$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145047.roa File: AS145047.roa (raw, json) Hash identifier: npFGIFkzDxq0vxSDIjTqfjIKTY0HQFI7FdlRdKfPhj0= Subject key identifier: 8E:70:A3:B2:43:4F:DC:56:13:21:F8:69:66:D1:79:01:A8:85:4C:19 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 43D94E6CB3B41242170100F2EF3B90FB6AEDB533 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145047.roa Signing time: Wed 04 Mar 2026 06:20:41 +0000 ROA not before: Wed 04 Mar 2026 06:15:41 +0000 ROA not after: Wed 03 Mar 2027 06:20:41 +0000 asID: 145047 IP address blocks: 240a:a95d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d9:4e:6c:b3:b4:12:42:17:01:00:f2:ef:3b:90:fb:6a:ed:b5:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:41 2026 GMT Not After : Mar 3 06:20:41 2027 GMT Subject: CN=8E70A3B2434FDC561321F86966D17901A8854C19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:58:d9:a0:e7:45:98:38:a0:22:fb:15:05: 1b:4f:72:37:b2:0b:59:60:f7:4f:69:23:be:2d:ad: 64:d0:51:46:fb:c3:4a:ce:0f:44:e9:63:d6:23:6c: 11:8d:1a:7e:eb:b2:ff:61:5c:fe:8c:8f:3f:c7:ba: 6b:ff:63:05:89:92:3e:db:f5:fe:8f:eb:40:2f:13: 77:7d:16:b3:39:21:2a:ed:1e:48:de:1f:78:ae:bc: 79:45:56:27:db:41:45:93:3a:2e:c1:50:43:6e:7e: 2f:74:d2:49:33:b5:8f:59:3b:de:d0:48:42:bc:0b: b4:cb:97:ff:f0:8d:5e:e4:1f:cf:fe:ea:b7:45:9d: 84:68:db:03:c7:29:23:6f:24:3e:34:4b:9c:d2:54: 40:2a:d4:d0:ca:dc:49:f0:10:1a:89:db:af:61:f4: f8:bb:03:76:ef:25:e3:69:c2:7b:58:a2:27:71:24: 42:92:cb:4a:1f:96:69:e4:f9:14:07:d2:0f:6f:4d: 57:82:bc:77:24:99:18:86:46:37:1a:50:c3:64:8f: af:40:49:e8:aa:48:7d:23:a9:7e:03:50:18:2c:60: aa:cb:5f:c7:83:ea:a0:35:49:fd:4f:fc:1f:db:b9: cc:53:74:81:a0:0e:37:86:3b:3e:a6:2e:35:a2:c9: 60:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:70:A3:B2:43:4F:DC:56:13:21:F8:69:66:D1:79:01:A8:85:4C:19 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145047.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a95d::/32 Signature Algorithm: sha256WithRSAEncryption 18:ee:0b:20:f0:e7:a5:61:07:65:35:0d:e6:66:95:bc:66:01: d1:ab:f4:a4:53:2c:55:cc:3d:74:ed:e5:fb:3f:c5:64:8d:31: 41:8e:ef:53:55:89:5b:d2:6d:5f:52:76:6f:6d:c4:23:5b:6e: 92:5d:a3:94:1e:bc:b1:2d:e5:eb:8e:7f:b7:0a:07:f1:d5:d7: 65:1b:55:4a:32:4c:b6:6e:41:74:80:39:68:42:63:08:67:b2: 83:f0:d3:41:7a:b2:2a:db:04:60:11:0f:c7:de:15:0c:a8:1e: 2e:ea:ef:60:ad:6c:73:e0:a3:11:1e:1b:68:67:37:65:61:f7: 42:bd:e7:b6:d8:c2:61:91:72:2d:67:6e:c3:6c:c4:05:61:1e: 6d:85:b5:fb:68:e7:09:3e:2b:24:86:19:65:c7:77:35:fd:38: 3d:da:19:d1:dd:e8:34:72:ce:2b:42:3d:8d:66:aa:5b:64:d7: b2:4b:d3:3b:c0:59:66:21:8a:8d:5d:61:59:55:0e:82:ea:ad: bb:0c:80:72:68:cb:ee:06:f1:6a:66:9f:d6:a5:5f:f1:55:6c: d5:2d:a7:fc:1d:35:70:cc:18:5c:63:b7:ab:5a:ba:b3:b4:d7: 0c:f2:64:ca:66:37:47:ae:d8:13:8b:d1:2d:2f:8f:d6:aa:85: 01:78:5b:6e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQ9lObLO0EkIXAQDy7zuQ+2rttTMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0MVoX DTI3MDMwMzA2MjA0MVowMzExMC8GA1UEAxMoOEU3MEEzQjI0MzRGREM1NjEzMjFG ODY5NjZEMTc5MDFBODg1NEMxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALECWNmg50WYOKAi+xUFG09yN7ILWWD3T2kjvi2tZNBRRvvDSs4PROlj1iNs EY0afuuy/2Fc/oyPP8e6a/9jBYmSPtv1/o/rQC8Td30WszkhKu0eSN4feK68eUVW J9tBRZM6LsFQQ25+L3TSSTO1j1k73tBIQrwLtMuX//CNXuQfz/7qt0WdhGjbA8cp I28kPjRLnNJUQCrU0MrcSfAQGonbr2H0+LsDdu8l42nCe1iiJ3EkQpLLSh+WaeT5 FAfSD29NV4K8dySZGIZGNxpQw2SPr0BJ6KpIfSOpfgNQGCxgqstfx4PqoDVJ/U/8 H9u5zFN0gaAON4Y7PqYuNaLJYH0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSOcKOy Q0/cVhMh+Glm0XkBqIVMGTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA0Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qV0wDQYJKoZIhvcNAQELBQADggEBABjuCyDw56VhB2U1DeZmlbxmAdGr9KRTLFXM PXTt5fs/xWSNMUGO71NViVvSbV9Sdm9txCNbbpJdo5QevLEt5euOf7cKB/HV12Ub VUoyTLZuQXSAOWhCYwhnsoPw00F6sirbBGARD8feFQyoHi7q72CtbHPgoxEeG2hn N2Vh90K957bYwmGRci1nbsNsxAVhHm2Ftfto5wk+KySGGWXHdzX9OD3aGdHd6DRy zitCPY1mqltk17JL0zvAWWYhio1dYVlVDoLqrbsMgHJoy+4G8Wpmn9alX/FVbNUt p/wdNXDMGFxjt6taurO01wzyZMpmN0eu2BOL0S0vj9aqhQF4W24= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:43 2026 by rpki-client