$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145463.roa File: AS145463.roa (raw, json) Hash identifier: 6lhjw8qDwPzUBI/F47xvCFPEEl8zzSpbs7otLQkxjb0= Subject key identifier: 45:E6:BF:57:DB:A0:49:03:B9:56:14:FA:E4:B0:D1:0B:6E:A0:4E:82 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 45F6696BCD4298457C9A9EAC97EEF75AA559843C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145463.roa Signing time: Wed 04 Mar 2026 06:21:01 +0000 ROA not before: Wed 04 Mar 2026 06:16:01 +0000 ROA not after: Wed 03 Mar 2027 06:21:01 +0000 asID: 145463 IP address blocks: 240a:aafd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f6:69:6b:cd:42:98:45:7c:9a:9e:ac:97:ee:f7:5a:a5:59:84:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:01 2026 GMT Not After : Mar 3 06:21:01 2027 GMT Subject: CN=45E6BF57DBA04903B95614FAE4B0D10B6EA04E82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:07:75:74:ec:a7:ec:04:44:00:21:21:61: 60:c8:31:2b:00:80:ad:9d:80:0f:f7:05:5c:83:8b: a5:b5:18:f7:29:7d:19:a9:67:e6:c0:47:dc:e7:15: 4b:1c:0a:a3:a4:16:07:a8:82:51:7c:91:cc:1c:e5: c6:a4:47:15:44:fa:0c:23:2d:28:63:73:15:9c:78: c9:f9:31:eb:79:2d:8d:ed:55:ef:2f:a9:83:de:23: 27:a6:aa:b8:f1:16:1e:a0:7c:a9:a0:5c:9d:15:03: 05:32:72:9c:96:f5:87:ef:1e:16:87:b2:8e:2d:6d: 4b:64:f0:b9:5f:f9:a2:7e:76:ba:02:99:34:87:4c: 09:61:18:0a:94:58:ad:23:3f:b1:b0:b2:56:37:06: 93:2a:c1:d5:6b:0a:c9:11:cb:80:43:9e:ac:64:f1: b2:e6:10:48:f5:20:9f:74:13:db:1b:b5:f9:4c:36: 2c:b3:81:f5:53:82:18:d0:99:c4:f1:06:e1:21:72: a5:9f:bd:77:f0:c2:61:42:34:e6:28:28:70:ad:37: ea:70:7e:62:b8:91:00:8c:10:99:66:5e:c1:0e:4f: ae:75:b7:c3:78:52:f3:81:96:52:30:dc:f9:8e:87: 53:b5:91:3d:88:11:5a:86:67:8f:84:7b:aa:b3:db: a3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E6:BF:57:DB:A0:49:03:B9:56:14:FA:E4:B0:D1:0B:6E:A0:4E:82 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145463.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aafd::/32 Signature Algorithm: sha256WithRSAEncryption a9:f0:1e:b8:ac:06:12:5b:ee:08:ee:4b:55:46:cc:50:50:3a: 2f:3b:96:13:c9:b8:9d:7e:31:49:77:2b:59:97:8a:85:27:d4: 19:6c:42:c7:91:9e:56:87:09:b3:59:37:44:7b:3b:5a:c1:d9: b1:50:28:3e:92:7c:60:00:c5:61:ad:f5:48:a9:9c:0a:39:d7: 96:c4:00:ba:c7:49:c3:94:d4:45:69:0a:0f:95:c3:50:57:27: 1f:82:47:48:f2:71:df:c5:29:cd:ba:a1:97:92:93:be:92:9e: cc:40:4f:91:ae:1b:cd:86:f7:04:e5:fb:ee:c3:db:38:1d:2d: f4:3d:1a:82:90:22:72:05:25:22:da:65:15:1c:4e:03:1e:d6: f7:84:55:0e:43:1b:2c:21:98:3c:ca:82:f5:52:fc:62:08:84: d4:7c:a9:74:2f:69:03:2a:ae:c0:28:b3:df:c1:05:d1:9d:29: 96:2c:21:e4:36:e0:55:b5:a3:f0:64:8f:ee:b6:1d:d2:90:e3: 7b:0d:e9:87:8a:d1:d4:dc:e1:03:df:d4:0f:59:5c:a4:71:30: cc:b8:89:79:1a:8a:60:22:88:a1:e3:f6:44:52:07:ee:8a:80: f8:05:41:ff:7a:6d:a2:63:50:15:65:39:96:9e:3c:46:14:85: 34:51:1c:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIURfZpa81CmEV8mp6sl+73WqVZhDwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwMVoX DTI3MDMwMzA2MjEwMVowMzExMC8GA1UEAxMoNDVFNkJGNTdEQkEwNDkwM0I5NTYx NEZBRTRCMEQxMEI2RUEwNEU4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMrB3V07KfsBEQAISFhYMgxKwCArZ2AD/cFXIOLpbUY9yl9Galn5sBH3OcV SxwKo6QWB6iCUXyRzBzlxqRHFUT6DCMtKGNzFZx4yfkx63ktje1V7y+pg94jJ6aq uPEWHqB8qaBcnRUDBTJynJb1h+8eFoeyji1tS2TwuV/5on52ugKZNIdMCWEYCpRY rSM/sbCyVjcGkyrB1WsKyRHLgEOerGTxsuYQSPUgn3QT2xu1+Uw2LLOB9VOCGNCZ xPEG4SFypZ+9d/DCYUI05igocK036nB+YriRAIwQmWZewQ5PrnW3w3hS84GWUjDc +Y6HU7WRPYgRWoZnj4R7qrPbo2ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRF5r9X 26BJA7lWFPrksNELbqBOgjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ2My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qv0wDQYJKoZIhvcNAQELBQADggEBAKnwHrisBhJb7gjuS1VGzFBQOi87lhPJuJ1+ MUl3K1mXioUn1BlsQseRnlaHCbNZN0R7O1rB2bFQKD6SfGAAxWGt9UipnAo515bE ALrHScOU1EVpCg+Vw1BXJx+CR0jycd/FKc26oZeSk76SnsxAT5GuG82G9wTl++7D 2zgdLfQ9GoKQInIFJSLaZRUcTgMe1veEVQ5DGywhmDzKgvVS/GIIhNR8qXQvaQMq rsAos9/BBdGdKZYsIeQ24FW1o/Bkj+62HdKQ43sN6YeK0dTc4QPf1A9ZXKRxMMy4 iXkaimAiiKHj9kRSB+6KgPgFQf96baJjUBVlOZaePEYUhTRRHAw= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:42 2026 by rpki-client