$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145504.roa File: AS145504.roa (raw, json) Hash identifier: gRYngO3X77LwIpn92zlHsMeEuAmrqEGlY0VirHRsgj8= Subject key identifier: 96:23:34:95:60:58:17:FE:B8:36:4E:58:99:72:72:60:61:8E:FE:B7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 38420D24D5ABFE68AC843726DCAB2F9D97CD16E7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145504.roa Signing time: Wed 04 Mar 2026 06:19:46 +0000 ROA not before: Wed 04 Mar 2026 06:14:46 +0000 ROA not after: Wed 03 Mar 2027 06:19:46 +0000 asID: 145504 IP address blocks: 240a:ab26::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:42:0d:24:d5:ab:fe:68:ac:84:37:26:dc:ab:2f:9d:97:cd:16:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:46 2026 GMT Not After : Mar 3 06:19:46 2027 GMT Subject: CN=96233495605817FEB8364E5899727260618EFEB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:93:7a:0c:1a:d1:2f:e8:93:07:39:24:13:c7: d1:6f:62:15:e1:d0:cc:0e:b5:e4:9e:2d:3d:af:06: 89:70:58:e4:c0:2d:a5:8e:b9:46:48:3a:13:43:9e: cd:4d:ff:77:4c:ce:11:00:14:7c:c7:b5:eb:3a:9d: 88:3e:93:3e:cb:2b:f8:83:d2:b2:ef:58:48:f6:6a: 1a:c1:78:ba:ce:4b:19:cd:f5:c8:36:e9:45:31:32: ba:fc:7d:d3:18:87:b1:7f:8d:2f:40:db:71:6b:db: 60:aa:33:75:55:61:e0:1f:09:72:41:af:e5:50:45: 75:58:0e:2a:bd:d2:0e:db:9e:a6:5c:b6:72:71:9f: 29:8a:74:29:59:fe:ea:33:2c:a6:cf:dc:47:c5:e4: 39:5b:00:e3:2a:29:71:e6:eb:b3:50:20:63:8c:11: fd:d3:35:f4:df:23:60:ad:84:22:5f:43:db:f3:6c: cb:b6:07:93:50:9b:34:74:1e:9b:25:52:e9:43:a6: 37:7d:f2:6d:26:05:a5:ac:0e:77:ca:93:9c:af:c1: 9c:e2:42:14:f3:d5:af:4e:87:9c:29:f6:26:f2:6d: bd:9f:3a:3b:0f:e3:7c:e4:b3:93:5b:70:dd:89:b6: 0a:f6:9c:cf:21:9c:9b:22:6f:6e:42:20:1c:64:c5: ee:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:23:34:95:60:58:17:FE:B8:36:4E:58:99:72:72:60:61:8E:FE:B7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab26::/32 Signature Algorithm: sha256WithRSAEncryption 42:6e:fe:0c:a8:08:19:d9:6c:fd:79:83:dc:68:7d:9a:62:39: e5:d0:e4:a0:b9:f9:46:5b:74:f3:46:2b:97:be:d8:05:f1:13: 54:fe:6c:6b:69:97:12:7f:3b:f7:28:98:8a:f2:5a:0a:d2:a0: b9:6d:35:c4:48:d1:c7:0f:e4:9a:a7:cf:24:4a:03:58:cf:2a: 8e:a6:bf:fb:f0:0d:4f:de:37:7c:e2:e9:c9:f4:c5:76:5e:e0: 03:d4:37:92:55:86:ac:4a:22:d0:c7:1d:f5:c7:57:3d:55:b6: fb:fd:23:46:d2:e7:dd:c4:b7:0f:fd:82:11:ec:ef:37:07:9c: e8:8d:9d:92:71:d3:b5:9a:ac:0d:b6:1f:60:3d:fb:e3:72:1d: 46:f1:28:aa:28:fb:6e:94:50:62:20:d5:8c:f0:d1:6f:1c:1e: 53:63:20:8f:ae:a6:92:72:83:60:7a:35:d7:57:e6:cc:dc:e8: 06:b4:a7:4b:d4:00:bd:65:3f:9c:2a:c1:fa:2a:a1:6c:c6:e4: a2:1e:1a:e6:d0:a3:47:dd:a2:1c:3a:49:a5:e9:b0:e1:fe:3a: 9e:bc:b0:a6:03:5c:08:e0:0b:22:ea:d6:b0:9a:c5:96:72:94: 00:9f:19:d4:df:14:f7:7f:40:ad:6d:cd:86:48:ce:de:05:7f: df:de:9b:f2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOEINJNWr/mishDcm3KsvnZfNFucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0NloX DTI3MDMwMzA2MTk0NlowMzExMC8GA1UEAxMoOTYyMzM0OTU2MDU4MTdGRUI4MzY0 RTU4OTk3MjcyNjA2MThFRkVCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANmTegwa0S/okwc5JBPH0W9iFeHQzA615J4tPa8GiXBY5MAtpY65Rkg6E0Oe zU3/d0zOEQAUfMe16zqdiD6TPssr+IPSsu9YSPZqGsF4us5LGc31yDbpRTEyuvx9 0xiHsX+NL0DbcWvbYKozdVVh4B8JckGv5VBFdVgOKr3SDtueply2cnGfKYp0KVn+ 6jMsps/cR8XkOVsA4yopcebrs1AgY4wR/dM19N8jYK2EIl9D2/Nsy7YHk1CbNHQe myVS6UOmN33ybSYFpawOd8qTnK/BnOJCFPPVr06HnCn2JvJtvZ86Ow/jfOSzk1tw 3Ym2CvaczyGcmyJvbkIgHGTF7t0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSWIzSV YFgX/rg2TliZcnJgYY7+tzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTUwNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qyYwDQYJKoZIhvcNAQELBQADggEBAEJu/gyoCBnZbP15g9xofZpiOeXQ5KC5+UZb dPNGK5e+2AXxE1T+bGtplxJ/O/comIryWgrSoLltNcRI0ccP5JqnzyRKA1jPKo6m v/vwDU/eN3zi6cn0xXZe4APUN5JVhqxKItDHHfXHVz1Vtvv9I0bS593Etw/9ghHs 7zcHnOiNnZJx07WarA22H2A9++NyHUbxKKoo+26UUGIg1Yzw0W8cHlNjII+uppJy g2B6NddX5szc6Aa0p0vUAL1lP5wqwfoqoWzG5KIeGubQo0fdohw6SaXpsOH+Op68 sKYDXAjgCyLq1rCaxZZylACfGdTfFPd/QK1tzYZIzt4Ff9/em/I= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:07 2026 by rpki-client