$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145693.roa File: AS145693.roa (raw, json) Hash identifier: +6jH8xx1DO9VvG0ulFrfZj8vrEL+SPSoqpHr9kzwt5w= Subject key identifier: 7E:71:39:8E:30:39:F0:3F:57:B6:54:3E:BE:AE:1C:DD:93:A6:0A:D0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 29186F31D390A9031C6B15E30BDA089C83A9E575 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145693.roa Signing time: Wed 04 Mar 2026 06:30:44 +0000 ROA not before: Wed 04 Mar 2026 06:25:44 +0000 ROA not after: Wed 03 Mar 2027 06:30:44 +0000 asID: 145693 IP address blocks: 240a:abe3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:18:6f:31:d3:90:a9:03:1c:6b:15:e3:0b:da:08:9c:83:a9:e5:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:44 2026 GMT Not After : Mar 3 06:30:44 2027 GMT Subject: CN=7E71398E3039F03F57B6543EBEAE1CDD93A60AD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:00:bd:1b:7e:77:f6:dc:de:2b:59:52:85:e2: d5:b8:f2:c0:8b:b0:93:e2:12:3a:eb:55:2c:75:42: 1b:5c:c3:1a:13:ea:38:71:72:46:ca:aa:7d:ae:a3: cd:f3:07:8d:48:90:bf:58:de:34:dc:0a:bb:71:21: 49:e0:65:8b:20:e0:cc:44:15:e3:dc:17:60:0d:dc: 63:3e:17:83:bd:0d:93:c6:16:08:40:44:a6:41:20: e1:a2:f3:29:71:81:77:88:4a:bd:b1:71:ef:8d:f3: 22:00:74:f0:4b:a2:38:bc:0f:c9:26:2e:f0:84:bb: 28:24:a3:4f:f2:c6:d4:40:8e:de:21:c4:76:1f:50: e1:73:2a:91:a4:be:59:9d:04:e5:28:84:bb:4c:69: c8:3d:aa:3f:c7:08:61:21:b9:d0:97:ca:75:11:a9: b9:de:f4:f9:89:21:54:cc:d9:e2:70:81:ba:24:9c: 1b:f9:b7:81:a5:74:c1:7e:be:57:aa:39:84:41:b6: 5b:70:7e:50:37:87:61:4c:01:8b:15:56:66:41:02: c3:da:39:b0:58:27:79:84:39:b0:5e:ea:1e:18:1e: 06:aa:47:34:96:b1:b3:39:06:a4:2c:0b:6d:80:27: b3:6f:5f:3c:09:7d:80:38:a4:08:c1:bd:14:7a:e5: bb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:71:39:8E:30:39:F0:3F:57:B6:54:3E:BE:AE:1C:DD:93:A6:0A:D0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145693.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:abe3::/32 Signature Algorithm: sha256WithRSAEncryption 6a:3f:5e:16:a2:81:58:84:d5:63:d0:68:58:f4:e7:00:9b:3d: 41:37:9f:2f:3f:e4:70:55:85:20:fb:c2:11:f8:3f:94:f7:8d: e4:67:0f:24:4f:f0:52:18:e4:b7:22:d1:7e:9f:de:ee:02:ce: a8:7d:0a:a8:c8:5d:da:16:9a:64:8b:82:da:2b:4e:b7:ed:90: 50:46:03:d6:82:63:b4:c6:22:a9:cb:78:95:96:67:65:c1:5c: 92:e6:9b:7f:9b:94:5b:5f:28:84:28:d4:e5:f9:80:b2:de:f3: 59:e6:57:53:bf:d2:32:2f:bc:40:7f:c1:69:b6:3e:8d:b9:39: 4c:e7:a3:28:0d:4c:84:57:05:6a:11:e8:ce:38:4e:13:06:84: 07:b4:bc:74:c9:30:c3:a6:ef:aa:2c:cc:cc:b5:b2:f1:c8:f4: da:40:75:04:1f:48:54:ef:b0:21:69:6e:f0:66:3e:f3:89:27: c0:92:0d:bb:67:ee:ad:b0:12:63:e8:ca:60:ec:87:67:a9:ee: 7e:dd:49:d2:f4:d6:aa:c3:d1:d8:0c:71:bd:8b:8b:4a:d9:41: f9:e7:c8:db:32:3c:72:a2:8e:94:e4:d1:fa:47:96:4a:7c:06: f2:2a:f0:81:06:c6:3d:33:9c:b7:e0:26:bc:8f:eb:39:f3:fc: e0:c5:7e:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKRhvMdOQqQMcaxXjC9oInIOp5XUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU0NFoX DTI3MDMwMzA2MzA0NFowMzExMC8GA1UEAxMoN0U3MTM5OEUzMDM5RjAzRjU3QjY1 NDNFQkVBRTFDREQ5M0E2MEFEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkAvRt+d/bc3itZUoXi1bjywIuwk+ISOutVLHVCG1zDGhPqOHFyRsqqfa6j zfMHjUiQv1jeNNwKu3EhSeBliyDgzEQV49wXYA3cYz4Xg70Nk8YWCEBEpkEg4aLz KXGBd4hKvbFx743zIgB08EuiOLwPySYu8IS7KCSjT/LG1ECO3iHEdh9Q4XMqkaS+ WZ0E5SiEu0xpyD2qP8cIYSG50JfKdRGpud70+YkhVMzZ4nCBuiScG/m3gaV0wX6+ V6o5hEG2W3B+UDeHYUwBixVWZkECw9o5sFgneYQ5sF7qHhgeBqpHNJaxszkGpCwL bYAns29fPAl9gDikCMG9FHrluzkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR+cTmO MDnwP1e2VD6+rhzdk6YK0DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTY5My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q+MwDQYJKoZIhvcNAQELBQADggEBAGo/XhaigViE1WPQaFj05wCbPUE3ny8/5HBV hSD7whH4P5T3jeRnDyRP8FIY5Lci0X6f3u4Czqh9CqjIXdoWmmSLgtorTrftkFBG A9aCY7TGIqnLeJWWZ2XBXJLmm3+blFtfKIQo1OX5gLLe81nmV1O/0jIvvEB/wWm2 Po25OUznoygNTIRXBWoR6M44ThMGhAe0vHTJMMOm76oszMy1svHI9NpAdQQfSFTv sCFpbvBmPvOJJ8CSDbtn7q2wEmPoymDsh2ep7n7dSdL01qrD0dgMcb2Li0rZQfnn yNsyPHKijpTk0fpHlkp8BvIq8IEGxj0znLfgJryP6znz/ODFflY= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:42 2026 by rpki-client