$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145480.roa File: AS145480.roa (raw, json) Hash identifier: JdHi7+quKbBTTGMHDcYZwcLB53MTtgvHBiA2SyUPspA= Subject key identifier: DC:31:F7:07:C1:C3:E6:29:33:DD:90:EE:3D:27:CD:61:63:2B:95:70 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7B0F036BF0E5C4ACCADD62FC97229599780283EE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145480.roa Signing time: Wed 04 Mar 2026 06:20:17 +0000 ROA not before: Wed 04 Mar 2026 06:15:17 +0000 ROA not after: Wed 03 Mar 2027 06:20:17 +0000 asID: 145480 IP address blocks: 240a:ab0e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0f:03:6b:f0:e5:c4:ac:ca:dd:62:fc:97:22:95:99:78:02:83:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:17 2026 GMT Not After : Mar 3 06:20:17 2027 GMT Subject: CN=DC31F707C1C3E62933DD90EE3D27CD61632B9570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:54:a7:6d:71:77:a8:01:cc:5a:3c:89:04: b0:fd:0a:24:06:a9:37:8a:d0:fa:64:7f:bc:99:5c: 64:f3:bc:c1:6d:86:13:68:a5:17:31:2b:d3:9f:9e: 79:04:25:d0:fb:87:6b:d7:a2:01:d0:c7:2f:1d:07: 98:22:d5:62:d9:42:78:54:ff:35:fa:cc:9e:69:79: c7:96:99:56:53:5d:d3:a0:d0:0e:7d:b4:0a:45:18: 55:14:41:c0:ae:c2:18:a3:1e:94:c0:0b:a3:0b:df: b5:49:76:1d:b4:c5:a4:25:ee:1d:2a:1d:7e:31:f2: fa:ea:5d:ba:52:d8:41:a4:48:11:9c:23:a3:d3:13: fd:06:85:c0:4a:73:bb:ea:82:83:22:35:8a:05:d8: 6d:69:50:d5:a5:04:90:9c:1b:cd:1a:68:ad:68:0e: 37:b2:4d:ea:f6:70:28:c2:af:da:1f:aa:e5:08:f3: 75:a6:9b:f3:da:a2:f0:7e:80:ab:b8:78:ee:13:27: 67:3c:84:09:9a:27:e7:1a:a3:3a:06:fe:da:7a:be: 42:1d:3f:06:00:30:b5:2b:a0:7e:ce:3d:68:fc:1a: db:76:ff:63:ba:d4:2a:46:4f:6c:3f:d5:99:db:17: c3:42:ad:61:86:ef:cd:d1:be:b6:ec:13:f4:35:a3: 7f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:31:F7:07:C1:C3:E6:29:33:DD:90:EE:3D:27:CD:61:63:2B:95:70 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab0e::/32 Signature Algorithm: sha256WithRSAEncryption 84:1b:3e:1f:ce:b8:9c:76:a0:bb:87:dc:ab:87:ec:49:c7:a2: 80:58:99:f2:43:7b:0f:30:d9:92:c1:05:cb:4f:bc:31:c7:a8: cd:54:80:6b:90:96:cb:24:52:90:fa:54:61:e4:8f:67:5f:50: c3:94:f4:99:da:4e:e5:5f:a8:d3:78:01:54:a4:e6:37:be:36: 4e:22:ba:67:55:fd:30:fa:2d:5b:08:d3:51:80:a8:4d:5d:aa: ac:98:a7:9a:64:49:80:24:dd:d2:12:83:34:3e:61:61:4d:1d: f1:97:42:c5:9d:3c:d9:17:7f:3d:cd:e5:07:29:39:c4:fd:62: b6:6d:4f:c4:11:8e:be:18:b8:38:50:9a:bc:2f:57:7e:7c:44: 55:6b:e6:ee:f7:4b:3d:d1:be:07:ca:cf:4a:e7:a1:bc:a5:ac: fc:3b:66:1b:1c:da:9c:42:a7:40:6f:9e:f0:a2:90:3b:78:05: ec:c1:96:2a:9c:10:7d:f4:5e:2e:9d:88:9f:22:bd:8d:b0:13: 58:6d:eb:66:5b:3b:3c:e5:7f:38:1c:2f:65:f9:6c:37:2d:81: fb:53:22:fc:5f:48:0e:61:33:c7:46:b6:0e:93:f8:0a:b1:49: e5:f0:5c:43:67:da:7e:a7:79:cb:dc:cc:1b:5f:c2:f4:04:89: 29:ce:d4:77 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUew8Da/DlxKzK3WL8lyKVmXgCg+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUxN1oX DTI3MDMwMzA2MjAxN1owMzExMC8GA1UEAxMoREMzMUY3MDdDMUMzRTYyOTMzREQ5 MEVFM0QyN0NENjE2MzJCOTU3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK6PVKdtcXeoAcxaPIkEsP0KJAapN4rQ+mR/vJlcZPO8wW2GE2ilFzEr05+e eQQl0PuHa9eiAdDHLx0HmCLVYtlCeFT/NfrMnml5x5aZVlNd06DQDn20CkUYVRRB wK7CGKMelMALowvftUl2HbTFpCXuHSodfjHy+updulLYQaRIEZwjo9MT/QaFwEpz u+qCgyI1igXYbWlQ1aUEkJwbzRporWgON7JN6vZwKMKv2h+q5Qjzdaab89qi8H6A q7h47hMnZzyECZon5xqjOgb+2nq+Qh0/BgAwtSugfs49aPwa23b/Y7rUKkZPbD/V mdsXw0KtYYbvzdG+tuwT9DWjf1MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTcMfcH wcPmKTPdkO49J81hYyuVcDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ4MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qw4wDQYJKoZIhvcNAQELBQADggEBAIQbPh/OuJx2oLuH3KuH7EnHooBYmfJDew8w 2ZLBBctPvDHHqM1UgGuQlsskUpD6VGHkj2dfUMOU9JnaTuVfqNN4AVSk5je+Nk4i umdV/TD6LVsI01GAqE1dqqyYp5pkSYAk3dISgzQ+YWFNHfGXQsWdPNkXfz3N5Qcp OcT9YrZtT8QRjr4YuDhQmrwvV358RFVr5u73Sz3RvgfKz0rnobylrPw7Zhsc2pxC p0BvnvCikDt4BezBliqcEH30Xi6diJ8ivY2wE1ht62ZbOzzlfzgcL2X5bDctgftT IvxfSA5hM8dGtg6T+AqxSeXwXENn2n6necvczBtfwvQEiSnO1Hc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:47 2026 by rpki-client