$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145505.roa File: AS145505.roa (raw, json) Hash identifier: DWCj54vh/Ea6qEQkEFovHc66lx5YNP7c3sFoHrSTcRs= Subject key identifier: B1:C0:04:2E:8B:38:76:03:4C:F6:CE:FA:5E:C2:23:11:32:9F:92:22 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 741FCF80406983DB2B993A95176301758761CA02 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145505.roa Signing time: Wed 04 Mar 2026 06:19:31 +0000 ROA not before: Wed 04 Mar 2026 06:14:31 +0000 ROA not after: Wed 03 Mar 2027 06:19:31 +0000 asID: 145505 IP address blocks: 240a:ab27::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1f:cf:80:40:69:83:db:2b:99:3a:95:17:63:01:75:87:61:ca:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:31 2026 GMT Not After : Mar 3 06:19:31 2027 GMT Subject: CN=B1C0042E8B3876034CF6CEFA5EC22311329F9222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a6:18:93:b6:cc:f7:e0:93:37:32:fb:e3:7e: 1a:e8:ac:7b:df:48:a6:ae:cb:3f:ad:54:8f:4b:65: 85:94:5f:54:92:e6:81:1b:d2:58:ef:ee:42:a8:c8: f0:db:4c:67:f8:37:75:f5:0c:9e:f8:01:11:c7:36: c4:8e:8f:3b:dc:41:c1:59:51:3c:e4:b7:1c:3b:18: e9:e2:c4:00:d0:a1:0d:21:ee:d8:c0:42:97:16:7f: c4:31:23:e0:6f:39:fd:a4:27:9f:96:b5:97:30:77: b9:b9:97:c8:69:6e:5f:d1:27:7f:cc:21:ac:af:af: ee:c0:20:5f:2f:b7:82:ca:84:f0:c4:a7:44:65:43: ff:7e:28:93:b6:07:dd:70:0c:6f:40:fe:af:87:40: 7f:d7:8c:96:54:7e:cf:d7:e5:c8:a9:dc:39:64:10: fc:9e:93:ea:79:c8:19:55:0c:d8:14:61:46:56:bd: 56:85:53:c9:76:8f:4c:1c:cf:67:1b:d6:8a:f6:03: f9:ab:1c:70:2a:11:9f:32:4f:a6:37:03:77:39:61: 2d:a2:8c:35:78:bc:f8:94:8f:29:94:64:02:40:b4: 0f:dc:f4:78:f3:78:e4:83:dc:ef:f9:48:92:cc:b9: ec:b7:63:ef:c4:79:4d:9c:5d:b9:00:fd:ee:ac:e9: 52:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:C0:04:2E:8B:38:76:03:4C:F6:CE:FA:5E:C2:23:11:32:9F:92:22 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145505.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab27::/32 Signature Algorithm: sha256WithRSAEncryption 6f:f6:1b:e9:b0:d5:3f:14:c3:72:ca:e7:69:0d:33:50:2c:9f: 2a:95:19:ef:f0:21:54:30:f4:a6:88:e7:88:58:dd:df:c7:f9: e6:48:84:8e:e8:7c:fb:9c:3d:eb:64:a5:59:aa:9e:fd:78:74: 14:49:52:54:f5:94:10:ae:77:b3:98:d7:22:d3:96:11:ac:47: 00:43:22:28:4d:d1:11:f6:c2:74:89:be:64:a0:f2:28:02:9a: 12:a0:02:04:29:d4:2d:7e:1b:e8:5a:8f:16:1d:75:5c:de:7e: d7:e4:7f:c6:ad:02:95:26:24:00:01:88:93:1d:36:80:68:e8: 70:12:1b:6c:5a:b6:f8:1e:d9:3d:78:0a:40:d8:9d:e9:64:a0: 32:5e:e3:93:4d:5b:04:0e:5b:6f:bc:e1:69:85:a2:31:f9:43: 3b:be:e4:e2:c7:ca:de:34:4c:6a:90:84:c8:ee:f6:be:07:2d: 1e:e3:c3:d5:86:4f:1b:3e:18:10:7f:6f:b6:70:cc:6c:21:95: 25:f9:7f:c1:3d:a4:04:99:f9:10:0c:d1:3f:b2:78:f2:2b:2d: eb:ed:1b:45:65:b5:8a:23:12:4d:37:97:1a:4c:c0:62:14:d0: 88:e2:16:cb:c2:71:3a:92:d3:f1:8f:de:4e:4f:5e:af:cf:8b: af:aa:4a:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdB/PgEBpg9srmTqVF2MBdYdhygIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQzMVoX DTI3MDMwMzA2MTkzMVowMzExMC8GA1UEAxMoQjFDMDA0MkU4QjM4NzYwMzRDRjZD RUZBNUVDMjIzMTEzMjlGOTIyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANCmGJO2zPfgkzcy++N+Guise99Ipq7LP61Uj0tlhZRfVJLmgRvSWO/uQqjI 8NtMZ/g3dfUMnvgBEcc2xI6PO9xBwVlRPOS3HDsY6eLEANChDSHu2MBClxZ/xDEj 4G85/aQnn5a1lzB3ubmXyGluX9Enf8whrK+v7sAgXy+3gsqE8MSnRGVD/34ok7YH 3XAMb0D+r4dAf9eMllR+z9flyKncOWQQ/J6T6nnIGVUM2BRhRla9VoVTyXaPTBzP ZxvWivYD+asccCoRnzJPpjcDdzlhLaKMNXi8+JSPKZRkAkC0D9z0ePN45IPc7/lI ksy57Ldj78R5TZxduQD97qzpUoECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSxwAQu izh2A0z2zvpewiMRMp+SIjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTUwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qycwDQYJKoZIhvcNAQELBQADggEBAG/2G+mw1T8Uw3LK52kNM1AsnyqVGe/wIVQw 9KaI54hY3d/H+eZIhI7ofPucPetkpVmqnv14dBRJUlT1lBCud7OY1yLTlhGsRwBD IihN0RH2wnSJvmSg8igCmhKgAgQp1C1+G+hajxYddVzeftfkf8atApUmJAABiJMd NoBo6HASG2xatvge2T14CkDYnelkoDJe45NNWwQOW2+84WmFojH5Qzu+5OLHyt40 TGqQhMju9r4HLR7jw9WGTxs+GBB/b7ZwzGwhlSX5f8E9pASZ+RAM0T+yePIrLevt G0VltYojEk03lxpMwGIU0IjiFsvCcTqS0/GP3k5PXq/Pi6+qSoU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:40 2026 by rpki-client