$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145304.roa File: AS145304.roa (raw, json) Hash identifier: xrvxwcDe702yd1PfuEQAzP4qTuMgAG1qQbsQ36fggWI= Subject key identifier: C3:20:B0:D6:0B:66:FE:C6:20:1E:2B:27:75:38:28:AD:A5:85:87:72 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 62AD5169A757819C44DC8C6AB17866B150E50CC3 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145304.roa Signing time: Wed 04 Mar 2026 06:20:43 +0000 ROA not before: Wed 04 Mar 2026 06:15:43 +0000 ROA not after: Wed 03 Mar 2027 06:20:43 +0000 asID: 145304 IP address blocks: 240a:aa5e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ad:51:69:a7:57:81:9c:44:dc:8c:6a:b1:78:66:b1:50:e5:0c:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:43 2026 GMT Not After : Mar 3 06:20:43 2027 GMT Subject: CN=C320B0D60B66FEC6201E2B27753828ADA5858772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:26:27:c5:29:a9:f8:3e:b4:83:18:84:bd: 49:15:b9:39:0b:45:00:3f:33:e0:cc:4e:cb:30:6f: 74:85:67:b4:8f:65:38:c1:2b:ba:55:db:54:19:43: 98:6e:8d:f7:be:5f:a7:cc:0b:45:9a:b9:61:45:0b: ed:f1:d3:f6:d9:25:93:30:8d:46:d6:b6:87:47:bf: eb:07:3e:90:3f:8e:72:a0:3f:02:db:c9:6c:f5:ff: ec:40:34:1a:a2:91:c1:7c:bd:90:33:bb:38:14:ea: d6:f8:55:32:6d:6a:f8:cb:b2:82:0b:26:0d:66:87: 0f:de:12:2b:31:84:59:36:e1:71:b1:a0:1d:3d:d3: 82:72:6b:90:61:f2:6b:63:a3:3f:66:99:cb:fd:ce: e6:15:9b:47:56:39:e8:49:e0:30:bb:6e:c7:a4:ae: e5:4e:26:11:bc:01:1f:b9:0e:31:34:63:e4:ed:e8: 47:02:70:26:63:73:a3:63:31:d0:3b:6b:70:0b:dc: 51:2c:7c:cc:dc:c0:10:83:bd:b6:e7:9d:00:47:98: 43:f2:54:3a:21:99:78:f2:07:00:0a:c4:4a:63:b3: b9:be:ca:f2:a3:6d:0e:11:8a:be:f4:91:10:fb:b0: 42:6a:44:6f:80:ec:d0:4f:8c:f5:7b:59:fd:79:a7: 1f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:20:B0:D6:0B:66:FE:C6:20:1E:2B:27:75:38:28:AD:A5:85:87:72 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa5e::/32 Signature Algorithm: sha256WithRSAEncryption 9f:59:7a:f7:77:3e:d3:c2:39:10:0f:ba:f6:60:ee:23:eb:18: 32:00:c5:4c:39:85:a2:0f:db:2d:5c:9d:14:01:23:45:ce:8a: 64:54:5b:91:17:1c:a3:0b:97:2f:d6:a4:29:78:5c:68:a9:b2: 5c:48:2e:a3:0b:fe:d3:e4:45:5f:d3:72:df:51:1f:48:53:32: 2c:ef:67:fa:76:f5:8e:fd:0a:98:92:af:71:a2:5c:d4:02:e6: a8:1a:f3:3a:ba:08:c5:30:19:50:8f:03:f3:c8:cc:7e:fc:1f: 59:81:28:e7:8e:bb:70:bd:67:97:3c:d2:40:8a:9d:b4:f5:b2: e1:e6:15:e7:85:68:f0:f4:e4:25:4e:8a:fe:7e:37:aa:86:44: 33:f4:32:6a:20:c0:3d:64:cd:25:e6:e6:64:a7:b1:a8:97:65: 2d:d7:bb:4e:fd:af:e2:56:20:a1:67:f6:fc:8d:e9:4e:6b:b6: 0a:05:d1:dd:2b:79:19:e7:34:83:86:6d:4f:5e:5c:c0:78:75: 11:ef:30:c4:4f:93:ad:0b:9a:e2:83:f2:82:11:b7:ad:df:93: 30:1f:91:4c:44:38:f8:88:c7:c6:3a:b1:82:ae:07:e4:ef:93: 36:40:cb:aa:73:57:20:73:82:ab:5e:c6:62:2c:dd:00:a5:83: 68:46:5d:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYq1RaadXgZxE3IxqsXhmsVDlDMMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0M1oX DTI3MDMwMzA2MjA0M1owMzExMC8GA1UEAxMoQzMyMEIwRDYwQjY2RkVDNjIwMUUy QjI3NzUzODI4QURBNTg1ODc3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdnJifFKan4PrSDGIS9SRW5OQtFAD8z4MxOyzBvdIVntI9lOMErulXbVBlD mG6N975fp8wLRZq5YUUL7fHT9tklkzCNRta2h0e/6wc+kD+OcqA/AtvJbPX/7EA0 GqKRwXy9kDO7OBTq1vhVMm1q+MuyggsmDWaHD94SKzGEWTbhcbGgHT3TgnJrkGHy a2OjP2aZy/3O5hWbR1Y56EngMLtux6Su5U4mEbwBH7kOMTRj5O3oRwJwJmNzo2Mx 0DtrcAvcUSx8zNzAEIO9tuedAEeYQ/JUOiGZePIHAArESmOzub7K8qNtDhGKvvSR EPuwQmpEb4Ds0E+M9XtZ/XmnHw0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTDILDW C2b+xiAeKyd1OCitpYWHcjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTMwNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ql4wDQYJKoZIhvcNAQELBQADggEBAJ9Zevd3PtPCORAPuvZg7iPrGDIAxUw5haIP 2y1cnRQBI0XOimRUW5EXHKMLly/WpCl4XGipslxILqML/tPkRV/Tct9RH0hTMizv Z/p29Y79CpiSr3GiXNQC5qga8zq6CMUwGVCPA/PIzH78H1mBKOeOu3C9Z5c80kCK nbT1suHmFeeFaPD05CVOiv5+N6qGRDP0MmogwD1kzSXm5mSnsaiXZS3Xu079r+JW IKFn9vyN6U5rtgoF0d0reRnnNIOGbU9eXMB4dRHvMMRPk60LmuKD8oIRt63fkzAf kUxEOPiIx8Y6sYKuB+TvkzZAy6pzVyBzgqtexmIs3QClg2hGXXs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:05 2026 by rpki-client