$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145178.roa File: AS145178.roa (raw, json) Hash identifier: pe66h5U/LxnUq7BIzLreHbaRGGEH7LXqJ/8RGvyHnnE= Subject key identifier: 40:FB:C5:58:93:27:84:C3:2C:7B:27:81:E4:B1:1A:4B:F4:BC:31:E1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3A5CDF00294CABAF5BA1E707585B8B04FAF63020 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145178.roa Signing time: Wed 04 Mar 2026 06:21:50 +0000 ROA not before: Wed 04 Mar 2026 06:16:50 +0000 ROA not after: Wed 03 Mar 2027 06:21:50 +0000 asID: 145178 IP address blocks: 240a:a9e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5c:df:00:29:4c:ab:af:5b:a1:e7:07:58:5b:8b:04:fa:f6:30:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:50 2026 GMT Not After : Mar 3 06:21:50 2027 GMT Subject: CN=40FBC558932784C32C7B2781E4B11A4BF4BC31E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b3:23:7d:19:b7:ad:27:77:4b:f8:b9:1a:77: b2:c2:13:7b:c3:e0:ec:cc:fa:98:82:2a:42:f1:e0: 90:91:6f:c7:11:cc:33:f8:b5:75:1d:c7:18:d7:48: 98:22:65:79:22:dd:c1:27:16:cb:09:8b:7d:f9:ea: 26:5b:87:51:50:49:69:ee:1a:64:ab:cd:fb:f1:e0: 50:99:e3:89:69:34:cf:2e:fd:c0:77:c1:72:ec:00: f0:b4:da:d9:e6:d4:db:f6:f4:dd:7f:db:e0:32:e0: 8b:3b:c0:49:5e:af:8c:1c:3c:ab:9e:25:ea:88:5a: 65:27:43:24:4a:82:ac:4f:32:72:06:07:02:50:44: 3f:28:aa:93:85:76:dd:04:8a:d8:c0:99:06:65:63: 76:4b:25:57:67:82:fc:52:5f:38:3e:7e:fb:2d:52: 94:53:d2:94:36:1a:55:d1:1e:9f:8a:d0:4d:8d:9a: 33:bb:11:da:b0:56:20:a9:25:d3:4f:dd:94:cd:4e: da:b0:b3:13:f9:b3:25:e3:a9:2c:06:07:a5:f1:a3: 8b:ea:e3:d6:6b:0f:ee:30:71:1c:a3:99:a1:4c:d5: 4e:31:09:e0:3f:bf:0b:cb:ff:d7:02:3f:3f:98:4d: fb:7d:4b:6b:9f:81:05:44:eb:8f:d6:a6:52:40:fa: 60:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FB:C5:58:93:27:84:C3:2C:7B:27:81:E4:B1:1A:4B:F4:BC:31:E1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145178.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9e0::/32 Signature Algorithm: sha256WithRSAEncryption af:4b:6c:e6:74:e2:20:74:15:e9:6d:8b:55:b9:ea:c9:95:ef: d4:f7:cd:af:bd:f6:70:46:3a:7f:5d:30:28:0e:66:bb:83:d6: 65:10:05:8f:da:83:35:7b:2a:58:6a:8b:a7:5c:f6:9d:ee:9b: 7a:43:85:cd:be:da:28:9a:be:1c:ab:c6:62:8f:96:6f:32:30: 2e:73:ea:9f:1e:b2:fb:33:73:c1:2c:75:84:74:6d:46:37:42: 49:04:cf:8c:0d:e3:b4:1b:d2:fd:2e:74:0c:7d:00:b5:91:2c: 73:ce:92:9f:12:93:b0:6b:64:d5:69:29:be:19:6e:3d:5b:ef: a1:14:23:24:b9:4d:ad:ec:3e:f6:92:ea:b3:f2:18:58:68:8b: 9d:98:92:bc:73:f4:72:c7:50:3e:25:de:b0:9b:4c:5d:69:31: a4:98:5a:e6:6a:6e:76:3b:59:4b:be:c2:a8:fd:f0:32:52:b2: 68:3d:6e:79:76:de:da:88:80:bc:46:ad:a2:9c:c0:fd:d4:dd: f9:84:02:a5:b9:88:9e:05:aa:c4:87:62:35:fb:d7:fc:db:68: fd:45:04:19:75:20:58:13:46:36:1c:25:24:bc:64:dc:4f:50: 8e:b2:84:e1:8d:45:da:c6:8f:d5:7f:75:25:ff:ef:dc:61:cc: 6d:d0:d1:58 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOlzfAClMq69boecHWFuLBPr2MCAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1MFoX DTI3MDMwMzA2MjE1MFowMzExMC8GA1UEAxMoNDBGQkM1NTg5MzI3ODRDMzJDN0Iy NzgxRTRCMTFBNEJGNEJDMzFFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmzI30Zt60nd0v4uRp3ssITe8Pg7Mz6mIIqQvHgkJFvxxHMM/i1dR3HGNdI mCJleSLdwScWywmLffnqJluHUVBJae4aZKvN+/HgUJnjiWk0zy79wHfBcuwA8LTa 2ebU2/b03X/b4DLgizvASV6vjBw8q54l6ohaZSdDJEqCrE8ycgYHAlBEPyiqk4V2 3QSK2MCZBmVjdkslV2eC/FJfOD5++y1SlFPSlDYaVdEen4rQTY2aM7sR2rBWIKkl 00/dlM1O2rCzE/mzJeOpLAYHpfGji+rj1msP7jBxHKOZoUzVTjEJ4D+/C8v/1wI/ P5hN+31La5+BBUTrj9amUkD6YOsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRA+8VY kyeEwyx7J4HksRpL9Lwx4TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE3OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qeAwDQYJKoZIhvcNAQELBQADggEBAK9LbOZ04iB0Felti1W56smV79T3za+99nBG On9dMCgOZruD1mUQBY/agzV7Klhqi6dc9p3um3pDhc2+2iiavhyrxmKPlm8yMC5z 6p8esvszc8EsdYR0bUY3QkkEz4wN47Qb0v0udAx9ALWRLHPOkp8Sk7BrZNVpKb4Z bj1b76EUIyS5Ta3sPvaS6rPyGFhoi52Ykrxz9HLHUD4l3rCbTF1pMaSYWuZqbnY7 WUu+wqj98DJSsmg9bnl23tqIgLxGraKcwP3U3fmEAqW5iJ4FqsSHYjX71/zbaP1F BBl1IFgTRjYcJSS8ZNxPUI6yhOGNRdrGj9V/dSX/79xhzG3Q0Vg= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:35 2026 by rpki-client