$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145162.roa File: AS145162.roa (raw, json) Hash identifier: 20VxoEciaNiBnPf0ip4r77M5FE8NGFv5SwoQ0vhkpx4= Subject key identifier: C6:21:B1:0F:FC:19:50:1D:A4:50:7D:CA:1E:6B:F1:AD:DF:D5:7A:E0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 63200AA4CA6044C28ACE794726791FFC3B33D289 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145162.roa Signing time: Wed 04 Mar 2026 06:21:05 +0000 ROA not before: Wed 04 Mar 2026 06:16:05 +0000 ROA not after: Wed 03 Mar 2027 06:21:05 +0000 asID: 145162 IP address blocks: 240a:a9d0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:20:0a:a4:ca:60:44:c2:8a:ce:79:47:26:79:1f:fc:3b:33:d2:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:05 2026 GMT Not After : Mar 3 06:21:05 2027 GMT Subject: CN=C621B10FFC19501DA4507DCA1E6BF1ADDFD57AE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:db:a6:3b:c9:00:5e:65:00:2b:dd:cd:6a:b6: f6:51:c7:75:10:64:e0:59:e5:8d:d0:13:d3:a8:f9: 7f:63:3f:d8:41:72:a7:84:41:a0:69:c2:6e:2e:2e: e5:1b:5f:d2:cc:61:49:39:d2:48:9e:19:1e:86:12: ed:e1:97:5e:74:55:0f:4c:a7:2c:3f:8d:f0:bf:14: 91:96:ae:cd:f5:87:c2:99:84:c2:33:1e:b2:03:f9: 4c:f2:46:dd:08:fd:e2:01:e1:f9:31:44:78:7b:ab: 34:f9:ce:e7:eb:80:a6:c5:42:d1:56:65:70:87:2e: 92:8d:b0:42:c3:bb:0c:5a:73:e7:93:8f:d7:57:69: ce:dd:8e:fb:d4:c1:06:c2:03:18:8c:63:eb:af:45: cd:6c:e3:fe:58:a4:3c:3e:dc:77:b1:2f:cc:90:a3: 77:5f:39:71:41:40:9e:be:7d:d5:ca:f7:11:0c:5b: ce:06:1d:e0:90:bc:51:98:05:e5:77:c4:f5:cc:27: c1:bd:bf:f2:34:e1:36:e4:7c:aa:22:81:ba:90:f8: f8:09:e9:41:b3:8e:d7:a5:a3:97:47:92:59:bf:89: 32:2a:97:93:23:3e:f4:4a:4f:28:d7:24:05:04:9d: f8:7d:10:d4:28:48:96:b7:65:30:7e:1b:89:3b:55: 4e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:21:B1:0F:FC:19:50:1D:A4:50:7D:CA:1E:6B:F1:AD:DF:D5:7A:E0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145162.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9d0::/32 Signature Algorithm: sha256WithRSAEncryption 23:36:1c:a8:67:5e:89:5f:51:9b:85:31:53:fc:e6:a0:57:ca: ec:73:2c:30:c6:be:51:f7:84:35:53:e4:c1:c6:2f:87:27:e4: f7:28:3d:1c:3c:e0:1c:ec:75:b4:c5:32:d9:a8:77:fa:73:8f: 6c:bd:1a:99:7c:ef:da:89:cb:b3:8e:d7:78:ff:e6:e2:a6:55: 46:1b:77:54:95:db:cf:50:df:23:bf:01:4c:98:75:aa:34:d5: ff:1b:95:4d:72:05:e9:fc:c2:d2:1e:7c:13:08:9b:89:05:31: be:46:3d:91:e8:4e:ee:5e:c2:3b:e0:9e:56:9a:6c:d2:04:2d: 5c:aa:d5:97:89:7b:b0:42:15:b8:89:5d:92:dd:28:4e:90:14: 86:f8:b0:32:01:c0:21:2e:aa:e5:d9:7e:d9:29:29:2a:d1:81: 43:fe:a0:ac:87:12:83:04:2a:66:1f:24:08:9b:10:89:45:4c: 7b:a4:73:08:20:22:2f:48:0b:8b:7e:01:31:5b:99:97:3c:a3: 2f:89:01:5a:14:71:19:25:b4:0b:ab:70:b6:1b:f5:34:98:98: 7d:b1:4f:9c:5d:5b:ca:6a:9c:31:bf:6f:cb:fa:95:63:8f:c2: a1:cd:00:71:ac:b5:6b:b7:68:2a:cf:22:14:9e:ae:67:6d:a2: f5:8a:82:94 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYyAKpMpgRMKKznlHJnkf/Dsz0okwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwNVoX DTI3MDMwMzA2MjEwNVowMzExMC8GA1UEAxMoQzYyMUIxMEZGQzE5NTAxREE0NTA3 RENBMUU2QkYxQURERkQ1N0FFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjbpjvJAF5lACvdzWq29lHHdRBk4FnljdAT06j5f2M/2EFyp4RBoGnCbi4u 5Rtf0sxhSTnSSJ4ZHoYS7eGXXnRVD0ynLD+N8L8UkZauzfWHwpmEwjMesgP5TPJG 3Qj94gHh+TFEeHurNPnO5+uApsVC0VZlcIcuko2wQsO7DFpz55OP11dpzt2O+9TB BsIDGIxj669FzWzj/likPD7cd7EvzJCjd185cUFAnr591cr3EQxbzgYd4JC8UZgF 5XfE9cwnwb2/8jThNuR8qiKBupD4+AnpQbOO16Wjl0eSWb+JMiqXkyM+9EpPKNck BQSd+H0Q1ChIlrdlMH4biTtVTtECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTGIbEP /BlQHaRQfcoea/Gt39V64DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE2Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qdAwDQYJKoZIhvcNAQELBQADggEBACM2HKhnXolfUZuFMVP85qBXyuxzLDDGvlH3 hDVT5MHGL4cn5PcoPRw84BzsdbTFMtmod/pzj2y9Gpl879qJy7OO13j/5uKmVUYb d1SV289Q3yO/AUyYdao01f8blU1yBen8wtIefBMIm4kFMb5GPZHoTu5ewjvgnlaa bNIELVyq1ZeJe7BCFbiJXZLdKE6QFIb4sDIBwCEuquXZftkpKSrRgUP+oKyHEoME KmYfJAibEIlFTHukcwggIi9IC4t+ATFbmZc8oy+JAVoUcRkltAurcLYb9TSYmH2x T5xdW8pqnDG/b8v6lWOPwqHNAHGstWu3aCrPIhSermdtovWKgpQ= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:06 2026 by rpki-client