$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145695.roa File: AS145695.roa (raw, json) Hash identifier: yGZDSlHwXtYSrj42mBSd6o8bnt5ixvTYe0dB4fjj8qo= Subject key identifier: 4B:A1:1D:40:5D:08:08:0A:EE:79:E7:2C:08:A3:94:09:A9:72:32:2D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 06E9095379E0C44ADD7C6C7642D06F17F5EDAE84 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145695.roa Signing time: Wed 04 Mar 2026 06:30:57 +0000 ROA not before: Wed 04 Mar 2026 06:25:57 +0000 ROA not after: Wed 03 Mar 2027 06:30:57 +0000 asID: 145695 IP address blocks: 240a:abe5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e9:09:53:79:e0:c4:4a:dd:7c:6c:76:42:d0:6f:17:f5:ed:ae:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:57 2026 GMT Not After : Mar 3 06:30:57 2027 GMT Subject: CN=4BA11D405D08080AEE79E72C08A39409A972322D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cf:07:d5:81:54:99:56:62:9f:9e:16:73:18: c4:15:8c:3e:8b:47:96:29:40:a0:a3:99:d9:2b:f6: 27:a4:39:f2:3e:88:97:25:c1:0c:5c:a8:68:ee:00: 45:e4:b8:2f:49:da:30:24:40:56:57:0e:65:2e:d2: 22:1f:12:7c:71:6f:15:09:4d:c0:50:70:89:02:60: 72:9b:1b:fb:c0:14:bd:b3:c4:59:19:a7:ea:64:f2: ce:76:7e:6e:23:f6:c3:e0:66:23:5e:2b:9c:68:79: ad:21:63:71:68:76:58:e8:b9:55:30:93:10:20:8c: 90:da:f5:a1:fd:b3:3e:77:bc:9b:46:0e:a5:16:88: 05:f6:ab:5f:fb:38:80:27:08:7a:4c:0c:04:05:df: 3a:ff:a2:bc:94:70:10:d9:04:3f:55:3b:fe:c7:f9: 85:e1:24:db:f3:45:75:61:bf:e8:3c:b2:d2:38:6a: 18:dc:cb:ec:46:e9:50:32:58:a1:a4:0f:fe:95:26: 13:d1:c6:e7:9b:30:a3:59:df:b1:62:00:93:42:0b: cc:e9:6c:0b:5a:81:79:8b:3f:fe:e4:b0:d6:89:90: e7:cd:72:3a:7a:9b:ac:21:15:14:78:b2:77:f4:fa: b0:db:ad:b3:72:28:55:7c:5e:e5:07:bb:6f:59:91: b2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A1:1D:40:5D:08:08:0A:EE:79:E7:2C:08:A3:94:09:A9:72:32:2D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145695.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:abe5::/32 Signature Algorithm: sha256WithRSAEncryption 43:db:99:75:58:38:bf:83:b8:94:04:11:0e:5b:6d:d9:18:15: 86:dd:42:7f:3e:fa:e4:a6:83:0e:12:29:f9:72:d2:04:3d:4a: ab:9d:2d:ff:c1:d5:99:35:db:9e:c7:30:8f:6b:66:40:79:a4: ef:00:d2:d3:c7:09:c1:f3:f8:4c:fd:0f:19:4c:68:97:f5:1b: 4a:0c:f2:4a:13:49:54:75:5d:21:a6:ea:33:11:2a:d6:37:35: e1:bf:42:91:43:58:7d:b1:fa:94:0c:9c:c7:17:df:94:e8:4c: 55:2d:d5:53:d3:3d:1d:cc:7e:f4:48:92:c0:8a:d6:72:26:9f: ed:5c:4d:ea:39:f3:66:26:bf:45:b4:bb:1c:ca:82:56:72:40: 2b:a6:1f:b3:bd:21:af:e1:86:df:e5:89:17:40:d3:45:70:3a: 89:f0:fc:30:17:ee:3e:42:16:4b:10:ce:18:b9:ad:cf:d9:0e: 71:e2:0f:8b:97:b3:e9:83:1c:11:5e:5e:2e:2b:d5:63:5a:81: 46:3b:12:40:76:d7:c4:74:98:39:8f:de:47:1b:05:da:e4:14: 9a:fa:b5:90:89:90:37:7d:31:73:df:3a:c0:3d:23:97:a7:38: 78:d2:7f:f8:19:42:e8:6a:8d:73:10:90:7e:36:f2:b0:53:f1: 9d:fc:0a:b7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBukJU3ngxErdfGx2QtBvF/XtroQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU1N1oX DTI3MDMwMzA2MzA1N1owMzExMC8GA1UEAxMoNEJBMTFENDA1RDA4MDgwQUVFNzlF NzJDMDhBMzk0MDlBOTcyMzIyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPPB9WBVJlWYp+eFnMYxBWMPotHlilAoKOZ2Sv2J6Q58j6IlyXBDFyoaO4A ReS4L0naMCRAVlcOZS7SIh8SfHFvFQlNwFBwiQJgcpsb+8AUvbPEWRmn6mTyznZ+ biP2w+BmI14rnGh5rSFjcWh2WOi5VTCTECCMkNr1of2zPne8m0YOpRaIBfarX/s4 gCcIekwMBAXfOv+ivJRwENkEP1U7/sf5heEk2/NFdWG/6Dyy0jhqGNzL7EbpUDJY oaQP/pUmE9HG55swo1nfsWIAk0ILzOlsC1qBeYs//uSw1omQ581yOnqbrCEVFHiy d/T6sNuts3IoVXxe5Qe7b1mRsjECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRLoR1A XQgICu555ywIo5QJqXIyLTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTY5NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q+UwDQYJKoZIhvcNAQELBQADggEBAEPbmXVYOL+DuJQEEQ5bbdkYFYbdQn8++uSm gw4SKfly0gQ9SqudLf/B1Zk1257HMI9rZkB5pO8A0tPHCcHz+Ez9DxlMaJf1G0oM 8koTSVR1XSGm6jMRKtY3NeG/QpFDWH2x+pQMnMcX35ToTFUt1VPTPR3MfvRIksCK 1nImn+1cTeo582Ymv0W0uxzKglZyQCumH7O9Ia/hht/liRdA00VwOonw/DAX7j5C FksQzhi5rc/ZDnHiD4uXs+mDHBFeXi4r1WNagUY7EkB218R0mDmP3kcbBdrkFJr6 tZCJkDd9MXPfOsA9I5enOHjSf/gZQuhqjXMQkH428rBT8Z38Crc= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:42 2026 by rpki-client