$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145358.roa File: AS145358.roa (raw, json) Hash identifier: NolECjuvnuhbBVwwP1AxyQs6utszMN0+XJ1pIzdK9/s= Subject key identifier: 08:26:5D:CE:9B:AD:F3:91:D0:36:6D:97:6D:3B:A9:75:E0:31:EF:A4 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6CB8F1BF5DDF9441D69989B3714FCE07FB5F3697 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145358.roa Signing time: Wed 04 Mar 2026 06:20:06 +0000 ROA not before: Wed 04 Mar 2026 06:15:06 +0000 ROA not after: Wed 03 Mar 2027 06:20:06 +0000 asID: 145358 IP address blocks: 240a:aa94::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b8:f1:bf:5d:df:94:41:d6:99:89:b3:71:4f:ce:07:fb:5f:36:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:06 2026 GMT Not After : Mar 3 06:20:06 2027 GMT Subject: CN=08265DCE9BADF391D0366D976D3BA975E031EFA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:58:73:15:70:e7:aa:97:72:9e:ca:a0:78:71: 02:2b:de:5a:9e:b7:29:43:1d:d0:1e:8f:68:e4:4c: 2e:6d:75:d6:b4:a3:ba:d2:20:38:af:f2:9c:bc:a9: 2c:fd:b0:62:f9:5f:c9:7e:43:d2:5f:bd:bb:89:f3: 8a:c0:4f:1a:3a:98:23:8c:44:16:e3:26:b4:18:d8: a7:72:67:ac:bd:b3:00:19:f9:6f:27:f4:ca:d1:7a: 11:e8:b6:40:8e:96:a6:ea:9a:2d:af:9f:27:ca:bc: 47:1a:07:c4:9b:b3:d6:48:76:f3:0a:21:a5:e4:be: cd:16:00:bd:92:c4:36:67:a6:e0:4f:18:a4:60:b1: 83:8f:cc:02:8c:ff:b6:8d:0d:fc:88:e5:af:b8:50: 26:fd:a9:c0:05:d2:b2:8c:19:cf:2e:5c:7c:2e:52: cd:51:35:14:7b:94:73:4f:4e:1f:2a:12:46:fe:03: 32:14:1c:50:64:14:b5:77:2f:c9:67:1c:eb:e3:c3: 92:49:b6:0e:08:23:db:ab:79:9e:9a:33:cc:da:0e: 40:29:6a:ed:68:18:5a:6e:33:f8:60:f7:9a:fd:98: a3:d2:0f:2b:fc:a6:cd:3b:57:28:e6:4a:c4:40:61: fe:ee:2d:b9:38:9c:92:57:58:13:a6:ce:0b:28:f1: 29:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:26:5D:CE:9B:AD:F3:91:D0:36:6D:97:6D:3B:A9:75:E0:31:EF:A4 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145358.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa94::/32 Signature Algorithm: sha256WithRSAEncryption a8:cb:b8:09:57:9c:67:7a:f1:66:61:42:0f:3a:ea:6d:75:d7: b2:07:16:c0:d2:6c:62:2c:e9:b6:51:1f:2a:c9:3f:3d:1c:22: 71:50:28:a4:4a:e5:d9:18:d6:66:4e:b3:51:cd:1a:49:2d:2a: 2c:7d:a2:e5:31:4b:1f:17:a3:4a:c0:77:55:88:53:72:23:30: 73:e6:91:13:38:ac:ec:40:47:dc:03:64:6d:4e:8b:68:cf:36: 9a:03:1c:0b:ad:01:1b:2f:30:62:3a:89:6d:7b:3c:d9:41:41: f2:a9:b5:17:90:60:d2:d7:98:34:d7:c8:6f:72:ef:63:3a:d8: 65:23:3d:44:b3:a9:63:88:90:ec:39:49:f7:00:67:87:64:c5: ec:1c:6f:85:29:91:77:0d:e8:07:a9:0b:b0:53:60:85:82:60: 78:5b:6e:c6:b3:e0:af:64:da:82:fb:a6:83:41:01:22:b1:e6: 0d:c1:1c:ae:3c:ea:e9:cb:9d:3c:9f:75:e1:8e:99:9b:af:cb: 3c:6d:c0:0a:e4:d6:51:be:5b:06:d5:81:52:02:4a:59:8f:df: e0:0e:d4:d6:de:5c:3d:f1:7a:ee:10:32:8b:47:47:4a:c6:39: 04:92:61:0b:3c:ea:43:ef:eb:ab:10:75:25:44:ed:7b:2c:72: b1:fc:88:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbLjxv13flEHWmYmzcU/OB/tfNpcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUwNloX DTI3MDMwMzA2MjAwNlowMzExMC8GA1UEAxMoMDgyNjVEQ0U5QkFERjM5MUQwMzY2 RDk3NkQzQkE5NzVFMDMxRUZBNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNYcxVw56qXcp7KoHhxAiveWp63KUMd0B6PaORMLm111rSjutIgOK/ynLyp LP2wYvlfyX5D0l+9u4nzisBPGjqYI4xEFuMmtBjYp3JnrL2zABn5byf0ytF6Eei2 QI6WpuqaLa+fJ8q8RxoHxJuz1kh28wohpeS+zRYAvZLENmem4E8YpGCxg4/MAoz/ to0N/Ijlr7hQJv2pwAXSsowZzy5cfC5SzVE1FHuUc09OHyoSRv4DMhQcUGQUtXcv yWcc6+PDkkm2Dggj26t5npozzNoOQClq7WgYWm4z+GD3mv2Yo9IPK/ymzTtXKOZK xEBh/u4tuTickldYE6bOCyjxKRMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQIJl3O m63zkdA2bZdtO6l14DHvpDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTM1OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qpQwDQYJKoZIhvcNAQELBQADggEBAKjLuAlXnGd68WZhQg866m1117IHFsDSbGIs 6bZRHyrJPz0cInFQKKRK5dkY1mZOs1HNGkktKix9ouUxSx8Xo0rAd1WIU3IjMHPm kRM4rOxAR9wDZG1Oi2jPNpoDHAutARsvMGI6iW17PNlBQfKptReQYNLXmDTXyG9y 72M62GUjPUSzqWOIkOw5SfcAZ4dkxewcb4UpkXcN6AepC7BTYIWCYHhbbsaz4K9k 2oL7poNBASKx5g3BHK486unLnTyfdeGOmZuvyzxtwArk1lG+WwbVgVICSlmP3+AO 1NbeXD3xeu4QMotHR0rGOQSSYQs86kPv66sQdSVE7XsscrH8iNk= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:32 2026 by rpki-client