$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145470.roa File: AS145470.roa (raw, json) Hash identifier: z9QoEO8gnA7h08tLws5auzkwkyWZqiKRZCXyeYwHm0I= Subject key identifier: 91:41:FA:B9:13:56:EE:AB:CD:E7:9B:30:3B:61:3F:F0:45:65:EA:19 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 19058E718BA1C53389B4E62D6B2136807B4F5366 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145470.roa Signing time: Wed 04 Mar 2026 06:22:03 +0000 ROA not before: Wed 04 Mar 2026 06:17:03 +0000 ROA not after: Wed 03 Mar 2027 06:22:03 +0000 asID: 145470 IP address blocks: 240a:ab04::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:05:8e:71:8b:a1:c5:33:89:b4:e6:2d:6b:21:36:80:7b:4f:53:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:03 2026 GMT Not After : Mar 3 06:22:03 2027 GMT Subject: CN=9141FAB91356EEABCDE79B303B613FF04565EA19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:41:06:3f:b6:ab:eb:8f:ff:a7:40:1d:06:02: 2d:12:64:15:de:d0:31:1a:1f:d2:a7:00:30:6a:fb: 69:fc:44:98:86:66:20:8a:ef:f0:e8:6d:01:0f:96: 26:31:cd:27:10:30:5d:e7:6d:2c:de:f5:ec:88:35: 45:1f:97:65:fd:b0:02:94:9b:33:df:08:cb:c7:3c: 6a:a6:77:d5:56:4f:6f:51:d1:97:db:f2:39:a9:af: cd:1b:34:b5:04:d8:3c:47:93:13:0c:d7:a7:f3:64: 8b:28:e6:32:59:b1:2d:ec:fe:ea:9d:ff:17:ba:ee: c3:01:66:70:58:c9:94:26:c6:2d:57:6a:e5:be:79: 1a:1b:a3:41:cd:26:63:73:08:ea:56:8c:de:ea:71: d7:fe:73:1b:03:e1:a1:49:d4:27:0d:3d:b2:34:a9: 86:e3:b2:9d:83:85:72:3a:74:69:5b:a4:6a:a5:12: e2:9e:86:96:d3:0a:ec:c3:d6:15:6a:bd:84:9c:14: 0c:5c:93:5e:16:fe:e2:77:67:e0:12:74:60:b3:cf: 84:3e:2b:3b:d4:92:ad:81:a1:2f:d0:0a:d6:ef:eb: 06:78:1c:d8:12:77:86:83:91:0c:a8:f2:8b:dd:99: 89:95:e3:a2:a4:15:4d:c6:65:d2:bc:f6:6a:8d:5e: 1c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:41:FA:B9:13:56:EE:AB:CD:E7:9B:30:3B:61:3F:F0:45:65:EA:19 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab04::/32 Signature Algorithm: sha256WithRSAEncryption a3:f4:65:d8:92:e4:87:96:c5:6f:d9:16:d6:60:ad:a1:99:82: f1:bf:7f:d3:c7:2d:3d:8d:5e:d9:17:c3:d3:f0:b5:8b:89:c2: 42:4f:77:2d:15:c5:f8:d8:3f:85:6b:c1:02:b5:2a:5c:09:6b: eb:58:2d:37:7c:16:a4:62:ba:2b:1e:0f:da:45:62:89:2a:f3: 93:2a:10:e5:0a:8c:a3:b9:db:92:f1:ba:da:ab:7a:b6:b4:61: dd:fe:9d:c2:29:9e:b4:89:21:0b:5c:99:6b:7e:30:d7:86:ba: 1f:db:e5:3a:66:a8:6a:54:d6:97:47:fb:56:9e:a7:f4:c3:74: 4a:9d:76:c3:e9:59:13:1c:20:4d:29:69:98:9a:67:b1:98:c3: db:9e:9d:44:7d:56:f5:0c:04:3f:b3:cf:50:43:a8:c5:23:58: d4:5b:01:fd:73:96:ea:d6:41:15:e1:e6:04:13:17:d5:52:b9: ce:a6:de:92:fb:3d:7d:20:23:1e:66:fd:8b:97:64:e2:77:85: a2:f9:1c:15:ca:da:e0:85:f7:4a:1e:07:13:42:8a:a1:aa:16: 47:e1:9b:3b:62:57:90:a1:c7:df:f4:b0:a9:14:9c:42:39:f0: a8:33:1b:df:16:b5:b8:11:51:96:bb:6d:ef:ec:e6:6d:4b:f6: fc:01:a3:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGQWOcYuhxTOJtOYtayE2gHtPU2YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcwM1oX DTI3MDMwMzA2MjIwM1owMzExMC8GA1UEAxMoOTE0MUZBQjkxMzU2RUVBQkNERTc5 QjMwM0I2MTNGRjA0NTY1RUExOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO9BBj+2q+uP/6dAHQYCLRJkFd7QMRof0qcAMGr7afxEmIZmIIrv8OhtAQ+W JjHNJxAwXedtLN717Ig1RR+XZf2wApSbM98Iy8c8aqZ31VZPb1HRl9vyOamvzRs0 tQTYPEeTEwzXp/NkiyjmMlmxLez+6p3/F7ruwwFmcFjJlCbGLVdq5b55GhujQc0m Y3MI6laM3upx1/5zGwPhoUnUJw09sjSphuOynYOFcjp0aVukaqUS4p6GltMK7MPW FWq9hJwUDFyTXhb+4ndn4BJ0YLPPhD4rO9SSrYGhL9AK1u/rBngc2BJ3hoORDKjy i92ZiZXjoqQVTcZl0rz2ao1eHBUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSRQfq5 E1buq83nmzA7YT/wRWXqGTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ3MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qwQwDQYJKoZIhvcNAQELBQADggEBAKP0ZdiS5IeWxW/ZFtZgraGZgvG/f9PHLT2N XtkXw9PwtYuJwkJPdy0VxfjYP4VrwQK1KlwJa+tYLTd8FqRiuiseD9pFYokq85Mq EOUKjKO525Lxutqrera0Yd3+ncIpnrSJIQtcmWt+MNeGuh/b5TpmqGpU1pdH+1ae p/TDdEqddsPpWRMcIE0paZiaZ7GYw9uenUR9VvUMBD+zz1BDqMUjWNRbAf1zlurW QRXh5gQTF9VSuc6m3pL7PX0gIx5m/YuXZOJ3haL5HBXK2uCF90oeBxNCiqGqFkfh mztiV5Chx9/0sKkUnEI58KgzG98WtbgRUZa7be/s5m1L9vwBo5w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:03 2026 by rpki-client