzPngr0gxPORG2GSFelBf3G6OCoEjer0YBItZrljGtXRI9bGJ4aN scTCBtvKo1Nr9/lJ43ZY3H7zgdmI2ivVa31U4+jdMkXOMP8jNY5RJqb/0vqcMHo2 H7IRFBYAcJUlnBhbvde+sjp/zXinbEJp9G6hwGndMV4r5vEwEHBkGpCukFR8w8TI vtRJXRuJeCgtLQgcE3aCyo5ErYPVTWvNBCcP2Fp2J7p0qpxDfTyM/Cf6D/X0qrk1 XLMwPpdIM4uQU/D1/2xcYwoxAHBxVnzQ1xFmFMDmv67HarSxVsK++wzXutOg73Am AP6kTTDtSbzIWKQhA/wvmUfuSwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJr+OKCK sHH6PQHdjCUAi+8MFQ4cMB8GA1UdIwQYMBaAFHRf9PBjq10XHgUlGzHilKS8eXOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTQ3NS9EQTgzQUE3QUNB MTExMUVBQTQ3OUM3MzRDNEY5QUUwMi9kRl8wOEdPclhSY2VCU1ViTWVLVXBMeDVj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RGXzA4R09yWFJjZUJTVWJNZUtVcEx4NWM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU0NzUvREE4M0FBN0FDQTExMTFFQUE0NzlDNzM0QzRGOUFFMDIvMzE1RDE2MzBE REQ5MTFFRkJBQTREOTc3QzRGOUFFMDIucm9hMFcGCCsGAQUFBwEHAQH/BEgwRjBE BAIAATA+AwQCZwE0AwQAdP8qAwQAe7B2AwQAff0JAwQAff0TAwQBff06AwQBy4RE MAwDBALLhEwDBAPLhFADBAPL1BAwDQYJKoZIhvcNAQELBQADggEBADu6oQK0ndBl zULZqI83PFlWzGgE43arUrQGL+qL39PIB8/M4KKyq6neCjeofI+IC8OwqZnuFW+Q gUO13Mrl1Hl/izR5jizD6UiwhTr+dPViR+OjhLOG17vLfzsst49BbQkGlmZ8Et4u eZjp+kl8G8kq/QzKAgOwMdVt6Exkutupd8z7gDs7tpsGFBbim7i/7Qk0RgCWeWvw JbTjq/fo+dSsMODbljFBUgp4IkbVQlUMyPORViUfcF6l941RwGD0vhVezl0xuSLz Rkf4XCGFfZXVhCtVicWKTkh6sJjUyIoem3trFhU/ySvSfjoB8hSNrzT5+h4XKd0h D/bCNDMY+D8= -----END CERTIFICATE-----Generated at Mon Mar 2 07:34:10 2026 by rpki-client