$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145355.roa File: AS145355.roa (raw, json) Hash identifier: R+7RBojGPmi0ciEU/Np/zORAsi0+cK4l9yWHnwExfcQ= Subject key identifier: 34:1A:E4:13:21:45:3C:8B:47:6D:4C:6C:B2:78:9E:4E:1B:4C:32:38 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 360DA76D16C115897E52D8592D375622AF422FF6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145355.roa Signing time: Wed 04 Mar 2026 06:19:44 +0000 ROA not before: Wed 04 Mar 2026 06:14:44 +0000 ROA not after: Wed 03 Mar 2027 06:19:44 +0000 asID: 145355 IP address blocks: 240a:aa91::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:0d:a7:6d:16:c1:15:89:7e:52:d8:59:2d:37:56:22:af:42:2f:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:44 2026 GMT Not After : Mar 3 06:19:44 2027 GMT Subject: CN=341AE41321453C8B476D4C6CB2789E4E1B4C3238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0b:8a:d5:6f:7a:50:1d:9d:ad:93:25:8a:05: bd:01:f9:9a:10:bb:28:a6:77:c7:90:b3:ef:0d:51: 5a:6d:9c:78:b5:ea:75:1a:c4:82:e7:cc:48:66:31: b6:50:f2:b3:3b:b8:06:ee:0b:1e:3f:01:de:29:71: 6e:8f:40:78:89:7c:bb:d7:1d:2a:6d:fe:7d:cc:b8: 83:c2:43:b5:f3:a3:fe:c7:6a:48:4b:8f:97:d1:a6: 79:17:11:ed:e8:5b:5a:50:89:99:1c:d0:69:1b:9b: 54:7c:5a:19:e1:41:b7:fa:90:4b:ea:dd:c0:62:87: ad:ed:82:b7:2c:2a:ab:82:a3:14:46:d3:20:b8:3a: c2:ee:f6:d0:c5:64:91:f9:6b:5b:f2:60:59:b3:84: 2f:bf:29:76:14:bb:19:c2:47:88:76:b2:26:bb:a5: 04:84:e9:b1:06:e7:a9:9c:dc:32:f1:9c:8d:ee:34: e0:52:44:5b:9f:7e:b8:1a:b3:4f:c5:30:b4:db:7f: f0:d1:cf:b3:6a:af:25:56:d1:d1:2d:21:29:bf:a3: ba:c6:c1:c7:01:6d:a7:2b:d0:dd:5e:af:07:bc:48: fa:48:ae:f2:2e:5e:d2:32:e5:03:71:1e:1a:fc:d4: 07:4a:3f:d3:c7:c3:78:76:31:9d:82:b2:b1:2a:14: ec:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1A:E4:13:21:45:3C:8B:47:6D:4C:6C:B2:78:9E:4E:1B:4C:32:38 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145355.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa91::/32 Signature Algorithm: sha256WithRSAEncryption 26:97:0e:37:7d:86:4f:6c:51:6e:5a:fa:89:a0:82:5b:f9:46: f9:8f:09:3f:37:d4:40:5f:6b:d4:96:30:ef:b3:88:89:d5:64: cf:8e:82:e3:fb:c5:2f:f1:17:d2:35:90:d6:bf:38:30:df:14: 43:c6:24:8a:3b:e0:dc:f5:10:64:12:dc:25:ef:b2:e8:e1:91: ab:42:82:bf:58:b5:43:b0:79:98:d9:75:0b:d2:f0:9e:76:03: 69:40:89:dd:e8:d5:33:7c:e9:94:4f:e8:c6:24:32:ed:74:c9: 89:20:ee:a9:73:8b:6d:30:37:3a:41:93:5e:1a:36:7a:53:c4: db:49:50:47:37:24:97:d2:19:12:90:58:75:c5:f2:a1:12:67: e4:d1:64:48:63:2e:ca:79:d7:ee:ee:3d:1c:15:7c:56:96:9a: bd:6c:c3:df:d0:a9:d5:93:da:ab:49:d8:aa:4b:60:87:a3:4b: c8:68:8d:6b:37:17:92:5b:51:e4:fe:02:72:8d:23:78:75:e1: c4:ea:9f:8d:b1:0d:b1:2a:00:ef:15:fb:32:d8:a1:8a:07:93: 63:7e:52:2e:10:c0:3f:7b:9f:68:b0:d5:c2:9f:d3:ac:9d:c8: ad:ac:44:2f:e6:7e:61:94:74:2b:05:0c:31:eb:b8:43:1f:90: e7:7a:24:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNg2nbRbBFYl+UthZLTdWIq9CL/YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0NFoX DTI3MDMwMzA2MTk0NFowMzExMC8GA1UEAxMoMzQxQUU0MTMyMTQ1M0M4QjQ3NkQ0 QzZDQjI3ODlFNEUxQjRDMzIzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOILitVvelAdna2TJYoFvQH5mhC7KKZ3x5Cz7w1RWm2ceLXqdRrEgufMSGYx tlDyszu4Bu4LHj8B3ilxbo9AeIl8u9cdKm3+fcy4g8JDtfOj/sdqSEuPl9GmeRcR 7ehbWlCJmRzQaRubVHxaGeFBt/qQS+rdwGKHre2Ctywqq4KjFEbTILg6wu720MVk kflrW/JgWbOEL78pdhS7GcJHiHayJrulBITpsQbnqZzcMvGcje404FJEW59+uBqz T8UwtNt/8NHPs2qvJVbR0S0hKb+jusbBxwFtpyvQ3V6vB7xI+kiu8i5e0jLlA3Ee GvzUB0o/08fDeHYxnYKysSoU7HsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ0GuQT IUU8i0dtTGyyeJ5OG0wyODAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTM1NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qpEwDQYJKoZIhvcNAQELBQADggEBACaXDjd9hk9sUW5a+omgglv5RvmPCT831EBf a9SWMO+ziInVZM+OguP7xS/xF9I1kNa/ODDfFEPGJIo74Nz1EGQS3CXvsujhkatC gr9YtUOweZjZdQvS8J52A2lAid3o1TN86ZRP6MYkMu10yYkg7qlzi20wNzpBk14a NnpTxNtJUEc3JJfSGRKQWHXF8qESZ+TRZEhjLsp51+7uPRwVfFaWmr1sw9/QqdWT 2qtJ2KpLYIejS8hojWs3F5JbUeT+AnKNI3h14cTqn42xDbEqAO8V+zLYoYoHk2N+ Ui4QwD97n2iw1cKf06ydyK2sRC/mfmGUdCsFDDHruEMfkOd6JDI= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:40 2026 by rpki-client