$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145076.roa File: AS145076.roa (raw, json) Hash identifier: 2IM7Bgju0lW5uQWUojoUy9hJ6wPwQ8+NpivRcO54E/A= Subject key identifier: 30:EE:9A:48:DB:D7:5B:7C:22:3E:96:63:7F:50:09:01:51:11:03:7D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0E632E675D143CD7F131B6F9BA1985F7453A1659 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145076.roa Signing time: Wed 04 Mar 2026 06:21:30 +0000 ROA not before: Wed 04 Mar 2026 06:16:30 +0000 ROA not after: Wed 03 Mar 2027 06:21:30 +0000 asID: 145076 IP address blocks: 240a:a97a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:63:2e:67:5d:14:3c:d7:f1:31:b6:f9:ba:19:85:f7:45:3a:16:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:30 2026 GMT Not After : Mar 3 06:21:30 2027 GMT Subject: CN=30EE9A48DBD75B7C223E96637F5009015111037D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:29:85:72:19:45:72:41:72:44:9c:2e:80:92: 58:a1:67:2b:53:7c:6d:2a:5a:81:be:cd:c2:01:d5: 5a:e0:5d:13:81:47:b6:72:94:bf:ec:b8:4b:88:ee: 56:d6:2b:ed:a7:57:a1:99:4a:32:71:d1:4f:61:bd: 07:c5:ed:d8:75:53:3f:c3:58:b2:7a:34:5d:0b:f5: 75:05:3b:fa:ef:21:71:7b:e8:8c:15:f6:21:28:d0: 55:d8:97:c9:1f:33:bf:50:6f:a7:f9:01:87:fa:84: 35:64:eb:ff:c1:bb:eb:8f:b8:30:76:cd:48:3f:12: 48:28:f3:ff:30:07:ee:17:3a:cf:c3:4e:0b:f2:69: 70:85:e7:03:d4:45:06:81:b0:53:28:3c:7a:97:03: b3:15:f2:0d:77:5a:b3:c3:37:7c:2e:6a:40:bb:f5: ab:c3:68:9d:63:f8:36:9c:6d:b4:3b:f8:ce:cb:06: d1:6c:3c:ea:83:4c:19:94:1c:f4:05:76:6b:d4:8b: 2e:a0:8a:5c:6b:82:ed:6d:08:15:58:4a:eb:8c:1f: 39:7c:85:17:1d:bd:5e:bd:98:cc:1f:b1:0c:7e:1a: 9b:80:99:99:45:27:c9:f7:94:44:54:57:c4:73:11: e6:bb:b1:f2:e8:2f:51:06:be:90:00:5d:69:95:77: 32:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:EE:9A:48:DB:D7:5B:7C:22:3E:96:63:7F:50:09:01:51:11:03:7D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145076.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a97a::/32 Signature Algorithm: sha256WithRSAEncryption 9f:0c:1c:96:e9:4c:99:00:75:1b:c2:7e:d7:ee:3c:d4:88:39: 85:c9:1d:65:6b:d3:f8:37:81:60:38:4b:19:bd:68:ea:67:c7: 72:b3:69:40:af:72:c8:57:37:c4:7a:29:14:ee:a3:ff:c1:6f: 17:e5:40:06:c6:11:77:99:80:75:61:b5:5c:94:3c:c3:de:f1: f4:da:e0:fe:f4:43:1e:9f:e9:61:a9:27:3a:a1:7b:e9:6a:c8: 7e:ca:29:a4:01:71:8f:d5:0c:23:4e:01:92:24:70:0a:cc:51: 7a:4f:13:8d:4e:b8:b7:b2:3f:30:30:ae:23:3a:e1:e9:46:67: 1d:cc:64:6c:83:d1:b2:6e:62:12:5d:18:a2:bd:9a:08:b3:78: 0b:3c:f7:f4:9e:f8:49:7e:ae:0b:8f:ab:6e:4a:1e:6a:77:1f: 91:fb:a3:a0:fb:7d:cc:08:d7:90:21:5e:bf:ee:e8:30:3f:6e: 4d:94:67:3b:7e:cf:1b:45:ad:f7:8e:36:68:35:b2:1c:88:32: 84:b3:9c:d6:f7:c3:b7:ec:c7:a8:4c:31:e0:da:ea:15:a3:ca: 0f:61:0b:48:88:b2:1e:73:6b:20:6b:06:7e:5d:4d:b1:61:31: e2:f3:56:c9:49:83:29:25:44:9b:ab:3c:bb:8f:91:39:90:39: fd:7a:9c:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDmMuZ10UPNfxMbb5uhmF90U6FlkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYzMFoX DTI3MDMwMzA2MjEzMFowMzExMC8GA1UEAxMoMzBFRTlBNDhEQkQ3NUI3QzIyM0U5 NjYzN0Y1MDA5MDE1MTExMDM3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANsphXIZRXJBckScLoCSWKFnK1N8bSpagb7NwgHVWuBdE4FHtnKUv+y4S4ju VtYr7adXoZlKMnHRT2G9B8Xt2HVTP8NYsno0XQv1dQU7+u8hcXvojBX2ISjQVdiX yR8zv1Bvp/kBh/qENWTr/8G764+4MHbNSD8SSCjz/zAH7hc6z8NOC/JpcIXnA9RF BoGwUyg8epcDsxXyDXdas8M3fC5qQLv1q8NonWP4NpxttDv4zssG0Ww86oNMGZQc 9AV2a9SLLqCKXGuC7W0IFVhK64wfOXyFFx29Xr2YzB+xDH4am4CZmUUnyfeURFRX xHMR5rux8ugvUQa+kABdaZV3MuMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQw7ppI 29dbfCI+lmN/UAkBUREDfTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qXowDQYJKoZIhvcNAQELBQADggEBAJ8MHJbpTJkAdRvCftfuPNSIOYXJHWVr0/g3 gWA4Sxm9aOpnx3KzaUCvcshXN8R6KRTuo//BbxflQAbGEXeZgHVhtVyUPMPe8fTa 4P70Qx6f6WGpJzqhe+lqyH7KKaQBcY/VDCNOAZIkcArMUXpPE41OuLeyPzAwriM6 4elGZx3MZGyD0bJuYhJdGKK9mgizeAs89/Se+El+rguPq25KHmp3H5H7o6D7fcwI 15AhXr/u6DA/bk2UZzt+zxtFrfeONmg1shyIMoSznNb3w7fsx6hMMeDa6hWjyg9h C0iIsh5zayBrBn5dTbFhMeLzVslJgyklRJurPLuPkTmQOf16nII= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:02 2026 by rpki-client