$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145675.roa File: AS145675.roa (raw, json) Hash identifier: 1INAQPvIb0OSd1nulJikPhnH3F0OAsgBHVi7BXyA/Cg= Subject key identifier: C5:2F:CE:58:EF:F9:EA:5A:DD:27:01:4E:0C:CE:6F:39:38:36:DD:38 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 345024BC6D7A5C39AE1E3F1161E7E59379A44E12 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145675.roa Signing time: Wed 04 Mar 2026 06:30:49 +0000 ROA not before: Wed 04 Mar 2026 06:25:49 +0000 ROA not after: Wed 03 Mar 2027 06:30:49 +0000 asID: 145675 IP address blocks: 240a:abd1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:50:24:bc:6d:7a:5c:39:ae:1e:3f:11:61:e7:e5:93:79:a4:4e:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:49 2026 GMT Not After : Mar 3 06:30:49 2027 GMT Subject: CN=C52FCE58EFF9EA5ADD27014E0CCE6F393836DD38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:75:a5:4b:a2:0c:5e:3f:e0:0e:fa:a4:f5:a7: 6a:ab:fd:dc:8f:04:54:c9:9a:45:3d:53:1a:a7:4e: db:a8:07:e2:ce:5a:57:76:60:0a:90:8c:94:15:19: 50:df:cd:57:7e:1e:25:90:3a:fa:22:9e:32:94:e8: 54:f9:c3:72:ff:85:e0:cf:5b:69:dd:cf:f8:35:6b: ec:74:81:38:ca:3f:62:cf:5e:45:76:c8:e5:50:c2: a1:3c:4a:ea:6c:a8:29:e8:79:48:8f:8d:87:b1:84: 23:83:85:70:71:d6:8c:2b:41:82:75:f1:c8:1f:04: a4:46:bf:5b:48:72:ca:a2:fa:ce:02:a0:1e:ee:93: 7c:f8:27:ba:25:85:55:12:94:c6:ba:06:bb:20:71: 81:01:5b:fc:b9:58:a0:6b:c0:1e:1d:12:0a:76:18: 40:a5:74:33:20:1f:e2:79:2d:7e:39:6e:df:31:9f: a4:fc:96:50:0f:3e:07:63:3d:dc:67:7f:a8:78:d3: 21:ca:b3:03:5b:35:37:ab:f9:26:a2:14:a9:fe:12: d2:56:ac:e6:23:21:68:23:8f:8c:f4:9a:2b:e4:12: 0c:94:af:04:28:69:6b:02:23:2a:6b:05:62:82:c2: 3f:e0:5d:26:d8:a4:54:6f:ff:97:3b:2e:6b:64:ea: f5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:2F:CE:58:EF:F9:EA:5A:DD:27:01:4E:0C:CE:6F:39:38:36:DD:38 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145675.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:abd1::/32 Signature Algorithm: sha256WithRSAEncryption b3:28:8d:50:c7:b2:ea:a6:61:fa:6f:6c:10:85:fe:15:68:f1: 27:d6:0b:79:5e:64:2b:09:c1:57:7d:a1:5f:56:ea:6a:25:98: 44:89:9b:7d:88:77:66:1f:83:5e:96:8c:c3:c4:a5:22:64:78: 8e:dc:18:5a:70:b2:4e:0e:7f:76:aa:15:70:ea:15:26:2e:b4: 07:a7:93:da:34:4d:5c:55:bc:25:19:94:cc:a9:91:71:82:2f: 71:46:c1:3a:f5:6d:bd:d8:73:77:c3:11:5b:2a:bb:b8:49:53: ca:90:49:af:3d:3f:5a:c2:04:f1:81:aa:de:e7:1d:1e:6c:ce: 03:ab:e6:5d:00:82:7c:43:b5:a9:8b:da:d8:a4:d4:8b:16:49: fe:43:ee:0b:ee:60:47:86:5d:01:33:73:b9:4d:d3:b2:bc:ff: 20:52:99:48:2b:cb:9e:a2:e6:0d:3b:5a:d7:9e:bf:a1:33:27: d9:53:2c:c7:19:c9:26:fe:79:dd:9c:9b:d0:71:06:92:e2:8c: 8e:65:78:09:66:7d:22:63:be:f9:06:bd:6e:ec:35:df:56:9f: 9f:2e:cf:49:90:dd:93:6c:91:be:4f:d9:a8:7c:8b:34:55:bc: 8d:27:da:5b:a3:24:dc:17:5e:e8:e4:4b:85:30:07:7e:48:34: fe:c0:bf:11 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNFAkvG16XDmuHj8RYeflk3mkThIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU0OVoX DTI3MDMwMzA2MzA0OVowMzExMC8GA1UEAxMoQzUyRkNFNThFRkY5RUE1QUREMjcw MTRFMENDRTZGMzkzODM2REQzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANV1pUuiDF4/4A76pPWnaqv93I8EVMmaRT1TGqdO26gH4s5aV3ZgCpCMlBUZ UN/NV34eJZA6+iKeMpToVPnDcv+F4M9bad3P+DVr7HSBOMo/Ys9eRXbI5VDCoTxK 6myoKeh5SI+Nh7GEI4OFcHHWjCtBgnXxyB8EpEa/W0hyyqL6zgKgHu6TfPgnuiWF VRKUxroGuyBxgQFb/LlYoGvAHh0SCnYYQKV0MyAf4nktfjlu3zGfpPyWUA8+B2M9 3Gd/qHjTIcqzA1s1N6v5JqIUqf4S0las5iMhaCOPjPSaK+QSDJSvBChpawIjKmsF YoLCP+BdJtikVG//lzsua2Tq9WkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTFL85Y 7/nqWt0nAU4Mzm85ODbdODAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTY3NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q9EwDQYJKoZIhvcNAQELBQADggEBALMojVDHsuqmYfpvbBCF/hVo8SfWC3leZCsJ wVd9oV9W6molmESJm32Id2Yfg16WjMPEpSJkeI7cGFpwsk4Of3aqFXDqFSYutAen k9o0TVxVvCUZlMypkXGCL3FGwTr1bb3Yc3fDEVsqu7hJU8qQSa89P1rCBPGBqt7n HR5szgOr5l0AgnxDtamL2tik1IsWSf5D7gvuYEeGXQEzc7lN07K8/yBSmUgry56i 5g07Wteev6EzJ9lTLMcZySb+ed2cm9BxBpLijI5leAlmfSJjvvkGvW7sNd9Wn58u z0mQ3ZNskb5P2ah8izRVvI0n2lujJNwXXujkS4UwB35INP7AvxE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:07 2026 by rpki-client