$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145107.roa File: AS145107.roa (raw, json) Hash identifier: 3DI/+OdQiZR5OuuCQ1FE4KFtK1Q6t6DbNmMdAOsyUgQ= Subject key identifier: AA:6A:31:07:84:F0:3B:F0:BC:86:02:2F:E5:0E:41:B8:54:42:F3:54 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6E7E4075A0995932789A1812A65788357D43697A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145107.roa Signing time: Wed 04 Mar 2026 06:22:13 +0000 ROA not before: Wed 04 Mar 2026 06:17:13 +0000 ROA not after: Wed 03 Mar 2027 06:22:13 +0000 asID: 145107 IP address blocks: 240a:a999::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:7e:40:75:a0:99:59:32:78:9a:18:12:a6:57:88:35:7d:43:69:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:13 2026 GMT Not After : Mar 3 06:22:13 2027 GMT Subject: CN=AA6A310784F03BF0BC86022FE50E41B85442F354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:20:4f:cd:a3:cf:84:c0:99:d0:4e:9f:28:8a: 23:95:73:85:a7:c2:1b:19:94:6b:53:2a:a8:8c:b5: ed:dd:f1:1b:02:f0:d5:27:11:45:80:87:b1:dd:26: 25:d7:de:ea:d7:6f:37:a5:6b:ff:2f:24:2e:ee:c6: 5e:97:90:69:f1:64:14:be:5d:bf:c2:7f:12:6e:19: b1:b3:6c:c0:4f:3f:9a:19:01:bc:73:07:4e:83:06: 30:f3:86:56:ac:b5:24:a5:dc:10:12:97:02:93:c5: c2:09:75:37:7e:3d:48:69:8b:76:43:ea:14:1b:6f: 1b:34:ca:8a:f9:0c:cf:26:ba:cd:46:38:b6:c4:cd: 3c:7e:d3:f8:32:96:42:50:9f:c7:d2:f7:2e:ed:8a: 37:b5:0c:e4:ac:8f:06:de:4e:7f:0a:76:c7:c7:16: c0:98:9d:bc:88:97:61:fa:87:47:ba:0d:ca:cf:67: c8:d3:22:62:ea:2d:b3:4f:b2:0c:0c:3a:21:ee:d3: 36:33:a9:2d:46:2b:aa:8e:5a:81:57:84:a3:fe:e9: d0:9e:d0:e0:b7:30:22:12:40:b8:3b:7c:7d:f3:cc: eb:f2:ff:75:bf:c3:33:0e:14:0c:97:5c:7e:5b:56: f3:fc:ff:1e:86:27:3e:08:41:fc:a9:d3:34:0c:2a: 08:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:6A:31:07:84:F0:3B:F0:BC:86:02:2F:E5:0E:41:B8:54:42:F3:54 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a999::/32 Signature Algorithm: sha256WithRSAEncryption 9d:4f:54:73:de:a9:69:d1:c5:d6:1c:08:5d:33:cc:5e:f5:8a: 42:fb:a6:7b:14:7c:89:1f:2e:1d:9a:40:e4:2b:27:87:6b:5f: b9:5e:6b:2c:a7:97:2c:b9:6a:46:6f:18:98:3e:4a:da:5c:4a: c4:57:91:fe:b9:90:e2:8b:c7:4a:d4:68:c6:17:5d:67:f4:1f: 14:c2:d2:80:b9:8b:dd:30:eb:10:17:98:e5:2e:c3:90:de:f4: bf:50:7a:d0:8a:d3:ea:91:9d:03:d4:a6:aa:c8:ac:f7:62:bc: c6:64:0d:08:fe:db:cf:36:0b:b5:05:c7:06:f5:4c:08:3b:25: 39:b3:fa:0f:75:c3:ea:be:7e:70:d2:9c:11:82:e0:d9:b3:f0: fa:63:00:d0:b6:fb:7a:84:68:bf:de:fd:d2:4c:56:ee:ee:f1: 6f:ff:fb:b6:0a:86:03:c9:92:7a:1f:33:0e:c1:c6:62:58:d7: 72:5a:1d:77:c1:e1:71:cd:a6:42:97:7f:9a:25:83:07:ff:d0: 75:87:90:af:fd:ac:f4:b6:61:d0:0b:2a:a2:c9:0e:f8:96:44: 47:30:0d:5d:28:fa:f7:69:07:66:60:d5:5d:e9:57:f1:f6:98: 37:27:45:2f:89:ad:19:ba:ae:4f:fd:74:a6:cc:92:ff:52:09: cf:48:6f:cd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbn5AdaCZWTJ4mhgSpleINX1DaXowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcxM1oX DTI3MDMwMzA2MjIxM1owMzExMC8GA1UEAxMoQUE2QTMxMDc4NEYwM0JGMEJDODYw MjJGRTUwRTQxQjg1NDQyRjM1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK8gT82jz4TAmdBOnyiKI5VzhafCGxmUa1MqqIy17d3xGwLw1ScRRYCHsd0m Jdfe6tdvN6Vr/y8kLu7GXpeQafFkFL5dv8J/Em4ZsbNswE8/mhkBvHMHToMGMPOG Vqy1JKXcEBKXApPFwgl1N349SGmLdkPqFBtvGzTKivkMzya6zUY4tsTNPH7T+DKW QlCfx9L3Lu2KN7UM5KyPBt5Ofwp2x8cWwJidvIiXYfqHR7oNys9nyNMiYuots0+y DAw6Ie7TNjOpLUYrqo5agVeEo/7p0J7Q4LcwIhJAuDt8ffPM6/L/db/DMw4UDJdc fltW8/z/HoYnPghB/KnTNAwqCDkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSqajEH hPA78LyGAi/lDkG4VELzVDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTEwNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qZkwDQYJKoZIhvcNAQELBQADggEBAJ1PVHPeqWnRxdYcCF0zzF71ikL7pnsUfIkf Lh2aQOQrJ4drX7leayynlyy5akZvGJg+StpcSsRXkf65kOKLx0rUaMYXXWf0HxTC 0oC5i90w6xAXmOUuw5De9L9QetCK0+qRnQPUpqrIrPdivMZkDQj+2882C7UFxwb1 TAg7JTmz+g91w+q+fnDSnBGC4Nmz8PpjANC2+3qEaL/e/dJMVu7u8W//+7YKhgPJ knofMw7BxmJY13JaHXfB4XHNpkKXf5olgwf/0HWHkK/9rPS2YdALKqLJDviWREcw DV0o+vdpB2Zg1V3pV/H2mDcnRS+JrRm6rk/9dKbMkv9SCc9Ib80= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:39 2026 by rpki-client