$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145112.roa File: AS145112.roa (raw, json) Hash identifier: IsYnPJ1HOPFqeJziMEUrwYUxumlA9dOKSwmFQJe8ibM= Subject key identifier: 4F:80:EA:B5:03:86:AA:E1:31:55:6C:E5:D6:E4:88:19:72:79:48:CA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7543DFE5707AC053B2405F101817EE1676B635C0 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145112.roa Signing time: Wed 04 Mar 2026 06:21:45 +0000 ROA not before: Wed 04 Mar 2026 06:16:45 +0000 ROA not after: Wed 03 Mar 2027 06:21:45 +0000 asID: 145112 IP address blocks: 240a:a99e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:43:df:e5:70:7a:c0:53:b2:40:5f:10:18:17:ee:16:76:b6:35:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:45 2026 GMT Not After : Mar 3 06:21:45 2027 GMT Subject: CN=4F80EAB50386AAE131556CE5D6E48819727948CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b5:6f:3b:d2:28:b5:8a:30:ad:cf:f7:bc:72: b0:56:9b:f4:3f:dc:62:d3:51:ab:18:3b:bb:61:09: c5:ba:15:fa:80:78:59:b4:09:9f:fd:0e:d9:66:4e: 18:53:1d:8e:3c:e9:57:fa:7a:04:46:dd:2d:3e:1b: 90:58:00:a5:06:d4:38:6f:7d:d1:a0:d5:5e:b6:d4: 01:a5:f4:16:6a:9f:e4:5d:7e:5e:ea:bc:61:d8:09: 29:db:a6:ce:ab:40:86:d1:e5:11:e2:23:6a:cf:2c: 0f:54:f5:13:42:d6:d6:2b:3f:e6:72:08:30:f7:5a: a0:d0:b6:32:e1:f2:6f:fd:3a:c6:ff:9e:e8:8e:2a: dc:21:08:a9:67:fe:46:49:27:7c:33:33:33:c6:d5: 36:32:ae:4d:a5:83:58:9b:82:96:35:02:87:45:2a: 64:1f:ae:9b:be:16:93:cb:e7:b7:d9:c9:dc:a6:a7: 3a:ec:a9:73:e5:a7:93:25:8b:1c:bc:e2:f7:2a:cf: 64:d7:a3:70:69:80:ee:c7:f8:19:2d:4b:b4:1d:49: 1b:ef:2c:cb:0a:85:48:d2:73:23:12:1f:ac:a5:92: 82:27:6b:ba:18:72:bf:0d:59:90:4c:da:f2:79:12: ef:49:d8:c0:54:06:89:71:46:92:2c:b8:4d:99:51: 58:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:80:EA:B5:03:86:AA:E1:31:55:6C:E5:D6:E4:88:19:72:79:48:CA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145112.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a99e::/32 Signature Algorithm: sha256WithRSAEncryption 67:20:1b:53:45:5b:f4:78:a0:5b:73:6f:a4:1a:44:4f:26:3a: 5f:6a:8b:8c:a7:54:06:56:2f:eb:87:c9:6a:2b:fc:28:41:3a: 31:07:73:6a:1f:70:b9:40:cc:a2:4a:59:9e:e4:75:f6:82:ef: 7a:1a:ab:79:d7:82:14:bf:fb:9a:bc:07:19:8b:35:28:4f:1e: 27:ee:02:73:a5:02:fb:41:b1:a4:e6:b5:c5:03:fd:46:98:1a: bc:e7:a1:0a:bc:e4:bf:42:4f:43:0a:e2:7f:fb:14:e6:db:bf: 91:a2:b2:94:b1:f9:4d:d2:2d:bf:71:43:3b:9a:4a:05:14:c3: 3c:94:3a:e0:e4:70:01:df:3e:de:1e:ed:56:9e:75:67:50:ec: 7c:2f:17:ed:00:3c:2d:11:18:55:77:0f:88:27:3c:78:61:42: 95:1a:16:b3:fa:07:08:ab:54:54:1b:e1:ce:46:57:95:a7:e4: 92:d9:de:f8:18:05:9f:00:a9:ad:1e:30:61:29:26:5d:8e:41: 76:c1:fa:1f:79:2e:2b:0e:d4:cf:0c:70:8f:fa:38:f1:e8:71: c7:17:c6:ef:05:ec:06:d7:1f:98:15:1b:1b:f0:03:72:9a:f8: 55:f8:35:90:64:22:15:4a:6f:8a:c3:75:77:cd:74:fa:08:93: 4f:bb:fd:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdUPf5XB6wFOyQF8QGBfuFna2NcAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0NVoX DTI3MDMwMzA2MjE0NVowMzExMC8GA1UEAxMoNEY4MEVBQjUwMzg2QUFFMTMxNTU2 Q0U1RDZFNDg4MTk3Mjc5NDhDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKa1bzvSKLWKMK3P97xysFab9D/cYtNRqxg7u2EJxboV+oB4WbQJn/0O2WZO GFMdjjzpV/p6BEbdLT4bkFgApQbUOG990aDVXrbUAaX0Fmqf5F1+Xuq8YdgJKdum zqtAhtHlEeIjas8sD1T1E0LW1is/5nIIMPdaoNC2MuHyb/06xv+e6I4q3CEIqWf+ RkknfDMzM8bVNjKuTaWDWJuCljUCh0UqZB+um74Wk8vnt9nJ3KanOuypc+WnkyWL HLzi9yrPZNejcGmA7sf4GS1LtB1JG+8sywqFSNJzIxIfrKWSgidruhhyvw1ZkEza 8nkS70nYwFQGiXFGkiy4TZlRWIUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRPgOq1 A4aq4TFVbOXW5IgZcnlIyjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTExMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qZ4wDQYJKoZIhvcNAQELBQADggEBAGcgG1NFW/R4oFtzb6QaRE8mOl9qi4ynVAZW L+uHyWor/ChBOjEHc2ofcLlAzKJKWZ7kdfaC73oaq3nXghS/+5q8BxmLNShPHifu AnOlAvtBsaTmtcUD/UaYGrznoQq85L9CT0MK4n/7FObbv5GispSx+U3SLb9xQzua SgUUwzyUOuDkcAHfPt4e7VaedWdQ7HwvF+0APC0RGFV3D4gnPHhhQpUaFrP6Bwir VFQb4c5GV5Wn5JLZ3vgYBZ8Aqa0eMGEpJl2OQXbB+h95LisO1M8McI/6OPHocccX xu8F7AbXH5gVGxvwA3Ka+FX4NZBkIhVKb4rDdXfNdPoIk0+7/RA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:47 2026 by rpki-client