$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145231.roa File: AS145231.roa (raw, json) Hash identifier: 2mjrk2+ruAoa9TystF2zidBehhi6YoyDvDu2Yd+U1VE= Subject key identifier: 06:57:61:F7:17:21:BE:B9:B0:C3:04:CA:55:AD:D0:B7:D2:4A:3D:35 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 19D61B21B0B46E1753B8913F66C52637F1FFAD92 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145231.roa Signing time: Wed 04 Mar 2026 06:21:19 +0000 ROA not before: Wed 04 Mar 2026 06:16:19 +0000 ROA not after: Wed 03 Mar 2027 06:21:19 +0000 asID: 145231 IP address blocks: 240a:aa15::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d6:1b:21:b0:b4:6e:17:53:b8:91:3f:66:c5:26:37:f1:ff:ad:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:19 2026 GMT Not After : Mar 3 06:21:19 2027 GMT Subject: CN=065761F71721BEB9B0C304CA55ADD0B7D24A3D35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:82:91:a7:0e:b9:45:28:29:f9:d2:c4:cf:f0: 07:90:b8:6a:2a:57:84:3b:22:bf:d5:e0:31:a9:c1: 99:6a:e6:4f:51:b5:30:a1:89:59:46:ae:15:f8:cb: 83:6a:26:05:78:db:6d:a5:14:84:71:5c:48:be:82: 01:f5:58:09:ba:c0:f3:5b:22:29:77:28:f0:7b:e5: 03:26:40:77:af:4e:67:1e:3d:31:74:98:32:30:ae: b8:6f:06:72:11:1a:c6:3a:95:b9:1b:a8:ff:15:24: dc:01:cc:74:2a:03:58:f3:91:98:cb:e5:4b:24:27: 5c:0a:98:f9:e1:91:bc:0b:fe:91:93:6f:ed:d6:11: 27:a3:c4:2e:1d:52:0e:f9:11:ec:8f:cc:8d:59:57: 02:4c:22:d4:27:85:5d:48:67:7a:40:84:ea:59:bd: ab:d5:16:da:f2:6b:8f:37:13:a2:ad:97:d9:15:39: 35:1b:f1:76:8a:35:9e:86:ae:f3:09:d6:01:64:16: 8f:36:fe:3c:21:e0:59:5e:18:59:69:23:b1:6f:3f: 0e:9c:82:8c:39:58:8c:27:9d:2e:fa:d2:2d:79:37: eb:6e:26:4b:06:a3:61:a1:f9:71:9c:47:9c:7e:9a: 40:2b:77:f8:08:62:75:b2:ba:da:1e:8e:dd:01:da: e3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:57:61:F7:17:21:BE:B9:B0:C3:04:CA:55:AD:D0:B7:D2:4A:3D:35 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa15::/32 Signature Algorithm: sha256WithRSAEncryption 66:b4:0e:83:b9:8e:5d:2a:82:a5:cc:bc:ac:ae:61:c4:ca:7e: 0a:16:2d:48:a2:18:9a:38:19:d0:9d:b0:6e:cf:ec:bd:b8:55: 70:cc:71:6c:4f:73:cf:46:b6:21:f6:13:c7:48:f8:3f:56:7d: 89:ad:1d:c6:f0:00:9b:d2:e5:de:76:e0:ea:ec:18:05:a2:b5: 1b:97:96:d8:d1:22:6f:dc:c7:65:17:5d:61:03:e9:1e:57:a3: 1b:ae:83:35:1b:e6:ef:11:5c:f3:3c:c4:eb:3c:9d:43:79:17: f8:52:d6:f5:7b:de:d5:24:33:2a:59:a5:d3:aa:d1:84:e0:e0: b8:fa:d0:24:53:e3:90:d0:99:03:87:f7:3d:f9:0e:5b:7a:d2: 52:73:48:1f:ac:3c:62:04:3e:d0:50:98:9f:c9:b3:c4:42:d2: c4:38:eb:b0:0b:95:47:f0:c2:fe:97:e3:7a:4a:8d:14:98:65: 6a:2d:01:e5:37:56:be:ae:df:15:68:51:0d:a8:e8:c1:fd:32: 06:26:04:e7:5f:b6:ef:26:41:d4:c0:87:4a:75:5d:11:b3:39: 27:ab:8b:0c:6b:79:a6:12:22:84:ac:1d:73:89:82:de:3e:68: d8:25:50:f3:5d:89:3c:39:b9:22:2c:fa:ad:f3:af:2d:ae:6e: da:74:3a:08 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGdYbIbC0bhdTuJE/ZsUmN/H/rZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYxOVoX DTI3MDMwMzA2MjExOVowMzExMC8GA1UEAxMoMDY1NzYxRjcxNzIxQkVCOUIwQzMw NENBNTVBREQwQjdEMjRBM0QzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKuCkacOuUUoKfnSxM/wB5C4aipXhDsiv9XgManBmWrmT1G1MKGJWUauFfjL g2omBXjbbaUUhHFcSL6CAfVYCbrA81siKXco8HvlAyZAd69OZx49MXSYMjCuuG8G chEaxjqVuRuo/xUk3AHMdCoDWPORmMvlSyQnXAqY+eGRvAv+kZNv7dYRJ6PELh1S DvkR7I/MjVlXAkwi1CeFXUhnekCE6lm9q9UW2vJrjzcToq2X2RU5NRvxdoo1noau 8wnWAWQWjzb+PCHgWV4YWWkjsW8/DpyCjDlYjCedLvrSLXk3624mSwajYaH5cZxH nH6aQCt3+AhidbK62h6O3QHa48UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQGV2H3 FyG+ubDDBMpVrdC30ko9NTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTIzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qhUwDQYJKoZIhvcNAQELBQADggEBAGa0DoO5jl0qgqXMvKyuYcTKfgoWLUiiGJo4 GdCdsG7P7L24VXDMcWxPc89GtiH2E8dI+D9WfYmtHcbwAJvS5d524OrsGAWitRuX ltjRIm/cx2UXXWED6R5XoxuugzUb5u8RXPM8xOs8nUN5F/hS1vV73tUkMypZpdOq 0YTg4Lj60CRT45DQmQOH9z35Dlt60lJzSB+sPGIEPtBQmJ/Js8RC0sQ467ALlUfw wv6X43pKjRSYZWotAeU3Vr6u3xVoUQ2o6MH9MgYmBOdftu8mQdTAh0p1XRGzOSer iwxreaYSIoSsHXOJgt4+aNglUPNdiTw5uSIs+q3zry2ubtp0Ogg= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:42 2026 by rpki-client