$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145473.roa File: AS145473.roa (raw, json) Hash identifier: HgQUUZIejELihOq/WDeQU+9aBPSLBniNvZ6zbjOORRU= Subject key identifier: 7E:70:0C:0A:2C:BC:D1:FD:4A:09:52:2F:D5:52:C4:FF:2F:AD:6C:BA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 435710BE55670E3CB832CA54AC39C3028EE4D94A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145473.roa Signing time: Wed 04 Mar 2026 06:19:41 +0000 ROA not before: Wed 04 Mar 2026 06:14:41 +0000 ROA not after: Wed 03 Mar 2027 06:19:41 +0000 asID: 145473 IP address blocks: 240a:ab07::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:57:10:be:55:67:0e:3c:b8:32:ca:54:ac:39:c3:02:8e:e4:d9:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:41 2026 GMT Not After : Mar 3 06:19:41 2027 GMT Subject: CN=7E700C0A2CBCD1FD4A09522FD552C4FF2FAD6CBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b7:a2:01:b8:f1:d7:5a:49:3d:b4:c8:4d:bf: 05:5e:c7:ff:61:d6:e4:c8:03:85:c4:a0:93:57:47: d8:c3:4c:33:c1:1e:64:93:f8:69:28:5a:01:0c:1c: 6b:b1:f0:b7:b5:e1:5e:d5:58:63:c7:80:31:1b:ec: 19:8b:fd:6c:d2:e3:68:68:21:3a:77:75:60:d9:da: fb:cf:fb:e5:93:7d:49:73:33:07:5e:ab:10:42:6e: a8:4d:2a:3b:1f:cd:8a:cc:2f:62:cf:4c:64:5c:a6: 74:33:0d:1e:d7:1c:61:33:91:6d:08:36:63:f0:84: 83:67:e4:59:08:f5:5e:a2:65:50:92:66:88:d5:b9: 52:c2:bf:d6:74:00:67:18:e0:84:8c:07:a0:23:3d: e8:ad:f8:ab:25:ac:b6:34:9d:07:29:cd:2b:c9:6b: 65:6c:03:e3:c8:0b:d1:10:20:6f:a3:1d:9b:c2:af: f6:af:0f:b6:e5:be:e6:3e:5b:bc:21:a0:f1:f4:2b: 38:f3:c7:a8:5d:c4:eb:cb:dc:1d:91:5e:1e:af:f7: 4a:21:25:ef:37:e3:c2:c2:b0:f0:af:26:86:fc:10: a3:ed:33:c6:05:0b:65:4f:f6:4e:15:98:e2:98:fc: 07:e1:e6:28:6e:14:91:88:aa:9e:e6:27:da:9a:6c: 1c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:70:0C:0A:2C:BC:D1:FD:4A:09:52:2F:D5:52:C4:FF:2F:AD:6C:BA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab07::/32 Signature Algorithm: sha256WithRSAEncryption c1:f8:cd:67:cd:df:1f:5b:1f:77:13:4d:49:28:c5:3a:95:df: 9d:5d:50:3c:b3:b6:db:4a:6c:90:fd:7b:03:15:07:93:33:d7: 60:19:64:f7:e0:3c:0e:ce:2f:20:ff:c2:93:cc:2c:f3:0c:88: 67:07:09:21:11:ba:61:0a:0e:f3:3b:bc:f6:52:3d:a0:33:58: 6d:3c:fd:84:78:ef:05:13:a6:9a:63:af:63:4b:2b:d3:89:05: 9c:0d:7e:87:0c:b1:9f:39:ed:09:35:65:96:4c:49:10:47:05: a8:31:1c:6a:6e:aa:f2:5b:4a:27:a1:7b:92:f3:04:ac:0f:b6: bc:36:b2:77:c1:37:7d:97:20:e5:7a:81:2b:59:49:3a:d3:5a: 4e:7f:c0:ff:08:b5:fb:ff:86:44:64:bf:e7:ce:82:d2:ea:05: 3d:77:71:50:1e:18:27:98:eb:79:36:f0:b0:1e:09:4c:ac:1d: 94:8a:17:17:e5:59:49:15:73:5e:42:ac:ff:34:f4:0b:39:7f: 6f:4f:92:db:f2:1a:d3:f1:8c:96:87:93:61:79:50:a3:ee:58: 09:cc:e6:07:7f:2a:38:69:07:20:fd:d1:f5:1a:48:a3:b7:4a: dd:ee:65:ee:67:fe:84:65:45:d3:81:a1:cd:b5:cf:f3:65:90: ef:c4:7b:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQ1cQvlVnDjy4MspUrDnDAo7k2UowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0MVoX DTI3MDMwMzA2MTk0MVowMzExMC8GA1UEAxMoN0U3MDBDMEEyQ0JDRDFGRDRBMDk1 MjJGRDU1MkM0RkYyRkFENkNCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ23ogG48ddaST20yE2/BV7H/2HW5MgDhcSgk1dH2MNMM8EeZJP4aShaAQwc a7Hwt7XhXtVYY8eAMRvsGYv9bNLjaGghOnd1YNna+8/75ZN9SXMzB16rEEJuqE0q Ox/NiswvYs9MZFymdDMNHtccYTORbQg2Y/CEg2fkWQj1XqJlUJJmiNW5UsK/1nQA ZxjghIwHoCM96K34qyWstjSdBynNK8lrZWwD48gL0RAgb6Mdm8Kv9q8PtuW+5j5b vCGg8fQrOPPHqF3E68vcHZFeHq/3SiEl7zfjwsKw8K8mhvwQo+0zxgULZU/2ThWY 4pj8B+HmKG4UkYiqnuYn2ppsHAMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR+cAwK LLzR/UoJUi/VUsT/L61sujAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ3My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qwcwDQYJKoZIhvcNAQELBQADggEBAMH4zWfN3x9bH3cTTUkoxTqV351dUDyztttK bJD9ewMVB5Mz12AZZPfgPA7OLyD/wpPMLPMMiGcHCSERumEKDvM7vPZSPaAzWG08 /YR47wUTpppjr2NLK9OJBZwNfocMsZ857Qk1ZZZMSRBHBagxHGpuqvJbSiehe5Lz BKwPtrw2snfBN32XIOV6gStZSTrTWk5/wP8Itfv/hkRkv+fOgtLqBT13cVAeGCeY 63k28LAeCUysHZSKFxflWUkVc15CrP809As5f29PktvyGtPxjJaHk2F5UKPuWAnM 5gd/KjhpByD90fUaSKO3St3uZe5n/oRlRdOBoc21z/NlkO/Ee0I= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:47 2026 by rpki-client