$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145058.roa File: AS145058.roa (raw, json) Hash identifier: hEMGdTdL+LhcpPTvKk58aNo1lV1rCwzW78ckllI5Fhs= Subject key identifier: 53:44:B0:A3:DC:3E:FF:89:78:1B:18:E1:3A:71:C4:88:08:60:B6:AB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3348F690199942884DB86E5B3B64AE22B9E785B6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145058.roa Signing time: Wed 04 Mar 2026 06:22:35 +0000 ROA not before: Wed 04 Mar 2026 06:17:35 +0000 ROA not after: Wed 03 Mar 2027 06:22:35 +0000 asID: 145058 IP address blocks: 240a:a968::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:48:f6:90:19:99:42:88:4d:b8:6e:5b:3b:64:ae:22:b9:e7:85:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:35 2026 GMT Not After : Mar 3 06:22:35 2027 GMT Subject: CN=5344B0A3DC3EFF89781B18E13A71C4880860B6AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:dc:16:44:d7:3f:2a:e7:6e:2e:fd:92:4d:18: b2:de:77:43:cd:62:d0:dd:b0:90:d9:9a:20:e8:5d: f2:7c:c6:4d:ac:ec:d0:ed:d4:b0:4e:16:1b:03:06: 78:16:12:d5:59:f0:27:4d:d5:16:22:e1:79:d6:76: 67:85:1f:dc:95:21:d6:d0:9f:24:ec:22:19:15:c1: 1a:83:43:1f:06:f2:63:5c:de:3f:9f:03:78:de:49: 74:21:87:ce:eb:76:5f:14:fb:98:70:9f:25:e7:3e: 5e:38:0d:af:e1:dc:de:4b:b2:21:64:ec:78:49:7e: d9:a3:de:4b:13:30:72:09:e2:95:15:d1:ff:e7:24: 1b:6c:bc:5b:86:97:e2:f6:c9:9b:0c:7f:a7:92:8f: 08:fd:b5:46:9e:97:96:82:8b:ca:86:21:13:18:ec: 29:5d:72:3c:f1:d1:79:c7:98:2d:78:27:1e:eb:6e: 5c:5c:92:f4:2f:38:09:61:33:6d:4d:02:07:bd:94: 91:df:6b:fb:78:0a:1d:c6:37:fb:8e:96:35:75:12: b4:63:7e:ee:93:62:0f:db:b1:37:bc:8a:5e:98:d7: 13:9c:5c:27:d1:f2:1a:03:61:fc:07:ee:da:b8:64: 3a:34:9d:9f:be:3b:82:43:2a:40:fe:d8:75:58:40: da:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:44:B0:A3:DC:3E:FF:89:78:1B:18:E1:3A:71:C4:88:08:60:B6:AB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145058.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a968::/32 Signature Algorithm: sha256WithRSAEncryption 1b:cd:19:58:c3:e6:4c:33:2d:21:fd:62:32:a6:a1:72:3b:83: 15:be:b4:7a:85:02:ed:b7:de:0f:9f:34:fa:a5:70:4c:7f:3f: ff:48:ae:bb:02:46:a5:b2:bf:ac:e7:a6:ed:cf:46:c7:5a:a5: b8:bd:86:5a:e0:cf:5c:52:dd:a0:76:ae:13:1c:57:6c:fe:b7: f1:0b:87:37:c4:1b:28:0b:8f:8c:7c:5e:42:6a:f0:62:68:66: 2c:7e:8b:a3:f8:64:0a:2a:dc:ea:c2:99:75:a8:d7:fc:55:97: 0a:6d:90:e0:2f:54:77:67:32:ff:65:07:ea:b6:87:93:09:53: 24:3f:e3:e1:92:31:c7:7e:62:0c:ae:80:38:a6:64:cd:ab:22: f9:22:32:50:f9:bb:9a:24:49:da:11:bb:a8:87:d3:ab:fc:be: e5:0e:10:88:fd:c0:65:99:5f:ac:36:6b:a9:cb:e6:3b:af:9a: d8:79:3a:c4:8e:a6:0d:d1:92:34:95:1b:cc:8f:37:0e:ae:b4: 95:f3:97:96:ea:08:25:8e:41:be:48:bb:3c:a7:9b:ab:a7:8a: 55:8e:46:bb:1f:b9:8c:e1:a7:ce:64:65:9b:28:e4:58:53:81: d0:da:d9:1f:75:c9:ae:93:aa:6a:bd:a3:fd:3f:58:5d:6c:a3: f3:14:ac:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUM0j2kBmZQohNuG5bO2SuIrnnhbYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczNVoX DTI3MDMwMzA2MjIzNVowMzExMC8GA1UEAxMoNTM0NEIwQTNEQzNFRkY4OTc4MUIx OEUxM0E3MUM0ODgwODYwQjZBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOncFkTXPyrnbi79kk0Yst53Q81i0N2wkNmaIOhd8nzGTazs0O3UsE4WGwMG eBYS1VnwJ03VFiLhedZ2Z4Uf3JUh1tCfJOwiGRXBGoNDHwbyY1zeP58DeN5JdCGH zut2XxT7mHCfJec+XjgNr+Hc3kuyIWTseEl+2aPeSxMwcgnilRXR/+ckG2y8W4aX 4vbJmwx/p5KPCP21Rp6XloKLyoYhExjsKV1yPPHReceYLXgnHutuXFyS9C84CWEz bU0CB72Ukd9r+3gKHcY3+46WNXUStGN+7pNiD9uxN7yKXpjXE5xcJ9HyGgNh/Afu 2rhkOjSdn747gkMqQP7YdVhA2p0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRTRLCj 3D7/iXgbGOE6ccSICGC2qzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA1OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qWgwDQYJKoZIhvcNAQELBQADggEBABvNGVjD5kwzLSH9YjKmoXI7gxW+tHqFAu23 3g+fNPqlcEx/P/9IrrsCRqWyv6znpu3PRsdapbi9hlrgz1xS3aB2rhMcV2z+t/EL hzfEGygLj4x8XkJq8GJoZix+i6P4ZAoq3OrCmXWo1/xVlwptkOAvVHdnMv9lB+q2 h5MJUyQ/4+GSMcd+YgyugDimZM2rIvkiMlD5u5okSdoRu6iH06v8vuUOEIj9wGWZ X6w2a6nL5juvmth5OsSOpg3RkjSVG8yPNw6utJXzl5bqCCWOQb5Iuzynm6unilWO RrsfuYzhp85kZZso5FhTgdDa2R91ya6Tqmq9o/0/WF1so/MUrEg= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:05 2026 by rpki-client