$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145540.roa File: AS145540.roa (raw, json) Hash identifier: 5AWe9AHbXs8ix8Lvk54qQG1Wha3wcodIH03PQGMBIm0= Subject key identifier: DB:A6:CA:04:38:0F:33:13:36:A0:64:07:A4:1B:DE:95:E9:E5:BC:1F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 784117AB89804BF22FB2311C3D0B1A77D13EFCC1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145540.roa Signing time: Wed 04 Mar 2026 06:30:17 +0000 ROA not before: Wed 04 Mar 2026 06:25:17 +0000 ROA not after: Wed 03 Mar 2027 06:30:17 +0000 asID: 145540 IP address blocks: 240a:ab4a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:41:17:ab:89:80:4b:f2:2f:b2:31:1c:3d:0b:1a:77:d1:3e:fc:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:17 2026 GMT Not After : Mar 3 06:30:17 2027 GMT Subject: CN=DBA6CA04380F331336A06407A41BDE95E9E5BC1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e6:9b:57:0b:2e:6a:91:5d:d7:0f:52:d9:f8: 75:5d:de:46:41:69:44:d7:ef:af:30:5d:47:0d:0a: 99:ff:13:66:0c:7d:cf:84:61:21:f9:7d:e9:83:74: 97:7b:5a:6f:db:7d:61:40:4c:36:3a:98:00:63:f0: c8:95:bc:ca:2e:f2:4a:62:ca:ef:03:03:3c:46:23: 8e:b0:ff:5f:2b:fe:af:d2:d0:13:c4:be:a3:48:57: 6d:ee:66:ec:e5:bc:12:ce:9d:c9:50:57:27:2b:85: 42:4c:f4:03:83:00:2b:41:ab:68:76:3c:86:ea:df: fb:ee:6b:f4:19:63:ee:01:49:12:f6:cf:87:37:09: 1b:7b:95:41:a5:83:b7:50:58:91:ab:24:22:ee:6b: f5:7d:09:aa:06:04:e9:2a:11:dd:0c:45:99:c7:33: 68:76:f8:ed:84:a9:e2:d1:48:ed:bc:57:75:05:98: 7b:7f:15:25:45:c4:5a:45:9f:57:79:5a:16:e0:1e: 31:66:1a:bc:65:3b:d3:c3:61:a8:3a:34:22:92:c8: c6:77:47:9f:cf:de:de:39:e8:a0:2d:c3:6c:8b:e8: 1b:25:9d:3a:3d:2d:36:51:8e:b4:c4:68:1d:d8:bb: 85:18:2b:08:ec:e3:38:03:54:c4:5b:0f:24:59:5c: 52:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A6:CA:04:38:0F:33:13:36:A0:64:07:A4:1B:DE:95:E9:E5:BC:1F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145540.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab4a::/32 Signature Algorithm: sha256WithRSAEncryption 68:b0:db:05:14:9e:15:a0:31:6e:5a:d6:37:c9:b1:fb:4c:8c: cc:bb:5d:8a:16:b3:8e:ad:ab:77:16:da:24:f2:5b:52:13:93: 70:2d:5d:4a:3a:57:bc:63:9c:8a:3a:f6:e1:b8:fa:b6:1e:7a: a7:4b:17:e4:c0:f3:c7:5a:22:6d:7f:9f:11:29:45:02:0c:d9: da:aa:83:ad:ec:e7:c9:58:2d:7b:48:d8:54:24:7b:3c:c7:6e: 71:c0:cd:6a:95:c1:b0:65:9b:c3:1b:7f:76:bd:1e:2c:d6:76: 9e:e3:16:5e:0c:0d:b3:c3:c1:ae:14:da:ae:2b:76:ea:5d:6a: ae:39:0d:7e:58:e0:6f:52:e7:52:94:97:32:e1:d8:f0:bf:f2: 4a:a7:15:50:2d:61:a1:25:e3:ec:81:b7:18:09:ab:f1:75:43: 30:96:3b:c4:fd:36:33:bf:69:8c:7e:1e:55:97:63:a9:97:ce: ba:df:df:91:f2:de:81:1c:55:20:3a:75:72:f1:c3:7d:42:23: ab:bf:00:0c:d7:ef:fe:9f:98:50:fa:ef:ea:d0:2c:d2:ff:70: d1:96:0b:39:71:fc:f7:95:27:25:d5:d9:f3:ef:58:69:f8:fa: 9c:91:3b:80:38:89:aa:5b:31:4e:7e:08:8e:80:ad:1f:0d:c2: e1:12:3d:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUeEEXq4mAS/IvsjEcPQsad9E+/MEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUxN1oX DTI3MDMwMzA2MzAxN1owMzExMC8GA1UEAxMoREJBNkNBMDQzODBGMzMxMzM2QTA2 NDA3QTQxQkRFOTVFOUU1QkMxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrmm1cLLmqRXdcPUtn4dV3eRkFpRNfvrzBdRw0Kmf8TZgx9z4RhIfl96YN0 l3tab9t9YUBMNjqYAGPwyJW8yi7ySmLK7wMDPEYjjrD/Xyv+r9LQE8S+o0hXbe5m 7OW8Es6dyVBXJyuFQkz0A4MAK0GraHY8hurf++5r9Blj7gFJEvbPhzcJG3uVQaWD t1BYkaskIu5r9X0JqgYE6SoR3QxFmcczaHb47YSp4tFI7bxXdQWYe38VJUXEWkWf V3laFuAeMWYavGU708NhqDo0IpLIxndHn8/e3jnooC3DbIvoGyWdOj0tNlGOtMRo Hdi7hRgrCOzjOANUxFsPJFlcUu8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTbpsoE OA8zEzagZAekG96V6eW8HzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTU0MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q0owDQYJKoZIhvcNAQELBQADggEBAGiw2wUUnhWgMW5a1jfJsftMjMy7XYoWs46t q3cW2iTyW1ITk3AtXUo6V7xjnIo69uG4+rYeeqdLF+TA88daIm1/nxEpRQIM2dqq g63s58lYLXtI2FQkezzHbnHAzWqVwbBlm8Mbf3a9HizWdp7jFl4MDbPDwa4U2q4r dupdaq45DX5Y4G9S51KUlzLh2PC/8kqnFVAtYaEl4+yBtxgJq/F1QzCWO8T9NjO/ aYx+HlWXY6mXzrrf35Hy3oEcVSA6dXLxw31CI6u/AAzX7/6fmFD67+rQLNL/cNGW Czlx/PeVJyXV2fPvWGn4+pyRO4A4iapbMU5+CI6ArR8NwuESPX8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:35 2026 by rpki-client