$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145465.roa File: AS145465.roa (raw, json) Hash identifier: lMPO5hoCeTy3J4S+l2infkaVcxdVgIKNcCTNnASK5k4= Subject key identifier: 46:97:F2:10:50:F8:33:54:69:E2:EE:B2:15:08:F3:C0:E3:AA:BA:A2 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 22D764850489A967FF0706FA090B69A0B0CA7EA2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145465.roa Signing time: Wed 04 Mar 2026 06:22:32 +0000 ROA not before: Wed 04 Mar 2026 06:17:32 +0000 ROA not after: Wed 03 Mar 2027 06:22:32 +0000 asID: 145465 IP address blocks: 240a:aaff::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:d7:64:85:04:89:a9:67:ff:07:06:fa:09:0b:69:a0:b0:ca:7e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:32 2026 GMT Not After : Mar 3 06:22:32 2027 GMT Subject: CN=4697F21050F8335469E2EEB21508F3C0E3AABAA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d3:4a:2f:c0:e5:b4:f2:85:f6:f8:e7:23:20: 3a:a4:28:a4:64:e9:1d:b2:be:94:b9:46:2c:15:48: 1f:a7:a0:42:31:51:47:aa:f1:2c:57:10:1a:75:90: d8:30:27:60:8d:1b:c7:19:c7:ed:6c:fb:06:b8:9e: 28:7d:54:37:bf:08:ea:64:7b:03:f9:32:f2:a3:8d: 11:e4:8c:cd:d5:b1:5b:14:15:f8:19:ce:06:50:38: 5a:e6:24:2a:22:bb:12:d7:66:2c:bc:87:19:c4:25: 39:b2:25:8d:db:48:f0:ce:6a:aa:4f:ef:fb:d6:4e: 69:b9:00:91:ac:3d:dd:33:bf:0e:cf:cb:49:b2:1c: d5:06:09:e3:41:bc:fd:1f:72:94:c9:7f:32:2e:69: c4:e4:31:b2:4a:61:4c:bc:a4:77:12:75:be:8d:48: b3:94:e1:31:02:0f:fc:c8:9c:8c:24:49:67:99:e8: 41:0f:ed:ff:35:57:23:b1:0d:55:c2:66:63:8f:a7: b9:13:33:76:65:6c:bc:4b:b0:2e:d9:05:3f:3e:ad: 86:c1:83:6c:10:c3:c1:7d:0b:63:33:b8:00:64:ab: 44:63:15:fc:03:2e:12:e0:09:a3:7b:ec:85:16:80: 7d:8e:01:b2:05:dc:95:a2:2a:05:e8:49:41:88:69: c2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:97:F2:10:50:F8:33:54:69:E2:EE:B2:15:08:F3:C0:E3:AA:BA:A2 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145465.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aaff::/32 Signature Algorithm: sha256WithRSAEncryption 68:73:94:39:19:4c:d1:33:c9:76:7d:7d:88:39:b4:fc:5b:18: fc:fc:f0:31:16:14:50:0b:b9:05:ef:41:70:25:1f:0b:bc:fd: 3f:ce:19:cc:fb:7c:7a:e1:7c:86:72:c0:eb:26:44:ae:ff:cd: d3:3e:69:ca:4c:6e:be:dc:dc:42:f6:22:0d:a1:af:85:24:49: 46:a4:8a:67:4f:e4:85:7b:53:31:89:cd:4f:4a:a3:7d:41:69: 67:d1:c0:46:ae:8e:b1:3d:ed:18:9e:67:f0:cd:de:f2:75:f7: 0f:41:5c:ea:8a:bd:ad:ba:6d:d5:f7:78:60:26:d7:8f:98:7f: 4a:58:33:8c:8f:d1:02:cf:04:79:db:2e:e8:80:39:d4:de:bd: 6a:6c:40:90:f1:10:90:d4:eb:cf:b8:ff:36:82:e1:6e:79:f0: a0:73:50:da:bf:bb:6d:37:9b:69:39:f0:c1:3b:15:23:3d:1b: 48:76:4d:b6:42:09:0d:b2:84:dd:c9:97:20:f3:08:f4:8e:fc: e8:64:6a:0b:e7:34:b4:81:8c:c0:20:7e:9c:61:cb:19:d8:9d: 6c:2f:ca:d1:17:b2:c0:e1:38:4c:66:fe:be:3c:49:ea:1c:29: 84:31:a3:e6:ab:73:87:5d:d8:72:1d:6d:f4:e6:57:f1:67:30: f9:18:fc:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUItdkhQSJqWf/Bwb6CQtpoLDKfqIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczMloX DTI3MDMwMzA2MjIzMlowMzExMC8GA1UEAxMoNDY5N0YyMTA1MEY4MzM1NDY5RTJF RUIyMTUwOEYzQzBFM0FBQkFBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7TSi/A5bTyhfb45yMgOqQopGTpHbK+lLlGLBVIH6egQjFRR6rxLFcQGnWQ 2DAnYI0bxxnH7Wz7BrieKH1UN78I6mR7A/ky8qONEeSMzdWxWxQV+BnOBlA4WuYk KiK7EtdmLLyHGcQlObIljdtI8M5qqk/v+9ZOabkAkaw93TO/Ds/LSbIc1QYJ40G8 /R9ylMl/Mi5pxOQxskphTLykdxJ1vo1Is5ThMQIP/MicjCRJZ5noQQ/t/zVXI7EN VcJmY4+nuRMzdmVsvEuwLtkFPz6thsGDbBDDwX0LYzO4AGSrRGMV/AMuEuAJo3vs hRaAfY4BsgXclaIqBehJQYhpwtsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRGl/IQ UPgzVGni7rIVCPPA46q6ojAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ2NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qv8wDQYJKoZIhvcNAQELBQADggEBAGhzlDkZTNEzyXZ9fYg5tPxbGPz88DEWFFAL uQXvQXAlHwu8/T/OGcz7fHrhfIZywOsmRK7/zdM+acpMbr7c3EL2Ig2hr4UkSUak imdP5IV7UzGJzU9Ko31BaWfRwEaujrE97RieZ/DN3vJ19w9BXOqKva26bdX3eGAm 14+Yf0pYM4yP0QLPBHnbLuiAOdTevWpsQJDxEJDU68+4/zaC4W558KBzUNq/u203 m2k58ME7FSM9G0h2TbZCCQ2yhN3JlyDzCPSO/OhkagvnNLSBjMAgfpxhyxnYnWwv ytEXssDhOExm/r48SeocKYQxo+arc4dd2HIdbfTmV/FnMPkY/Eg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:38 2026 by rpki-client