$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145503.roa File: AS145503.roa (raw, json) Hash identifier: /59ZyopSKjN1+ZxWNYS/Tg6HL9GlfomRvxOokqmS/zI= Subject key identifier: 45:A1:21:75:73:E2:1C:A1:DB:DF:1C:B3:2D:65:6A:98:25:E3:FF:C7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 53EFAC7280E1BD7C2405A942B99B6BBF3A086DF6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145503.roa Signing time: Wed 04 Mar 2026 06:20:47 +0000 ROA not before: Wed 04 Mar 2026 06:15:47 +0000 ROA not after: Wed 03 Mar 2027 06:20:47 +0000 asID: 145503 IP address blocks: 240a:ab25::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ef:ac:72:80:e1:bd:7c:24:05:a9:42:b9:9b:6b:bf:3a:08:6d:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:47 2026 GMT Not After : Mar 3 06:20:47 2027 GMT Subject: CN=45A1217573E21CA1DBDF1CB32D656A9825E3FFC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:98:20:53:d4:c3:b6:02:91:dd:36:7d:ad:58: 36:e6:3f:cf:6d:9c:af:f3:55:92:04:39:0d:1b:b3: b0:93:16:85:44:ae:bc:85:37:cb:0d:4c:f2:ab:d7: 88:62:b9:d6:d8:4a:b2:9f:e7:ba:ce:9b:de:99:6c: 04:cc:df:4d:b8:9b:fa:c3:dc:a8:f2:76:3b:39:fe: 1e:78:e7:58:1b:e5:15:a4:16:3a:ca:4a:ef:d2:0d: d4:38:09:7b:bc:e2:29:34:d6:3f:a5:ac:6b:23:65: d9:f9:58:dc:f8:31:8d:95:27:91:1a:93:eb:e9:e7: 72:b9:b0:be:a7:01:18:31:2b:75:04:31:84:55:98: 3d:d2:26:ea:10:a4:fd:be:90:f7:d3:d2:ee:8a:c4: ad:7d:7f:1a:2e:45:02:07:a6:8f:17:1c:17:7f:26: 43:53:0c:0b:1b:e0:c7:fa:cb:33:f3:a4:f8:f1:87: d0:46:71:4b:b4:75:b1:68:a2:bb:36:44:24:b8:be: 42:07:d6:10:3d:1c:b4:2a:83:f0:b3:eb:52:3a:22: bf:f6:88:1d:6c:d8:8f:28:ec:2a:36:60:3c:31:ea: c8:5a:23:2c:df:4f:b4:83:62:cc:ea:e2:8d:7d:b5: 55:ac:8a:cb:ff:f2:2a:4b:17:17:d8:c6:d8:36:7c: 34:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A1:21:75:73:E2:1C:A1:DB:DF:1C:B3:2D:65:6A:98:25:E3:FF:C7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145503.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab25::/32 Signature Algorithm: sha256WithRSAEncryption 6a:ad:03:36:8a:c2:55:a6:ef:f3:c5:2a:2c:66:de:51:ba:58: 92:3a:ff:b7:12:01:82:8c:63:61:d5:55:ab:4f:ab:3f:7c:11: 36:28:11:7c:91:8d:c2:6c:08:20:be:a4:1e:15:36:60:f7:fc: 12:38:f3:27:19:09:84:01:1f:2c:d3:68:e2:89:41:fd:46:eb: 5e:d2:2e:d4:82:cf:ac:cb:88:45:1a:8d:42:6e:2a:26:7f:78: 33:5b:7d:92:06:bd:8a:e3:f5:99:4d:6f:00:49:86:f6:1b:ab: 18:18:4a:7a:4f:e5:15:97:4a:0a:fc:9f:96:a2:bd:cd:85:10: cf:ed:51:e1:bf:ec:05:8f:f6:9a:9d:cd:02:e3:b8:5d:31:13: 3c:a8:9e:ee:c0:73:25:2f:2d:27:95:bc:12:5a:16:02:cc:1e: 19:4b:4d:09:1e:c0:29:02:88:e6:39:7b:c1:cf:64:b8:51:f6: 7c:10:3d:00:b9:91:c9:c5:49:9d:59:b6:83:fa:6a:4d:47:57: 08:4c:89:e9:8a:45:cc:4b:96:33:29:30:17:1a:d7:eb:9c:c4: ac:50:33:99:e1:b1:41:de:ea:82:57:c1:0e:66:e0:15:75:b6: 7b:19:50:c7:4a:27:cc:a9:be:2b:45:5e:9e:92:8f:60:75:96: 27:08:45:e2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUU++scoDhvXwkBalCuZtrvzoIbfYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0N1oX DTI3MDMwMzA2MjA0N1owMzExMC8GA1UEAxMoNDVBMTIxNzU3M0UyMUNBMURCREYx Q0IzMkQ2NTZBOTgyNUUzRkZDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKYIFPUw7YCkd02fa1YNuY/z22cr/NVkgQ5DRuzsJMWhUSuvIU3yw1M8qvX iGK51thKsp/nus6b3plsBMzfTbib+sPcqPJ2Ozn+HnjnWBvlFaQWOspK79IN1DgJ e7ziKTTWP6WsayNl2flY3PgxjZUnkRqT6+nncrmwvqcBGDErdQQxhFWYPdIm6hCk /b6Q99PS7orErX1/Gi5FAgemjxccF38mQ1MMCxvgx/rLM/Ok+PGH0EZxS7R1sWii uzZEJLi+QgfWED0ctCqD8LPrUjoiv/aIHWzYjyjsKjZgPDHqyFojLN9PtINizOri jX21VayKy//yKksXF9jG2DZ8NFcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRFoSF1 c+IcodvfHLMtZWqYJeP/xzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTUwMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qyUwDQYJKoZIhvcNAQELBQADggEBAGqtAzaKwlWm7/PFKixm3lG6WJI6/7cSAYKM Y2HVVatPqz98ETYoEXyRjcJsCCC+pB4VNmD3/BI48ycZCYQBHyzTaOKJQf1G617S LtSCz6zLiEUajUJuKiZ/eDNbfZIGvYrj9ZlNbwBJhvYbqxgYSnpP5RWXSgr8n5ai vc2FEM/tUeG/7AWP9pqdzQLjuF0xEzyonu7AcyUvLSeVvBJaFgLMHhlLTQkewCkC iOY5e8HPZLhR9nwQPQC5kcnFSZ1ZtoP6ak1HVwhMiemKRcxLljMpMBca1+ucxKxQ M5nhsUHe6oJXwQ5m4BV1tnsZUMdKJ8ypvitFXp6Sj2B1licIReI= -----END CERTIFICATE-----Generated at Sat Mar 28 13:15:15 2026 by rpki-client