$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145565.roa File: AS145565.roa (raw, json) Hash identifier: pMj4UuFM18j0vb+l4xQBpZsFsNlHdBUcz4Iq9pA0Krg= Subject key identifier: B6:C5:C9:51:92:ED:9E:AD:02:2F:37:33:72:0C:79:AE:61:89:A1:5D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 43D3C7009215D5972A680AD9729864BDC063D059 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145565.roa Signing time: Wed 04 Mar 2026 06:29:46 +0000 ROA not before: Wed 04 Mar 2026 06:24:46 +0000 ROA not after: Wed 03 Mar 2027 06:29:46 +0000 asID: 145565 IP address blocks: 240a:ab63::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d3:c7:00:92:15:d5:97:2a:68:0a:d9:72:98:64:bd:c0:63:d0:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:46 2026 GMT Not After : Mar 3 06:29:46 2027 GMT Subject: CN=B6C5C95192ED9EAD022F3733720C79AE6189A15D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:0f:3d:3f:79:fa:63:14:0a:e2:de:1d:0a:d4: 7a:e3:ef:9e:e4:c8:f6:39:4c:2e:43:ca:d4:f7:11: 8c:a8:5d:e6:74:a7:55:88:df:ad:89:19:bf:a8:ed: fd:81:a6:67:4b:48:d5:f4:8a:94:36:b0:a1:bf:47: f8:fc:ea:5e:a0:39:62:6b:b0:65:81:67:20:fe:03: 43:ba:ab:6f:1b:ca:a9:00:72:37:63:3f:d0:e0:1c: 76:45:9c:c8:8d:5a:22:83:48:8c:d7:93:52:4c:b8: e2:c9:67:17:22:e3:f8:25:ec:5d:08:1c:0b:c5:ee: 2f:74:88:bb:8c:1d:b9:03:b3:4a:40:58:e0:27:07: 5e:eb:f9:e9:55:70:52:02:c9:79:6a:2b:a6:b4:f1: 29:64:e8:ae:bd:5c:f9:ed:03:cb:ce:ca:d3:13:9a: 1f:02:73:ab:ad:76:d4:eb:48:08:02:b0:ad:fd:17: c4:0d:96:ed:4b:22:2c:78:e8:04:95:28:bc:b2:26: 78:47:a6:a6:bb:52:e6:71:21:cf:a5:02:b3:d1:91: 51:25:a7:75:93:2c:c4:08:4c:64:e6:75:ba:ed:29: 5f:01:8b:35:6b:0a:cb:9a:22:f2:0c:b2:dc:4c:ad: a0:53:36:25:ac:62:72:9d:4c:d6:52:c3:fe:3d:2d: 22:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:C5:C9:51:92:ED:9E:AD:02:2F:37:33:72:0C:79:AE:61:89:A1:5D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145565.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab63::/32 Signature Algorithm: sha256WithRSAEncryption 56:47:18:e5:53:15:f4:6f:65:a3:26:81:34:0d:ee:9e:a2:f0: ed:71:6e:14:20:ef:cb:6f:8e:66:3e:e2:57:57:55:70:8c:bf: e5:eb:05:84:59:39:3c:f3:9f:0a:2c:8a:80:89:cd:28:44:78: c0:f7:2c:e7:7d:61:79:cd:52:a1:e3:97:c6:d3:3b:64:a5:db: 09:da:a6:a4:74:fe:e7:04:64:19:f9:24:cb:bf:c3:8d:07:ae: 04:94:7e:11:8f:66:f4:0a:9b:94:dd:7d:4c:14:2d:83:ba:c9: 82:87:76:2c:a2:53:6d:d3:99:77:2c:17:18:eb:fc:6b:38:e4: 36:c5:2a:b1:28:cc:86:cc:89:9a:51:25:b1:28:c4:b7:55:02: 38:2d:83:81:5a:a6:5f:70:39:75:33:5a:80:32:87:1b:55:6f: bb:d6:f8:7a:20:2f:96:22:90:ff:9a:30:a2:63:1a:d0:11:a3: c7:00:bf:c0:7d:ff:e5:71:36:98:6b:96:b5:41:fd:68:7d:69: f7:52:be:0f:1d:9c:5e:2b:23:b7:10:d4:71:7b:38:29:74:25: 55:c0:37:23:e1:f3:a3:3e:a5:8a:ca:a1:fd:10:45:10:e0:52: f9:ba:50:56:49:7a:a4:e1:f9:0f:88:12:66:b6:ea:24:e5:7c: 40:c5:db:4f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQ9PHAJIV1ZcqaArZcphkvcBj0FkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ0NloX DTI3MDMwMzA2Mjk0NlowMzExMC8GA1UEAxMoQjZDNUM5NTE5MkVEOUVBRDAyMkYz NzMzNzIwQzc5QUU2MTg5QTE1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIYPPT95+mMUCuLeHQrUeuPvnuTI9jlMLkPK1PcRjKhd5nSnVYjfrYkZv6jt /YGmZ0tI1fSKlDawob9H+PzqXqA5YmuwZYFnIP4DQ7qrbxvKqQByN2M/0OAcdkWc yI1aIoNIjNeTUky44slnFyLj+CXsXQgcC8XuL3SIu4wduQOzSkBY4CcHXuv56VVw UgLJeWorprTxKWTorr1c+e0Dy87K0xOaHwJzq6121OtICAKwrf0XxA2W7UsiLHjo BJUovLImeEemprtS5nEhz6UCs9GRUSWndZMsxAhMZOZ1uu0pXwGLNWsKy5oi8gyy 3EytoFM2Jaxicp1M1lLD/j0tIq0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS2xclR ku2erQIvNzNyDHmuYYmhXTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTU2NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q2MwDQYJKoZIhvcNAQELBQADggEBAFZHGOVTFfRvZaMmgTQN7p6i8O1xbhQg78tv jmY+4ldXVXCMv+XrBYRZOTzznwosioCJzShEeMD3LOd9YXnNUqHjl8bTO2Sl2wna pqR0/ucEZBn5JMu/w40HrgSUfhGPZvQKm5TdfUwULYO6yYKHdiyiU23TmXcsFxjr /Gs45DbFKrEozIbMiZpRJbEoxLdVAjgtg4Fapl9wOXUzWoAyhxtVb7vW+HogL5Yi kP+aMKJjGtARo8cAv8B9/+VxNphrlrVB/Wh9afdSvg8dnF4rI7cQ1HF7OCl0JVXA NyPh86M+pYrKof0QRRDgUvm6UFZJeqTh+Q+IEma26iTlfEDF208= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:57 2026 by rpki-client