$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145340.roa File: AS145340.roa (raw, json) Hash identifier: E/25TJ1F3ovykjvb6FWt+hlSWTGRBiy9tJle8LzhCeA= Subject key identifier: 79:C7:D0:88:6A:4A:F2:9E:E1:F1:D6:06:24:DE:7D:2D:90:3F:AA:97 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 078A31D76651F24E76CDEF7EBB77C50C157DF7C7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145340.roa Signing time: Wed 04 Mar 2026 06:20:58 +0000 ROA not before: Wed 04 Mar 2026 06:15:58 +0000 ROA not after: Wed 03 Mar 2027 06:20:58 +0000 asID: 145340 IP address blocks: 240a:aa82::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8a:31:d7:66:51:f2:4e:76:cd:ef:7e:bb:77:c5:0c:15:7d:f7:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:58 2026 GMT Not After : Mar 3 06:20:58 2027 GMT Subject: CN=79C7D0886A4AF29EE1F1D60624DE7D2D903FAA97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:16:ff:d4:72:94:ca:a8:2e:63:1a:30:d0:a2: 94:9e:35:59:2a:3b:0d:a1:7a:ba:e7:25:17:70:12: 6d:8a:cc:63:f6:12:0d:47:2a:7a:5c:7e:6b:f7:51: 39:de:cd:f8:a9:1d:e9:e2:6d:2e:2f:ce:30:65:1f: b5:ff:d3:04:98:64:11:ef:1b:b3:ca:78:91:26:fb: c0:7b:82:0a:1a:d0:77:b9:2f:6d:93:7e:ce:60:0d: 6e:bb:07:bd:78:f1:89:f6:4a:5b:a5:60:75:8d:14: 2b:6c:22:88:e1:50:93:47:eb:21:03:dd:ff:2b:f6: ba:c6:0b:a1:c5:cf:99:f3:c8:ed:b9:c0:b8:ed:97: 9c:bf:01:8f:dc:83:a8:19:9e:ee:f2:c0:92:7f:de: 2c:97:99:7d:18:64:1f:b9:c8:02:51:84:03:64:69: 97:cb:89:96:46:10:d3:0c:e0:8f:3c:c5:82:23:d5: 9c:fd:6b:64:8c:df:9a:48:c1:5b:da:d5:32:2c:64: bb:f2:e3:9f:7e:af:7f:22:21:53:8b:24:5e:74:b0: 0d:a0:00:cb:f8:6c:cb:c7:62:ea:7f:58:f3:f3:cb: bf:d2:c5:ae:35:5c:cc:68:1e:a5:86:19:d6:60:31: cf:c4:5c:f4:64:19:dd:18:4f:85:61:42:b9:84:25: e2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C7:D0:88:6A:4A:F2:9E:E1:F1:D6:06:24:DE:7D:2D:90:3F:AA:97 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145340.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa82::/32 Signature Algorithm: sha256WithRSAEncryption 3b:c9:38:d1:3e:98:a3:e4:b2:94:81:9e:10:2f:41:ce:d9:c2: c0:8b:36:d3:ef:4a:bc:79:de:43:ee:4c:7d:41:ab:76:36:6e: b9:9c:c4:ab:3c:c3:0d:03:c8:9a:4d:02:04:4b:98:4b:65:0a: c3:55:c2:7c:f8:04:21:c1:5e:2b:eb:8d:be:9a:1a:7f:dc:fa: 1c:03:1e:04:94:51:d5:63:be:ee:9e:a9:5f:df:74:85:0f:6f: d5:19:e1:6a:35:8d:96:79:c5:30:36:d1:ae:9a:0a:ea:48:2d: fd:4c:0a:62:54:9a:4a:66:2b:a7:5d:f5:40:72:eb:51:e3:13: 47:83:a3:ba:70:7e:10:bd:4d:4c:a9:6f:ae:c2:c2:b1:b6:80: 01:b4:07:62:7f:1a:f6:85:ad:dc:c5:ee:af:49:5f:6b:f8:8a: c9:e8:ce:6f:12:b5:e2:18:d3:8d:fd:17:bd:5e:c0:4b:3c:c6: 45:a7:4e:11:e3:77:b1:8a:b7:29:47:65:db:fb:a6:e8:aa:3d: 26:36:3a:24:ba:06:a1:bc:8d:1e:c2:92:fd:74:dd:ea:fc:c2: 20:48:97:31:66:05:8f:89:d5:e3:1d:5b:3e:34:ef:80:6d:11: 4f:ff:16:81:46:15:18:38:44:2f:17:56:e6:9e:6b:32:bc:67: de:fa:0c:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUB4ox12ZR8k52ze9+u3fFDBV998cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU1OFoX DTI3MDMwMzA2MjA1OFowMzExMC8GA1UEAxMoNzlDN0QwODg2QTRBRjI5RUUxRjFE NjA2MjRERTdEMkQ5MDNGQUE5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJYW/9RylMqoLmMaMNCilJ41WSo7DaF6uuclF3ASbYrMY/YSDUcqelx+a/dR Od7N+Kkd6eJtLi/OMGUftf/TBJhkEe8bs8p4kSb7wHuCChrQd7kvbZN+zmANbrsH vXjxifZKW6VgdY0UK2wiiOFQk0frIQPd/yv2usYLocXPmfPI7bnAuO2XnL8Bj9yD qBme7vLAkn/eLJeZfRhkH7nIAlGEA2Rpl8uJlkYQ0wzgjzzFgiPVnP1rZIzfmkjB W9rVMixku/Ljn36vfyIhU4skXnSwDaAAy/hsy8di6n9Y8/PLv9LFrjVczGgepYYZ 1mAxz8Rc9GQZ3RhPhWFCuYQl4h8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR5x9CI akrynuHx1gYk3n0tkD+qlzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTM0MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qoIwDQYJKoZIhvcNAQELBQADggEBADvJONE+mKPkspSBnhAvQc7ZwsCLNtPvSrx5 3kPuTH1Bq3Y2brmcxKs8ww0DyJpNAgRLmEtlCsNVwnz4BCHBXivrjb6aGn/c+hwD HgSUUdVjvu6eqV/fdIUPb9UZ4Wo1jZZ5xTA20a6aCupILf1MCmJUmkpmK6dd9UBy 61HjE0eDo7pwfhC9TUypb67CwrG2gAG0B2J/GvaFrdzF7q9JX2v4isnozm8SteIY 0439F71ewEs8xkWnThHjd7GKtylHZdv7puiqPSY2OiS6BqG8jR7Ckv103er8wiBI lzFmBY+J1eMdWz4074BtEU//FoFGFRg4RC8XVuaeazK8Z976DEU= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:41 2026 by rpki-client