$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145446.roa File: AS145446.roa (raw, json) Hash identifier: s6olSwDhiUzRBkb1mXLAlg6mUmBoTYMK1Xh570NN+jE= Subject key identifier: 46:D6:75:5F:D3:24:11:43:A0:38:8D:E1:C7:B5:43:10:40:9F:A0:B5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2C9C3F8DFADCE244ACECC92DA0BC23178884F3FD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145446.roa Signing time: Wed 04 Mar 2026 06:22:18 +0000 ROA not before: Wed 04 Mar 2026 06:17:18 +0000 ROA not after: Wed 03 Mar 2027 06:22:18 +0000 asID: 145446 IP address blocks: 240a:aaec::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:9c:3f:8d:fa:dc:e2:44:ac:ec:c9:2d:a0:bc:23:17:88:84:f3:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:18 2026 GMT Not After : Mar 3 06:22:18 2027 GMT Subject: CN=46D6755FD3241143A0388DE1C7B54310409FA0B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5c:31:64:2a:31:0f:11:07:78:d3:d7:8c:4c: 0d:87:aa:a6:dc:a1:d0:10:ea:df:35:fb:07:aa:5d: 8a:2c:f8:35:5e:05:db:9f:1f:ce:ea:31:3e:a3:4e: be:3e:c9:ed:81:94:63:2c:75:b0:f4:5c:85:d3:d9: 23:74:cb:cd:56:a9:c5:f5:ed:26:52:2b:fb:3a:34: 70:84:43:f3:ab:4e:25:2e:46:73:e6:3f:41:ed:54: ac:07:a0:aa:87:a6:70:5f:f0:80:21:d4:a9:60:55: 76:08:5c:10:27:d9:b3:01:5c:e8:8e:6e:64:c3:d4: 70:19:ec:c0:55:78:98:e0:de:f8:53:44:3d:34:0c: d9:0e:51:2d:31:69:74:b1:ed:9b:95:64:07:1d:34: f9:8f:8f:ca:7f:b7:30:a1:2d:c1:f2:ca:ff:5f:3a: c1:81:72:c0:25:52:e1:3b:28:a9:4b:54:0d:b2:4c: 29:7f:0e:4a:b2:63:ab:f1:b2:19:05:04:6b:0e:b3: 61:7c:75:5f:85:e6:61:83:c7:9b:5a:43:d4:18:f5: fb:6d:fc:96:26:74:ce:b9:ca:3d:3d:40:6c:7a:8d: c5:d1:8f:be:d0:0d:27:f0:e9:df:42:3d:db:4d:f0: 24:ca:19:a9:7c:89:a1:97:b9:ff:3f:0b:78:03:64: ee:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D6:75:5F:D3:24:11:43:A0:38:8D:E1:C7:B5:43:10:40:9F:A0:B5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145446.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aaec::/32 Signature Algorithm: sha256WithRSAEncryption 1a:45:75:1a:f9:f6:c7:ae:74:b7:1d:bc:12:5e:38:ed:4c:82: dd:79:81:c8:d6:92:f8:e1:ff:fa:22:7c:78:41:07:cf:dc:aa: e7:56:f7:09:8b:14:74:ac:95:fd:16:f4:b1:1b:31:3b:4d:27: 0e:5e:89:e9:f9:17:4e:4e:e0:cc:f2:24:b3:44:7a:c0:e0:af: d1:b4:61:8b:9b:23:06:8c:6d:f7:c0:fa:d8:e0:92:53:d8:34: 70:0e:ec:fb:9d:d0:a6:c3:9c:af:be:66:32:15:de:3d:f9:ab: 86:3a:41:f7:17:97:18:81:60:70:bd:0c:11:48:53:b8:ba:47: 1e:88:d6:59:ca:59:05:2c:bd:04:50:82:f8:f2:5e:7f:43:ef: 8f:50:32:1a:95:99:94:e2:99:43:01:72:a4:10:ed:c8:57:d5: 86:f4:58:5f:f9:3e:93:2a:c2:57:52:f8:aa:f6:6d:7c:1c:aa: a5:e2:06:48:4d:01:3a:48:25:0e:4f:0b:9d:18:40:a9:c1:36: f3:13:00:33:ae:5c:a6:fd:ff:b8:b8:b8:40:a5:14:cf:14:09: e8:a3:97:d4:e0:13:29:d8:7e:a6:34:33:de:90:f5:e9:fd:9d: e4:57:78:b5:9f:8c:37:41:c0:f2:15:4b:df:39:a8:48:03:f7: cf:22:75:a1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULJw/jfrc4kSs7MktoLwjF4iE8/0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcxOFoX DTI3MDMwMzA2MjIxOFowMzExMC8GA1UEAxMoNDZENjc1NUZEMzI0MTE0M0EwMzg4 REUxQzdCNTQzMTA0MDlGQTBCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANlcMWQqMQ8RB3jT14xMDYeqptyh0BDq3zX7B6pdiiz4NV4F258fzuoxPqNO vj7J7YGUYyx1sPRchdPZI3TLzVapxfXtJlIr+zo0cIRD86tOJS5Gc+Y/Qe1UrAeg qoemcF/wgCHUqWBVdghcECfZswFc6I5uZMPUcBnswFV4mODe+FNEPTQM2Q5RLTFp dLHtm5VkBx00+Y+Pyn+3MKEtwfLK/186wYFywCVS4TsoqUtUDbJMKX8OSrJjq/Gy GQUEaw6zYXx1X4XmYYPHm1pD1Bj1+238liZ0zrnKPT1AbHqNxdGPvtANJ/Dp30I9 203wJMoZqXyJoZe5/z8LeANk7sUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRG1nVf 0yQRQ6A4jeHHtUMQQJ+gtTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ0Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK quwwDQYJKoZIhvcNAQELBQADggEBABpFdRr59seudLcdvBJeOO1Mgt15gcjWkvjh //oifHhBB8/cqudW9wmLFHSslf0W9LEbMTtNJw5eien5F05O4MzyJLNEesDgr9G0 YYubIwaMbffA+tjgklPYNHAO7Pud0KbDnK++ZjIV3j35q4Y6QfcXlxiBYHC9DBFI U7i6Rx6I1lnKWQUsvQRQgvjyXn9D749QMhqVmZTimUMBcqQQ7chX1Yb0WF/5PpMq wldS+Kr2bXwcqqXiBkhNATpIJQ5PC50YQKnBNvMTADOuXKb9/7i4uEClFM8UCeij l9TgEynYfqY0M96Q9en9neRXeLWfjDdBwPIVS985qEgD988idaE= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:30 2026 by rpki-client