$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145530.roa File: AS145530.roa (raw, json) Hash identifier: 3HpjOjEbbxs1T512hLObtHui8i3xp8Wnfq6ntDCtlDc= Subject key identifier: 90:CC:42:47:E3:52:12:EB:8D:9A:92:9A:D3:E0:B2:9E:FB:92:36:05 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4D86B5403100B3F309F816FF6FC47069B01B7E26 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145530.roa Signing time: Wed 04 Mar 2026 06:29:40 +0000 ROA not before: Wed 04 Mar 2026 06:24:40 +0000 ROA not after: Wed 03 Mar 2027 06:29:40 +0000 asID: 145530 IP address blocks: 240a:ab40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:86:b5:40:31:00:b3:f3:09:f8:16:ff:6f:c4:70:69:b0:1b:7e:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:40 2026 GMT Not After : Mar 3 06:29:40 2027 GMT Subject: CN=90CC4247E35212EB8D9A929AD3E0B29EFB923605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:9b:51:8a:57:e9:e6:91:7a:db:27:bd:c2:2d: 5d:b2:6c:da:28:a1:aa:b1:a7:bf:9d:e1:fa:1e:63: 3b:e0:f9:53:6b:f0:62:f2:c6:86:4f:4f:01:5a:71: 42:35:54:b4:1f:dd:de:c9:12:8d:9b:a5:c7:4d:4d: b9:84:45:9c:60:a4:53:17:2f:c9:93:26:ce:8b:3b: 3f:37:55:be:00:d0:23:0c:58:32:7d:01:c4:4b:08: cc:ef:be:3a:e0:ea:00:8c:09:69:91:06:c5:69:49: 44:f8:e3:99:dc:08:ff:6f:8a:8e:01:a9:31:f0:81: ec:18:68:98:b6:1e:08:12:54:71:0f:9c:49:60:52: 62:4a:5b:de:dc:fb:c6:d6:a5:cc:d9:ec:64:72:d4: 98:29:10:7c:db:2c:28:24:be:53:6a:44:2d:4d:9e: b1:32:b5:21:2e:be:70:cc:d5:29:d9:68:65:57:cc: e2:59:9d:8d:52:1c:8e:4a:10:c4:ef:de:8b:cb:c2: 43:55:72:31:08:51:34:a3:49:57:0f:17:94:0d:19: b9:f8:16:04:75:d6:5c:73:63:01:7c:67:14:5c:57: a4:4d:ea:5d:3d:59:ba:d9:d4:32:2c:eb:a9:84:0d: 84:38:b9:18:2a:5b:dc:ec:e1:3a:25:b5:16:2a:8d: 5b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:CC:42:47:E3:52:12:EB:8D:9A:92:9A:D3:E0:B2:9E:FB:92:36:05 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab40::/32 Signature Algorithm: sha256WithRSAEncryption 7b:04:ae:e4:33:b2:33:90:3a:6b:13:3b:ee:1b:aa:1e:df:c8: 4f:a6:f7:1b:e0:ec:00:08:77:5c:84:55:25:10:85:6b:a4:ef: 6e:b1:a6:00:f0:b3:8f:08:2a:08:d7:8b:bd:fd:0e:dd:47:77: dd:d1:9b:75:15:85:21:e6:48:68:55:6f:b9:2f:28:51:35:0b: 23:32:5e:16:27:08:69:58:f0:05:db:d4:e9:5c:f6:60:fd:d4: 81:03:5a:ff:bf:a7:32:af:a1:81:6e:6d:b1:9d:bc:19:84:62: 6c:85:5f:18:30:37:43:36:1f:56:19:73:76:87:d6:0b:d2:04: 69:5f:ce:91:06:9c:3f:f5:0c:bf:1f:ee:40:01:36:a5:fd:49: 2f:da:20:40:25:75:40:70:be:31:e2:14:da:34:7a:68:ac:f5: 14:8f:5f:08:31:74:c8:cb:5c:d7:7e:7e:6d:ee:8f:92:91:e7: d2:aa:7d:36:32:9e:fb:c9:b1:57:71:aa:39:69:21:f2:b8:ac: bc:8f:c1:cb:28:26:bd:e7:98:98:6b:80:dc:84:b2:49:c7:2e: a4:82:5c:3b:b3:e8:39:92:af:1a:82:bb:34:e9:a5:c0:9c:7c: 31:1c:c1:49:00:bd:65:5c:ed:3b:99:64:4c:f9:bd:fb:32:bf: 66:c7:73:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTYa1QDEAs/MJ+Bb/b8RwabAbfiYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ0MFoX DTI3MDMwMzA2Mjk0MFowMzExMC8GA1UEAxMoOTBDQzQyNDdFMzUyMTJFQjhEOUE5 MjlBRDNFMEIyOUVGQjkyMzYwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIebUYpX6eaRetsnvcItXbJs2iihqrGnv53h+h5jO+D5U2vwYvLGhk9PAVpx QjVUtB/d3skSjZulx01NuYRFnGCkUxcvyZMmzos7PzdVvgDQIwxYMn0BxEsIzO++ OuDqAIwJaZEGxWlJRPjjmdwI/2+KjgGpMfCB7BhomLYeCBJUcQ+cSWBSYkpb3tz7 xtalzNnsZHLUmCkQfNssKCS+U2pELU2esTK1IS6+cMzVKdloZVfM4lmdjVIcjkoQ xO/ei8vCQ1VyMQhRNKNJVw8XlA0ZufgWBHXWXHNjAXxnFFxXpE3qXT1ZutnUMizr qYQNhDi5GCpb3OzhOiW1FiqNW5ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSQzEJH 41IS642akprT4LKe+5I2BTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTUzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q0AwDQYJKoZIhvcNAQELBQADggEBAHsEruQzsjOQOmsTO+4bqh7fyE+m9xvg7AAI d1yEVSUQhWuk726xpgDws48IKgjXi739Dt1Hd93Rm3UVhSHmSGhVb7kvKFE1CyMy XhYnCGlY8AXb1Olc9mD91IEDWv+/pzKvoYFubbGdvBmEYmyFXxgwN0M2H1YZc3aH 1gvSBGlfzpEGnD/1DL8f7kABNqX9SS/aIEAldUBwvjHiFNo0emis9RSPXwgxdMjL XNd+fm3uj5KR59KqfTYynvvJsVdxqjlpIfK4rLyPwcsoJr3nmJhrgNyEsknHLqSC XDuz6DmSrxqCuzTppcCcfDEcwUkAvWVc7TuZZEz5vfsyv2bHc2Y= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:37 2026 by rpki-client