$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145164.roa File: AS145164.roa (raw, json) Hash identifier: MC8OdvqpICv7OKGHXwFo/CB8SDHzApuH6sZFLJ/MTzk= Subject key identifier: 29:1D:A3:10:5C:ED:4D:EB:A3:F0:B9:2E:42:65:E1:40:73:F9:11:B9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 776E403700DB719F9D1A08713E36E2EB251388AF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145164.roa Signing time: Wed 04 Mar 2026 06:21:15 +0000 ROA not before: Wed 04 Mar 2026 06:16:15 +0000 ROA not after: Wed 03 Mar 2027 06:21:15 +0000 asID: 145164 IP address blocks: 240a:a9d2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:6e:40:37:00:db:71:9f:9d:1a:08:71:3e:36:e2:eb:25:13:88:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:15 2026 GMT Not After : Mar 3 06:21:15 2027 GMT Subject: CN=291DA3105CED4DEBA3F0B92E4265E14073F911B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f7:34:b3:b7:8d:65:e0:ef:1e:19:16:6c:4d: d1:0f:41:51:58:a6:42:73:89:0e:a8:a4:fe:4c:88: 0c:b7:de:ac:19:00:a1:58:e6:c2:55:56:e6:20:dd: 30:ad:3d:fc:00:ec:ba:d3:cd:24:95:ac:1e:3b:1e: f2:6c:34:5f:31:09:26:0b:fa:42:fd:10:03:17:23: c4:41:fb:b3:52:ca:09:bc:5b:25:22:06:a3:c8:64: 50:8c:b8:e3:13:cc:e6:b4:3a:e3:bc:f4:67:26:21: 45:62:7c:26:c0:b3:c4:a3:68:72:13:d8:89:bd:84: fd:7e:d3:56:2f:d4:31:7f:e6:42:82:be:25:ac:39: fc:ea:9a:a1:35:43:ad:a6:3f:f9:a6:59:a2:04:2e: 5f:11:66:a9:f8:ee:3c:5d:5e:be:01:ee:23:d0:96: 33:45:b1:29:e1:d5:b9:97:e8:2b:c9:ab:f0:e7:8b: 68:51:f5:d9:3e:08:3e:32:7c:47:a2:40:64:91:9c: 14:6a:f5:45:5b:77:a7:f1:e1:aa:73:61:d4:b0:db: 7f:cc:05:5b:e2:78:4e:cd:25:30:11:a7:9e:cf:34: e7:0b:55:0a:e8:9b:fb:84:08:59:2b:72:ae:0d:16: cd:76:02:6a:96:9f:6f:78:13:c3:a0:38:67:b5:a8: e1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1D:A3:10:5C:ED:4D:EB:A3:F0:B9:2E:42:65:E1:40:73:F9:11:B9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145164.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9d2::/32 Signature Algorithm: sha256WithRSAEncryption 61:b5:29:f3:01:34:90:1f:e2:ef:aa:06:48:80:d5:c8:26:29: eb:ba:a2:55:e7:ad:d5:08:e1:b5:5f:ed:22:ae:c9:e2:2a:1e: ab:71:2e:aa:9f:4f:20:ce:ec:47:9f:6f:3d:89:3a:2f:28:16: 74:f7:f8:89:a9:3d:a1:ab:56:bd:83:05:79:ce:25:fe:2c:7f: ec:4b:e6:36:ea:e6:88:46:0d:46:76:a7:98:13:e3:81:0a:e5: df:f2:37:c2:94:43:5e:64:c4:72:d0:c5:a7:1e:7d:40:42:90: 35:0b:e2:a9:ce:2b:41:8d:a5:02:ff:df:a4:b5:ab:25:37:3a: 17:f0:fc:49:bb:c1:a7:62:5a:fc:4d:ad:d0:8c:06:4b:42:2e: 3a:b4:29:ce:bd:8b:4f:cd:ef:b5:97:50:6c:35:15:61:99:13: cd:61:5a:e9:a2:f1:08:6b:4e:f2:aa:56:7b:47:2a:43:88:4e: 19:8b:16:e7:25:13:f7:33:66:e7:1f:89:8f:e1:5d:77:79:52: 9e:de:e9:71:25:f1:bd:e6:6c:41:6e:9a:23:c9:7e:f2:1e:d3: 10:6b:b9:b6:50:a7:15:49:ce:17:fb:d9:58:af:58:6b:6a:c6: 7c:fe:d3:56:10:2e:10:3d:2a:40:32:4e:53:5a:75:03:69:b1: 07:5c:25:f5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUd25ANwDbcZ+dGghxPjbi6yUTiK8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYxNVoX DTI3MDMwMzA2MjExNVowMzExMC8GA1UEAxMoMjkxREEzMTA1Q0VENERFQkEzRjBC OTJFNDI2NUUxNDA3M0Y5MTFCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANH3NLO3jWXg7x4ZFmxN0Q9BUVimQnOJDqik/kyIDLferBkAoVjmwlVW5iDd MK09/ADsutPNJJWsHjse8mw0XzEJJgv6Qv0QAxcjxEH7s1LKCbxbJSIGo8hkUIy4 4xPM5rQ647z0ZyYhRWJ8JsCzxKNochPYib2E/X7TVi/UMX/mQoK+Jaw5/OqaoTVD raY/+aZZogQuXxFmqfjuPF1evgHuI9CWM0WxKeHVuZfoK8mr8OeLaFH12T4IPjJ8 R6JAZJGcFGr1RVt3p/HhqnNh1LDbf8wFW+J4Ts0lMBGnns805wtVCuib+4QIWSty rg0WzXYCapafb3gTw6A4Z7Wo4ZUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQpHaMQ XO1N66PwuS5CZeFAc/kRuTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qdIwDQYJKoZIhvcNAQELBQADggEBAGG1KfMBNJAf4u+qBkiA1cgmKeu6olXnrdUI 4bVf7SKuyeIqHqtxLqqfTyDO7Eefbz2JOi8oFnT3+ImpPaGrVr2DBXnOJf4sf+xL 5jbq5ohGDUZ2p5gT44EK5d/yN8KUQ15kxHLQxacefUBCkDUL4qnOK0GNpQL/36S1 qyU3Ohfw/Em7wadiWvxNrdCMBktCLjq0Kc69i0/N77WXUGw1FWGZE81hWumi8Qhr TvKqVntHKkOIThmLFuclE/czZucfiY/hXXd5Up7e6XEl8b3mbEFumiPJfvIe0xBr ubZQpxVJzhf72VivWGtqxnz+01YQLhA9KkAyTlNadQNpsQdcJfU= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:35 2026 by rpki-client