$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145419.roa File: AS145419.roa (raw, json) Hash identifier: XJwkk8zY3M/ARwnW+GosoimXHcKlWn1Fo/Dgk/E4g2c= Subject key identifier: A6:68:FC:30:EE:F3:CF:7F:1C:44:27:D0:A1:42:44:CD:B8:E2:96:74 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6BF951DFDA963BABCFCD0328087100CC8E64B1A7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145419.roa Signing time: Wed 04 Mar 2026 06:20:43 +0000 ROA not before: Wed 04 Mar 2026 06:15:43 +0000 ROA not after: Wed 03 Mar 2027 06:20:43 +0000 asID: 145419 IP address blocks: 240a:aad1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:f9:51:df:da:96:3b:ab:cf:cd:03:28:08:71:00:cc:8e:64:b1:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:43 2026 GMT Not After : Mar 3 06:20:43 2027 GMT Subject: CN=A668FC30EEF3CF7F1C4427D0A14244CDB8E29674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:06:5e:79:90:95:ae:7b:95:f1:04:c6:05:6d: 50:55:4c:e5:46:3b:66:a8:60:f5:f9:e5:43:fd:d5: d0:ab:90:54:4f:8e:95:9c:fd:32:07:64:c3:a8:19: 7b:59:be:cb:3b:94:c7:83:a7:99:d0:7b:5a:16:9d: 4d:6e:73:0d:4a:75:16:66:72:35:41:5a:a0:86:9f: 23:97:f5:d4:15:ee:e9:fe:fb:bd:b6:00:51:48:79: e2:b7:a7:3f:42:db:31:6e:4a:fc:55:1f:72:de:5d: f5:de:e0:78:54:d8:01:65:6f:07:5f:f6:56:4e:7d: 8c:e3:de:03:6e:9c:ba:1f:23:f5:9c:b3:ca:6a:c5: 37:58:9c:ca:11:05:50:df:6d:b2:31:72:a0:3d:64: 7c:e8:c8:d9:a0:50:00:be:31:7b:fb:6b:14:08:df: 39:43:d5:31:35:1b:d9:ea:3d:39:73:95:a6:f3:65: 9a:ab:0b:92:69:a7:84:43:78:aa:33:34:e6:df:7f: 4a:7c:30:32:63:c8:3c:34:7b:d5:e3:2c:28:ec:3a: 0f:b0:b3:b7:7c:a0:32:bd:9c:da:05:36:a1:68:04: 7e:52:6d:fe:63:bb:fa:55:4c:88:98:f9:70:e3:c7: 7f:a6:8a:e7:7e:31:45:0e:c3:5c:04:ed:cc:d1:db: e9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:68:FC:30:EE:F3:CF:7F:1C:44:27:D0:A1:42:44:CD:B8:E2:96:74 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145419.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aad1::/32 Signature Algorithm: sha256WithRSAEncryption 07:84:6c:63:8d:1e:cb:1f:cd:d2:e9:7d:0f:0f:5b:4e:87:dc: e4:f9:03:90:1c:71:4b:1c:7f:92:f0:76:cb:d2:80:d4:ea:be: e3:0b:25:3a:4d:1a:a0:41:19:61:76:41:2f:a8:79:c0:51:ad: 39:ac:bf:b3:74:ff:fe:cd:9b:08:a4:83:d9:ee:23:1a:90:72: cb:d3:38:0c:ab:bb:4a:91:47:b7:d8:af:91:63:fa:a2:f6:2e: ee:fd:88:36:61:f2:09:13:c4:de:42:f9:3d:16:bf:12:73:db: 8b:3a:91:77:2f:41:6d:a4:74:d9:b2:df:bc:4a:7a:e1:5d:f0: a0:14:da:a5:f5:ff:84:54:86:ad:f7:03:77:2a:2a:5c:44:44: 00:91:00:ab:eb:39:45:f9:db:d6:e0:8c:c9:a6:2e:8c:d3:33: 74:38:73:67:ee:79:e4:bd:83:05:a9:af:dd:d4:5b:dd:25:0b: 6d:49:64:ac:85:89:4b:17:a4:4e:a3:35:b1:58:5a:0b:53:70: 87:a2:af:f5:a9:ab:17:d5:a1:6a:cb:5c:93:48:87:29:5e:88: 64:60:87:a2:d8:2c:47:4f:61:cf:ee:16:16:f3:73:76:bb:97: 08:f6:32:f6:4c:ba:eb:40:4c:3a:83:64:5f:8a:e5:9a:5b:dc: a3:1f:96:c2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUa/lR39qWO6vPzQMoCHEAzI5ksacwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0M1oX DTI3MDMwMzA2MjA0M1owMzExMC8GA1UEAxMoQTY2OEZDMzBFRUYzQ0Y3RjFDNDQy N0QwQTE0MjQ0Q0RCOEUyOTY3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKsGXnmQla57lfEExgVtUFVM5UY7Zqhg9fnlQ/3V0KuQVE+OlZz9Mgdkw6gZ e1m+yzuUx4OnmdB7WhadTW5zDUp1FmZyNUFaoIafI5f11BXu6f77vbYAUUh54ren P0LbMW5K/FUfct5d9d7geFTYAWVvB1/2Vk59jOPeA26cuh8j9ZyzymrFN1icyhEF UN9tsjFyoD1kfOjI2aBQAL4xe/trFAjfOUPVMTUb2eo9OXOVpvNlmqsLkmmnhEN4 qjM05t9/SnwwMmPIPDR71eMsKOw6D7Czt3ygMr2c2gU2oWgEflJt/mO7+lVMiJj5 cOPHf6aK534xRQ7DXATtzNHb6VsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSmaPww 7vPPfxxEJ9ChQkTNuOKWdDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQxOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qtEwDQYJKoZIhvcNAQELBQADggEBAAeEbGONHssfzdLpfQ8PW06H3OT5A5AccUsc f5LwdsvSgNTqvuMLJTpNGqBBGWF2QS+oecBRrTmsv7N0//7Nmwikg9nuIxqQcsvT OAyru0qRR7fYr5Fj+qL2Lu79iDZh8gkTxN5C+T0WvxJz24s6kXcvQW2kdNmy37xK euFd8KAU2qX1/4RUhq33A3cqKlxERACRAKvrOUX529bgjMmmLozTM3Q4c2fueeS9 gwWpr93UW90lC21JZKyFiUsXpE6jNbFYWgtTcIeir/WpqxfVoWrLXJNIhyleiGRg h6LYLEdPYc/uFhbzc3a7lwj2MvZMuutATDqDZF+K5Zpb3KMflsI= -----END CERTIFICATE-----Generated at Sat Mar 28 13:06:13 2026 by rpki-client