$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145682.roa File: AS145682.roa (raw, json) Hash identifier: 88MhyUlZL74fK5XUJZF9SoGHZH9TIE9STDeBDuZuIuw= Subject key identifier: 6F:B2:C9:84:83:58:A1:3E:B0:49:A0:98:63:0D:45:AC:D7:39:01:E7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 21B8642553461EBAE10B6A95AD81F9298E970A84 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145682.roa Signing time: Wed 04 Mar 2026 06:30:08 +0000 ROA not before: Wed 04 Mar 2026 06:25:08 +0000 ROA not after: Wed 03 Mar 2027 06:30:08 +0000 asID: 145682 IP address blocks: 240a:abd8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b8:64:25:53:46:1e:ba:e1:0b:6a:95:ad:81:f9:29:8e:97:0a:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:08 2026 GMT Not After : Mar 3 06:30:08 2027 GMT Subject: CN=6FB2C9848358A13EB049A098630D45ACD73901E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4b:f5:51:c7:62:53:b0:dd:be:b0:44:68:07: 62:45:e2:35:43:6c:ed:35:47:95:1e:ab:85:18:40: bf:03:9c:c0:f8:1a:e7:d9:9b:9f:6d:0c:e4:90:a9: a3:6d:f4:6f:6e:4e:2d:8f:d9:cd:7a:c1:45:8f:cc: 35:ff:2a:10:8e:4b:42:67:46:c5:c7:dd:5f:52:25: 86:33:cd:71:fa:6a:86:34:88:9e:2e:51:60:e9:47: 2a:c2:50:7a:10:13:c0:10:06:5b:eb:79:e8:8b:e5: f4:fe:7b:62:02:1a:89:93:a2:e1:49:e1:0f:21:6f: 30:db:c8:d9:6d:77:5d:29:3e:01:f7:63:37:81:d1: fa:9d:c1:d6:0f:57:e3:cb:e6:a2:9a:36:62:5d:5c: 98:58:46:25:60:6f:5e:df:58:6d:ad:4d:f6:f9:20: 05:4e:40:64:6b:63:22:ab:03:05:d5:4c:cb:94:d0: c5:d5:1a:4e:2b:14:b4:cc:b0:a1:92:6d:d9:3c:b6: 84:c8:40:a5:0c:e5:dc:4a:71:ed:c6:69:5f:b3:77: 40:6f:2d:79:da:c8:be:f0:c3:fd:18:df:54:1a:5d: b6:d0:90:da:9a:b7:7c:51:38:d8:06:9f:75:08:c8: 61:a9:77:56:c7:cb:de:af:33:c6:e8:7c:86:03:ca: 4f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B2:C9:84:83:58:A1:3E:B0:49:A0:98:63:0D:45:AC:D7:39:01:E7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145682.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:abd8::/32 Signature Algorithm: sha256WithRSAEncryption d8:43:0a:ca:e5:a8:62:60:ae:ec:c4:76:c5:25:2d:87:de:ac: 94:1f:1e:24:7e:cf:a7:cf:96:3e:97:b3:82:e9:66:80:e1:1c: ba:90:6d:cb:90:4e:19:af:95:b3:01:6c:d8:94:6a:0f:97:12: 5a:d9:dd:b6:ec:02:f8:7a:43:e3:f9:3e:8d:54:7e:23:4c:27: 3a:44:ce:6f:16:a7:e9:58:dc:b8:1c:72:ee:9b:3c:3f:b9:a8: b9:7a:30:ba:c3:23:47:9c:52:96:43:e9:2d:a9:e5:27:4e:a4: a6:85:4e:16:4b:df:70:8b:08:33:fa:ea:ee:77:39:60:a6:42: 73:df:b4:20:91:e0:f2:d3:74:01:87:a0:15:35:17:fb:db:27: 78:01:32:c8:1b:45:d2:99:5c:b7:56:d0:1b:3d:f4:6c:e0:34: 57:59:d7:31:46:66:74:04:52:cb:65:19:db:d8:40:c8:70:af: d5:a2:81:18:71:9e:22:43:ff:c8:22:dc:a7:e2:33:fa:0b:09: 25:55:e9:90:d9:f4:80:f8:98:46:08:46:6d:7b:d4:73:9f:55: c1:e3:58:14:13:f9:68:db:4a:27:6b:e0:4f:af:ea:27:d1:22: df:ed:53:f5:d4:da:9e:4e:a9:a8:8a:3d:da:8f:56:05:b6:9c: 7c:1a:05:8c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIbhkJVNGHrrhC2qVrYH5KY6XCoQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUwOFoX DTI3MDMwMzA2MzAwOFowMzExMC8GA1UEAxMoNkZCMkM5ODQ4MzU4QTEzRUIwNDlB MDk4NjMwRDQ1QUNENzM5MDFFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5L9VHHYlOw3b6wRGgHYkXiNUNs7TVHlR6rhRhAvwOcwPga59mbn20M5JCp o230b25OLY/ZzXrBRY/MNf8qEI5LQmdGxcfdX1IlhjPNcfpqhjSIni5RYOlHKsJQ ehATwBAGW+t56Ivl9P57YgIaiZOi4UnhDyFvMNvI2W13XSk+AfdjN4HR+p3B1g9X 48vmopo2Yl1cmFhGJWBvXt9Yba1N9vkgBU5AZGtjIqsDBdVMy5TQxdUaTisUtMyw oZJt2Ty2hMhApQzl3Epx7cZpX7N3QG8tedrIvvDD/RjfVBpdttCQ2pq3fFE42Aaf dQjIYal3VsfL3q8zxuh8hgPKT9ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRvssmE g1ihPrBJoJhjDUWs1zkB5zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTY4Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q9gwDQYJKoZIhvcNAQELBQADggEBANhDCsrlqGJgruzEdsUlLYferJQfHiR+z6fP lj6Xs4LpZoDhHLqQbcuQThmvlbMBbNiUag+XElrZ3bbsAvh6Q+P5Po1UfiNMJzpE zm8Wp+lY3Lgccu6bPD+5qLl6MLrDI0ecUpZD6S2p5SdOpKaFThZL33CLCDP66u53 OWCmQnPftCCR4PLTdAGHoBU1F/vbJ3gBMsgbRdKZXLdW0Bs99GzgNFdZ1zFGZnQE UstlGdvYQMhwr9WigRhxniJD/8gi3KfiM/oLCSVV6ZDZ9ID4mEYIRm171HOfVcHj WBQT+WjbSidr4E+v6ifRIt/tU/XU2p5OqaiKPdqPVgW2nHwaBYw= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:41 2026 by rpki-client