$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145664.roa File: AS145664.roa (raw, json) Hash identifier: mXglayMiPjEsj52uNeQLBZGjkdKJUz7gV8/3aasudWo= Subject key identifier: E6:BF:A0:23:D7:28:FC:6B:85:40:C9:B3:57:CF:F5:1B:28:8B:DC:0C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5F3070376F32CA7B4952C28DEF3AB567587B4B9E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145664.roa Signing time: Wed 04 Mar 2026 06:29:56 +0000 ROA not before: Wed 04 Mar 2026 06:24:56 +0000 ROA not after: Wed 03 Mar 2027 06:29:56 +0000 asID: 145664 IP address blocks: 240a:abc6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:30:70:37:6f:32:ca:7b:49:52:c2:8d:ef:3a:b5:67:58:7b:4b:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:56 2026 GMT Not After : Mar 3 06:29:56 2027 GMT Subject: CN=E6BFA023D728FC6B8540C9B357CFF51B288BDC0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:2a:3c:a3:63:8a:27:50:6d:ac:d2:06:d0: 0d:7e:3b:cc:d2:05:96:70:60:85:2b:4d:ce:32:7b: e9:32:07:f7:69:a2:34:57:cc:a8:6f:42:cf:29:aa: 66:5d:a6:b2:c5:6c:60:05:97:d7:98:37:58:b7:ee: 71:bf:17:1b:6e:b9:f2:5e:1e:7f:1e:6b:74:b4:9c: a8:7b:da:f8:4c:86:31:73:f0:98:48:61:49:5a:0b: be:3b:17:9f:ae:27:66:23:ca:20:51:e7:41:3a:3a: ae:fe:cf:c3:b3:76:5f:21:50:ec:0e:cd:21:aa:27: d0:a9:0e:63:3d:23:6b:94:1e:93:67:75:67:e7:37: 2b:f8:a0:9e:96:d0:22:ef:16:f3:83:6e:3b:21:1f: 10:e8:c1:bc:dd:da:c0:58:b0:bf:03:6f:5a:cb:d9: 92:ec:5e:81:4f:6e:50:c2:03:32:97:0c:d0:e3:f1: e0:7d:32:34:ef:24:ee:eb:8b:0a:fd:dd:4f:4b:56: e5:b1:98:72:1a:08:17:21:91:6e:e0:7b:07:51:89: 1d:9f:9f:33:23:5f:4f:d8:02:af:86:4f:ad:f2:f9: 1c:61:0d:ce:5f:b0:3b:ee:e9:cf:c4:0b:e2:bb:a7: 52:70:71:f2:c9:32:5a:67:20:da:f0:d7:32:ce:10: ac:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BF:A0:23:D7:28:FC:6B:85:40:C9:B3:57:CF:F5:1B:28:8B:DC:0C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145664.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:abc6::/32 Signature Algorithm: sha256WithRSAEncryption 57:02:e0:6b:2e:db:6a:dd:85:39:73:88:a7:b7:fa:ac:9e:98: d7:2c:10:f3:5b:2c:44:c8:c2:88:e3:4e:4c:72:86:63:c6:06: 8f:42:4c:9e:57:7a:0b:51:15:2d:0d:bc:7a:c1:2b:42:fe:3f: 15:2f:0d:38:0b:27:be:cb:52:01:16:12:6e:f6:b8:50:e1:f4: df:ca:47:fc:a2:25:ac:69:fe:63:87:b8:77:f9:6e:43:4a:1d: da:ae:1f:32:de:2c:ee:60:97:57:88:90:ba:ba:05:f8:85:f8: f1:4e:44:53:81:89:50:88:9b:9d:0b:dc:81:22:ea:b9:ac:ac: ff:1f:32:4f:eb:c3:21:85:98:6a:eb:da:11:28:d0:1d:e7:e6: 44:6c:2b:71:7f:2b:bc:00:48:c3:00:79:61:77:57:37:f1:df: c6:b3:4b:eb:18:8b:93:9b:83:35:19:a9:06:30:6f:fe:25:02: 3d:1c:29:83:4f:eb:45:bb:1e:23:80:7b:06:97:86:f7:13:17: e9:8a:8a:bd:0e:c3:25:76:bc:03:32:d2:cb:ed:80:17:b0:67: 25:8c:62:30:f1:9a:d0:86:91:a9:cc:84:66:e2:46:36:76:9f: b2:ff:65:c5:41:57:e7:8a:d0:46:d9:02:4c:1a:1b:7d:61:d6: b2:fe:6c:64 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXzBwN28yyntJUsKN7zq1Z1h7S54wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ1NloX DTI3MDMwMzA2Mjk1NlowMzExMC8GA1UEAxMoRTZCRkEwMjNENzI4RkM2Qjg1NDBD OUIzNTdDRkY1MUIyODhCREMwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMizKjyjY4onUG2s0gbQDX47zNIFlnBghStNzjJ76TIH92miNFfMqG9Czymq Zl2mssVsYAWX15g3WLfucb8XG2658l4efx5rdLScqHva+EyGMXPwmEhhSVoLvjsX n64nZiPKIFHnQTo6rv7Pw7N2XyFQ7A7NIaon0KkOYz0ja5Qek2d1Z+c3K/ignpbQ Iu8W84NuOyEfEOjBvN3awFiwvwNvWsvZkuxegU9uUMIDMpcM0OPx4H0yNO8k7uuL Cv3dT0tW5bGYchoIFyGRbuB7B1GJHZ+fMyNfT9gCr4ZPrfL5HGENzl+wO+7pz8QL 4runUnBx8skyWmcg2vDXMs4QrGECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTmv6Aj 1yj8a4VAybNXz/UbKIvcDDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTY2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q8YwDQYJKoZIhvcNAQELBQADggEBAFcC4Gsu22rdhTlziKe3+qyemNcsEPNbLETI wojjTkxyhmPGBo9CTJ5XegtRFS0NvHrBK0L+PxUvDTgLJ77LUgEWEm72uFDh9N/K R/yiJaxp/mOHuHf5bkNKHdquHzLeLO5gl1eIkLq6BfiF+PFORFOBiVCIm50L3IEi 6rmsrP8fMk/rwyGFmGrr2hEo0B3n5kRsK3F/K7wASMMAeWF3Vzfx38azS+sYi5Ob gzUZqQYwb/4lAj0cKYNP60W7HiOAewaXhvcTF+mKir0OwyV2vAMy0svtgBewZyWM YjDxmtCGkanMhGbiRjZ2n7L/ZcVBV+eK0EbZAkwaG31h1rL+bGQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:52 2026 by rpki-client