$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145264.roa File: AS145264.roa (raw, json) Hash identifier: fEMO2F8lZN0kyicvoitt+H28c1pHz3OVWjSlnFBcTfI= Subject key identifier: 22:CB:91:C2:94:4F:6C:5C:52:C6:5E:B3:7E:B4:83:5D:98:58:87:3E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4B49656C0C231ABA4EA124B905CEC5310E89BC0D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145264.roa Signing time: Wed 04 Mar 2026 06:22:26 +0000 ROA not before: Wed 04 Mar 2026 06:17:26 +0000 ROA not after: Wed 03 Mar 2027 06:22:26 +0000 asID: 145264 IP address blocks: 240a:aa36::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:49:65:6c:0c:23:1a:ba:4e:a1:24:b9:05:ce:c5:31:0e:89:bc:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:26 2026 GMT Not After : Mar 3 06:22:26 2027 GMT Subject: CN=22CB91C2944F6C5C52C65EB37EB4835D9858873E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cb:38:16:8b:de:aa:5f:d5:b1:0c:21:94:e8: 6d:7e:89:bb:dc:c4:74:ce:5b:d5:aa:f3:2f:d7:e8: f3:dd:4b:06:ee:cc:17:d3:89:32:b4:cf:d4:41:87: ed:cf:42:70:ce:22:b3:b5:16:48:f1:d1:6d:a5:e7: 1f:31:73:55:5c:09:61:0b:4a:43:43:8b:42:0b:68: 82:56:46:86:26:a7:c0:7f:71:a9:4f:97:e1:7d:b9: 3c:75:71:81:42:ad:c9:a8:c8:c3:43:1c:12:8e:56: fc:17:43:98:c0:f4:e4:49:e2:69:4e:59:4f:5b:cf: 51:69:e9:6c:a5:81:a4:96:5d:78:d4:2a:ad:1e:f8: d5:f6:bf:ca:b3:31:48:73:f2:c3:78:07:4c:0e:0c: bd:93:68:d7:2c:89:ca:8b:bd:11:78:2b:a6:c5:74: 9c:c4:0d:56:f1:7e:53:8e:97:ca:98:63:5f:4e:5f: 25:a8:2c:4f:84:6f:20:54:b5:32:f4:f7:8d:5b:51: e7:7a:9b:fa:59:1c:91:ea:a3:5d:b0:56:57:99:50: 1f:91:2e:93:15:74:60:a2:4a:b0:ab:0d:3b:bb:29: 95:b1:e2:b8:4d:05:5a:b6:43:f7:a4:f6:3d:59:af: 61:78:43:cd:16:ab:8c:47:08:d2:b7:25:4c:f6:9d: 2c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CB:91:C2:94:4F:6C:5C:52:C6:5E:B3:7E:B4:83:5D:98:58:87:3E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145264.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa36::/32 Signature Algorithm: sha256WithRSAEncryption 38:fd:fd:27:01:3d:6b:90:77:86:b3:94:c3:af:bc:0e:64:ac: 30:81:f1:02:a4:08:cd:43:4f:1b:ec:91:b4:59:e7:8a:e4:3c: 7a:f4:df:58:f3:5b:06:cb:0b:4d:e7:02:ea:ce:68:f5:99:8f: c5:b5:32:5c:41:dd:ca:dc:7b:46:59:c8:d2:e8:e2:79:97:5c: 00:0c:78:ff:14:92:18:f5:9f:99:77:cf:01:16:ff:57:72:72: fb:49:d0:5c:a1:81:bf:a8:68:c6:68:2a:42:bb:29:41:99:4d: 16:8e:cf:49:47:6c:fe:a0:19:23:25:2b:d3:62:51:7d:d9:f2: 57:59:db:a6:1b:ac:9e:ad:ba:55:be:00:f4:cf:ef:46:c0:50: 23:1e:b0:e4:c8:69:35:6e:b5:0e:f7:20:73:b4:78:5a:49:31: ae:df:39:ff:b2:fc:6d:49:e3:34:7b:bf:93:e7:f9:8b:9a:7f: ff:ad:af:e5:70:94:08:ca:90:9d:47:5f:e4:27:82:ad:28:e4: 6d:76:74:d1:29:84:7c:32:cb:a7:ef:eb:99:cb:e9:e2:d0:50: 36:b5:b1:fc:40:09:e3:02:97:df:bc:f6:71:ff:a4:cd:a5:23: 3a:ca:87:20:ca:54:b0:dd:33:d5:25:df:e2:bf:b0:5d:ed:f3: 94:54:26:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUS0llbAwjGrpOoSS5Bc7FMQ6JvA0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcyNloX DTI3MDMwMzA2MjIyNlowMzExMC8GA1UEAxMoMjJDQjkxQzI5NDRGNkM1QzUyQzY1 RUIzN0VCNDgzNUQ5ODU4ODczRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLLOBaL3qpf1bEMIZTobX6Ju9zEdM5b1arzL9fo891LBu7MF9OJMrTP1EGH 7c9CcM4is7UWSPHRbaXnHzFzVVwJYQtKQ0OLQgtoglZGhianwH9xqU+X4X25PHVx gUKtyajIw0McEo5W/BdDmMD05EniaU5ZT1vPUWnpbKWBpJZdeNQqrR741fa/yrMx SHPyw3gHTA4MvZNo1yyJyou9EXgrpsV0nMQNVvF+U46XyphjX05fJagsT4RvIFS1 MvT3jVtR53qb+lkckeqjXbBWV5lQH5EukxV0YKJKsKsNO7splbHiuE0FWrZD96T2 PVmvYXhDzRarjEcI0rclTPadLAMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQiy5HC lE9sXFLGXrN+tINdmFiHPjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTI2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qjYwDQYJKoZIhvcNAQELBQADggEBADj9/ScBPWuQd4azlMOvvA5krDCB8QKkCM1D TxvskbRZ54rkPHr031jzWwbLC03nAurOaPWZj8W1MlxB3crce0ZZyNLo4nmXXAAM eP8Ukhj1n5l3zwEW/1dycvtJ0Fyhgb+oaMZoKkK7KUGZTRaOz0lHbP6gGSMlK9Ni UX3Z8ldZ26YbrJ6tulW+APTP70bAUCMesOTIaTVutQ73IHO0eFpJMa7fOf+y/G1J 4zR7v5Pn+Yuaf/+tr+VwlAjKkJ1HX+Qngq0o5G12dNEphHwyy6fv65nL6eLQUDa1 sfxACeMCl9+89nH/pM2lIzrKhyDKVLDdM9Ul3+K/sF3t85RUJrQ= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:06 2026 by rpki-client