$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145316.roa File: AS145316.roa (raw, json) Hash identifier: Jj95sL1PLOcl/nWdFduR1QpPIRzEGWFCsEN5VsovSwU= Subject key identifier: 5E:23:B0:CB:AA:F2:B6:E7:3C:2B:66:19:90:9B:77:79:41:2E:04:53 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4C537B388300012CDDF96EFA830107CE20B78C4D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145316.roa Signing time: Wed 04 Mar 2026 06:19:36 +0000 ROA not before: Wed 04 Mar 2026 06:14:36 +0000 ROA not after: Wed 03 Mar 2027 06:19:36 +0000 asID: 145316 IP address blocks: 240a:aa6a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:53:7b:38:83:00:01:2c:dd:f9:6e:fa:83:01:07:ce:20:b7:8c:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:36 2026 GMT Not After : Mar 3 06:19:36 2027 GMT Subject: CN=5E23B0CBAAF2B6E73C2B6619909B7779412E0453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ce:91:df:f8:0f:0d:d9:83:b8:42:7e:3e:31: 0d:99:56:84:b1:54:72:b9:ec:82:96:17:76:50:e1: 94:23:c6:44:b7:6c:10:9e:4b:f1:8b:06:bb:a4:7c: 51:46:a8:86:0d:1f:85:fe:3b:bc:a1:c6:ff:58:57: bd:7d:02:c3:d4:e6:0d:56:f8:61:bc:5c:4a:7b:4c: eb:36:7d:24:42:b9:a2:cd:0a:73:ea:4f:85:09:00: b9:56:28:65:b6:41:34:e5:05:49:ce:01:c0:83:8c: c3:a0:e8:f4:29:1e:c9:be:60:0e:69:99:07:ac:3f: b6:b3:c2:70:f1:7a:fd:c7:fd:b7:11:2d:04:eb:11: d5:55:7e:12:a0:73:f7:bd:bc:cd:85:a5:f0:f7:0a: 2a:c3:6e:f9:1d:20:cd:a0:3e:66:1e:18:a0:85:e9: b1:8b:69:b8:42:5f:9e:47:38:6f:35:e7:e8:06:71: f0:d8:72:be:97:f6:fd:a2:8c:e2:96:82:af:55:b5: 57:bc:60:05:ea:f9:03:e7:16:87:d8:3a:36:3d:ce: 5d:54:dd:80:64:b7:0d:b5:08:ba:5b:ee:fd:11:f2: 57:f6:55:4a:83:bf:2e:c7:82:7b:94:2c:a6:d1:25: 6c:b2:a5:5e:ac:18:5f:4b:7f:fb:02:1a:a5:fd:d7: ef:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:23:B0:CB:AA:F2:B6:E7:3C:2B:66:19:90:9B:77:79:41:2E:04:53 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145316.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa6a::/32 Signature Algorithm: sha256WithRSAEncryption 26:54:51:93:c7:8e:98:ac:5a:47:84:af:0d:68:79:24:3b:37: 0e:b1:25:28:f4:15:07:68:b1:af:16:63:ee:64:90:e6:4d:89: 6d:77:52:e5:8a:f5:94:44:0d:9a:b3:36:37:9d:2c:c1:55:a4: 07:4b:0b:0d:b7:2c:fd:01:3f:e7:a4:bb:ae:3d:ed:0c:e5:0b: 03:a9:5b:40:6b:ed:e2:ba:a5:32:1a:f6:64:5e:8d:5a:e3:79: cf:54:4e:b6:88:f9:fb:6e:79:fb:ca:ff:dc:3c:1f:0f:c5:03: a8:3e:2b:38:0b:26:e7:c6:f5:e2:4c:d8:04:ab:43:c8:0c:6a: 9e:e8:71:e0:40:d1:f8:8d:ef:2e:71:a4:3c:4a:e5:ce:ca:79: ce:08:64:16:8e:b0:5a:81:99:08:00:2a:3d:ea:56:c2:b6:fd: fa:be:88:24:d0:de:e1:a6:bb:e3:4f:1f:8a:a4:78:bf:af:9f: cb:45:6c:b7:de:d5:1e:0e:c3:1c:5f:a4:73:2c:5d:6f:79:8b: f9:0a:9d:4a:b4:ce:39:ed:2d:e8:e7:1c:09:ad:6d:de:66:37: 3b:6d:0d:fa:35:53:30:d5:66:00:3b:cd:0d:b7:4e:aa:f8:ce: fe:e0:ac:64:66:17:7a:65:fe:30:5e:43:fa:48:fd:cc:3c:3e: 27:59:77:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTFN7OIMAASzd+W76gwEHziC3jE0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQzNloX DTI3MDMwMzA2MTkzNlowMzExMC8GA1UEAxMoNUUyM0IwQ0JBQUYyQjZFNzNDMkI2 NjE5OTA5Qjc3Nzk0MTJFMDQ1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJPOkd/4Dw3Zg7hCfj4xDZlWhLFUcrnsgpYXdlDhlCPGRLdsEJ5L8YsGu6R8 UUaohg0fhf47vKHG/1hXvX0Cw9TmDVb4YbxcSntM6zZ9JEK5os0Kc+pPhQkAuVYo ZbZBNOUFSc4BwIOMw6Do9Ckeyb5gDmmZB6w/trPCcPF6/cf9txEtBOsR1VV+EqBz 9728zYWl8PcKKsNu+R0gzaA+Zh4YoIXpsYtpuEJfnkc4bzXn6AZx8Nhyvpf2/aKM 4paCr1W1V7xgBer5A+cWh9g6Nj3OXVTdgGS3DbUIulvu/RHyV/ZVSoO/LseCe5Qs ptElbLKlXqwYX0t/+wIapf3X7+sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBReI7DL qvK25zwrZhmQm3d5QS4EUzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTMxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qmowDQYJKoZIhvcNAQELBQADggEBACZUUZPHjpisWkeErw1oeSQ7Nw6xJSj0FQdo sa8WY+5kkOZNiW13UuWK9ZREDZqzNjedLMFVpAdLCw23LP0BP+eku6497QzlCwOp W0Br7eK6pTIa9mRejVrjec9UTraI+ftuefvK/9w8Hw/FA6g+KzgLJufG9eJM2ASr Q8gMap7oceBA0fiN7y5xpDxK5c7Kec4IZBaOsFqBmQgAKj3qVsK2/fq+iCTQ3uGm u+NPH4qkeL+vn8tFbLfe1R4OwxxfpHMsXW95i/kKnUq0zjntLejnHAmtbd5mNztt Dfo1UzDVZgA7zQ23Tqr4zv7grGRmF3pl/jBeQ/pI/cw8PidZd0w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:53 2026 by rpki-client