$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145105.roa File: AS145105.roa (raw, json) Hash identifier: d41M0priyohFhjziTFQhqGHaH5nGI2XuHgSdSoILj7Q= Subject key identifier: 2C:3E:A7:45:6C:CB:26:B1:64:3B:BC:8A:82:E9:95:BB:AA:74:00:DD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5D481C126A222AB4BCAEDEB75E3D4A9C32AC405F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145105.roa Signing time: Wed 04 Mar 2026 06:22:12 +0000 ROA not before: Wed 04 Mar 2026 06:17:12 +0000 ROA not after: Wed 03 Mar 2027 06:22:12 +0000 asID: 145105 IP address blocks: 240a:a997::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:48:1c:12:6a:22:2a:b4:bc:ae:de:b7:5e:3d:4a:9c:32:ac:40:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:12 2026 GMT Not After : Mar 3 06:22:12 2027 GMT Subject: CN=2C3EA7456CCB26B1643BBC8A82E995BBAA7400DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b9:fe:e4:5b:44:82:89:3d:46:fa:e2:3d:67: 28:a4:92:12:92:4f:09:61:68:24:a5:60:84:36:01: f1:57:6a:28:8b:be:7e:5e:76:5b:c8:17:9c:d2:33: 11:56:3a:42:02:bb:26:df:f7:1a:a0:70:4a:75:7a: 11:02:78:f7:1b:85:0d:7e:9f:37:6e:6b:d2:dd:fd: fc:26:e4:53:48:86:e1:14:56:c7:5b:70:dc:d2:4e: a8:92:a8:da:83:aa:ee:1d:95:be:cc:60:e0:86:cd: 04:a9:26:b2:5f:53:48:96:cd:51:0e:d7:1b:5f:50: d1:0a:b8:a9:f2:fd:b5:52:63:4b:8b:cf:a7:a1:03: 2f:76:57:27:33:ba:34:aa:89:ea:c6:b3:21:7a:83: 72:88:69:48:6f:e9:2e:fc:62:57:2d:ec:2f:0a:21: 09:c1:40:84:73:fb:74:df:d4:e0:93:13:c0:df:f3: 65:33:25:fc:30:4a:35:09:f7:26:ad:b2:4a:5c:bb: d7:9a:55:95:d3:be:35:a8:48:65:61:c6:d7:d6:a4: 7e:70:c5:e4:71:fb:25:98:86:2a:0f:2e:01:29:5b: 08:3a:57:4b:ad:9c:3c:88:14:ac:e5:67:3d:e2:50: 0e:71:fa:7c:cc:dd:03:4d:2a:74:01:43:d3:3f:d3: 01:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3E:A7:45:6C:CB:26:B1:64:3B:BC:8A:82:E9:95:BB:AA:74:00:DD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145105.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a997::/32 Signature Algorithm: sha256WithRSAEncryption 09:33:e6:8e:7d:bf:76:cd:bd:90:c7:c1:94:81:81:b6:ce:08: 39:48:ad:ea:d3:b0:1e:e2:b4:2c:cc:c6:4a:ef:af:25:f2:4d: 33:b7:74:ae:ed:83:e8:35:08:2e:05:7d:3c:28:c1:f0:4e:d0: e1:48:0e:c6:c3:a4:a6:c8:ec:81:97:78:d5:6d:f6:93:b4:6e: 8b:b8:7e:70:63:3f:2f:43:40:c6:a5:b1:c8:12:78:a8:e1:fd: 53:5d:7b:ac:30:b7:14:fe:5d:31:8f:d9:2b:a1:2a:1c:57:00: 36:ec:a1:75:2e:28:98:44:9c:63:6b:85:91:c7:0c:a7:08:aa: 10:07:88:1d:a2:42:9b:88:a1:c2:3c:8b:54:25:78:32:e2:c8: 39:78:eb:30:cc:e8:7b:d2:37:ab:4d:5b:02:07:5b:5d:73:64: 50:a0:b0:91:3f:da:ef:bc:71:77:cd:92:8f:eb:10:b1:46:41: 55:1d:0f:ab:ad:5a:dd:bf:31:53:22:a7:45:2f:55:46:c9:4b: e0:10:dd:5c:17:65:12:3f:96:53:e3:a0:45:c5:f4:0c:63:ac: 51:72:37:7d:0d:90:91:3b:f0:3e:7c:12:70:c9:0a:d7:ad:a9: 91:c8:ec:d4:80:44:56:f1:1e:f9:71:d6:28:5f:87:fb:40:bf: c3:a2:ea:a6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXUgcEmoiKrS8rt63Xj1KnDKsQF8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcxMloX DTI3MDMwMzA2MjIxMlowMzExMC8GA1UEAxMoMkMzRUE3NDU2Q0NCMjZCMTY0M0JC QzhBODJFOTk1QkJBQTc0MDBERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMm5/uRbRIKJPUb64j1nKKSSEpJPCWFoJKVghDYB8VdqKIu+fl52W8gXnNIz EVY6QgK7Jt/3GqBwSnV6EQJ49xuFDX6fN25r0t39/CbkU0iG4RRWx1tw3NJOqJKo 2oOq7h2Vvsxg4IbNBKkmsl9TSJbNUQ7XG19Q0Qq4qfL9tVJjS4vPp6EDL3ZXJzO6 NKqJ6sazIXqDcohpSG/pLvxiVy3sLwohCcFAhHP7dN/U4JMTwN/zZTMl/DBKNQn3 Jq2ySly715pVldO+NahIZWHG19akfnDF5HH7JZiGKg8uASlbCDpXS62cPIgUrOVn PeJQDnH6fMzdA00qdAFD0z/TAaUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQsPqdF bMsmsWQ7vIqC6ZW7qnQA3TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTEwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qZcwDQYJKoZIhvcNAQELBQADggEBAAkz5o59v3bNvZDHwZSBgbbOCDlIrerTsB7i tCzMxkrvryXyTTO3dK7tg+g1CC4FfTwowfBO0OFIDsbDpKbI7IGXeNVt9pO0bou4 fnBjPy9DQMalscgSeKjh/VNde6wwtxT+XTGP2SuhKhxXADbsoXUuKJhEnGNrhZHH DKcIqhAHiB2iQpuIocI8i1QleDLiyDl46zDM6HvSN6tNWwIHW11zZFCgsJE/2u+8 cXfNko/rELFGQVUdD6utWt2/MVMip0UvVUbJS+AQ3VwXZRI/llPjoEXF9AxjrFFy N30NkJE78D58EnDJCtetqZHI7NSARFbxHvlx1ihfh/tAv8Oi6qY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:20 2026 by rpki-client