$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145056.roa File: AS145056.roa (raw, json) Hash identifier: kQtIEecpGbZ42eXIDDJg/WxOWslK/UrFCthTLDc+jAQ= Subject key identifier: 6A:21:CB:A6:73:BD:90:A9:E2:DC:D7:53:BB:8A:F4:23:1A:3A:CA:D2 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5F7BA126125E804035A83268585511760A6205C5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145056.roa Signing time: Wed 04 Mar 2026 06:19:24 +0000 ROA not before: Wed 04 Mar 2026 06:14:24 +0000 ROA not after: Wed 03 Mar 2027 06:19:24 +0000 asID: 145056 IP address blocks: 240a:a966::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7b:a1:26:12:5e:80:40:35:a8:32:68:58:55:11:76:0a:62:05:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:24 2026 GMT Not After : Mar 3 06:19:24 2027 GMT Subject: CN=6A21CBA673BD90A9E2DCD753BB8AF4231A3ACAD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:81:70:7d:6f:e2:38:1f:5d:c6:7b:83:08:e2: c2:e9:d4:50:f3:9c:01:97:80:03:9e:d9:5b:eb:93: 74:a4:38:6d:8e:4e:0c:f6:69:93:cc:e4:58:48:ff: 14:dc:6d:ec:48:1a:2b:43:53:01:d8:5b:31:db:82: 37:42:e1:89:d2:32:8c:5a:ee:86:7f:e2:c7:59:6e: 16:67:98:7b:74:ba:68:8d:69:a4:bf:f9:97:fc:25: 8d:df:92:75:48:b5:25:73:75:d3:0d:34:55:43:08: 26:da:ae:7e:bf:53:16:97:cc:bf:df:38:e9:78:e0: 16:31:fc:0f:a0:8d:23:5e:f7:cd:65:49:e1:79:4f: dd:19:1e:9b:9e:dd:cb:71:86:aa:1b:b0:93:3f:b6: 17:aa:36:42:4f:6b:3b:1d:05:ea:ed:92:a3:4e:42: b3:8f:62:c0:fc:f0:be:0c:3d:48:94:5a:89:dc:c5: d8:fa:9c:16:25:8b:9b:57:9c:0f:ac:93:8e:3d:51: 2b:ad:bf:60:24:d7:40:20:12:06:ba:62:ec:b6:d9: 3f:a2:50:5c:2b:00:eb:ea:c0:24:58:9f:b6:69:af: e4:d7:ce:b9:2c:cd:02:5b:48:cc:5c:07:3e:b0:e3: 68:57:ad:d7:dc:61:1b:34:5d:f0:95:a9:0b:81:29: a0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:21:CB:A6:73:BD:90:A9:E2:DC:D7:53:BB:8A:F4:23:1A:3A:CA:D2 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a966::/32 Signature Algorithm: sha256WithRSAEncryption 04:ef:58:57:17:91:a6:a8:f4:87:e1:7b:e8:6e:46:4d:10:ba: a1:e1:f2:22:18:f2:9b:67:bd:0d:f7:3c:99:a9:8f:dc:d3:75: ac:37:f8:2e:18:36:9c:b6:ec:2c:c8:ba:da:d4:70:ae:aa:66: da:45:cb:70:d1:8d:00:1f:4c:99:7d:d3:bf:4b:d0:93:fc:d5: 3f:97:d3:68:8c:50:e2:74:4e:73:25:1a:bf:e3:1d:47:a2:27: c6:3f:04:dd:31:76:5b:ee:ae:e9:52:00:90:33:e9:34:9d:be: a8:28:12:72:97:89:90:04:1a:b2:4a:f8:4d:76:6b:32:18:13: 11:b6:77:c8:8d:42:25:3e:42:5e:0f:9e:07:02:eb:f8:04:95: 17:fa:38:ad:bb:1d:3e:c3:f0:a4:0e:c2:e1:bb:f7:f4:05:bf: 38:c3:99:89:1f:9c:41:b9:0b:a4:68:bb:b5:61:6f:8e:71:60: 5c:b6:84:ce:7d:e7:23:b7:fb:55:38:5c:a5:b3:12:c8:bf:7e: 38:88:bf:05:ca:64:7f:a4:24:2c:31:c4:f4:54:d7:7b:c5:e8: f5:2e:09:81:d5:e9:c8:16:37:29:db:a5:27:69:59:fe:31:e3: 6c:58:19:6a:9d:10:0c:85:d8:ff:01:44:16:7e:bf:84:7d:33: 15:d4:c5:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUX3uhJhJegEA1qDJoWFURdgpiBcUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQyNFoX DTI3MDMwMzA2MTkyNFowMzExMC8GA1UEAxMoNkEyMUNCQTY3M0JEOTBBOUUyRENE NzUzQkI4QUY0MjMxQTNBQ0FEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKyBcH1v4jgfXcZ7gwjiwunUUPOcAZeAA57ZW+uTdKQ4bY5ODPZpk8zkWEj/ FNxt7EgaK0NTAdhbMduCN0LhidIyjFruhn/ix1luFmeYe3S6aI1ppL/5l/wljd+S dUi1JXN10w00VUMIJtqufr9TFpfMv9846XjgFjH8D6CNI173zWVJ4XlP3Rkem57d y3GGqhuwkz+2F6o2Qk9rOx0F6u2So05Cs49iwPzwvgw9SJRaidzF2PqcFiWLm1ec D6yTjj1RK62/YCTXQCASBrpi7LbZP6JQXCsA6+rAJFiftmmv5NfOuSzNAltIzFwH PrDjaFet19xhGzRd8JWpC4EpoEMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRqIcum c72QqeLc11O7ivQjGjrK0jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA1Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qWYwDQYJKoZIhvcNAQELBQADggEBAATvWFcXkaao9Ifhe+huRk0QuqHh8iIY8ptn vQ33PJmpj9zTdaw3+C4YNpy27CzIutrUcK6qZtpFy3DRjQAfTJl9079L0JP81T+X 02iMUOJ0TnMlGr/jHUeiJ8Y/BN0xdlvurulSAJAz6TSdvqgoEnKXiZAEGrJK+E12 azIYExG2d8iNQiU+Ql4PngcC6/gElRf6OK27HT7D8KQOwuG79/QFvzjDmYkfnEG5 C6Rou7Vhb45xYFy2hM595yO3+1U4XKWzEsi/fjiIvwXKZH+kJCwxxPRU13vF6PUu CYHV6cgWNynbpSdpWf4x42xYGWqdEAyF2P8BRBZ+v4R9MxXUxbQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:20 2026 by rpki-client