$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145197.roa File: AS145197.roa (raw, json) Hash identifier: /+R/uPJlc64gq6t9q60SQPrsr+HdUkgvLelswohOeXs= Subject key identifier: 93:86:11:90:72:AF:F8:D4:01:9A:E9:76:DF:99:5C:48:2D:FB:EF:8E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 780914F3A7A7A92F41AF5BB4629ADFB87FF25434 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145197.roa Signing time: Wed 04 Mar 2026 06:21:02 +0000 ROA not before: Wed 04 Mar 2026 06:16:02 +0000 ROA not after: Wed 03 Mar 2027 06:21:02 +0000 asID: 145197 IP address blocks: 240a:a9f3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:09:14:f3:a7:a7:a9:2f:41:af:5b:b4:62:9a:df:b8:7f:f2:54:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:02 2026 GMT Not After : Mar 3 06:21:02 2027 GMT Subject: CN=9386119072AFF8D4019AE976DF995C482DFBEF8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f5:d1:0e:ec:ca:90:92:f2:b4:ab:f6:3f:b9: d0:b8:1f:6a:62:76:35:8c:93:a4:cd:a0:fe:89:09: 24:2c:7b:15:52:df:5f:97:4e:9d:29:f5:e9:42:96: 4a:27:ef:1a:d2:64:02:4d:87:3e:2f:2b:99:66:bc: ca:ec:8a:d1:01:4b:04:e0:23:87:6a:f2:72:ce:8c: de:f8:1a:19:21:83:85:42:b5:a3:74:bb:a3:77:7e: 73:9d:e7:e1:ff:07:8e:21:16:61:15:de:1b:1b:81: e3:5b:30:48:d7:9d:9f:9e:f4:f3:88:fa:d6:ed:76: e7:0f:d4:6f:58:4d:5c:a4:c0:5f:b2:26:23:be:59: d7:f8:5c:c8:cf:09:71:4b:0a:6e:c4:25:1c:cb:08: 03:fc:c7:fb:17:cf:b7:f8:09:b8:eb:ad:e4:f7:90: 30:80:45:aa:82:32:17:e0:d2:b5:d7:1e:48:2a:c8: db:41:e0:ff:5a:40:65:e5:e6:d9:0a:79:1e:32:cd: 41:11:49:d8:36:10:f3:89:1c:fd:19:c3:5f:c1:8d: f6:c9:f6:fd:10:81:1b:b6:31:5f:c4:64:8b:b6:19: a9:62:8b:07:f0:c9:ba:49:f4:8d:8d:51:f2:e1:bf: bf:54:73:9b:c9:7e:fd:65:b3:2b:a0:37:e7:6e:e2: 9c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:86:11:90:72:AF:F8:D4:01:9A:E9:76:DF:99:5C:48:2D:FB:EF:8E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145197.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9f3::/32 Signature Algorithm: sha256WithRSAEncryption 56:43:66:f4:06:cb:2b:7d:60:c8:1d:5a:7e:59:2c:14:64:cb: 44:8c:5c:e5:22:40:58:c1:a4:11:7d:6c:e0:1d:68:78:bf:64: 80:c5:13:82:33:66:eb:1f:26:6c:82:51:34:37:8f:9a:d8:41: f3:70:34:2b:ba:60:44:bb:cb:63:dd:5a:27:51:0e:82:6f:cf: 22:a5:56:96:00:47:03:94:ec:ff:e9:c4:d6:9f:1f:ee:68:db: 9f:a1:29:03:11:12:03:af:8b:b7:b5:36:55:2f:cd:66:82:ac: dd:2a:d1:f7:76:d5:b8:5c:2f:8f:d8:cb:f4:e7:17:e5:40:c9: 52:f8:b3:4c:84:a4:3e:ea:ec:8b:e7:a7:1a:f5:9c:ca:2a:44: 73:ad:6b:fd:a7:29:42:c3:55:c2:15:2f:6d:9c:c8:94:5d:45: 06:10:e4:df:bb:ce:3e:e4:20:00:8f:ad:20:a3:84:e1:3f:8d: a6:8d:52:81:87:9d:d7:f7:ce:bf:5f:6c:da:a5:f3:7d:fe:ad: 7a:5f:29:78:cb:4e:96:0e:9d:ab:e6:f4:10:99:d2:6b:99:a6: 65:5b:1f:4c:be:a9:81:f6:9d:c2:81:96:81:fe:45:9d:7c:75: d6:2b:06:eb:77:9f:47:59:7e:b2:45:fb:93:3a:f0:3c:de:99: 9b:e7:9c:16 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUeAkU86enqS9Br1u0YprfuH/yVDQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwMloX DTI3MDMwMzA2MjEwMlowMzExMC8GA1UEAxMoOTM4NjExOTA3MkFGRjhENDAxOUFF OTc2REY5OTVDNDgyREZCRUY4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/10Q7sypCS8rSr9j+50LgfamJ2NYyTpM2g/okJJCx7FVLfX5dOnSn16UKW SifvGtJkAk2HPi8rmWa8yuyK0QFLBOAjh2rycs6M3vgaGSGDhUK1o3S7o3d+c53n 4f8HjiEWYRXeGxuB41swSNedn57084j61u125w/Ub1hNXKTAX7ImI75Z1/hcyM8J cUsKbsQlHMsIA/zH+xfPt/gJuOut5PeQMIBFqoIyF+DStdceSCrI20Hg/1pAZeXm 2Qp5HjLNQRFJ2DYQ84kc/RnDX8GN9sn2/RCBG7YxX8Rki7YZqWKLB/DJukn0jY1R 8uG/v1Rzm8l+/WWzK6A3527inL0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSThhGQ cq/41AGa6XbfmVxILfvvjjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE5Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qfMwDQYJKoZIhvcNAQELBQADggEBAFZDZvQGyyt9YMgdWn5ZLBRky0SMXOUiQFjB pBF9bOAdaHi/ZIDFE4IzZusfJmyCUTQ3j5rYQfNwNCu6YES7y2PdWidRDoJvzyKl VpYARwOU7P/pxNafH+5o25+hKQMREgOvi7e1NlUvzWaCrN0q0fd21bhcL4/Yy/Tn F+VAyVL4s0yEpD7q7Ivnpxr1nMoqRHOta/2nKULDVcIVL22cyJRdRQYQ5N+7zj7k IACPrSCjhOE/jaaNUoGHndf3zr9fbNql833+rXpfKXjLTpYOnavm9BCZ0muZpmVb H0y+qYH2ncKBloH+RZ18ddYrBut3n0dZfrJF+5M68DzemZvnnBY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:28 2026 by rpki-client