$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa File: 627B1438281211EA881CC32DC4F9AE02.roa (raw, json) Hash identifier: QuMcWQGwhElYLcNGEV8qqlAOlpLd+8u3fMjc2LDn80I= Subject key identifier: 27:AF:2F:3F:33:11:3D:E5:5A:BF:79:CC:55:6D:39:80:38:55:74:E1 Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0C79 Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:55:12 +0000 ROA not before: Tue 20 May 2025 19:14:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.229.8.0/24 maxlen: 24 103.229.9.0/24 maxlen: 24 103.229.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A, serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: May 20 19:14:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a44540-3798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:fc:d5:3b:41:26:38:54:36:d5:fb:63:00:d5: 50:61:7b:db:eb:5d:58:14:ae:03:3c:9d:b7:d8:29: 3d:73:7d:19:e2:8b:94:07:80:c3:56:4d:3f:f2:0c: eb:a0:21:73:14:e5:19:fa:c4:60:99:e1:b0:2d:98: 6a:de:52:8f:89:5f:b3:e1:36:f9:1f:29:eb:04:35: 1b:d7:09:28:62:91:ec:2d:35:d0:03:5f:56:5b:ad: 1b:43:4b:27:d9:bb:28:f0:fe:6f:1e:9f:28:73:31: fb:16:05:f4:14:10:e4:4a:fa:1c:34:bd:b7:3d:6f: 7c:81:66:b9:83:d3:30:f8:a5:21:9e:a2:cf:f3:72: 6a:e0:58:bf:96:7a:66:24:eb:77:de:2d:2d:ad:1f: d8:87:6f:71:1f:a8:d9:ad:06:22:ab:96:59:5b:55: d6:36:3e:d3:d1:22:d1:78:b5:d5:3e:f5:f3:9a:2b: 38:05:7d:e5:62:1f:54:4e:90:f4:be:b2:5a:97:48: 72:2a:1b:76:28:aa:ab:ad:cc:16:e1:17:91:63:ab: 40:a2:7d:61:9b:4f:d9:c7:77:83:66:7a:16:ee:2b: 4e:cd:61:3f:3a:c7:7e:0f:4d:ae:77:e4:06:00:fb: 24:da:f7:a9:9d:14:8d:57:ae:11:31:43:a4:7f:2f: ab:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AF:2F:3F:33:11:3D:E5:5A:BF:79:CC:55:6D:39:80:38:55:74:E1 X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.8.0-103.229.10.255 Signature Algorithm: sha256WithRSAEncryption 37:a2:bc:4b:37:1f:7e:3f:86:87:47:60:9c:5c:f4:0c:a9:48: 7a:14:66:92:5d:f2:4f:4f:f6:95:a4:77:6b:31:da:a0:48:ef: da:af:05:d7:51:fc:b3:f1:29:f9:94:28:c8:d1:20:89:f4:9f: cc:c0:ab:22:0a:a0:a2:ab:18:a2:fa:0d:0e:4c:79:5f:dc:58: 00:f2:a6:d4:38:ca:fb:18:84:1f:df:5c:ce:3a:3e:63:10:e5: 48:ec:dd:c7:eb:74:eb:cb:ec:7f:d1:70:36:48:4b:ec:d7:93: f7:f5:3b:39:c3:64:72:1d:c5:27:cf:ff:c3:eb:ab:3d:ba:69: 99:f3:73:35:86:3f:df:25:4c:cb:55:d7:3e:c5:9f:7f:aa:b9: bb:60:8e:fe:68:49:c7:6a:a1:ad:dc:42:af:81:08:61:b0:cb: 9e:a3:3d:5d:2a:39:4e:4e:a7:20:2d:40:d2:38:85:31:91:58: 31:72:16:95:bc:fe:9f:3c:a2:5a:41:2f:66:e5:a4:e2:ba:29: 4a:d9:65:d2:77:c3:0b:29:fe:d9:4c:a2:71:40:e5:da:83:5c: 14:7e:36:6b:f0:7b:23:ba:e0:85:ff:67:64:2a:92:d8:bb:35: 44:65:2c:3f:27:08:cf:ab:f9:42:ee:77:bd:f2:7c:29:59:42: 1c:f6:69:34 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjUwNTIwMTkxNDI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDU0MC0zNzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPzVO0EmOFQ21ftjANVQYXvb611YFK4DPJ232Ck9c30Z4ouUB4DDVk0/8gzr oCFzFOUZ+sRgmeGwLZhq3lKPiV+z4Tb5HynrBDUb1wkoYpHsLTXQA19WW60bQ0sn 2bso8P5vHp8oczH7FgX0FBDkSvocNL23PW98gWa5g9Mw+KUhnqLP83Jq4Fi/lnpm JOt33i0trR/Yh29xH6jZrQYiq5ZZW1XWNj7T0SLReLXVPvXzmis4BX3lYh9UTpD0 vrJal0hyKht2KKqrrcwW4ReRY6tAon1hm0/Zx3eDZnoW7itOzWE/Osd+D02ud+QG APsk2vepnRSNV64RMUOkfy+rYwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFCevLz8z ET3lWr95zFVtOYA4VXThMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ3MEEvNDFBQkQyOUUxQjg2MTFFQTlDOUFGMjQzQzRGOUFFMDIvNjI3QjE0Mzgy ODEyMTFFQTg4MUNDMzJEQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBANn5QgDBABn5QowDQYJKoZIhvcNAQELBQADggEBADeivEs3H34/ hodHYJxc9AypSHoUZpJd8k9P9pWkd2sx2qBI79qvBddR/LPxKfmUKMjRIIn0n8zA qyIKoKKrGKL6DQ5MeV/cWADyptQ4yvsYhB/fXM46PmMQ5Ujs3cfrdOvL7H/RcDZI S+zXk/f1OznDZHIdxSfP/8Prqz26aZnzczWGP98lTMtV1z7Fn3+qubtgjv5oScdq oa3cQq+BCGGwy56jPV0qOU5OpyAtQNI4hTGRWDFyFpW8/p88olpBL2blpOK6KUrZ ZdJ3wwsp/tlMonFA5dqDXBR+NmvweyO64IX/Z2Qqkti7NURlLD8nCM+r+ULud73y fClZQhz2aTQ= -----END CERTIFICATE-----Generated at Mon Mar 2 08:07:38 2026 by rpki-client