$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145081.roa File: AS145081.roa (raw, json) Hash identifier: sXPdmPH22INaH+pCOUXYcIYO5N4xRjy5NsMmIgx6Yt4= Subject key identifier: 55:77:66:CD:E5:F5:60:76:D7:80:BC:ED:1D:A0:45:E5:EB:BF:26:22 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1D46CC5CC5C82A974B1896E3E5162608B699DA2C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145081.roa Signing time: Wed 04 Mar 2026 06:21:19 +0000 ROA not before: Wed 04 Mar 2026 06:16:19 +0000 ROA not after: Wed 03 Mar 2027 06:21:19 +0000 asID: 145081 IP address blocks: 240a:a97f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:46:cc:5c:c5:c8:2a:97:4b:18:96:e3:e5:16:26:08:b6:99:da:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:19 2026 GMT Not After : Mar 3 06:21:19 2027 GMT Subject: CN=557766CDE5F56076D780BCED1DA045E5EBBF2622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:be:d6:5c:4b:4d:54:3e:63:86:bf:7b:ad:2f: 1c:14:7b:5b:64:56:41:da:b4:86:32:a1:c2:c4:f9: 06:1a:15:ae:a9:83:30:63:05:f1:69:bf:77:5b:0f: 23:d8:ca:74:f6:82:ec:da:49:26:9b:69:ec:3b:52: bd:e5:8a:8d:45:d1:c4:99:9d:fb:20:12:10:de:06: 31:49:85:2b:d4:3c:af:d6:96:33:6d:5c:12:87:67: c9:b6:6c:2e:b0:b4:ba:7e:31:17:12:d3:df:d2:87: 39:3e:ae:65:c0:20:5b:2e:53:4a:72:2a:0c:5e:20: c2:89:07:56:16:7a:91:12:66:47:bc:50:ff:4a:d8: a4:4e:a7:11:1b:f2:ca:5c:16:16:9a:bc:f4:ef:47: 19:35:b0:9d:8f:e1:9b:29:7b:ed:43:e2:d1:97:26: e6:d1:50:7f:60:d0:31:44:ae:0d:d6:89:08:70:66: 66:dd:05:3d:f2:3f:fb:b0:57:f4:c2:2d:0d:00:04: 51:f3:ee:2f:d1:53:e3:ce:54:ec:bd:db:13:9a:05: 81:5b:84:07:80:94:41:d8:04:10:ae:0c:aa:6f:0d: f1:fd:b7:d0:ef:16:b0:50:bf:d3:4d:97:b3:73:6f: 97:cf:c0:de:04:f2:75:8b:91:78:35:a2:03:e6:12: af:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:77:66:CD:E5:F5:60:76:D7:80:BC:ED:1D:A0:45:E5:EB:BF:26:22 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145081.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a97f::/32 Signature Algorithm: sha256WithRSAEncryption ac:3a:4e:b5:0c:4b:b7:34:83:c0:cf:f6:d3:2a:f0:24:0e:03: 93:93:4b:21:bb:a5:4b:86:2b:af:b3:e8:79:d2:fc:d1:3a:3b: eb:68:a7:79:20:96:26:24:16:82:ca:57:57:7c:26:50:fb:b3: 26:20:fe:af:14:85:27:e1:6c:13:f2:e8:4d:01:4c:8d:26:92: 0b:5f:9a:2e:ae:68:1f:f1:fb:98:1c:86:15:c4:2b:84:a7:69: d8:4c:3b:01:02:21:f4:8c:51:bf:9f:7d:aa:b5:d4:27:bb:2c: 5d:ff:64:8d:14:38:48:ea:a0:25:ae:a8:7b:da:0e:c7:93:1c: d6:a1:86:85:e2:3f:3c:b1:6d:36:25:42:81:59:aa:52:e7:13: bb:b1:c4:57:e6:4a:ce:fb:c1:77:09:ea:c8:a1:75:42:c9:a8: 56:25:af:7e:f0:b3:d7:31:0e:a0:ab:13:e5:0e:cf:d6:8d:9b: 2f:db:de:6a:3a:26:3d:eb:f5:6e:9d:5b:5f:99:cc:60:3d:7f: 2d:42:e5:d0:b6:fc:b5:15:0b:81:d2:bc:68:0b:9b:cc:81:59: 2e:4d:80:ef:7a:f8:c6:02:7b:2f:70:42:e4:74:8f:f9:86:0f: af:ee:20:12:59:c7:7e:b9:5c:c4:05:55:7e:b5:46:8e:5e:94: e6:25:01:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHUbMXMXIKpdLGJbj5RYmCLaZ2iwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYxOVoX DTI3MDMwMzA2MjExOVowMzExMC8GA1UEAxMoNTU3NzY2Q0RFNUY1NjA3NkQ3ODBC Q0VEMURBMDQ1RTVFQkJGMjYyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJe+1lxLTVQ+Y4a/e60vHBR7W2RWQdq0hjKhwsT5BhoVrqmDMGMF8Wm/d1sP I9jKdPaC7NpJJptp7DtSveWKjUXRxJmd+yASEN4GMUmFK9Q8r9aWM21cEodnybZs LrC0un4xFxLT39KHOT6uZcAgWy5TSnIqDF4gwokHVhZ6kRJmR7xQ/0rYpE6nERvy ylwWFpq89O9HGTWwnY/hmyl77UPi0Zcm5tFQf2DQMUSuDdaJCHBmZt0FPfI/+7BX 9MItDQAEUfPuL9FT485U7L3bE5oFgVuEB4CUQdgEEK4Mqm8N8f230O8WsFC/002X s3Nvl8/A3gTydYuReDWiA+YSr/8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRVd2bN 5fVgdteAvO0doEXl678mIjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA4MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qX8wDQYJKoZIhvcNAQELBQADggEBAKw6TrUMS7c0g8DP9tMq8CQOA5OTSyG7pUuG K6+z6HnS/NE6O+top3kgliYkFoLKV1d8JlD7syYg/q8UhSfhbBPy6E0BTI0mkgtf mi6uaB/x+5gchhXEK4SnadhMOwECIfSMUb+ffaq11Ce7LF3/ZI0UOEjqoCWuqHva DseTHNahhoXiPzyxbTYlQoFZqlLnE7uxxFfmSs77wXcJ6sihdULJqFYlr37ws9cx DqCrE+UOz9aNmy/b3mo6Jj3r9W6dW1+ZzGA9fy1C5dC2/LUVC4HSvGgLm8yBWS5N gO96+MYCey9wQuR0j/mGD6/uIBJZx365XMQFVX61Ro5elOYlAZM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:38 2026 by rpki-client