$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145464.roa File: AS145464.roa (raw, json) Hash identifier: swVWslpTRgqHTB3U3vVphVLGTJhux3TnX66WMMeEGv4= Subject key identifier: FF:84:C7:16:44:08:DF:B6:2C:A2:24:89:5A:4A:29:48:22:95:67:FB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2B111E34109035EFB76BDAD65851700D8D8FA069 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145464.roa Signing time: Wed 04 Mar 2026 06:20:05 +0000 ROA not before: Wed 04 Mar 2026 06:15:05 +0000 ROA not after: Wed 03 Mar 2027 06:20:05 +0000 asID: 145464 IP address blocks: 240a:aafe::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:11:1e:34:10:90:35:ef:b7:6b:da:d6:58:51:70:0d:8d:8f:a0:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:05 2026 GMT Not After : Mar 3 06:20:05 2027 GMT Subject: CN=FF84C7164408DFB62CA224895A4A2948229567FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5d:ef:73:66:9d:e4:4d:0e:8e:b6:32:0a:e0: d8:da:2e:6e:aa:83:81:87:ae:1d:42:e4:65:e0:48: de:ad:3d:96:17:a5:13:9b:ad:a4:37:bc:78:c6:3b: 64:a0:78:8f:02:f6:6a:77:d5:2b:7c:77:a6:e4:4a: 58:e5:ff:35:ed:a9:0f:49:27:f6:55:94:1f:a9:f8: 57:0f:4b:27:3a:14:48:a1:89:37:04:d0:63:68:92: ed:d8:82:2f:a9:db:cb:40:37:2f:ae:03:e8:6a:50: 9a:b0:d4:d2:58:7a:46:01:2e:19:86:97:79:bd:c6: 39:b8:c9:59:2c:25:32:28:c4:a0:92:ab:35:86:02: e8:ed:2b:40:88:a0:9b:d6:21:3f:1b:27:26:b6:4f: ce:6f:bd:16:ec:86:63:8c:6a:e6:69:fc:d9:bc:44: 45:fd:33:1d:21:36:4e:40:1e:99:11:12:02:09:a1: be:d3:d4:4b:9e:42:85:23:7f:4f:48:fa:86:97:d4: fe:cd:c8:b3:80:a9:98:54:24:d0:20:ac:ad:5b:40: 20:3f:5a:59:4d:7c:8c:f6:f2:f4:aa:26:37:5c:81: 2e:77:2b:25:8a:ea:26:1b:bf:62:81:03:c9:ab:be: a0:19:84:33:2d:53:34:ce:4c:d7:6d:a9:91:be:2d: cc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:84:C7:16:44:08:DF:B6:2C:A2:24:89:5A:4A:29:48:22:95:67:FB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145464.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aafe::/32 Signature Algorithm: sha256WithRSAEncryption a7:ea:91:a4:5f:bd:a5:2f:f9:95:5c:dc:f9:ea:c7:da:4a:c1: 69:db:52:96:9b:c3:f5:f9:b9:4a:db:23:4b:19:69:2b:51:4a: 86:08:51:52:9e:1e:88:a2:c5:54:87:2c:5e:00:0e:24:2d:3d: f5:d9:98:8c:8b:d5:b5:b5:9a:59:38:10:b3:1f:49:e7:eb:6c: c9:ac:1f:90:4d:38:b2:75:b1:67:0a:7d:dd:8b:b7:ec:b7:11: cd:43:22:34:76:18:c9:33:7e:fc:40:d0:48:f9:8e:84:ac:ec: 5e:b2:3e:49:3f:54:40:1c:78:74:e6:6d:cc:a9:f2:04:91:bd: d8:b2:b2:eb:33:28:c2:6d:27:f8:c0:7e:26:1a:1c:d8:57:3d: 9a:bb:6b:55:10:2f:54:3b:fc:fe:e3:22:14:9b:15:ca:d7:8d: 92:2d:ef:e2:ab:c4:f4:36:01:21:6d:cb:a5:00:fb:e8:4c:aa: 15:5d:c7:bb:bb:64:3d:b4:b3:f5:c2:11:f5:78:01:4b:52:3b: 1f:b5:15:f6:a0:70:9c:29:66:81:ad:4e:c9:50:cb:a3:d6:da: a6:c1:44:72:68:97:28:30:b0:4e:c7:b3:dd:6d:a8:ac:5a:63: 68:ce:98:2b:06:b1:23:10:11:00:c1:d2:99:e0:9d:21:50:05: 45:3a:6a:ae -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKxEeNBCQNe+3a9rWWFFwDY2PoGkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUwNVoX DTI3MDMwMzA2MjAwNVowMzExMC8GA1UEAxMoRkY4NEM3MTY0NDA4REZCNjJDQTIy NDg5NUE0QTI5NDgyMjk1NjdGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJdd73NmneRNDo62Mgrg2NoubqqDgYeuHULkZeBI3q09lhelE5utpDe8eMY7 ZKB4jwL2anfVK3x3puRKWOX/Ne2pD0kn9lWUH6n4Vw9LJzoUSKGJNwTQY2iS7diC L6nby0A3L64D6GpQmrDU0lh6RgEuGYaXeb3GObjJWSwlMijEoJKrNYYC6O0rQIig m9YhPxsnJrZPzm+9FuyGY4xq5mn82bxERf0zHSE2TkAemRESAgmhvtPUS55ChSN/ T0j6hpfU/s3Is4CpmFQk0CCsrVtAID9aWU18jPby9KomN1yBLncrJYrqJhu/YoED yau+oBmEMy1TNM5M122pkb4tzEUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT/hMcW RAjftiyiJIlaSilIIpVn+zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qv4wDQYJKoZIhvcNAQELBQADggEBAKfqkaRfvaUv+ZVc3Pnqx9pKwWnbUpabw/X5 uUrbI0sZaStRSoYIUVKeHoiixVSHLF4ADiQtPfXZmIyL1bW1mlk4ELMfSefrbMms H5BNOLJ1sWcKfd2Lt+y3Ec1DIjR2GMkzfvxA0Ej5joSs7F6yPkk/VEAceHTmbcyp 8gSRvdiysuszKMJtJ/jAfiYaHNhXPZq7a1UQL1Q7/P7jIhSbFcrXjZIt7+KrxPQ2 ASFty6UA++hMqhVdx7u7ZD20s/XCEfV4AUtSOx+1FfagcJwpZoGtTslQy6PW2qbB RHJolygwsE7Hs91tqKxaY2jOmCsGsSMQEQDB0pngnSFQBUU6aq4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:20 2026 by rpki-client