$ rpki-client -vvf rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/4A5A1A32001211F1BC55B3C9406F56BC.roa File: 4A5A1A32001211F1BC55B3C9406F56BC.roa (raw, json) Hash identifier: hV/jnLK+I5DqGVULzWJLe2aTFemY0+Rn6OMG26sgrM0= Subject key identifier: C1:F7:CB:A8:6E:01:E1:2F:36:2C:36:F4:5E:57:7E:03:11:61:21:D5 Certificate issuer: /CN=A914D648/serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89 Certificate serial: 12 Authority key identifier: 89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/4A5A1A32001211F1BC55B3C9406F56BC.roa Signing time: Sun 01 Mar 2026 05:38:20 +0000 ROA not before: Mon 02 Feb 2026 08:36:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4686 IP address blocks: 45.124.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D648, serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89 Validity Not Before: Feb 2 08:36:38 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3d0cc-89bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f9:96:48:c6:c6:c3:df:dd:f7:80:8f:04:7b: 93:dd:21:83:57:9e:41:1b:35:49:80:44:76:d7:1e: be:06:21:9b:1a:67:d1:42:8a:ce:10:bb:e0:87:84: 6a:8a:8f:d9:a8:d5:eb:d5:66:e1:fe:18:0e:f8:6a: f4:de:f1:e3:79:14:73:b1:dc:a8:aa:6c:df:e6:50: ea:87:05:b3:70:f5:3d:cb:e1:00:00:39:d1:94:c9: 4c:87:43:25:16:0a:5b:c5:aa:00:57:15:54:09:b7: 91:8e:8a:6d:f0:0e:4f:8a:4b:11:5c:b5:88:fa:9c: c4:73:17:17:2f:97:25:b9:7a:50:a9:9e:97:a0:3a: 2c:c3:1d:72:77:f0:84:2b:1b:f6:e1:9d:08:3c:ca: 0e:f9:00:43:3a:dc:72:75:12:01:16:45:6b:68:6b: b3:c5:95:19:71:34:3b:6e:21:e0:84:c2:bc:9a:1d: a8:24:05:ff:7f:61:b7:28:e0:00:f2:78:ba:dc:52: a3:27:eb:1c:4f:21:29:bf:0a:9d:8e:62:bd:ec:73: 6c:81:ca:8f:33:73:dc:6c:c0:a4:0e:c8:79:54:76: cb:7b:91:ab:0a:aa:81:a9:8a:72:b4:5b:2d:fb:42: b8:5b:f2:26:0f:72:e0:8c:58:63:cb:3b:82:e3:98: 40:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F7:CB:A8:6E:01:E1:2F:36:2C:36:F4:5E:57:7E:03:11:61:21:D5 X509v3 Authority Key Identifier: keyid:89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/4A5A1A32001211F1BC55B3C9406F56BC.roa sbgp-ipAddrBlock: critical IPv4: 45.124.220.0/22 Signature Algorithm: sha256WithRSAEncryption 20:0c:85:28:5d:ee:68:94:28:4e:a8:73:34:8a:63:5d:dc:7f: fb:80:5d:00:5f:5d:e2:0c:8f:24:0d:99:1b:f9:02:3b:5c:88: 6e:4f:a3:33:a0:cd:2f:cd:74:fd:4e:e9:91:48:cc:a0:8b:5f: fc:73:1d:43:e5:e6:1d:60:45:f3:35:fa:77:38:9e:84:0a:8c: 49:c1:06:ba:07:0c:59:b2:b9:94:ce:84:c7:a2:20:c3:cd:20: 23:3d:38:ea:70:5e:48:9f:ad:fd:d6:79:f1:c4:df:43:49:bb: 1c:84:91:0f:64:f2:3c:a8:14:b8:e4:b1:a7:ed:b4:78:94:ed: 49:54:89:a4:a0:19:26:f0:24:82:4e:62:18:e8:05:d8:42:9a: c8:b1:46:31:8e:a1:1e:fe:84:62:a0:37:8a:3d:00:56:56:03: b0:48:50:24:4a:e6:09:06:ed:f9:ca:c2:96:37:94:49:64:f7: 6a:f8:c5:ff:53:39:c5:bf:4a:d6:92:77:63:c8:ff:26:4f:5a: c9:5e:74:c3:14:2c:02:1b:88:6b:73:9d:ec:a3:d6:5f:d8:ef: 20:22:ed:6b:08:98:2a:ab:cd:fa:69:e2:88:44:c8:7b:8b:7e: d2:e0:97:5c:6c:2d:0c:5c:ec:03:bb:4d:0b:8b:ac:04:75:8b: cd:de:60:cc -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDY0ODExMC8GA1UEBRMoODlENjkwNDZFQzdDNzFBRDdGRkY5OEU0RkQ5QkI5ODgx RjI5OUM4OTAeFw0yNjAyMDIwODM2MzhaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMGNjLTg5YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCb+ZZIxsbD3933gI8Ee5PdIYNXnkEbNUmARHbXHr4GIZsaZ9FCis4Qu+CHhGqK j9mo1evVZuH+GA74avTe8eN5FHOx3KiqbN/mUOqHBbNw9T3L4QAAOdGUyUyHQyUW ClvFqgBXFVQJt5GOim3wDk+KSxFctYj6nMRzFxcvlyW5elCpnpegOizDHXJ38IQr G/bhnQg8yg75AEM63HJ1EgEWRWtoa7PFlRlxNDtuIeCEwryaHagkBf9/Ybco4ADy eLrcUqMn6xxPISm/Cp2OYr3sc2yByo8zc9xswKQOyHlUdst7kasKqoGpinK0Wy37 Qrhb8iYPcuCMWGPLO4LjmECHAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUwffLqG4B 4S82LDb0Xld+AxFhIdUwHwYDVR0jBBgwFoAUidaQRux8ca1//5jk/Zu5iB8pnIkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRENjQ4LzAxRjcwMkYwMDAx MjExRjE4NzhGOTdDMDQwNkY1NkJDL2lkYVFSdXg4Y2ExX181amtfWnU1aUI4cG5J ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaWRhUVJ1eDhjYTFfXzVqa19adTVpQjhwbklrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDY0OC8wMUY3MDJGMDAwMTIxMUYxODc4Rjk3QzA0MDZGNTZCQy80QTVBMUEzMjAw MTIxMUYxQkM1NUIzQzk0MDZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAItfNwwDQYJKoZIhvcNAQELBQADggEBACAMhShd7miUKE6oczSKY13c f/uAXQBfXeIMjyQNmRv5AjtciG5PozOgzS/NdP1O6ZFIzKCLX/xzHUPl5h1gRfM1 +nc4noQKjEnBBroHDFmyuZTOhMeiIMPNICM9OOpwXkifrf3WefHE30NJuxyEkQ9k 8jyoFLjksafttHiU7UlUiaSgGSbwJIJOYhjoBdhCmsixRjGOoR7+hGKgN4o9AFZW A7BIUCRK5gkG7fnKwpY3lElk92r4xf9TOcW/StaSd2PI/yZPWsledMMULAIbiGtz neyj1l/Y7yAi7WsImCqrzfpp4ohEyHuLftLgl1xsLQxc7AO7TQuLrAR1i83eYMw= -----END CERTIFICATE-----Generated at Mon Mar 2 07:03:13 2026 by rpki-client