$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145320.roa File: AS145320.roa (raw, json) Hash identifier: juUTSK0cVAIdQ+7nwSMHELeC+M2V+XGlo5DaCVo9FJE= Subject key identifier: 1B:21:B9:E6:17:CE:25:32:B4:80:DB:35:34:00:81:62:D4:15:7B:EA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7335FB929623AA41411BB4239F2153170D9034E5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145320.roa Signing time: Wed 04 Mar 2026 06:19:27 +0000 ROA not before: Wed 04 Mar 2026 06:14:27 +0000 ROA not after: Wed 03 Mar 2027 06:19:27 +0000 asID: 145320 IP address blocks: 240a:aa6e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:35:fb:92:96:23:aa:41:41:1b:b4:23:9f:21:53:17:0d:90:34:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:27 2026 GMT Not After : Mar 3 06:19:27 2027 GMT Subject: CN=1B21B9E617CE2532B480DB3534008162D4157BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:df:bc:b2:26:1a:05:6c:f5:56:07:9f:8a: cd:bf:f3:4c:15:55:d4:0b:ef:b6:f3:bc:50:a8:63: 36:0f:8a:5c:1e:2b:c6:8e:d3:51:31:0a:e6:86:b9: 40:e3:22:88:86:df:9c:97:73:24:65:ef:0e:12:7d: 0a:49:23:d5:ca:78:a6:62:d8:ab:b4:5f:e0:d8:d7: f8:88:93:23:d0:c7:79:7d:4e:e1:6f:ba:1f:b4:b0: d8:5f:49:d4:87:2e:82:1c:05:df:c4:7e:d1:69:69: b9:2b:69:14:1d:7e:f9:fe:23:44:93:be:a2:bd:33: ba:62:84:37:59:f7:32:8a:d4:40:5b:e7:8c:50:55: f3:7e:e4:0e:9a:33:80:04:53:0e:ee:57:67:90:a1: df:08:41:7b:d7:25:23:92:c3:80:1e:dd:91:aa:60: 76:48:c7:0f:75:69:f7:76:93:05:0a:f4:78:1f:5b: d1:84:a9:d3:11:e0:ab:46:1a:7d:7c:c7:73:b5:67: 88:cf:7a:6c:1f:ab:74:57:94:47:94:8f:cf:dd:84: 1e:e4:ab:28:62:3d:70:b4:a8:ff:60:a7:c7:4c:5e: 48:64:e8:fc:33:83:de:96:a5:00:ee:17:f5:3e:b5: 8d:fc:08:ee:28:d7:3e:85:9a:5c:3d:53:06:8a:ed: af:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:21:B9:E6:17:CE:25:32:B4:80:DB:35:34:00:81:62:D4:15:7B:EA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145320.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa6e::/32 Signature Algorithm: sha256WithRSAEncryption 59:84:38:ce:09:1b:9a:a3:40:bf:2e:e1:40:3a:89:06:9e:b5: a3:66:57:f3:43:69:6b:5c:5c:b2:7f:7f:43:a3:d0:e0:08:fe: 4d:5d:d9:11:f8:86:04:db:75:5e:4d:36:97:3b:73:30:65:79: 07:3b:4c:02:af:6b:a7:2d:20:f8:7d:87:ca:d6:6b:96:7d:44: c6:3e:9d:d3:30:cd:92:1f:e2:0b:8e:15:a4:77:22:f7:ca:a4: ac:78:03:e7:39:1c:f4:90:29:48:d3:24:2e:0b:05:85:b1:5d: fd:f3:77:f8:c6:cc:67:8d:a6:ac:9f:c5:59:07:58:c7:bf:22: a1:b8:5c:f6:73:56:f0:7b:22:ab:b0:a1:f4:1a:43:3f:56:41: da:ea:3c:2b:f2:4d:ec:f5:52:d6:e9:25:80:66:22:93:9d:63: ef:d2:05:da:a9:f0:a2:af:c0:3a:98:d9:9a:9d:28:e9:67:af: 73:53:29:b6:98:66:f5:6d:07:b9:91:9f:5e:3a:3c:81:83:b8: 95:d6:ae:25:43:f4:c5:cd:6b:5b:e5:6a:5c:f8:33:21:17:c3: 90:e0:52:85:3f:2c:9b:71:24:ed:1f:49:40:bc:7b:75:b4:b9: 7e:33:8e:39:fd:de:d1:ac:3f:62:1e:41:a2:4d:0b:2d:6d:07: 0c:a2:3e:53 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUczX7kpYjqkFBG7QjnyFTFw2QNOUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQyN1oX DTI3MDMwMzA2MTkyN1owMzExMC8GA1UEAxMoMUIyMUI5RTYxN0NFMjUzMkI0ODBE QjM1MzQwMDgxNjJENDE1N0JFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3T37yyJhoFbPVWB5+Kzb/zTBVV1AvvtvO8UKhjNg+KXB4rxo7TUTEK5oa5 QOMiiIbfnJdzJGXvDhJ9Ckkj1cp4pmLYq7Rf4NjX+IiTI9DHeX1O4W+6H7Sw2F9J 1IcughwF38R+0WlpuStpFB1++f4jRJO+or0zumKEN1n3MorUQFvnjFBV837kDpoz gARTDu5XZ5Ch3whBe9clI5LDgB7dkapgdkjHD3Vp93aTBQr0eB9b0YSp0xHgq0Ya fXzHc7VniM96bB+rdFeUR5SPz92EHuSrKGI9cLSo/2Cnx0xeSGTo/DOD3palAO4X 9T61jfwI7ijXPoWaXD1TBortr6ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQbIbnm F84lMrSA2zU0AIFi1BV76jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTMyMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qm4wDQYJKoZIhvcNAQELBQADggEBAFmEOM4JG5qjQL8u4UA6iQaetaNmV/NDaWtc XLJ/f0Oj0OAI/k1d2RH4hgTbdV5NNpc7czBleQc7TAKva6ctIPh9h8rWa5Z9RMY+ ndMwzZIf4guOFaR3IvfKpKx4A+c5HPSQKUjTJC4LBYWxXf3zd/jGzGeNpqyfxVkH WMe/IqG4XPZzVvB7IquwofQaQz9WQdrqPCvyTez1UtbpJYBmIpOdY+/SBdqp8KKv wDqY2ZqdKOlnr3NTKbaYZvVtB7mRn146PIGDuJXWriVD9MXNa1vlalz4MyEXw5Dg UoU/LJtxJO0fSUC8e3W0uX4zjjn93tGsP2IeQaJNCy1tBwyiPlM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:55 2026 by rpki-client