$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145780.roa File: AS145780.roa (raw, json) Hash identifier: PvBlAs4BN3cwmfVjqGTQiqh7n4HDlF0RRhJ7DlRly7c= Subject key identifier: 83:01:DA:4F:02:4C:85:07:3F:8B:56:2C:25:3B:13:C8:DE:C1:58:F6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6EEB09256E3C7F51D33BB25332E8986303FA61B4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145780.roa Signing time: Wed 04 Mar 2026 06:30:20 +0000 ROA not before: Wed 04 Mar 2026 06:25:20 +0000 ROA not after: Wed 03 Mar 2027 06:30:20 +0000 asID: 145780 IP address blocks: 240a:ac3a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:eb:09:25:6e:3c:7f:51:d3:3b:b2:53:32:e8:98:63:03:fa:61:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:20 2026 GMT Not After : Mar 3 06:30:20 2027 GMT Subject: CN=8301DA4F024C85073F8B562C253B13C8DEC158F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ad:d7:64:78:b3:c9:1e:c1:15:8e:1c:6a:30: 2d:e7:49:e4:35:c6:f3:ad:cc:fe:cf:6f:dc:9f:8b: 50:47:50:aa:04:92:b2:92:44:43:b0:5a:b6:1c:f7: c8:c2:61:1f:4d:62:d0:70:3a:80:44:58:72:6d:be: 52:cb:d6:f4:c2:71:02:c9:68:3c:2d:58:c3:bc:82: 16:17:74:be:13:e5:b7:56:4f:41:6d:1a:40:03:4c: 02:17:9f:3b:f1:3c:10:df:de:dc:27:25:32:93:09: 39:6a:e4:74:2d:d6:15:6b:70:b1:a2:32:aa:70:de: c0:56:11:d8:f3:27:7d:2d:c8:52:3b:4c:50:ad:70: 1c:e5:f5:0a:4e:59:f6:8b:fd:ae:42:f3:80:48:93: 18:ba:bc:c9:72:7f:3b:88:4d:33:71:ee:e9:ee:5b: fc:da:1d:5d:6b:4d:2e:5b:1e:92:81:99:49:8d:bc: f4:f5:b4:7f:59:2f:95:be:04:e3:e1:a7:01:33:8b: 1d:4b:d9:0c:de:7a:35:06:6d:3f:cc:8c:52:b4:31: ad:3d:36:85:8c:e4:e1:16:cf:f4:1f:b3:5d:74:16: d6:ae:ee:20:55:a5:38:4f:a7:8c:80:96:65:be:06: 3b:40:8b:c4:56:6f:86:7d:01:43:e5:0c:76:aa:01: 8b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:01:DA:4F:02:4C:85:07:3F:8B:56:2C:25:3B:13:C8:DE:C1:58:F6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145780.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac3a::/32 Signature Algorithm: sha256WithRSAEncryption d7:70:eb:57:2d:1d:b3:93:03:c8:5d:a1:28:64:e8:a3:2a:52: 73:4f:43:7f:d8:7a:77:90:a6:c5:87:f7:ea:cf:1a:7f:e3:06: 8b:33:08:5d:0d:30:cd:d8:19:2c:9a:50:66:9a:da:8e:0c:4e: 86:14:79:90:1b:b8:54:57:a1:c3:e1:19:27:79:87:66:54:f7: 61:09:b7:6b:87:b6:18:8e:25:2f:ea:13:aa:f4:74:c5:83:6a: 43:a0:21:ab:20:a9:68:f1:a7:9b:29:8b:f4:f0:60:34:f6:d3: c5:10:c6:cc:98:d8:9f:3b:27:60:3e:e1:02:ed:3e:f6:cb:7a: a5:07:fd:c3:ba:08:8e:73:3b:60:1e:fb:f4:7b:77:01:64:c6: ba:b7:f3:09:14:45:10:fe:ee:ab:41:18:aa:13:97:b0:b5:ed: b2:fd:c3:39:61:9f:15:fd:6e:59:c4:bd:72:56:bc:10:15:1c: 56:45:29:97:a8:8e:3d:72:b1:15:29:70:b9:07:44:65:25:ed: 16:d8:bf:79:16:bf:a4:77:e4:c1:9e:1b:1d:d0:a8:a6:0b:bd: a4:05:de:63:b5:02:f7:cf:ea:0d:e0:82:e9:43:fa:9c:f2:bf: 9a:c3:77:d1:d2:27:b4:56:28:75:5c:0d:3a:57:e5:e0:3c:b8: 29:80:c1:8c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbusJJW48f1HTO7JTMuiYYwP6YbQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUyMFoX DTI3MDMwMzA2MzAyMFowMzExMC8GA1UEAxMoODMwMURBNEYwMjRDODUwNzNGOEI1 NjJDMjUzQjEzQzhERUMxNThGNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSt12R4s8kewRWOHGowLedJ5DXG863M/s9v3J+LUEdQqgSSspJEQ7Bathz3 yMJhH01i0HA6gERYcm2+UsvW9MJxAsloPC1Yw7yCFhd0vhPlt1ZPQW0aQANMAhef O/E8EN/e3CclMpMJOWrkdC3WFWtwsaIyqnDewFYR2PMnfS3IUjtMUK1wHOX1Ck5Z 9ov9rkLzgEiTGLq8yXJ/O4hNM3Hu6e5b/NodXWtNLlsekoGZSY289PW0f1kvlb4E 4+GnATOLHUvZDN56NQZtP8yMUrQxrT02hYzk4RbP9B+zXXQW1q7uIFWlOE+njICW Zb4GO0CLxFZvhn0BQ+UMdqoBi58CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSDAdpP AkyFBz+LViwlOxPI3sFY9jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc4MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rDowDQYJKoZIhvcNAQELBQADggEBANdw61ctHbOTA8hdoShk6KMqUnNPQ3/YeneQ psWH9+rPGn/jBoszCF0NMM3YGSyaUGaa2o4MToYUeZAbuFRXocPhGSd5h2ZU92EJ t2uHthiOJS/qE6r0dMWDakOgIasgqWjxp5spi/TwYDT208UQxsyY2J87J2A+4QLt PvbLeqUH/cO6CI5zO2Ae+/R7dwFkxrq38wkURRD+7qtBGKoTl7C17bL9wzlhnxX9 blnEvXJWvBAVHFZFKZeojj1ysRUpcLkHRGUl7RbYv3kWv6R35MGeGx3QqKYLvaQF 3mO1AvfP6g3ggulD+pzyv5rDd9HSJ7RWKHVcDTpX5eA8uCmAwYw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:36 2026 by rpki-client