$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145130.roa File: AS145130.roa (raw, json) Hash identifier: pYTTtEwN539vdhu6uxAwREMajvM9cKEBcgCfJUTrFwQ= Subject key identifier: FC:6F:A7:2E:C7:1F:96:6D:74:66:DC:4F:B9:BF:0A:0B:45:F3:FC:8A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 767405FCE40603CD48E86803DDA439F50CE2CBCC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145130.roa Signing time: Wed 04 Mar 2026 06:21:02 +0000 ROA not before: Wed 04 Mar 2026 06:16:02 +0000 ROA not after: Wed 03 Mar 2027 06:21:02 +0000 asID: 145130 IP address blocks: 240a:a9b0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:74:05:fc:e4:06:03:cd:48:e8:68:03:dd:a4:39:f5:0c:e2:cb:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:02 2026 GMT Not After : Mar 3 06:21:02 2027 GMT Subject: CN=FC6FA72EC71F966D7466DC4FB9BF0A0B45F3FC8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a7:26:4c:28:a6:02:02:a0:ba:63:c4:da:c2: 99:f2:27:80:7b:66:22:18:3b:13:16:90:39:c0:1a: 97:ad:6c:2a:62:b2:0a:c2:ff:43:38:2f:3f:9c:c6: 8e:32:15:db:5c:4d:a0:f1:75:7d:4d:5d:b4:a8:27: 06:ee:f6:d6:1b:5a:75:4a:2f:66:07:86:38:91:dc: 23:f0:8b:af:04:a0:c1:15:e1:95:bb:0d:59:bf:22: c7:54:9c:61:a8:b0:cd:7e:10:fc:57:32:64:02:38: 16:d1:06:3d:40:99:ea:b0:11:57:fc:8f:01:6b:67: f1:53:47:a0:93:53:3d:75:00:da:d6:e7:9a:14:3b: 7f:76:a9:10:18:8c:9b:fa:73:a9:25:b5:42:02:f4: be:06:76:0a:97:45:ff:ba:1f:13:f2:ca:57:03:08: c0:f4:60:46:27:df:fd:14:49:75:22:cf:65:83:ab: f0:5f:df:3b:37:36:75:a0:39:49:c1:a9:e0:f1:11: 93:2e:93:bd:bc:3c:df:1d:fc:88:96:6e:7e:6a:3d: c2:95:c0:ad:f7:1e:e2:ba:80:e8:4b:55:82:a6:f1: 09:d6:a3:16:bf:81:18:6c:54:30:a2:64:41:82:5c: 9d:11:f4:dd:01:4a:32:ce:34:39:e9:97:2a:79:d9: 7c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6F:A7:2E:C7:1F:96:6D:74:66:DC:4F:B9:BF:0A:0B:45:F3:FC:8A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9b0::/32 Signature Algorithm: sha256WithRSAEncryption ce:df:2c:ea:18:16:06:77:bc:83:74:56:99:e1:6e:68:c0:ac: e2:fe:d1:7e:ec:47:c6:2b:9b:a3:55:b1:3b:5d:0e:74:37:cd: ac:ed:a5:7d:90:1f:42:5d:62:b3:ff:39:a3:00:f6:aa:13:ff: c9:bb:57:7b:0c:77:14:4a:6a:4f:84:f8:79:d5:49:31:66:76: 90:58:ca:81:93:ec:c3:dc:5a:62:ee:06:97:9e:26:59:0d:a6: 0e:71:ad:3d:05:77:a4:1b:e5:f3:15:e6:c8:6f:af:86:a5:61: 7e:2e:4b:00:79:20:1e:4a:48:73:05:44:d9:0d:32:2d:69:66: 49:af:6d:c3:3a:ae:95:59:e2:8e:2e:a4:dc:6d:02:57:f6:6a: 74:3d:af:63:66:df:f7:d7:f2:b6:5c:8e:14:88:ce:f3:5a:e4: 5b:a6:87:c2:07:c8:51:61:52:20:31:24:f0:90:a2:52:b8:75: a3:e8:b8:cb:ac:db:37:df:d4:44:bb:51:b9:cf:e8:a7:46:8a: e3:d0:2f:0c:bb:1d:2d:f4:d3:9b:01:96:f6:69:7c:5a:e1:f7: 27:ee:0c:25:b1:df:1d:f0:d0:96:a1:e9:13:0e:7c:42:08:8a: 92:fe:f7:94:91:c5:ee:6f:33:d9:72:95:c2:c8:5c:65:e4:26: 82:4b:19:4a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdnQF/OQGA81I6GgD3aQ59Qziy8wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwMloX DTI3MDMwMzA2MjEwMlowMzExMC8GA1UEAxMoRkM2RkE3MkVDNzFGOTY2RDc0NjZE QzRGQjlCRjBBMEI0NUYzRkM4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM6nJkwopgICoLpjxNrCmfIngHtmIhg7ExaQOcAal61sKmKyCsL/QzgvP5zG jjIV21xNoPF1fU1dtKgnBu721htadUovZgeGOJHcI/CLrwSgwRXhlbsNWb8ix1Sc YaiwzX4Q/FcyZAI4FtEGPUCZ6rARV/yPAWtn8VNHoJNTPXUA2tbnmhQ7f3apEBiM m/pzqSW1QgL0vgZ2CpdF/7ofE/LKVwMIwPRgRiff/RRJdSLPZYOr8F/fOzc2daA5 ScGp4PERky6Tvbw83x38iJZufmo9wpXArfce4rqA6EtVgqbxCdajFr+BGGxUMKJk QYJcnRH03QFKMs40OemXKnnZfCkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT8b6cu xx+WbXRm3E+5vwoLRfP8ijAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTEzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qbAwDQYJKoZIhvcNAQELBQADggEBAM7fLOoYFgZ3vIN0VpnhbmjArOL+0X7sR8Yr m6NVsTtdDnQ3zaztpX2QH0JdYrP/OaMA9qoT/8m7V3sMdxRKak+E+HnVSTFmdpBY yoGT7MPcWmLuBpeeJlkNpg5xrT0Fd6Qb5fMV5shvr4alYX4uSwB5IB5KSHMFRNkN Mi1pZkmvbcM6rpVZ4o4upNxtAlf2anQ9r2Nm3/fX8rZcjhSIzvNa5Fumh8IHyFFh UiAxJPCQolK4daPouMus2zff1ES7UbnP6KdGiuPQLwy7HS3005sBlvZpfFrh9yfu DCWx3x3w0Jah6RMOfEIIipL+95SRxe5vM9lylcLIXGXkJoJLGUo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:35 2026 by rpki-client