$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145538.roa File: AS145538.roa (raw, json) Hash identifier: 6QW/Ty0SjQ32AI9mthwPm86JMFmzUGmK/RYKX1U3Da8= Subject key identifier: 91:9A:6A:1F:1A:23:65:C5:0F:B9:98:DC:D3:63:C9:55:51:F6:44:2E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 19D512596E65AA22E91FA8396041830D165CE139 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145538.roa Signing time: Wed 04 Mar 2026 06:30:05 +0000 ROA not before: Wed 04 Mar 2026 06:25:05 +0000 ROA not after: Wed 03 Mar 2027 06:30:05 +0000 asID: 145538 IP address blocks: 240a:ab48::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d5:12:59:6e:65:aa:22:e9:1f:a8:39:60:41:83:0d:16:5c:e1:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:05 2026 GMT Not After : Mar 3 06:30:05 2027 GMT Subject: CN=919A6A1F1A2365C50FB998DCD363C95551F6442E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8f:e4:8b:24:56:78:19:99:f2:c5:77:6b:f4: 78:21:ae:8c:df:7f:f0:d7:cb:cd:88:2c:49:53:e7: 65:c2:a2:e0:6f:10:38:9c:42:4b:41:eb:d9:01:56: f6:c5:62:38:a6:66:03:b8:fd:92:6e:f0:81:14:48: f8:6e:eb:e5:96:02:4b:d6:17:8b:fa:8b:53:e1:f8: 22:47:d1:10:bd:e7:9f:ad:8a:06:e7:b4:d0:e6:c4: 06:df:0c:90:58:e6:af:a2:18:e9:de:4b:25:46:34: e9:94:f7:9d:2d:a5:f6:47:65:aa:c3:6a:ab:45:5e: 68:2a:0e:bc:1b:7d:35:bb:8a:fa:5a:de:68:17:e9: 6b:03:9c:99:ce:9c:00:26:e8:32:e0:53:9f:65:41: 51:70:48:36:1c:8d:6d:15:d8:89:4c:9b:93:e6:d4: a8:90:60:d7:72:4c:ee:66:67:71:42:e1:ca:cb:99: 21:56:0b:b9:4e:63:01:f0:5b:a5:40:d5:56:9e:25: 19:8a:29:57:1b:97:8d:d6:e4:93:80:36:5d:0f:a7: 6c:c2:86:a9:cc:df:74:73:6f:c6:22:a1:8a:fe:98: 19:09:23:86:49:4c:00:ee:ae:13:69:18:2d:92:d2: 70:5b:06:d0:42:4b:a0:d6:11:20:7e:b6:60:e0:07: 0f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9A:6A:1F:1A:23:65:C5:0F:B9:98:DC:D3:63:C9:55:51:F6:44:2E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab48::/32 Signature Algorithm: sha256WithRSAEncryption 95:a2:0e:7e:6e:02:60:9f:a1:d0:d7:76:c0:0a:e2:4c:6f:1f: f0:c9:4d:69:0e:51:d0:30:b8:fd:95:12:28:44:3c:85:5c:3c: 35:47:f8:53:93:58:eb:81:78:60:b4:8c:ce:c1:58:46:ab:73: c6:6e:ec:81:73:41:42:6a:13:5a:6f:88:07:1f:d0:dc:60:ec: cf:bd:ef:9b:03:b1:cf:3c:e8:de:d6:d0:5a:9c:07:55:6f:5b: 6d:f3:b4:41:a2:47:6c:9f:57:81:b5:f0:8c:b5:2d:e5:52:ac: 1a:c5:96:f8:73:72:7b:2a:c9:26:96:36:de:30:e7:d3:d2:09: 80:d2:49:8c:01:d5:e8:52:c4:26:0c:c2:ad:92:75:fc:56:27: 7f:06:4b:9a:3b:93:cd:1d:f2:25:0f:19:9e:60:ed:81:88:65: 2c:84:4d:cc:7d:ff:55:ee:9a:cb:85:9c:b5:40:c1:5c:22:b8: 48:ad:ea:83:b0:49:90:22:5b:d4:2f:33:af:1f:8b:68:bf:9c: a1:68:76:fa:40:4d:d7:2b:ae:9b:a9:4c:d4:4d:f7:91:44:24: 13:b3:05:e0:04:f5:e4:d8:85:4e:5c:37:d0:8f:26:5b:2c:fc: 7f:b4:b7:60:1c:2b:8b:8d:2e:ce:58:fa:5b:2d:aa:f8:33:4f: ba:24:37:e4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGdUSWW5lqiLpH6g5YEGDDRZc4TkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUwNVoX DTI3MDMwMzA2MzAwNVowMzExMC8GA1UEAxMoOTE5QTZBMUYxQTIzNjVDNTBGQjk5 OERDRDM2M0M5NTU1MUY2NDQyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCP5IskVngZmfLFd2v0eCGujN9/8NfLzYgsSVPnZcKi4G8QOJxCS0Hr2QFW 9sViOKZmA7j9km7wgRRI+G7r5ZYCS9YXi/qLU+H4IkfREL3nn62KBue00ObEBt8M kFjmr6IY6d5LJUY06ZT3nS2l9kdlqsNqq0VeaCoOvBt9NbuK+lreaBfpawOcmc6c ACboMuBTn2VBUXBINhyNbRXYiUybk+bUqJBg13JM7mZncULhysuZIVYLuU5jAfBb pUDVVp4lGYopVxuXjdbkk4A2XQ+nbMKGqczfdHNvxiKhiv6YGQkjhklMAO6uE2kY LZLScFsG0EJLoNYRIH62YOAHDw0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSRmmof GiNlxQ+5mNzTY8lVUfZELjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTUzOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q0gwDQYJKoZIhvcNAQELBQADggEBAJWiDn5uAmCfodDXdsAK4kxvH/DJTWkOUdAw uP2VEihEPIVcPDVH+FOTWOuBeGC0jM7BWEarc8Zu7IFzQUJqE1pviAcf0Nxg7M+9 75sDsc886N7W0FqcB1VvW23ztEGiR2yfV4G18Iy1LeVSrBrFlvhzcnsqySaWNt4w 59PSCYDSSYwB1ehSxCYMwq2SdfxWJ38GS5o7k80d8iUPGZ5g7YGIZSyETcx9/1Xu msuFnLVAwVwiuEit6oOwSZAiW9QvM68fi2i/nKFodvpATdcrrpupTNRN95FEJBOz BeAE9eTYhU5cN9CPJlss/H+0t2AcK4uNLs5Y+lstqvgzT7okN+Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:48 2026 by rpki-client