$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145434.roa File: AS145434.roa (raw, json) Hash identifier: cXTght0Z2EVAySNLmSJr46RgIpbV5NXu3Y0Zlbj+zWA= Subject key identifier: C6:47:EC:6D:53:30:A8:C6:55:F5:DA:81:1A:4A:D9:04:A2:16:14:D4 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3E220F9BB4F2A7081B0694C79859784293DC7FAE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145434.roa Signing time: Wed 04 Mar 2026 06:19:54 +0000 ROA not before: Wed 04 Mar 2026 06:14:54 +0000 ROA not after: Wed 03 Mar 2027 06:19:54 +0000 asID: 145434 IP address blocks: 240a:aae0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:22:0f:9b:b4:f2:a7:08:1b:06:94:c7:98:59:78:42:93:dc:7f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:54 2026 GMT Not After : Mar 3 06:19:54 2027 GMT Subject: CN=C647EC6D5330A8C655F5DA811A4AD904A21614D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:06:f8:70:7d:47:e5:85:ef:c5:f4:9a:50:a4: e6:38:ac:a6:ec:27:d5:bd:96:dc:ca:c7:a5:d9:10: 4f:cb:f0:62:2c:a9:3f:6a:7a:47:23:f7:5e:7d:bb: ac:de:55:88:cf:88:5b:fa:66:fb:c1:ac:7b:be:da: 2c:0d:90:99:42:d4:38:fe:ad:09:9e:c5:29:7c:51: 29:53:f5:af:ca:63:2b:12:4f:44:1f:5c:57:60:07: 50:dc:33:e1:24:0a:33:52:20:a8:09:0a:3c:d1:83: f8:18:c5:f3:62:c0:d5:c7:35:e0:80:c5:dd:48:6b: cb:7d:6a:be:7e:bf:d9:3c:b4:6f:2f:65:5e:b5:70: 2b:dc:96:5b:e4:8e:76:1c:f8:f1:48:67:7f:cd:36: 63:62:27:cf:6b:d3:60:9e:3b:72:0c:19:0b:56:d7: cd:92:5f:b8:f0:98:7f:c3:ff:96:23:d9:9d:bc:06: 41:95:e7:af:b1:69:09:ad:a5:9e:e2:65:5d:49:21: 57:03:5d:3e:5c:59:e7:b8:b2:53:48:65:a6:54:11: be:41:a5:a1:12:83:4d:c6:5f:da:ba:e4:68:b1:81: 77:26:d1:76:b5:23:8b:c4:ed:06:4d:dd:74:6f:df: 28:a5:2d:1a:11:68:cb:17:60:83:f7:2f:82:84:ba: e3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:47:EC:6D:53:30:A8:C6:55:F5:DA:81:1A:4A:D9:04:A2:16:14:D4 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aae0::/32 Signature Algorithm: sha256WithRSAEncryption 28:81:f7:6d:63:71:f3:ab:e6:2c:b0:ab:96:0f:98:a1:59:22: 3d:b7:6d:f9:08:d6:fe:fd:0d:da:00:8b:ef:80:15:81:17:5a: 22:a9:8f:c4:33:bb:74:a7:f9:22:23:5f:7b:ee:13:ed:74:1a: 42:8a:93:99:90:e4:c8:8a:29:e3:23:84:80:d5:ba:fb:27:da: 4a:85:b1:21:db:cc:ec:ce:5d:39:54:c2:8a:75:1d:77:9e:6e: 24:fa:c7:d7:b2:0c:08:eb:28:ff:e5:7f:ec:10:d7:a6:86:67: f2:ba:2f:58:06:be:cd:65:a4:df:18:60:1e:c2:d7:3f:46:ad: 9b:5b:70:12:af:af:1a:c4:77:89:7c:9f:35:ba:f8:15:25:05: cd:6b:16:fb:72:cb:ba:86:5b:48:fc:86:b6:b6:d9:d2:dd:b0: 00:6f:f4:cc:d7:42:a3:95:c9:d7:a1:1f:28:2b:5f:c6:bf:48: 6f:72:55:d6:f5:28:4d:0a:07:a9:c0:73:96:22:50:cb:7c:97: 7e:00:f0:82:47:40:42:b0:1d:52:ed:c8:ba:14:e0:fb:4d:ae: 45:8e:b8:a2:aa:61:ae:64:c0:cc:78:07:67:3f:b6:a2:ce:e8: 2a:d8:d6:b8:57:3d:ad:67:99:e7:60:35:70:88:32:c5:23:32: ff:6b:c9:59 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPiIPm7TypwgbBpTHmFl4QpPcf64wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ1NFoX DTI3MDMwMzA2MTk1NFowMzExMC8GA1UEAxMoQzY0N0VDNkQ1MzMwQThDNjU1RjVE QTgxMUE0QUQ5MDRBMjE2MTRENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoG+HB9R+WF78X0mlCk5jispuwn1b2W3MrHpdkQT8vwYiypP2p6RyP3Xn27 rN5ViM+IW/pm+8Gse77aLA2QmULUOP6tCZ7FKXxRKVP1r8pjKxJPRB9cV2AHUNwz 4SQKM1IgqAkKPNGD+BjF82LA1cc14IDF3Uhry31qvn6/2Ty0by9lXrVwK9yWW+SO dhz48Uhnf802Y2Inz2vTYJ47cgwZC1bXzZJfuPCYf8P/liPZnbwGQZXnr7FpCa2l nuJlXUkhVwNdPlxZ57iyU0hlplQRvkGloRKDTcZf2rrkaLGBdybRdrUji8TtBk3d dG/fKKUtGhFoyxdgg/cvgoS647kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTGR+xt UzCoxlX12oEaStkEohYU1DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK quAwDQYJKoZIhvcNAQELBQADggEBACiB921jcfOr5iywq5YPmKFZIj23bfkI1v79 DdoAi++AFYEXWiKpj8Qzu3Sn+SIjX3vuE+10GkKKk5mQ5MiKKeMjhIDVuvsn2kqF sSHbzOzOXTlUwop1HXeebiT6x9eyDAjrKP/lf+wQ16aGZ/K6L1gGvs1lpN8YYB7C 1z9GrZtbcBKvrxrEd4l8nzW6+BUlBc1rFvtyy7qGW0j8hra22dLdsABv9MzXQqOV ydehHygrX8a/SG9yVdb1KE0KB6nAc5YiUMt8l34A8IJHQEKwHVLtyLoU4PtNrkWO uKKqYa5kwMx4B2c/tqLO6CrY1rhXPa1nmedgNXCIMsUjMv9ryVk= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:07 2026 by rpki-client