$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145310.roa File: AS145310.roa (raw, json) Hash identifier: KtbPd/o7CEi82lN56mB8iBnrBkUu1yYLDisNJeeyycQ= Subject key identifier: 88:33:CE:19:EB:34:EE:31:7F:2C:FC:35:75:58:8C:A1:C1:DA:F6:96 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 24262978A5EDCD96E1C70D827A1E2C6B319A0A1B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145310.roa Signing time: Wed 04 Mar 2026 06:20:06 +0000 ROA not before: Wed 04 Mar 2026 06:15:06 +0000 ROA not after: Wed 03 Mar 2027 06:20:06 +0000 asID: 145310 IP address blocks: 240a:aa64::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:26:29:78:a5:ed:cd:96:e1:c7:0d:82:7a:1e:2c:6b:31:9a:0a:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:06 2026 GMT Not After : Mar 3 06:20:06 2027 GMT Subject: CN=8833CE19EB34EE317F2CFC3575588CA1C1DAF696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:14:bd:22:ee:21:d0:f3:13:e8:17:5f:7b:62: da:39:2c:2d:85:3a:64:e4:dc:f2:1b:58:8f:4d:b6: be:bd:31:6e:aa:b5:c6:52:72:3f:ed:92:83:9f:fe: 10:27:58:29:74:a8:d2:3a:84:e1:f6:c7:23:85:c7: be:c7:e5:a2:54:7b:83:f6:7e:20:51:63:bb:cd:b5: df:0f:d9:e5:f1:78:17:bd:89:0e:d5:56:28:bb:14: 82:b9:4e:78:df:7d:f4:1d:44:96:49:ab:15:43:8e: 0a:60:31:22:43:ba:1e:05:b8:3f:15:b1:47:0d:4c: ac:f6:6d:36:b5:d4:07:01:7c:af:14:8c:33:15:bc: 14:78:b6:24:da:9d:14:fb:d2:b2:08:0a:9c:26:17: de:21:c5:e7:4c:68:f1:98:82:3c:0b:1d:72:75:b2: 53:52:a0:b3:1c:49:a3:a1:47:a7:7d:fa:43:56:0c: d9:52:c0:cf:d1:24:99:a6:68:76:52:85:5f:a1:cd: 0f:02:d0:ca:bb:9b:4f:f8:53:cd:81:cd:ab:67:a8: ec:71:27:24:43:4b:0b:6f:55:e6:24:09:9e:6f:34: 13:ea:16:0c:0b:f8:07:0b:94:81:71:39:68:92:4b: 7b:b4:38:8c:b3:ff:27:08:4f:c9:18:fa:5e:18:2c: 3e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:33:CE:19:EB:34:EE:31:7F:2C:FC:35:75:58:8C:A1:C1:DA:F6:96 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145310.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa64::/32 Signature Algorithm: sha256WithRSAEncryption 83:5f:56:15:c2:00:c6:87:7d:0b:5d:1b:fb:4d:67:74:00:e0: f7:b6:6f:5b:88:68:51:d9:84:44:c9:db:8b:1c:99:e7:e8:d0: 21:c6:5b:16:bf:f7:43:71:41:ff:a6:b5:e9:78:b2:b2:8f:7f: 1a:6e:d4:23:86:72:23:0f:8e:7e:09:37:84:cf:bd:ac:16:a7: df:96:ea:50:46:03:3c:e0:82:f6:c1:a1:3e:81:fb:40:20:5c: 6d:0d:23:b2:f2:71:12:cc:41:4e:4e:11:e2:e6:8d:92:a9:29: 20:6f:a8:ce:29:4d:98:57:38:9e:2f:3c:a7:90:66:e9:20:33: 22:7b:8a:cf:23:39:10:f6:a6:7a:73:0a:47:78:8f:1e:4e:de: 5e:d4:79:3f:dc:96:3e:06:f1:f8:d3:ac:87:bf:37:b3:98:7f: 97:b6:7e:ca:71:22:44:61:de:84:3f:cc:f3:da:5e:30:a5:fe: b5:c5:42:d5:8f:a5:6f:d3:17:ab:49:21:0c:a4:23:cd:6a:6e: 0b:86:95:6d:9e:f2:66:bc:36:5b:3d:0a:55:85:3c:75:3e:ea: f2:87:54:24:10:c4:c8:fd:71:d3:97:d1:f6:cb:26:6f:eb:3b: 46:95:eb:83:cb:ff:6e:f8:04:fe:05:63:4e:94:28:ab:bf:f7: a6:32:37:7e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJCYpeKXtzZbhxw2Ceh4sazGaChswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUwNloX DTI3MDMwMzA2MjAwNlowMzExMC8GA1UEAxMoODgzM0NFMTlFQjM0RUUzMTdGMkNG QzM1NzU1ODhDQTFDMURBRjY5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIUvSLuIdDzE+gXX3ti2jksLYU6ZOTc8htYj022vr0xbqq1xlJyP+2Sg5/+ ECdYKXSo0jqE4fbHI4XHvsflolR7g/Z+IFFju8213w/Z5fF4F72JDtVWKLsUgrlO eN999B1ElkmrFUOOCmAxIkO6HgW4PxWxRw1MrPZtNrXUBwF8rxSMMxW8FHi2JNqd FPvSsggKnCYX3iHF50xo8ZiCPAsdcnWyU1KgsxxJo6FHp336Q1YM2VLAz9EkmaZo dlKFX6HNDwLQyrubT/hTzYHNq2eo7HEnJENLC29V5iQJnm80E+oWDAv4BwuUgXE5 aJJLe7Q4jLP/JwhPyRj6XhgsPkECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSIM84Z 6zTuMX8s/DV1WIyhwdr2ljAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTMxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qmQwDQYJKoZIhvcNAQELBQADggEBAINfVhXCAMaHfQtdG/tNZ3QA4Pe2b1uIaFHZ hETJ24scmefo0CHGWxa/90NxQf+mtel4srKPfxpu1COGciMPjn4JN4TPvawWp9+W 6lBGAzzggvbBoT6B+0AgXG0NI7LycRLMQU5OEeLmjZKpKSBvqM4pTZhXOJ4vPKeQ ZukgMyJ7is8jORD2pnpzCkd4jx5O3l7UeT/clj4G8fjTrIe/N7OYf5e2fspxIkRh 3oQ/zPPaXjCl/rXFQtWPpW/TF6tJIQykI81qbguGlW2e8ma8Nls9ClWFPHU+6vKH VCQQxMj9cdOX0fbLJm/rO0aV64PL/274BP4FY06UKKu/96YyN34= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:33 2026 by rpki-client