$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145042.roa File: AS145042.roa (raw, json) Hash identifier: 4kWaAg26kC1IOnGXBhZLbd+Jhrc5mUzHWeyY8S5zDPg= Subject key identifier: 20:2E:B9:7E:23:50:6F:64:53:E1:03:52:60:3B:46:35:93:E6:11:BC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 18A3562DC3150817741E558EFAA01E938EC8BFEC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145042.roa Signing time: Wed 04 Mar 2026 06:19:59 +0000 ROA not before: Wed 04 Mar 2026 06:14:59 +0000 ROA not after: Wed 03 Mar 2027 06:19:59 +0000 asID: 145042 IP address blocks: 240a:a958::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a3:56:2d:c3:15:08:17:74:1e:55:8e:fa:a0:1e:93:8e:c8:bf:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:59 2026 GMT Not After : Mar 3 06:19:59 2027 GMT Subject: CN=202EB97E23506F6453E10352603B463593E611BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a3:fe:18:b2:6f:23:08:0c:41:38:13:f6:a0: f0:1e:ec:51:d1:5e:7c:67:32:a8:eb:18:62:fe:9b: 04:bf:f9:c8:9c:a1:48:03:7f:5e:82:9c:cd:ca:8d: be:02:c5:f5:74:e2:4f:a4:5c:a1:b9:23:be:8d:13: 37:fd:b7:63:72:24:dc:5a:d5:55:b1:bd:d3:90:d8: ff:f3:ec:33:7f:db:7e:6d:35:1c:b4:44:ff:9b:d1: c0:3f:e6:0a:95:c7:ea:10:15:01:e4:49:f6:9f:d1: ca:15:67:08:e6:64:ec:94:6b:7a:6c:04:aa:59:33: 7f:96:0d:da:a5:e1:f9:af:67:12:74:5d:a4:80:7f: 10:13:0d:a8:f6:3d:e2:b0:c1:14:46:c6:fb:46:95: a3:82:7f:8d:1a:21:0c:34:51:1a:3b:0d:57:6b:8a: 81:f1:7a:67:47:c0:39:b0:d8:27:3c:e3:5b:62:46: 7e:f0:6a:0c:70:0d:d8:0e:a1:07:75:63:00:dd:af: 2d:09:98:ab:17:52:5f:45:94:36:08:a9:4e:f1:64: 22:e6:55:f0:7e:06:b8:1e:ce:34:f7:97:e0:8f:ab: 28:3b:87:ee:41:5c:67:2b:fe:0e:73:70:66:c7:29: 91:74:fa:54:62:c2:e2:d6:db:f1:93:02:0d:bf:a8: d0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2E:B9:7E:23:50:6F:64:53:E1:03:52:60:3B:46:35:93:E6:11:BC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145042.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a958::/32 Signature Algorithm: sha256WithRSAEncryption d9:f5:37:62:c9:49:5b:33:f4:02:39:dc:1c:f9:79:55:20:cc: 7c:72:4e:ad:2b:9f:af:f2:7b:a8:36:33:fd:ab:b5:cb:1d:b0: 65:35:10:e2:a7:d7:43:e7:44:92:76:cc:eb:a2:65:0d:8a:8d: 84:71:2a:b3:1b:90:1f:16:02:04:12:a9:87:be:b3:86:3b:9e: 6f:38:18:ae:bd:d8:1b:bc:43:df:54:48:11:9a:76:93:8c:93: f2:a7:8f:f3:55:d1:a9:1a:09:d1:e4:cc:6c:8b:45:01:71:a3: d8:c9:7a:6f:dd:63:72:82:83:7c:1d:b4:e0:ca:8c:02:f8:86: 54:24:d7:a6:16:23:cd:52:d5:2e:d8:8a:f0:2f:45:20:1b:63: a4:13:26:89:30:c7:b7:20:0a:f6:f5:a2:e6:7d:29:ec:4c:df: d8:e5:e4:11:a6:ea:7e:73:1e:c6:88:bc:f0:ff:1f:84:12:5c: 3c:63:7a:11:b6:ec:1c:89:e9:59:aa:b2:c0:8b:10:24:f4:76: 21:c5:6d:ce:97:bd:42:e9:fa:83:88:60:ad:76:a0:24:1f:58: 49:da:c3:79:e3:b8:94:33:03:03:72:64:54:f9:ae:ca:55:88: 6c:35:46:02:fd:ee:55:eb:d6:bc:e2:c9:25:30:c0:91:0a:9a: bd:9c:ea:a7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGKNWLcMVCBd0HlWO+qAek47Iv+wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ1OVoX DTI3MDMwMzA2MTk1OVowMzExMC8GA1UEAxMoMjAyRUI5N0UyMzUwNkY2NDUzRTEw MzUyNjAzQjQ2MzU5M0U2MTFCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKKj/hiybyMIDEE4E/ag8B7sUdFefGcyqOsYYv6bBL/5yJyhSAN/XoKczcqN vgLF9XTiT6Rcobkjvo0TN/23Y3Ik3FrVVbG905DY//PsM3/bfm01HLRE/5vRwD/m CpXH6hAVAeRJ9p/RyhVnCOZk7JRremwEqlkzf5YN2qXh+a9nEnRdpIB/EBMNqPY9 4rDBFEbG+0aVo4J/jRohDDRRGjsNV2uKgfF6Z0fAObDYJzzjW2JGfvBqDHAN2A6h B3VjAN2vLQmYqxdSX0WUNgipTvFkIuZV8H4GuB7ONPeX4I+rKDuH7kFcZyv+DnNw ZscpkXT6VGLC4tbb8ZMCDb+o0MsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQgLrl+ I1BvZFPhA1JgO0Y1k+YRvDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA0Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qVgwDQYJKoZIhvcNAQELBQADggEBANn1N2LJSVsz9AI53Bz5eVUgzHxyTq0rn6/y e6g2M/2rtcsdsGU1EOKn10PnRJJ2zOuiZQ2KjYRxKrMbkB8WAgQSqYe+s4Y7nm84 GK692Bu8Q99USBGadpOMk/Knj/NV0akaCdHkzGyLRQFxo9jJem/dY3KCg3wdtODK jAL4hlQk16YWI81S1S7YivAvRSAbY6QTJokwx7cgCvb1ouZ9KexM39jl5BGm6n5z HsaIvPD/H4QSXDxjehG27ByJ6VmqssCLECT0diHFbc6XvULp+oOIYK12oCQfWEna w3njuJQzAwNyZFT5rspViGw1RgL97lXr1rziySUwwJEKmr2c6qc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:03 2026 by rpki-client