$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145765.roa File: AS145765.roa (raw, json) Hash identifier: eUFrC+fwEbWY95twIT3CCykdPx+VX0PvaE5HH+QaSS4= Subject key identifier: 99:67:B1:5D:48:1C:2A:65:4B:85:33:DE:E9:46:04:4C:66:E1:AF:32 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5C6D1C94D163750844B93A95E194EF5345768F7B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145765.roa Signing time: Wed 04 Mar 2026 06:29:58 +0000 ROA not before: Wed 04 Mar 2026 06:24:58 +0000 ROA not after: Wed 03 Mar 2027 06:29:58 +0000 asID: 145765 IP address blocks: 240a:ac2b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:6d:1c:94:d1:63:75:08:44:b9:3a:95:e1:94:ef:53:45:76:8f:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:58 2026 GMT Not After : Mar 3 06:29:58 2027 GMT Subject: CN=9967B15D481C2A654B8533DEE946044C66E1AF32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:19:34:70:30:87:d0:ad:c8:95:18:1c:79:ec: 3b:ee:88:37:46:c7:03:ef:ea:18:5f:67:41:fb:ae: 06:31:33:4e:f4:89:8b:0b:9f:70:12:31:bc:9c:f5: 34:19:d0:e2:a7:ea:d5:6a:3b:26:1f:e9:19:c8:c3: a2:77:6b:8a:3f:36:43:16:f4:48:3c:40:a0:f1:e6: 26:46:f9:36:0c:a1:e4:95:a2:4b:0f:ef:3f:78:c6: 94:f3:a6:15:ba:95:97:8e:cb:1a:b7:36:3e:b4:83: b2:02:a0:65:dc:e3:c6:66:69:62:ce:bd:37:52:51: 30:3c:11:0d:8c:b3:e0:c2:25:af:1a:75:3b:10:8e: fb:3f:73:22:17:ea:f3:a9:10:12:b8:3e:5f:1b:95: c5:cb:0a:d6:c8:10:91:b6:6c:d3:81:07:87:07:e0: 46:50:99:68:b6:71:8e:69:5d:d0:69:e2:17:3c:d1: a4:44:df:fc:c7:aa:bf:39:37:82:e7:9d:98:b7:82: 72:37:10:63:f3:1b:7c:fc:1b:5a:8a:b8:8d:a9:a2: b6:fc:80:c1:23:8d:46:56:14:68:f4:02:ac:14:c1: 4d:96:ae:c2:3c:6a:62:7b:63:60:04:86:cc:0a:56: 4f:ed:79:f8:ea:da:a5:30:8e:2c:92:1b:76:74:7d: 1a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:67:B1:5D:48:1C:2A:65:4B:85:33:DE:E9:46:04:4C:66:E1:AF:32 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145765.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac2b::/32 Signature Algorithm: sha256WithRSAEncryption cc:97:4d:1b:64:0c:1f:53:e7:b5:8c:81:02:55:38:70:0c:57: 64:bc:8f:35:8a:7a:8f:16:df:3e:e1:99:f7:4c:84:3a:43:e0: c6:23:40:58:2c:f1:44:6f:33:40:f7:fe:89:1b:71:7d:91:b0: 62:2d:55:53:8a:64:3a:02:32:ba:99:7c:9b:8f:ec:34:0f:e8: 5d:c0:0a:7a:70:78:bc:1d:b9:59:42:92:65:6f:cc:65:cc:c3: 3c:87:18:39:c8:56:84:85:f3:f2:05:82:ee:2a:c6:95:d9:3b: fe:2b:c2:f2:e7:40:8c:03:a1:3c:e6:4b:1b:84:91:e8:54:04: e6:66:e6:d3:46:95:e7:9c:7c:e9:52:81:a5:99:b8:09:24:0f: 3c:3f:bd:f1:80:72:b5:43:fb:c7:92:ce:1c:7d:10:31:71:28: 56:61:fb:ca:e5:37:6b:f7:46:6c:2d:9a:39:fe:2f:34:9e:02: 75:62:cc:1f:b3:10:88:77:15:0a:6f:8d:70:62:91:86:b0:91: 89:64:a9:65:e0:41:98:fb:7b:07:c9:f7:b3:69:08:a2:04:2f: 67:73:47:0e:a7:2e:33:d3:2b:26:ad:e6:5c:b7:6f:e3:c4:ff: 08:b3:68:0c:89:ff:98:82:b7:58:40:9a:36:1f:40:76:fc:bb: ab:28:b4:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXG0clNFjdQhEuTqV4ZTvU0V2j3swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ1OFoX DTI3MDMwMzA2Mjk1OFowMzExMC8GA1UEAxMoOTk2N0IxNUQ0ODFDMkE2NTRCODUz M0RFRTk0NjA0NEM2NkUxQUYzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0ZNHAwh9CtyJUYHHnsO+6IN0bHA+/qGF9nQfuuBjEzTvSJiwufcBIxvJz1 NBnQ4qfq1Wo7Jh/pGcjDondrij82Qxb0SDxAoPHmJkb5Ngyh5JWiSw/vP3jGlPOm FbqVl47LGrc2PrSDsgKgZdzjxmZpYs69N1JRMDwRDYyz4MIlrxp1OxCO+z9zIhfq 86kQErg+XxuVxcsK1sgQkbZs04EHhwfgRlCZaLZxjmld0GniFzzRpETf/Meqvzk3 guedmLeCcjcQY/MbfPwbWoq4jamitvyAwSONRlYUaPQCrBTBTZauwjxqYntjYASG zApWT+15+OrapTCOLJIbdnR9GmUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSZZ7Fd SBwqZUuFM97pRgRMZuGvMjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc2NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rCswDQYJKoZIhvcNAQELBQADggEBAMyXTRtkDB9T57WMgQJVOHAMV2S8jzWKeo8W 3z7hmfdMhDpD4MYjQFgs8URvM0D3/okbcX2RsGItVVOKZDoCMrqZfJuP7DQP6F3A CnpweLwduVlCkmVvzGXMwzyHGDnIVoSF8/IFgu4qxpXZO/4rwvLnQIwDoTzmSxuE kehUBOZm5tNGleecfOlSgaWZuAkkDzw/vfGAcrVD+8eSzhx9EDFxKFZh+8rlN2v3 Rmwtmjn+LzSeAnVizB+zEIh3FQpvjXBikYawkYlkqWXgQZj7ewfJ97NpCKIEL2dz Rw6nLjPTKyat5ly3b+PE/wizaAyJ/5iCt1hAmjYfQHb8u6sotPw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:00 2026 by rpki-client