$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145039.roa File: AS145039.roa (raw, json) Hash identifier: sl/keOooVFaMjuoS4iK4c5QVMLHoRD2Y+PKr1h+DmmA= Subject key identifier: BF:BF:52:2B:2F:4A:B0:97:E4:0E:E3:53:21:6D:8A:09:58:59:18:35 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 19C9EDEED501DA89800444580E1AEF9BF48C4139 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145039.roa Signing time: Wed 04 Mar 2026 06:21:57 +0000 ROA not before: Wed 04 Mar 2026 06:16:57 +0000 ROA not after: Wed 03 Mar 2027 06:21:57 +0000 asID: 145039 IP address blocks: 240a:a955::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c9:ed:ee:d5:01:da:89:80:04:44:58:0e:1a:ef:9b:f4:8c:41:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:57 2026 GMT Not After : Mar 3 06:21:57 2027 GMT Subject: CN=BFBF522B2F4AB097E40EE353216D8A0958591835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:0d:22:3a:cc:49:91:c9:76:cf:3a:bb:12:04: 34:52:c5:b9:d0:2f:c7:c8:51:b4:d7:33:52:a2:82: 53:d0:28:1a:f9:d7:47:0f:95:3d:25:5d:90:ad:c6: 18:72:63:0e:9d:0c:91:a6:df:d0:ba:49:48:f3:3c: c7:17:c3:73:88:5b:46:06:8c:54:ce:a3:9f:3a:37: 62:a0:03:9f:df:11:fd:aa:90:66:b5:12:2f:77:38: d3:05:a7:b4:21:55:3c:2d:5b:f4:e7:bc:98:4d:5f: 2b:6f:39:4b:02:4f:f2:7c:49:f6:88:49:e5:46:18: 27:36:a6:79:ee:43:b3:f5:68:b5:13:9e:f3:9e:35: 0a:2b:4b:44:95:e8:a0:6f:ff:d0:e6:f6:ba:d9:5f: e9:88:e8:f2:65:25:77:12:c3:98:68:58:d1:16:15: fc:89:5c:14:a1:db:d1:6b:53:84:ca:7a:55:32:d4: 73:bc:76:13:c4:1b:8e:7b:31:07:e5:48:d4:96:23: f7:f3:7d:fa:b1:cc:e6:70:98:e3:38:cb:56:07:27: 9b:dd:3a:25:63:b1:f8:8f:3a:34:92:d0:1a:b4:8c: f0:19:da:81:df:13:34:a1:2c:53:46:d8:c2:e4:a8: dd:79:fd:83:52:8e:b0:4b:8a:e7:f1:d5:ff:ac:03: 67:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BF:52:2B:2F:4A:B0:97:E4:0E:E3:53:21:6D:8A:09:58:59:18:35 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a955::/32 Signature Algorithm: sha256WithRSAEncryption 4e:bf:89:15:30:dc:2a:ec:36:8f:a8:b9:10:8a:22:e1:36:73: 8d:e4:01:45:29:c8:95:26:bf:c8:73:93:88:a9:b0:ca:60:8a: b3:4b:90:40:7d:51:6a:8e:db:de:c9:3e:99:bf:0f:0d:e6:82: a9:a9:5c:44:14:fd:35:9c:e7:f1:33:fe:92:70:d9:96:e2:00: 48:ef:7c:cc:2f:d1:3b:50:2e:ba:82:d3:4b:d6:18:34:e2:1a: 0c:aa:47:28:1a:92:9e:10:3b:e0:af:01:af:18:d8:74:08:8b: e4:a0:85:16:32:3f:39:95:2e:16:4b:47:3a:90:f9:1f:a1:ff: 7e:78:97:3c:a4:ad:b1:69:80:89:f7:18:a3:7c:0a:1a:12:c7: db:cd:12:28:b4:ba:1c:3b:fa:cd:1a:f9:e4:5e:69:f1:3f:f7: a4:53:ab:6b:fc:95:b0:8c:6a:fc:72:0c:a0:aa:4b:c9:e5:a4: 9a:5d:73:8d:8c:91:d6:2e:05:42:1f:1f:9d:6d:93:45:8f:31: de:9e:ef:ce:30:14:fe:34:48:b2:ff:4a:0a:8b:e2:fc:d0:92: aa:ac:a2:9c:cf:f0:17:8c:8a:1c:96:42:02:45:0f:22:59:a4: 0b:2e:4c:95:33:56:17:d5:de:1e:d6:d3:10:bc:8a:c8:58:0d: aa:99:ef:ef -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGcnt7tUB2omABERYDhrvm/SMQTkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1N1oX DTI3MDMwMzA2MjE1N1owMzExMC8GA1UEAxMoQkZCRjUyMkIyRjRBQjA5N0U0MEVF MzUzMjE2RDhBMDk1ODU5MTgzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI0NIjrMSZHJds86uxIENFLFudAvx8hRtNczUqKCU9AoGvnXRw+VPSVdkK3G GHJjDp0Mkabf0LpJSPM8xxfDc4hbRgaMVM6jnzo3YqADn98R/aqQZrUSL3c40wWn tCFVPC1b9Oe8mE1fK285SwJP8nxJ9ohJ5UYYJzamee5Ds/VotROe8541CitLRJXo oG//0Ob2utlf6Yjo8mUldxLDmGhY0RYV/IlcFKHb0WtThMp6VTLUc7x2E8Qbjnsx B+VI1JYj9/N9+rHM5nCY4zjLVgcnm906JWOx+I86NJLQGrSM8Bnagd8TNKEsU0bY wuSo3Xn9g1KOsEuK5/HV/6wDZ7UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS/v1Ir L0qwl+QO41MhbYoJWFkYNTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTAzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qVUwDQYJKoZIhvcNAQELBQADggEBAE6/iRUw3CrsNo+ouRCKIuE2c43kAUUpyJUm v8hzk4ipsMpgirNLkEB9UWqO297JPpm/Dw3mgqmpXEQU/TWc5/Ez/pJw2ZbiAEjv fMwv0TtQLrqC00vWGDTiGgyqRygakp4QO+CvAa8Y2HQIi+SghRYyPzmVLhZLRzqQ +R+h/354lzykrbFpgIn3GKN8ChoSx9vNEii0uhw7+s0a+eReafE/96RTq2v8lbCM avxyDKCqS8nlpJpdc42MkdYuBUIfH51tk0WPMd6e784wFP40SLL/SgqL4vzQkqqs opzP8BeMihyWQgJFDyJZpAsuTJUzVhfV3h7W0xC8ishYDaqZ7+8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:29 2026 by rpki-client