$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145188.roa File: AS145188.roa (raw, json) Hash identifier: kLeGASxAsm8S4GefT5ObNBEc4Cl4b801oJ9vYVuhPxA= Subject key identifier: 2E:59:5D:5F:E2:83:3B:06:33:AA:00:67:93:89:6F:AE:22:E4:A0:8D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4CB793C53E2A7B98B521DCD5A04A9E39C9CC6201 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145188.roa Signing time: Wed 04 Mar 2026 06:20:45 +0000 ROA not before: Wed 04 Mar 2026 06:15:45 +0000 ROA not after: Wed 03 Mar 2027 06:20:45 +0000 asID: 145188 IP address blocks: 240a:a9ea::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:b7:93:c5:3e:2a:7b:98:b5:21:dc:d5:a0:4a:9e:39:c9:cc:62:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:45 2026 GMT Not After : Mar 3 06:20:45 2027 GMT Subject: CN=2E595D5FE2833B0633AA006793896FAE22E4A08D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e8:28:3f:7b:61:ba:b1:3c:3b:4b:8c:e0:d7: bf:5f:19:b6:22:f1:cf:e1:65:e4:ff:cd:4b:a8:e0: 50:1b:a8:f9:68:30:14:a4:64:93:01:fb:92:80:c8: ac:05:2f:80:fd:c2:48:1e:fd:b2:0a:92:25:40:46: 8b:98:de:8b:47:54:61:b1:8c:23:4f:96:8f:80:1a: b1:7c:d3:13:05:03:f7:a2:e9:20:0c:32:02:36:bb: e9:1b:e4:eb:aa:e9:21:bb:bb:16:ed:de:6d:fb:3f: 90:34:5f:b6:64:1e:87:56:a7:84:6a:c0:f9:00:12: a5:8e:dd:84:6b:2e:a2:33:28:31:e3:0f:be:6c:d6: 4e:75:73:1b:08:38:b0:77:1f:d8:21:f7:ce:0b:ed: 7a:97:65:3b:91:dc:8d:b1:60:ed:cb:38:9b:0b:67: 92:0c:0e:bc:d3:d1:dc:1b:dc:4a:ad:7e:3c:4a:96: 36:5f:48:70:44:b1:1b:0e:07:34:eb:78:d7:b0:19: 28:0d:33:0b:8a:1e:fb:cf:e8:ba:11:80:ac:70:bc: b1:5d:ee:7d:e8:8f:bb:3c:8a:5b:24:d1:a0:94:79: c0:9a:ef:5b:18:71:b8:20:f6:2a:e7:5b:c5:bd:26: 52:20:7b:77:01:05:0d:54:37:dc:a9:b9:85:98:84: 21:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:59:5D:5F:E2:83:3B:06:33:AA:00:67:93:89:6F:AE:22:E4:A0:8D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145188.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9ea::/32 Signature Algorithm: sha256WithRSAEncryption 26:a0:60:5b:b5:40:0a:ab:0a:20:5e:08:5d:b5:fb:0f:70:c1: fb:ca:0d:69:01:27:89:2b:5d:4b:1c:8f:8c:6b:17:1e:75:3b: 62:8c:00:20:5e:bd:a1:51:80:8d:39:d9:00:49:11:d0:1e:a9: 5a:ad:b2:00:82:ed:ff:4e:b7:41:58:9e:07:41:cc:fe:df:0f: 42:25:c5:6c:95:f4:77:e9:79:d7:fa:94:fe:36:ca:54:db:1a: 52:a3:dd:56:bc:a0:b3:8f:51:32:09:a7:86:dc:c3:cd:17:21: 79:84:e3:a7:f4:a5:f7:ac:d6:cf:9c:aa:f1:8c:8c:80:ab:ce: fc:c7:8c:68:65:97:b1:ff:8c:7e:d0:b3:02:33:e9:11:5e:2f: b8:bd:bd:de:6c:42:c4:d7:f6:67:d0:2e:c9:98:45:55:1b:c9: 97:99:0b:12:21:e1:71:d4:a1:f0:2d:10:58:52:1b:99:33:02: 2e:f7:6e:30:7c:85:7d:84:fd:fc:95:00:cc:ec:b5:77:cb:6c: b3:c7:be:8b:a2:7e:42:30:14:fa:79:7b:c7:e6:15:d3:2e:4c: dc:ec:7f:88:f1:90:67:b4:cd:a8:86:71:a0:67:58:c0:65:17: dc:ea:44:26:58:17:27:47:98:97:a2:8d:d3:95:92:57:82:31: 0d:20:5c:23 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTLeTxT4qe5i1IdzVoEqeOcnMYgEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0NVoX DTI3MDMwMzA2MjA0NVowMzExMC8GA1UEAxMoMkU1OTVENUZFMjgzM0IwNjMzQUEw MDY3OTM4OTZGQUUyMkU0QTA4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANboKD97YbqxPDtLjODXv18ZtiLxz+Fl5P/NS6jgUBuo+WgwFKRkkwH7koDI rAUvgP3CSB79sgqSJUBGi5jei0dUYbGMI0+Wj4AasXzTEwUD96LpIAwyAja76Rvk 66rpIbu7Fu3ebfs/kDRftmQeh1anhGrA+QASpY7dhGsuojMoMeMPvmzWTnVzGwg4 sHcf2CH3zgvtepdlO5HcjbFg7cs4mwtnkgwOvNPR3BvcSq1+PEqWNl9IcESxGw4H NOt417AZKA0zC4oe+8/ouhGArHC8sV3ufeiPuzyKWyTRoJR5wJrvWxhxuCD2Kudb xb0mUiB7dwEFDVQ33Km5hZiEIbsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQuWV1f 4oM7BjOqAGeTiW+uIuSgjTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE4OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qeowDQYJKoZIhvcNAQELBQADggEBACagYFu1QAqrCiBeCF21+w9wwfvKDWkBJ4kr XUscj4xrFx51O2KMACBevaFRgI052QBJEdAeqVqtsgCC7f9Ot0FYngdBzP7fD0Il xWyV9Hfpedf6lP42ylTbGlKj3Va8oLOPUTIJp4bcw80XIXmE46f0pfes1s+cqvGM jICrzvzHjGhll7H/jH7QswIz6RFeL7i9vd5sQsTX9mfQLsmYRVUbyZeZCxIh4XHU ofAtEFhSG5kzAi73bjB8hX2E/fyVAMzstXfLbLPHvouifkIwFPp5e8fmFdMuTNzs f4jxkGe0zaiGcaBnWMBlF9zqRCZYFydHmJeijdOVkleCMQ0gXCM= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:02 2026 by rpki-client