$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145046.roa File: AS145046.roa (raw, json) Hash identifier: wHKQ866yeeGv7FTV/clR+5uY0HpJCv6p1e40XbrN82E= Subject key identifier: A7:10:2A:78:9F:22:26:E2:EA:85:FE:29:87:9F:98:35:A8:E8:50:15 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 49A9A95319ED9944429872A09CFE5EF5D0642CCF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145046.roa Signing time: Wed 04 Mar 2026 06:22:27 +0000 ROA not before: Wed 04 Mar 2026 06:17:27 +0000 ROA not after: Wed 03 Mar 2027 06:22:27 +0000 asID: 145046 IP address blocks: 240a:a95c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a9:a9:53:19:ed:99:44:42:98:72:a0:9c:fe:5e:f5:d0:64:2c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:27 2026 GMT Not After : Mar 3 06:22:27 2027 GMT Subject: CN=A7102A789F2226E2EA85FE29879F9835A8E85015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d5:27:3f:5e:b9:8f:5e:90:99:1c:01:9b:2c: 48:6c:c7:bf:de:ba:33:3f:35:2d:71:4a:5a:e2:30: bf:5c:e1:62:bc:b6:4a:d7:a4:9b:eb:9a:6a:33:9e: 84:b7:66:d6:c6:a3:eb:8c:34:29:c7:08:20:33:a3: a2:74:97:63:3e:b2:84:8b:1f:56:34:6e:c2:f6:1f: 9a:12:05:e8:b8:90:58:4a:b4:a1:91:c2:59:07:1a: ad:46:3f:19:9f:a4:5d:d5:81:a4:4a:e5:9d:cb:74: 51:e1:ae:a1:9c:6a:ed:8b:5d:e0:b3:9c:55:60:f8: 39:4f:6b:84:0c:5f:1b:e4:39:35:dd:4a:40:ab:fa: c6:02:45:ba:8d:be:33:e1:ba:20:42:86:4d:73:02: 50:49:12:f2:e1:03:67:ea:93:b4:44:bd:db:85:87: eb:a6:5c:ca:5f:3b:c0:bc:8d:b4:6f:2c:5b:1e:df: 69:e5:6b:19:99:38:c7:81:2f:3d:ca:ec:4d:64:09: d7:61:67:1e:6c:b4:d2:5d:09:1d:59:3e:a9:2c:fa: b9:27:3d:86:4a:61:50:60:4d:8c:2d:c2:5c:88:a5: a0:0d:78:6d:6d:f7:8b:e9:6d:10:8b:72:32:a5:d4: b8:e3:ac:cf:9f:d2:e9:3d:8f:65:7d:e5:a5:d6:34: dc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:10:2A:78:9F:22:26:E2:EA:85:FE:29:87:9F:98:35:A8:E8:50:15 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145046.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a95c::/32 Signature Algorithm: sha256WithRSAEncryption 74:c4:c2:6e:64:11:e5:6a:21:e8:9e:ad:bd:e5:11:af:71:25: 2e:2f:15:e9:a1:3f:58:90:23:4e:61:cf:9e:c8:b7:67:7c:42: 7a:33:fe:17:2e:38:25:14:a9:e7:91:a1:ac:cc:51:72:54:d9: 1c:62:d4:bd:07:23:8b:b5:96:dd:42:48:96:25:48:b3:2b:96: dc:ec:92:9c:11:25:49:dc:79:dd:21:51:a0:89:a8:80:2a:a7: 1f:2d:9c:83:d1:34:03:f4:25:f8:b5:8b:0f:8d:0c:cf:a5:62: 6e:ae:fe:d3:11:72:d1:aa:05:62:f8:e7:6a:b4:51:67:dc:3a: 6f:f2:6f:bc:a5:a9:c5:89:15:b8:74:6e:5a:e5:e6:b3:39:00: 3d:ac:0d:ea:82:05:24:71:8d:6a:f2:c1:33:04:9c:89:93:e7: 09:9d:9a:21:df:6d:06:de:f2:a1:b7:79:db:2d:dc:5f:aa:2a: cb:a3:23:bb:66:21:2a:c1:d2:25:07:95:58:f9:ea:d4:29:32: e1:56:02:30:f0:42:fe:45:45:8e:e1:73:6b:2a:b7:60:e3:9c: 84:1a:b8:df:58:72:60:32:0d:2c:b9:88:fd:72:c7:9a:8e:cf: 26:f3:b6:ac:b0:fa:72:d1:ae:81:fb:6d:c0:bb:90:8c:39:a8: a9:72:ca:bc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSampUxntmURCmHKgnP5e9dBkLM8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcyN1oX DTI3MDMwMzA2MjIyN1owMzExMC8GA1UEAxMoQTcxMDJBNzg5RjIyMjZFMkVBODVG RTI5ODc5Rjk4MzVBOEU4NTAxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/VJz9euY9ekJkcAZssSGzHv966Mz81LXFKWuIwv1zhYry2Stekm+uaajOe hLdm1saj64w0KccIIDOjonSXYz6yhIsfVjRuwvYfmhIF6LiQWEq0oZHCWQcarUY/ GZ+kXdWBpErlnct0UeGuoZxq7Ytd4LOcVWD4OU9rhAxfG+Q5Nd1KQKv6xgJFuo2+ M+G6IEKGTXMCUEkS8uEDZ+qTtES924WH66Zcyl87wLyNtG8sWx7faeVrGZk4x4Ev PcrsTWQJ12FnHmy00l0JHVk+qSz6uSc9hkphUGBNjC3CXIiloA14bW33i+ltEIty MqXUuOOsz5/S6T2PZX3lpdY03FMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSnECp4 nyIm4uqF/imHn5g1qOhQFTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA0Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qVwwDQYJKoZIhvcNAQELBQADggEBAHTEwm5kEeVqIeierb3lEa9xJS4vFemhP1iQ I05hz57It2d8Qnoz/hcuOCUUqeeRoazMUXJU2Rxi1L0HI4u1lt1CSJYlSLMrltzs kpwRJUnced0hUaCJqIAqpx8tnIPRNAP0Jfi1iw+NDM+lYm6u/tMRctGqBWL452q0 UWfcOm/yb7ylqcWJFbh0blrl5rM5AD2sDeqCBSRxjWrywTMEnImT5wmdmiHfbQbe 8qG3edst3F+qKsujI7tmISrB0iUHlVj56tQpMuFWAjDwQv5FRY7hc2sqt2DjnIQa uN9YcmAyDSy5iP1yx5qOzybztqyw+nLRroH7bcC7kIw5qKlyyrw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:45 2026 by rpki-client