$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145451.roa File: AS145451.roa (raw, json) Hash identifier: ZeEd7WDe5oGXR0s77pYUxD0LI83ROA038Umwnvxf7/I= Subject key identifier: 2F:41:85:93:25:A9:E3:52:BD:36:18:16:A1:A1:E3:31:98:CB:85:42 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 61128687EE21EA41CDB003CDD534F2FC5E08055A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145451.roa Signing time: Wed 04 Mar 2026 06:22:28 +0000 ROA not before: Wed 04 Mar 2026 06:17:28 +0000 ROA not after: Wed 03 Mar 2027 06:22:28 +0000 asID: 145451 IP address blocks: 240a:aaf1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:12:86:87:ee:21:ea:41:cd:b0:03:cd:d5:34:f2:fc:5e:08:05:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:28 2026 GMT Not After : Mar 3 06:22:28 2027 GMT Subject: CN=2F41859325A9E352BD361816A1A1E33198CB8542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ad:aa:c3:d8:e5:76:7e:b2:ad:bd:ee:00:30: 8d:45:e3:23:2c:a6:7a:55:02:6e:10:5b:e8:9c:44: 53:13:eb:f6:5d:37:d7:1c:06:0e:80:54:6b:97:c8: 4c:41:10:7b:12:b2:f7:88:10:68:5a:19:e2:55:9d: a9:f9:9e:b1:0b:ab:71:b1:22:c9:8f:57:fb:34:32: 07:7e:80:bd:92:6d:7b:23:50:19:51:62:9e:b9:2c: ff:8d:24:e1:c6:63:34:cd:02:27:aa:04:25:89:40: d3:98:d3:4b:42:d6:ea:78:71:c0:5c:45:10:43:1a: ef:61:1c:76:3b:b2:c0:7b:77:77:86:18:d7:a3:8a: 01:71:8e:03:36:1c:52:1a:c1:30:1a:fa:36:2b:9e: 85:97:ae:a0:04:20:61:97:27:50:01:ac:84:2a:72: 65:22:54:6c:b7:96:9d:98:a6:d8:9d:5b:8c:37:28: eb:1d:64:3b:02:6a:b8:1f:9c:26:e0:57:51:1c:a9: bf:2b:c8:b9:56:85:cf:f1:b1:9e:41:00:fb:e5:5c: fd:ce:c2:72:fc:74:e6:2a:b5:11:fe:2f:24:b1:34: b5:38:be:f2:ae:b3:26:90:8e:82:83:13:66:a5:98: e6:d2:d8:16:59:43:d4:7e:c9:1f:3f:41:8c:53:44: 37:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:41:85:93:25:A9:E3:52:BD:36:18:16:A1:A1:E3:31:98:CB:85:42 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145451.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aaf1::/32 Signature Algorithm: sha256WithRSAEncryption 43:a6:d0:8a:cb:02:1b:ee:aa:12:64:13:a4:22:81:90:fd:2d: 9c:aa:aa:da:5f:0b:0e:9b:ca:1e:6f:60:b2:a9:6d:5e:a1:55: ef:d5:22:1a:f1:9a:a7:5f:11:69:09:ba:e5:c7:0c:00:9b:d8: e8:f8:55:ff:67:d9:d5:15:95:b5:e2:bc:a6:9b:de:50:b0:d8: 37:3b:43:d6:fb:14:05:c6:f9:95:56:e3:26:34:1b:4a:c0:cc: bf:e2:95:87:db:44:7c:24:b7:84:1f:e8:7e:2c:2a:6e:37:f1: f9:2f:76:b5:95:8f:3d:a7:5f:8c:9a:60:a1:94:74:4c:76:9b: d9:44:0a:6b:79:57:f6:dd:40:a0:52:02:54:ac:7e:bb:ee:58: ea:b9:f3:cf:8c:c5:13:31:d3:ec:11:79:d9:40:0a:38:43:f6: c9:70:b6:29:1f:c6:7e:0c:eb:27:e1:28:6b:50:a6:ec:c2:f0: a4:31:7c:13:65:51:8b:d8:46:89:c1:60:77:6e:1b:49:14:40: 04:92:e0:1a:b5:86:19:c1:2c:09:c8:ad:19:f9:3b:d6:b0:b5: 4f:35:db:d2:d8:69:36:67:7b:3c:67:07:f9:8b:97:44:70:b4: 18:44:e1:71:63:59:0b:82:5e:73:ca:b3:f1:c1:90:44:e1:b8: c4:f7:19:71 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYRKGh+4h6kHNsAPN1TTy/F4IBVowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcyOFoX DTI3MDMwMzA2MjIyOFowMzExMC8GA1UEAxMoMkY0MTg1OTMyNUE5RTM1MkJEMzYx ODE2QTFBMUUzMzE5OENCODU0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPOtqsPY5XZ+sq297gAwjUXjIyymelUCbhBb6JxEUxPr9l031xwGDoBUa5fI TEEQexKy94gQaFoZ4lWdqfmesQurcbEiyY9X+zQyB36AvZJteyNQGVFinrks/40k 4cZjNM0CJ6oEJYlA05jTS0LW6nhxwFxFEEMa72EcdjuywHt3d4YY16OKAXGOAzYc UhrBMBr6NiuehZeuoAQgYZcnUAGshCpyZSJUbLeWnZim2J1bjDco6x1kOwJquB+c JuBXURypvyvIuVaFz/GxnkEA++Vc/c7Ccvx05iq1Ef4vJLE0tTi+8q6zJpCOgoMT ZqWY5tLYFllD1H7JHz9BjFNEN0ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQvQYWT JanjUr02GBahoeMxmMuFQjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ1MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qvEwDQYJKoZIhvcNAQELBQADggEBAEOm0IrLAhvuqhJkE6QigZD9LZyqqtpfCw6b yh5vYLKpbV6hVe/VIhrxmqdfEWkJuuXHDACb2Oj4Vf9n2dUVlbXivKab3lCw2Dc7 Q9b7FAXG+ZVW4yY0G0rAzL/ilYfbRHwkt4Qf6H4sKm438fkvdrWVjz2nX4yaYKGU dEx2m9lECmt5V/bdQKBSAlSsfrvuWOq588+MxRMx0+wRedlACjhD9slwtikfxn4M 6yfhKGtQpuzC8KQxfBNlUYvYRonBYHduG0kUQASS4Bq1hhnBLAnIrRn5O9awtU81 29LYaTZnezxnB/mLl0RwtBhE4XFjWQuCXnPKs/HBkEThuMT3GXE= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:41 2026 by rpki-client