$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145771.roa File: AS145771.roa (raw, json) Hash identifier: wLtzE7C1RyN8WRHteXB+tJWdH+WnBlYPl78k++oasPs= Subject key identifier: B7:E9:EB:1E:FE:EA:59:27:ED:E1:42:53:DE:5A:49:6C:CF:14:81:31 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5B187A8D2B1D0B87E0FD4242560298D09CFF3148 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145771.roa Signing time: Wed 04 Mar 2026 06:30:31 +0000 ROA not before: Wed 04 Mar 2026 06:25:31 +0000 ROA not after: Wed 03 Mar 2027 06:30:31 +0000 asID: 145771 IP address blocks: 240a:ac31::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:18:7a:8d:2b:1d:0b:87:e0:fd:42:42:56:02:98:d0:9c:ff:31:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:31 2026 GMT Not After : Mar 3 06:30:31 2027 GMT Subject: CN=B7E9EB1EFEEA5927EDE14253DE5A496CCF148131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f8:57:e4:9d:99:ff:32:83:cb:48:5e:d3:61: f9:f3:35:be:1f:40:bd:fb:99:db:55:f3:01:cd:0e: 92:3d:39:48:70:5b:93:01:c3:09:c0:82:ee:48:0a: 58:2f:e4:c9:88:31:55:4a:ec:41:26:be:5a:41:2b: 42:f1:39:34:bc:4a:83:4a:12:de:07:a6:17:d5:a0: 4d:70:be:b7:4d:8f:49:10:25:60:e3:a1:2b:14:98: 8a:4b:8b:7e:d2:83:9c:86:6b:3f:80:2d:93:25:ec: 47:d3:c2:2b:bf:92:2b:de:4c:28:28:6a:7b:e5:56: eb:29:9f:fa:99:65:57:44:06:86:f8:f6:d3:19:a8: 47:41:3b:3d:4b:30:72:1a:4b:37:d5:0a:9c:7c:33: 03:a1:da:a1:55:cd:1a:8c:ea:7c:6a:52:ab:9e:c5: d5:16:4b:6b:83:e3:c7:77:fe:96:b1:e6:33:79:a2: 4e:a7:5a:8c:c5:53:30:cb:d1:f3:35:18:7c:b8:19: 8f:a8:c1:ad:9b:76:61:a9:9d:e5:d7:d9:14:32:30: a9:75:eb:86:de:10:37:15:d5:74:77:8f:5e:99:4c: 5e:c6:d6:68:71:47:16:e4:71:7b:e4:ad:1c:73:f4: ab:df:9f:71:00:85:0c:3c:94:56:ae:27:0b:8f:cd: f4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E9:EB:1E:FE:EA:59:27:ED:E1:42:53:DE:5A:49:6C:CF:14:81:31 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145771.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac31::/32 Signature Algorithm: sha256WithRSAEncryption 96:72:86:38:af:a3:4c:4f:96:5a:79:37:63:4d:f5:5f:c5:5c: 54:0e:d7:ff:98:c2:1f:df:94:68:27:da:8d:a4:ba:b4:02:f6: 8e:0c:6c:a5:80:4f:79:fc:86:83:2a:ec:b0:a3:03:31:02:ef: ab:1d:97:2e:b6:4e:42:9f:91:6d:89:7e:d6:a7:05:41:54:cb: 21:37:ce:04:a5:72:8f:8e:ce:c8:4a:20:11:c1:c1:39:1f:66: cc:8c:18:b1:6f:35:3c:ba:be:d1:c8:05:24:4a:ed:ea:8d:0d: d4:2e:65:03:1b:6f:70:8d:08:ac:cb:2c:44:9b:40:81:94:fb: 76:76:e6:02:14:71:a2:a6:4c:49:cb:76:20:91:ef:3d:44:46: c1:25:a8:f5:90:63:4a:a4:cb:9e:b8:12:92:c3:d5:ff:a6:ba: 57:a1:2d:05:7a:3b:eb:f3:74:fb:b2:ff:dd:00:e0:87:56:1f: f4:46:f9:53:d4:30:ab:98:0b:e6:f8:37:10:fb:3a:81:d6:6f: 4e:b5:78:f9:f6:b9:68:5a:9c:8e:fe:81:2f:7b:cc:2b:a8:73: 79:bc:e1:e7:b0:42:05:2c:ef:48:12:0a:76:fc:f0:3b:bd:43: 91:0d:85:9a:0a:71:cd:04:08:36:ec:21:06:59:46:b4:5a:fb: b5:8a:7d:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUWxh6jSsdC4fg/UJCVgKY0Jz/MUgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUzMVoX DTI3MDMwMzA2MzAzMVowMzExMC8GA1UEAxMoQjdFOUVCMUVGRUVBNTkyN0VERTE0 MjUzREU1QTQ5NkNDRjE0ODEzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMD4V+Sdmf8yg8tIXtNh+fM1vh9AvfuZ21XzAc0Okj05SHBbkwHDCcCC7kgK WC/kyYgxVUrsQSa+WkErQvE5NLxKg0oS3gemF9WgTXC+t02PSRAlYOOhKxSYikuL ftKDnIZrP4AtkyXsR9PCK7+SK95MKChqe+VW6ymf+pllV0QGhvj20xmoR0E7PUsw chpLN9UKnHwzA6HaoVXNGozqfGpSq57F1RZLa4Pjx3f+lrHmM3miTqdajMVTMMvR 8zUYfLgZj6jBrZt2Yamd5dfZFDIwqXXrht4QNxXVdHePXplMXsbWaHFHFuRxe+St HHP0q9+fcQCFDDyUVq4nC4/N9NECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS36ese /upZJ+3hQlPeWklszxSBMTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc3MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rDEwDQYJKoZIhvcNAQELBQADggEBAJZyhjivo0xPllp5N2NN9V/FXFQO1/+Ywh/f lGgn2o2kurQC9o4MbKWAT3n8hoMq7LCjAzEC76sdly62TkKfkW2JftanBUFUyyE3 zgSlco+OzshKIBHBwTkfZsyMGLFvNTy6vtHIBSRK7eqNDdQuZQMbb3CNCKzLLESb QIGU+3Z25gIUcaKmTEnLdiCR7z1ERsElqPWQY0qky564EpLD1f+mulehLQV6O+vz dPuy/90A4IdWH/RG+VPUMKuYC+b4NxD7OoHWb061ePn2uWhanI7+gS97zCuoc3m8 4eewQgUs70gSCnb88Du9Q5ENhZoKcc0ECDbsIQZZRrRa+7WKfbQ= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:42 2026 by rpki-client