$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145783.roa File: AS145783.roa (raw, json) Hash identifier: gg3QTnVPtXn803QwIO9gmyVE0eHb8Ir3qBHlJ5fQxYU= Subject key identifier: 74:42:70:39:B0:3C:89:CD:7D:01:C3:D1:D9:46:E5:56:F4:09:0F:1D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 356F148B9A5A81BB53AA333C2E1EA45A0B25FCAA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145783.roa Signing time: Wed 04 Mar 2026 06:30:12 +0000 ROA not before: Wed 04 Mar 2026 06:25:12 +0000 ROA not after: Wed 03 Mar 2027 06:30:12 +0000 asID: 145783 IP address blocks: 240a:ac3d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:6f:14:8b:9a:5a:81:bb:53:aa:33:3c:2e:1e:a4:5a:0b:25:fc:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:12 2026 GMT Not After : Mar 3 06:30:12 2027 GMT Subject: CN=74427039B03C89CD7D01C3D1D946E556F4090F1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1a:eb:44:e3:d7:98:b5:3e:60:46:67:5c:d7: 27:f6:a4:fa:56:c6:d9:aa:b8:ad:ad:19:f2:03:32: c0:d2:65:84:b7:d8:99:91:ea:30:79:36:a7:e0:65: a7:53:3b:0f:b8:b6:6c:c0:c2:cc:bd:f2:ff:bf:0b: 3a:9d:7a:91:d0:3b:ef:f9:c9:58:98:ee:c2:b8:7f: 4f:f2:0c:aa:00:e2:65:ca:61:27:ff:43:b7:7c:00: a3:e3:e1:6d:60:be:77:fe:f9:26:fd:f7:dc:1e:f9: 96:be:2d:26:1f:b2:32:06:52:c4:2c:ba:37:c3:17: 83:75:f5:27:d9:83:b5:74:0a:5e:db:2c:41:92:28: 18:19:45:f3:24:42:23:6c:7f:3d:d0:e7:58:44:89: 46:e3:8a:1c:1f:32:97:cc:89:ba:16:29:8a:c3:98: 0f:65:cf:41:48:37:ec:9e:b1:7b:96:01:c7:c9:5b: 80:df:fd:c7:ae:9a:53:39:e4:9d:5a:d8:50:f5:22: 84:7e:39:83:c5:57:21:d0:44:f6:29:f9:59:96:4a: bb:d7:c2:4e:86:d3:46:aa:c5:3b:d9:ad:59:39:26: aa:22:56:86:47:fb:b1:df:92:41:02:fd:19:18:14: 9a:60:87:2e:30:ac:7f:d0:99:a3:87:72:49:7d:22: 2d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:42:70:39:B0:3C:89:CD:7D:01:C3:D1:D9:46:E5:56:F4:09:0F:1D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145783.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac3d::/32 Signature Algorithm: sha256WithRSAEncryption 1e:63:e1:f3:b0:ba:11:19:1e:17:4f:d8:88:10:59:e7:51:20: a2:6d:2f:69:88:fa:47:dc:06:44:98:f3:c1:bd:51:16:b2:1b: e6:45:68:98:e1:74:36:25:d2:62:be:4d:4b:a7:e7:ff:10:09: 96:e7:8a:26:c6:97:10:84:6e:f0:6f:9b:ee:98:0c:11:41:ff: eb:2f:e5:67:27:7c:75:af:c3:9c:ad:1f:aa:7d:a6:12:e9:1f: a0:94:67:14:dc:77:d0:a4:7c:3d:6e:eb:53:03:ba:71:98:eb: ef:ac:b0:4e:36:37:c0:20:a3:85:8c:2f:16:dd:d5:a8:08:4e: 96:d4:36:54:21:3f:d0:0a:a6:54:4a:1c:49:a7:7c:7e:68:9c: a0:79:1e:b5:9e:bf:93:23:c9:a7:fd:45:80:83:25:0d:df:ae: d1:bf:53:9e:24:74:eb:70:6d:dd:c6:a5:0c:b5:cd:1b:53:54: 1b:ca:82:1b:69:76:47:bf:8b:d7:ab:7f:01:a2:f1:68:e4:7d: ae:5d:98:5a:41:7c:25:7f:01:75:fa:75:23:9b:0d:a0:64:ce: ce:b3:68:90:08:ad:ea:1b:11:12:6d:bc:ae:cd:c9:58:d9:89: 47:1e:cb:9f:e7:a6:a6:15:e5:46:e1:53:8e:98:c3:b9:d2:cd: f7:8d:05:73 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNW8Ui5pagbtTqjM8Lh6kWgsl/KowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUxMloX DTI3MDMwMzA2MzAxMlowMzExMC8GA1UEAxMoNzQ0MjcwMzlCMDNDODlDRDdEMDFD M0QxRDk0NkU1NTZGNDA5MEYxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAa60Tj15i1PmBGZ1zXJ/ak+lbG2aq4ra0Z8gMywNJlhLfYmZHqMHk2p+Bl p1M7D7i2bMDCzL3y/78LOp16kdA77/nJWJjuwrh/T/IMqgDiZcphJ/9Dt3wAo+Ph bWC+d/75Jv333B75lr4tJh+yMgZSxCy6N8MXg3X1J9mDtXQKXtssQZIoGBlF8yRC I2x/PdDnWESJRuOKHB8yl8yJuhYpisOYD2XPQUg37J6xe5YBx8lbgN/9x66aUznk nVrYUPUihH45g8VXIdBE9in5WZZKu9fCTobTRqrFO9mtWTkmqiJWhkf7sd+SQQL9 GRgUmmCHLjCsf9CZo4dySX0iLY8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR0QnA5 sDyJzX0Bw9HZRuVW9AkPHTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc4My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rD0wDQYJKoZIhvcNAQELBQADggEBAB5j4fOwuhEZHhdP2IgQWedRIKJtL2mI+kfc BkSY88G9URayG+ZFaJjhdDYl0mK+TUun5/8QCZbniibGlxCEbvBvm+6YDBFB/+sv 5WcnfHWvw5ytH6p9phLpH6CUZxTcd9CkfD1u61MDunGY6++ssE42N8Ago4WMLxbd 1agITpbUNlQhP9AKplRKHEmnfH5onKB5HrWev5Mjyaf9RYCDJQ3frtG/U54kdOtw bd3GpQy1zRtTVBvKghtpdke/i9erfwGi8Wjkfa5dmFpBfCV/AXX6dSObDaBkzs6z aJAIreobERJtvK7NyVjZiUcey5/npqYV5UbhU46Yw7nSzfeNBXM= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:20 2026 by rpki-client