$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145615.roa File: AS145615.roa (raw, json) Hash identifier: 2Fn7LcXOw6EnB0pIjMbSPojCUNTl/dlRINE3Gj1mkGs= Subject key identifier: 75:E7:38:F4:9B:C1:25:1A:22:1B:02:27:88:1B:1C:D4:15:05:4A:7D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6E2E6B0F97DFF121D04BA7AA86456112E670E5D8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145615.roa Signing time: Wed 04 Mar 2026 06:29:49 +0000 ROA not before: Wed 04 Mar 2026 06:24:49 +0000 ROA not after: Wed 03 Mar 2027 06:29:49 +0000 asID: 145615 IP address blocks: 240a:ab95::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:2e:6b:0f:97:df:f1:21:d0:4b:a7:aa:86:45:61:12:e6:70:e5:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:49 2026 GMT Not After : Mar 3 06:29:49 2027 GMT Subject: CN=75E738F49BC1251A221B0227881B1CD415054A7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0b:0c:42:c6:91:43:12:58:8d:65:0c:77:f3: 5f:3a:2f:91:6e:46:c9:b3:81:13:84:61:7d:50:8d: 15:1e:4d:2f:8f:30:3e:7a:78:ff:8e:98:12:9b:08: 36:0a:bf:5c:a6:df:5f:0d:a8:f6:0e:35:60:c2:e8: 27:dc:e3:df:14:b8:ac:6b:14:1c:58:9d:4b:53:3b: ec:c9:f3:95:17:46:07:19:65:be:37:16:18:ef:aa: 6e:ca:51:59:a4:0c:f2:94:9d:72:4b:ec:06:e5:53: 6d:20:c3:de:a3:97:df:00:3a:0e:4d:01:55:37:68: 4c:fc:f0:ed:42:cd:86:35:76:c4:40:db:21:cc:47: 11:9b:73:10:96:56:cf:5f:ef:91:09:76:53:98:9b: 64:a0:d7:66:0d:28:96:e8:df:f0:81:44:88:e8:ad: bb:59:6f:6b:70:e1:e2:2a:7f:dd:5f:23:da:eb:b7: 30:93:51:6e:23:94:b0:be:11:43:60:20:8c:a2:d2: f8:33:ce:57:ab:7a:6d:42:ac:8c:05:2b:d5:73:5e: 04:b3:34:85:d1:3f:4f:79:25:58:17:43:72:51:f3: 00:39:f2:f7:80:fa:1c:34:94:72:55:5f:21:44:b7: 83:c4:46:79:ef:fb:aa:48:46:0a:5e:cc:54:42:da: 10:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E7:38:F4:9B:C1:25:1A:22:1B:02:27:88:1B:1C:D4:15:05:4A:7D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145615.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab95::/32 Signature Algorithm: sha256WithRSAEncryption db:51:08:02:76:14:e0:6c:6f:39:6a:08:86:5c:ae:03:43:ce: 24:0f:8f:1f:13:0a:0b:1e:c7:73:2b:54:f5:eb:9f:10:66:77: 81:6c:34:c0:45:e2:a5:66:b5:66:0a:c0:03:8e:a1:9e:1c:3e: 8f:be:59:d7:62:6c:65:09:38:01:b7:e2:38:92:1d:2b:1c:eb: 1e:26:0c:e7:d2:bc:21:19:8b:3a:e5:a9:ac:60:a4:50:ef:c8: 09:ef:9f:fc:3e:46:e9:c1:1f:d2:d9:d1:8a:1c:09:44:3f:3a: 83:3d:e4:23:4b:0f:85:10:00:63:c3:1b:13:74:70:8d:96:36: 7f:54:a7:7e:4f:0c:16:da:9a:3b:f1:31:3c:53:07:1b:1a:48: 25:ef:f9:56:bd:41:08:e4:e4:00:53:53:b3:a9:ca:8b:31:3c: 9e:e4:49:b2:87:39:b6:0e:c8:18:b9:b7:07:33:82:4d:63:73: ae:23:1c:38:bd:db:f0:d2:1f:35:e3:96:d5:98:3b:cc:87:1f: b1:92:30:c6:3c:84:60:4c:15:77:3f:8f:b0:03:30:08:36:7a: e9:7f:21:63:55:08:a7:1a:a8:c5:15:ba:f5:cd:1e:0f:42:25: 76:e9:cb:a5:a4:33:6d:4a:2d:3f:ab:ad:1b:b6:c6:c1:1d:2e: 86:95:6e:3d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbi5rD5ff8SHQS6eqhkVhEuZw5dgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ0OVoX DTI3MDMwMzA2Mjk0OVowMzExMC8GA1UEAxMoNzVFNzM4RjQ5QkMxMjUxQTIyMUIw MjI3ODgxQjFDRDQxNTA1NEE3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoLDELGkUMSWI1lDHfzXzovkW5GybOBE4RhfVCNFR5NL48wPnp4/46YEpsI Ngq/XKbfXw2o9g41YMLoJ9zj3xS4rGsUHFidS1M77MnzlRdGBxllvjcWGO+qbspR WaQM8pSdckvsBuVTbSDD3qOX3wA6Dk0BVTdoTPzw7ULNhjV2xEDbIcxHEZtzEJZW z1/vkQl2U5ibZKDXZg0olujf8IFEiOitu1lva3Dh4ip/3V8j2uu3MJNRbiOUsL4R Q2AgjKLS+DPOV6t6bUKsjAUr1XNeBLM0hdE/T3klWBdDclHzADny94D6HDSUclVf IUS3g8RGee/7qkhGCl7MVELaEGkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR15zj0 m8ElGiIbAieIGxzUFQVKfTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTYxNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q5UwDQYJKoZIhvcNAQELBQADggEBANtRCAJ2FOBsbzlqCIZcrgNDziQPjx8TCgse x3MrVPXrnxBmd4FsNMBF4qVmtWYKwAOOoZ4cPo++WddibGUJOAG34jiSHSsc6x4m DOfSvCEZizrlqaxgpFDvyAnvn/w+RunBH9LZ0YocCUQ/OoM95CNLD4UQAGPDGxN0 cI2WNn9Up35PDBbamjvxMTxTBxsaSCXv+Va9QQjk5ABTU7OpyosxPJ7kSbKHObYO yBi5twczgk1jc64jHDi92/DSHzXjltWYO8yHH7GSMMY8hGBMFXc/j7ADMAg2eul/ IWNVCKcaqMUVuvXNHg9CJXbpy6WkM21KLT+rrRu2xsEdLoaVbj0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:32 2026 by rpki-client