$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145034.roa File: AS145034.roa (raw, json) Hash identifier: 6vvbTBPNXHRIVnhRdiEb3QYRYAztvIZjYdRJuinOon4= Subject key identifier: 3B:E4:95:17:0A:DB:A1:B1:B4:89:B3:7B:3A:E4:27:4B:35:25:2E:F0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0C251454DD394164302D061A32250FDB4AEFF0CE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145034.roa Signing time: Wed 04 Mar 2026 06:19:43 +0000 ROA not before: Wed 04 Mar 2026 06:14:43 +0000 ROA not after: Wed 03 Mar 2027 06:19:43 +0000 asID: 145034 IP address blocks: 240a:a950::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:25:14:54:dd:39:41:64:30:2d:06:1a:32:25:0f:db:4a:ef:f0:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:43 2026 GMT Not After : Mar 3 06:19:43 2027 GMT Subject: CN=3BE495170ADBA1B1B489B37B3AE4274B35252EF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5e:6f:e6:ec:7a:fd:ab:87:13:dd:1e:4a:4b: c9:07:0c:69:33:26:9c:c7:55:8a:ac:2e:2d:6e:31: a6:d7:34:9b:0e:19:4f:fb:f9:0c:de:5e:54:c3:c6: e0:90:5e:39:4b:c8:65:c4:d9:83:a4:24:f1:21:e5: 9d:a2:46:37:a9:1f:42:b0:be:5e:f8:94:7d:dc:76: 04:84:32:07:a7:e2:63:b1:6a:b3:27:7a:23:05:a7: bf:cb:fb:8b:20:06:49:37:66:34:a7:9a:b9:05:eb: 5d:ab:ca:b1:fe:bd:64:7b:95:4e:ce:ef:6b:e2:ab: f2:4e:09:52:da:b1:d1:90:b1:66:23:e9:40:ea:52: c5:db:83:36:01:8b:1a:fd:f5:0f:dc:3f:a1:f0:eb: 1e:cf:ec:af:9e:fb:e6:34:d6:4c:6f:3e:41:8a:da: 86:65:d9:13:3c:e1:2d:52:1b:a2:45:f5:b5:27:05: 32:d8:f0:20:fc:15:dd:f6:dc:78:71:5c:c8:97:f1: 6a:51:78:31:bb:42:d3:a4:ce:37:cf:74:40:29:c9: f8:39:5f:a3:4e:01:dc:ad:ee:69:d8:62:50:54:68: 9f:82:42:ef:f1:cc:f5:06:eb:7b:7f:2c:a1:52:ff: a8:e0:b1:38:6e:50:0d:8d:16:28:16:02:b3:c1:1a: 17:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E4:95:17:0A:DB:A1:B1:B4:89:B3:7B:3A:E4:27:4B:35:25:2E:F0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a950::/32 Signature Algorithm: sha256WithRSAEncryption 8f:38:e1:52:cc:bf:f7:9d:7e:9f:31:f0:bc:70:b9:8a:8b:5c: 33:13:82:0f:50:e7:e2:96:9b:9c:35:1a:10:72:f0:6b:52:6c: 3c:b4:83:59:84:b6:49:48:6d:8e:0c:a5:97:c6:6a:8b:75:d7: 00:c7:ae:25:af:12:80:91:1b:da:78:1c:eb:83:a4:dc:1c:c5: 82:1b:f6:94:a1:38:45:3b:2b:62:2c:b6:74:fe:df:db:09:70: 7a:c3:a8:b5:68:25:64:6c:16:e5:8e:93:d5:c7:91:6d:b5:c8: a7:47:aa:2d:99:20:bd:3d:20:4d:19:10:87:0e:4f:8d:10:bb: 32:ca:1f:3e:9a:df:22:eb:f9:27:ab:2a:e6:d9:6c:ca:42:70: 86:66:50:76:ef:c9:4a:e0:ff:8c:0d:ce:ac:8b:40:5b:9f:17: a9:39:2a:da:75:14:56:bf:be:b1:88:11:eb:4e:8f:81:3b:a5: 01:a3:f3:de:02:69:c9:9b:3e:46:27:fb:6b:20:7c:f9:d2:a8: 65:96:95:c3:76:87:c9:8f:a8:06:fc:f4:6d:63:6f:8f:b2:3f: e1:20:97:8d:c5:19:b7:04:ee:ea:61:b6:c6:8d:ef:07:11:8a: 47:c7:e5:37:a4:bb:fb:1d:12:57:11:41:39:5f:3d:b9:e4:2a: a3:71:00:a2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDCUUVN05QWQwLQYaMiUP20rv8M4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0M1oX DTI3MDMwMzA2MTk0M1owMzExMC8GA1UEAxMoM0JFNDk1MTcwQURCQTFCMUI0ODlC MzdCM0FFNDI3NEIzNTI1MkVGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdeb+bsev2rhxPdHkpLyQcMaTMmnMdViqwuLW4xptc0mw4ZT/v5DN5eVMPG 4JBeOUvIZcTZg6Qk8SHlnaJGN6kfQrC+XviUfdx2BIQyB6fiY7Fqsyd6IwWnv8v7 iyAGSTdmNKeauQXrXavKsf69ZHuVTs7va+Kr8k4JUtqx0ZCxZiPpQOpSxduDNgGL Gv31D9w/ofDrHs/sr5775jTWTG8+QYrahmXZEzzhLVIbokX1tScFMtjwIPwV3fbc eHFcyJfxalF4MbtC06TON890QCnJ+Dlfo04B3K3uadhiUFRon4JC7/HM9Qbre38s oVL/qOCxOG5QDY0WKBYCs8EaF80CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ75JUX CtuhsbSJs3s65CdLNSUu8DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTAzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qVAwDQYJKoZIhvcNAQELBQADggEBAI844VLMv/edfp8x8LxwuYqLXDMTgg9Q5+KW m5w1GhBy8GtSbDy0g1mEtklIbY4MpZfGaot11wDHriWvEoCRG9p4HOuDpNwcxYIb 9pShOEU7K2IstnT+39sJcHrDqLVoJWRsFuWOk9XHkW21yKdHqi2ZIL09IE0ZEIcO T40QuzLKHz6a3yLr+SerKubZbMpCcIZmUHbvyUrg/4wNzqyLQFufF6k5Ktp1FFa/ vrGIEetOj4E7pQGj894CacmbPkYn+2sgfPnSqGWWlcN2h8mPqAb89G1jb4+yP+Eg l43FGbcE7uphtsaN7wcRikfH5Teku/sdElcRQTlfPbnkKqNxAKI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:58 2026 by rpki-client