$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/61EE7C6C281211EA881CC32DC4F9AE02.roa File: 61EE7C6C281211EA881CC32DC4F9AE02.roa (raw, json) Hash identifier: MVjgqlWP2+PxzhdlAammG4g4jdGVj5m8klqnIWeyc0E= Subject key identifier: 5D:C0:A0:27:59:44:E6:16:7A:1C:EB:FC:98:04:88:04:F2:88:6A:2C Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0CAB Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/61EE7C6C281211EA881CC32DC4F9AE02.roa Signing time: Thu 28 May 2026 19:22:09 +0000 ROA not before: Thu 28 May 2026 19:22:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 103.229.8.0/24 maxlen: 24 103.229.9.0/24 maxlen: 24 103.229.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A, serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: May 28 19:22:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a1895e1-6f04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:40:48:e5:74:5b:71:0b:69:27:ea:dd:d2:4e: 87:9c:d5:cd:da:91:89:fb:5b:b9:76:4b:b1:c6:3c: 98:3b:e2:df:fd:d4:47:22:01:4a:31:01:f6:c1:2f: 66:93:4b:5d:42:a0:40:13:15:25:c5:24:98:c8:fb: d0:75:0f:89:c3:ac:f6:27:5c:07:36:32:a7:20:05: be:1d:b9:60:49:c6:84:a8:ca:67:43:0a:aa:86:bd: cd:6a:1a:8e:a3:27:04:31:1a:49:8e:89:07:be:ec: 33:3e:bf:1d:ce:59:b9:7e:cf:ea:3b:3d:89:ce:01: 7a:9c:a1:1e:90:42:cd:3f:75:8d:6f:c8:9a:2d:0e: ac:13:ec:20:23:af:3d:e6:d6:4d:38:d9:2c:9f:b5: 0b:a5:ff:5e:60:b1:97:74:e5:51:51:89:00:ef:3a: ea:eb:5c:a1:f4:2d:c2:a3:6c:b4:60:dd:cf:3f:ce: 30:08:33:7b:2f:84:c9:47:89:c0:88:08:de:be:2f: a4:3b:03:13:dc:3a:b0:1d:62:49:c8:92:2b:0b:d6: 28:3a:1d:a5:96:19:ee:b7:e3:0f:01:02:63:4d:41: bd:3b:c1:1f:09:66:1e:f0:2c:6e:f1:82:58:8e:19: 08:b7:0c:e5:16:c8:20:3f:f3:8d:8e:c2:dd:77:5f: 1e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C0:A0:27:59:44:E6:16:7A:1C:EB:FC:98:04:88:04:F2:88:6A:2C X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/61EE7C6C281211EA881CC32DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.8.0-103.229.10.255 Signature Algorithm: sha256WithRSAEncryption 03:fb:10:e5:b7:b1:4a:5c:23:53:46:46:88:49:c0:c0:c2:b0: 8b:c9:80:67:a5:92:44:37:0f:91:7d:c6:4f:a1:d5:78:59:95: 45:53:13:39:9b:85:07:83:9b:0c:a8:65:0d:7a:6b:7c:70:e3: 59:ff:c8:cf:4f:a9:6d:c3:51:7f:fd:04:8a:20:22:45:4b:cf: f2:66:a7:20:16:51:ff:b0:79:b9:5f:05:90:fe:5f:a1:16:81: ce:d1:bd:44:41:a4:ce:5a:15:36:c8:b7:7f:ef:ea:03:5d:87: 5e:1a:6a:8e:93:0d:fd:39:62:63:55:6a:78:db:55:31:52:23: 1f:d0:fb:12:2e:c7:33:fe:d8:38:43:a3:dc:c8:d5:43:92:6f: 45:ee:4f:3d:f3:36:a9:f3:e2:1d:74:63:e0:e5:3d:e2:ea:73: 0b:6d:12:5a:7b:8b:4d:34:63:55:72:25:36:dd:21:22:12:a8: 09:04:e5:28:3c:b1:a2:84:06:10:77:fe:eb:9b:d6:24:f7:3c: c5:d5:13:b1:ce:b8:ec:9c:04:ec:84:e8:1f:31:27:b1:0b:72: f4:21:59:42:b0:0f:b3:b0:7e:8c:86:66:66:6c:bd:61:8b:86: ff:45:d7:5f:d4:34:78:40:2f:ab:78:05:3e:c2:13:91:d3:38: 3c:7e:95:76 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjYwNTI4MTkyMjA5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE4OTVlMS02ZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkBI5XRbcQtpJ+rd0k6HnNXN2pGJ+1u5dkuxxjyYO+Lf/dRHIgFKMQH2wS9m k0tdQqBAExUlxSSYyPvQdQ+Jw6z2J1wHNjKnIAW+HblgScaEqMpnQwqqhr3NahqO oycEMRpJjokHvuwzPr8dzlm5fs/qOz2JzgF6nKEekELNP3WNb8iaLQ6sE+wgI689 5tZNONksn7ULpf9eYLGXdOVRUYkA7zrq61yh9C3Co2y0YN3PP84wCDN7L4TJR4nA iAjevi+kOwMT3DqwHWJJyJIrC9YoOh2llhnut+MPAQJjTUG9O8EfCWYe8Cxu8YJY jhkItwzlFsggP/ONjsLdd18e7QIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFF3AoCdZ ROYWehzr/JgEiATyiGosMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ3MEEvNDFBQkQyOUUxQjg2MTFFQTlDOUFGMjQzQzRGOUFFMDIvNjFFRTdDNkMy ODEyMTFFQTg4MUNDMzJEQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBANn5QgDBABn5QowDQYJKoZIhvcNAQELBQADggEBAAP7EOW3sUpc I1NGRohJwMDCsIvJgGelkkQ3D5F9xk+h1XhZlUVTEzmbhQeDmwyoZQ16a3xw41n/ yM9PqW3DUX/9BIogIkVLz/JmpyAWUf+weblfBZD+X6EWgc7RvURBpM5aFTbIt3/v 6gNdh14aao6TDf05YmNVanjbVTFSIx/Q+xIuxzP+2DhDo9zI1UOSb0XuTz3zNqnz 4h10Y+DlPeLqcwttElp7i000Y1VyJTbdISISqAkE5Sg8saKEBhB3/uub1iT3PMXV E7HOuOycBOyE6B8xJ7ELcvQhWUKwD7OwfoyGZmZsvWGLhv9F11/UNHhAL6t4BT7C E5HTODx+lXY= -----END CERTIFICATE-----Generated at Sat Jun 13 15:15:34 2026 by rpki-client