$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145760.roa File: AS145760.roa (raw, json) Hash identifier: k4r1lQbGU8iazKTbPvz03hF1owhMSVwcRDFWYLd7Bsg= Subject key identifier: EF:44:21:C6:45:3D:4A:D9:ED:D3:D7:C8:80:B0:CD:94:7A:43:A0:70 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7FF79BC3B7F7B1877169FA446D34CEF4EF9887F4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145760.roa Signing time: Wed 04 Mar 2026 06:30:24 +0000 ROA not before: Wed 04 Mar 2026 06:25:24 +0000 ROA not after: Wed 03 Mar 2027 06:30:24 +0000 asID: 145760 IP address blocks: 240a:ac26::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f7:9b:c3:b7:f7:b1:87:71:69:fa:44:6d:34:ce:f4:ef:98:87:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:24 2026 GMT Not After : Mar 3 06:30:24 2027 GMT Subject: CN=EF4421C6453D4AD9EDD3D7C880B0CD947A43A070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:95:c2:3f:cb:b3:7d:bf:2a:69:b2:62:c2:b1: 06:7c:53:91:7f:28:82:82:70:35:40:92:60:9b:0e: e5:cd:8a:42:4c:34:2e:ea:03:aa:17:cb:88:ac:d1: df:a7:0f:93:dd:ed:aa:95:84:ea:ef:a8:b0:18:38: db:67:03:d4:07:0c:d0:0f:77:ee:4a:41:fe:6f:57: ea:e9:a5:01:d0:76:f9:58:47:7c:00:ba:04:5e:45: ef:d7:74:7c:23:e0:c5:7f:33:f4:6b:7e:27:9d:07: 32:14:2d:2e:fb:38:ee:7d:e3:80:8a:d1:90:65:5a: cf:9f:c9:e6:0f:3f:44:64:1e:4f:80:a8:0d:77:03: f8:2d:90:b6:4b:89:e2:41:62:04:ab:22:47:35:57: 53:af:25:df:6d:43:75:bd:f8:e3:71:41:65:1c:f4: 48:55:ed:89:31:5d:d1:18:8e:84:37:d6:06:3b:83: a8:37:55:86:01:1f:54:b0:4c:74:1d:66:ac:ab:be: 32:f9:b2:2f:27:11:df:97:69:43:c9:79:58:21:86: 6f:e1:df:d3:80:d1:f1:46:6f:86:56:08:fd:77:f6: d5:08:12:a5:6c:68:4b:4b:c4:44:aa:b2:fc:b0:bc: c1:ca:c5:31:b2:d4:c4:43:3c:3b:e4:9b:89:91:3c: 2d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:44:21:C6:45:3D:4A:D9:ED:D3:D7:C8:80:B0:CD:94:7A:43:A0:70 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145760.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac26::/32 Signature Algorithm: sha256WithRSAEncryption 25:f5:8e:d8:a2:fe:e4:df:1a:1b:c4:b7:4d:3c:11:e7:c1:f9: 12:eb:38:d7:bf:34:61:f8:11:10:7a:d8:8c:80:7c:e9:33:7c: ae:bf:3c:3d:1e:6c:31:a8:d3:8b:00:00:7e:98:66:f1:57:40: 56:47:15:d1:c1:2c:c6:3f:c1:d8:07:28:3a:28:a5:b8:12:b1: c1:81:53:73:1b:a0:e1:e9:db:9d:7f:c8:57:b6:1c:2b:a6:a6: 4a:31:07:36:5f:5e:10:b7:66:13:dc:a8:ab:00:55:65:2a:a1: 61:41:78:41:35:e0:d7:43:a4:41:b7:65:04:83:54:51:44:96: 7c:bd:de:94:8a:a8:d6:e8:e0:0f:1f:f9:79:15:a8:64:a2:85: b7:7f:0c:9d:cb:61:5a:b4:5f:17:7c:56:09:49:2f:57:a0:ef: da:2d:2e:7a:94:b4:65:8e:1b:f9:22:ca:07:1c:9c:39:00:8d: 90:97:0e:41:b1:9a:ab:60:21:f7:fa:90:c9:09:1f:ff:e1:db: a5:e0:7c:42:99:8e:ff:9f:bb:84:40:88:0d:b6:c8:07:1b:a3: d5:7d:9d:ee:da:f9:ba:6b:4d:3a:b7:6d:24:0e:ed:0d:07:7e: b5:15:2e:8a:76:94:37:33:dd:be:76:ce:b8:4a:26:84:59:7a: be:c9:a1:eb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUf/ebw7f3sYdxafpEbTTO9O+Yh/QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUyNFoX DTI3MDMwMzA2MzAyNFowMzExMC8GA1UEAxMoRUY0NDIxQzY0NTNENEFEOUVERDNE N0M4ODBCMENEOTQ3QTQzQTA3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmVwj/Ls32/KmmyYsKxBnxTkX8ogoJwNUCSYJsO5c2KQkw0LuoDqhfLiKzR 36cPk93tqpWE6u+osBg422cD1AcM0A937kpB/m9X6umlAdB2+VhHfAC6BF5F79d0 fCPgxX8z9Gt+J50HMhQtLvs47n3jgIrRkGVaz5/J5g8/RGQeT4CoDXcD+C2QtkuJ 4kFiBKsiRzVXU68l321Ddb3443FBZRz0SFXtiTFd0RiOhDfWBjuDqDdVhgEfVLBM dB1mrKu+MvmyLycR35dpQ8l5WCGGb+Hf04DR8UZvhlYI/Xf21QgSpWxoS0vERKqy /LC8wcrFMbLUxEM8O+SbiZE8Lc8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTvRCHG RT1K2e3T18iAsM2UekOgcDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rCYwDQYJKoZIhvcNAQELBQADggEBACX1jtii/uTfGhvEt008EefB+RLrONe/NGH4 ERB62IyAfOkzfK6/PD0ebDGo04sAAH6YZvFXQFZHFdHBLMY/wdgHKDoopbgSscGB U3MboOHp251/yFe2HCumpkoxBzZfXhC3ZhPcqKsAVWUqoWFBeEE14NdDpEG3ZQSD VFFElny93pSKqNbo4A8f+XkVqGSihbd/DJ3LYVq0Xxd8VglJL1eg79otLnqUtGWO G/kiygccnDkAjZCXDkGxmqtgIff6kMkJH//h26XgfEKZjv+fu4RAiA22yAcbo9V9 ne7a+bprTTq3bSQO7Q0HfrUVLop2lDcz3b52zrhKJoRZer7Joes= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:52 2026 by rpki-client