$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145444.roa File: AS145444.roa (raw, json) Hash identifier: HSLDmyBKcsbIy+zlUlXLghUdnKa7SSsfdZj+xFg/Zg0= Subject key identifier: 28:AB:95:D2:6A:4B:8A:0B:9D:5B:CE:EE:9F:73:88:DB:B8:87:18:6B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 550F982B804C95964377D5F5BD61F75BCAD2B912 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145444.roa Signing time: Wed 04 Mar 2026 06:21:48 +0000 ROA not before: Wed 04 Mar 2026 06:16:48 +0000 ROA not after: Wed 03 Mar 2027 06:21:48 +0000 asID: 145444 IP address blocks: 240a:aaea::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:0f:98:2b:80:4c:95:96:43:77:d5:f5:bd:61:f7:5b:ca:d2:b9:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:48 2026 GMT Not After : Mar 3 06:21:48 2027 GMT Subject: CN=28AB95D26A4B8A0B9D5BCEEE9F7388DBB887186B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:8f:f5:f1:c7:84:b1:25:9b:98:44:77:f7:0e: af:c7:fd:db:99:bc:66:c4:d4:51:71:b5:f1:15:44: cc:e3:48:7a:46:ad:fd:a0:e7:d9:a8:f1:a7:d7:b8: e4:14:41:49:cd:95:48:8b:29:23:b6:21:09:8e:8b: 62:34:16:d0:e6:eb:19:f3:78:07:b7:53:55:02:fe: 92:8c:8e:e8:60:86:d8:19:79:23:b8:18:17:85:3e: 98:e2:db:fb:1a:c9:0d:b4:49:57:f7:45:a7:a4:cd: ea:5d:91:15:0f:46:f5:0a:1c:4e:bd:ac:01:33:1d: dd:90:42:86:f6:0b:a5:b5:b0:1b:44:c7:6a:45:61: a8:dd:b2:c3:c3:02:e9:2a:d3:f6:1c:32:ba:10:d3: 48:ef:fb:7e:c3:a3:58:a3:83:7d:31:3d:86:c4:e1: c8:88:79:95:80:a6:2a:24:36:76:20:b6:63:ad:74: 29:db:ca:95:7c:c6:a7:2e:3e:68:45:83:8a:92:06: dc:fe:d4:13:24:7d:d8:1f:11:d8:6e:97:8c:b2:cc: af:b4:9a:fa:55:18:ee:97:bf:bc:f4:03:01:16:61: fb:90:73:3c:ab:17:35:f3:76:7f:fd:e6:69:ae:ef: eb:a2:51:8d:8d:7e:7d:33:df:0e:63:d9:d0:9c:d0: 11:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AB:95:D2:6A:4B:8A:0B:9D:5B:CE:EE:9F:73:88:DB:B8:87:18:6B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aaea::/32 Signature Algorithm: sha256WithRSAEncryption c4:97:17:e8:06:d1:af:d3:d1:b9:bc:16:2c:aa:53:7a:e0:bf: 75:3b:65:20:3d:ff:65:b4:6e:be:b1:19:d0:f8:8b:c7:91:89: eb:ea:90:20:a3:0a:18:0c:30:70:a1:72:aa:2a:c2:06:8c:08: bf:0f:35:98:31:56:d8:81:e2:d1:99:06:ce:7a:58:fd:53:29: c7:65:ef:e3:b9:ed:4a:51:a4:13:c9:97:bc:72:c0:9b:32:67: 02:24:7f:0c:d5:97:0a:c5:cf:af:64:a1:4b:df:87:26:de:ea: 09:94:cf:fb:b6:91:e3:cf:9a:3a:83:8b:74:73:3e:90:28:91: f3:eb:38:5f:fb:a1:57:c3:94:01:e5:9b:79:fd:b8:50:3c:cd: ac:83:fd:75:b8:9b:a7:0b:3e:cc:98:dd:6d:d5:b6:c4:76:a8: 57:a6:3e:30:5b:40:ba:0f:b1:9c:7b:b9:fd:3e:a4:7e:e2:6a: 7c:5a:10:e6:11:8c:87:1e:ae:39:ea:e3:11:0b:27:4a:8d:01: 59:d2:d3:48:94:19:c6:b5:43:a3:0c:da:bd:75:58:e0:03:93: e7:18:ac:c4:b8:5d:65:b4:23:07:9d:74:c1:45:1a:22:8b:23: ab:f0:63:16:9d:3e:95:fb:c6:d0:3a:2e:49:32:5d:2d:81:75: a7:8a:d6:8c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVQ+YK4BMlZZDd9X1vWH3W8rSuRIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0OFoX DTI3MDMwMzA2MjE0OFowMzExMC8GA1UEAxMoMjhBQjk1RDI2QTRCOEEwQjlENUJD RUVFOUY3Mzg4REJCODg3MTg2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJiP9fHHhLElm5hEd/cOr8f925m8ZsTUUXG18RVEzONIekat/aDn2ajxp9e4 5BRBSc2VSIspI7YhCY6LYjQW0ObrGfN4B7dTVQL+koyO6GCG2Bl5I7gYF4U+mOLb +xrJDbRJV/dFp6TN6l2RFQ9G9QocTr2sATMd3ZBChvYLpbWwG0THakVhqN2yw8MC 6SrT9hwyuhDTSO/7fsOjWKODfTE9hsThyIh5lYCmKiQ2diC2Y610KdvKlXzGpy4+ aEWDipIG3P7UEyR92B8R2G6XjLLMr7Sa+lUY7pe/vPQDARZh+5BzPKsXNfN2f/3m aa7v66JRjY1+fTPfDmPZ0JzQEWsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQoq5XS akuKC51bzu6fc4jbuIcYazAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ0NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK quowDQYJKoZIhvcNAQELBQADggEBAMSXF+gG0a/T0bm8FiyqU3rgv3U7ZSA9/2W0 br6xGdD4i8eRievqkCCjChgMMHChcqoqwgaMCL8PNZgxVtiB4tGZBs56WP1TKcdl 7+O57UpRpBPJl7xywJsyZwIkfwzVlwrFz69koUvfhybe6gmUz/u2kePPmjqDi3Rz PpAokfPrOF/7oVfDlAHlm3n9uFA8zayD/XW4m6cLPsyY3W3VtsR2qFemPjBbQLoP sZx7uf0+pH7ianxaEOYRjIcerjnq4xELJ0qNAVnS00iUGca1Q6MM2r11WOADk+cY rMS4XWW0IweddMFFGiKLI6vwYxadPpX7xtA6LkkyXS2BdaeK1ow= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:47 2026 by rpki-client