$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145338.roa File: AS145338.roa (raw, json) Hash identifier: JYSv/DrMS+QWcoYdcG/XIiHL9tS2gF9u/qWbwgJdVXw= Subject key identifier: BE:E3:12:7A:28:82:8F:2B:1D:11:9B:30:55:9D:2D:3C:64:57:F0:FC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6E988D9EC3793431DD052DD5514B8A9AB6FB6CB2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145338.roa Signing time: Wed 04 Mar 2026 06:21:59 +0000 ROA not before: Wed 04 Mar 2026 06:16:59 +0000 ROA not after: Wed 03 Mar 2027 06:21:59 +0000 asID: 145338 IP address blocks: 240a:aa80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:98:8d:9e:c3:79:34:31:dd:05:2d:d5:51:4b:8a:9a:b6:fb:6c:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:59 2026 GMT Not After : Mar 3 06:21:59 2027 GMT Subject: CN=BEE3127A28828F2B1D119B30559D2D3C6457F0FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:0f:e7:c0:c0:cb:59:15:32:fd:75:1f:67: da:fc:bf:34:f0:33:97:f6:8d:4f:bb:6e:1d:cf:ec: 84:e6:3d:88:84:92:5b:37:50:56:1c:7f:54:61:fc: 1d:01:2c:8a:3c:ba:e0:33:8c:09:02:72:7b:d7:4a: c3:b5:36:89:50:fa:51:95:b9:aa:f1:47:82:da:02: 14:9e:65:f5:26:80:6b:b5:5a:ac:93:b7:2a:7b:46: 2a:40:6c:21:6d:40:52:25:12:4b:7c:a7:cf:30:8d: 86:2d:2e:74:47:76:58:57:c9:7d:6d:86:8a:60:1f: 75:cf:7d:69:22:ea:4b:a0:18:ec:1f:6b:26:de:8e: f4:eb:b2:e8:79:2b:fb:7b:63:b1:2a:da:08:5e:b6: fb:c7:54:6e:da:c0:80:21:1f:ad:40:33:df:1f:74: e8:37:ef:0a:57:ca:1c:a1:6e:73:77:a6:e4:6f:e8: cf:b2:6c:82:76:ca:50:e3:61:30:1f:f0:43:ee:3b: f0:e6:a7:88:ae:0b:64:45:c7:f8:14:e1:c3:6a:ce: d8:28:81:15:25:b9:87:3e:8e:39:76:c8:fb:58:2a: 04:1a:e9:b1:ec:bc:e6:bb:fd:01:8a:27:c6:28:59: 03:e4:38:2d:d6:e3:fe:2f:6b:95:5b:8f:47:5b:65: 45:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E3:12:7A:28:82:8F:2B:1D:11:9B:30:55:9D:2D:3C:64:57:F0:FC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa80::/32 Signature Algorithm: sha256WithRSAEncryption 54:f1:bc:05:2b:4a:91:48:97:ec:80:b8:27:b5:7a:94:eb:73: 35:f1:fa:2c:b6:d2:f7:a8:cd:96:4c:5a:18:05:30:c6:c8:07: 96:84:c4:e5:be:57:bc:54:e3:35:8f:2d:eb:2a:2e:c9:bf:52: 17:80:2c:1d:a7:39:79:8d:4e:f5:c3:0c:36:b9:c8:9f:ec:e8: 39:14:8a:0e:d4:47:54:af:28:8b:d3:3c:bd:99:17:27:87:56: 0c:5f:97:ac:33:8d:b0:ce:0a:74:70:1c:24:1e:8f:5d:64:eb: 06:29:ac:e3:7a:c9:65:df:bf:7f:dd:a5:67:5a:74:a3:9a:ff: 0c:56:cf:8e:b1:1e:df:a3:35:32:69:9d:c2:a6:2d:e9:8d:eb: da:f7:1e:ac:81:61:42:3c:a8:59:c3:0e:18:57:e0:46:f1:59: 26:8c:2f:4f:a1:4d:ab:b0:41:bd:4d:b7:7f:52:2e:9f:c9:38: 04:58:74:56:53:72:e0:94:d2:c4:6f:f3:ee:fa:aa:43:1a:c9: 54:2e:26:55:62:82:07:22:28:44:8b:ef:f5:de:d4:21:fe:f1: de:63:ee:0d:81:04:b7:eb:d5:ee:15:e5:31:44:f3:88:9b:e6: c1:f8:97:e4:b9:bf:b2:9e:70:66:e8:3f:f5:5a:6d:40:5e:0e: e2:f2:1c:5f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbpiNnsN5NDHdBS3VUUuKmrb7bLIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1OVoX DTI3MDMwMzA2MjE1OVowMzExMC8GA1UEAxMoQkVFMzEyN0EyODgyOEYyQjFEMTE5 QjMwNTU5RDJEM0M2NDU3RjBGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlkD+fAwMtZFTL9dR9n2vy/NPAzl/aNT7tuHc/shOY9iISSWzdQVhx/VGH8 HQEsijy64DOMCQJye9dKw7U2iVD6UZW5qvFHgtoCFJ5l9SaAa7VarJO3KntGKkBs IW1AUiUSS3ynzzCNhi0udEd2WFfJfW2GimAfdc99aSLqS6AY7B9rJt6O9Ouy6Hkr +3tjsSraCF62+8dUbtrAgCEfrUAz3x906DfvClfKHKFuc3em5G/oz7JsgnbKUONh MB/wQ+478OaniK4LZEXH+BThw2rO2CiBFSW5hz6OOXbI+1gqBBrpsey85rv9AYon xihZA+Q4Ldbj/i9rlVuPR1tlRV0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS+4xJ6 KIKPKx0RmzBVnS08ZFfw/DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTMzOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qoAwDQYJKoZIhvcNAQELBQADggEBAFTxvAUrSpFIl+yAuCe1epTrczXx+iy20veo zZZMWhgFMMbIB5aExOW+V7xU4zWPLesqLsm/UheALB2nOXmNTvXDDDa5yJ/s6DkU ig7UR1SvKIvTPL2ZFyeHVgxfl6wzjbDOCnRwHCQej11k6wYprON6yWXfv3/dpWda dKOa/wxWz46xHt+jNTJpncKmLemN69r3HqyBYUI8qFnDDhhX4EbxWSaML0+hTauw Qb1Nt39SLp/JOARYdFZTcuCU0sRv8+76qkMayVQuJlViggciKESL7/Xe1CH+8d5j 7g2BBLfr1e4V5TFE84ib5sH4l+S5v7KecGboP/VabUBeDuLyHF8= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:28 2026 by rpki-client