$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145796.roa File: AS145796.roa (raw, json) Hash identifier: 6IccsQRCO6NhyAZtGeAbmnhyfLddsYx7yckmqh59Qdo= Subject key identifier: CF:F0:73:FC:65:07:BB:17:C8:B0:69:0E:83:18:E5:9B:B7:3A:D5:A3 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 221B8E05254896FADFA1F4A6780C19963662B0BC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145796.roa Signing time: Wed 04 Mar 2026 06:29:49 +0000 ROA not before: Wed 04 Mar 2026 06:24:49 +0000 ROA not after: Wed 03 Mar 2027 06:29:49 +0000 asID: 145796 IP address blocks: 240a:ac4a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:1b:8e:05:25:48:96:fa:df:a1:f4:a6:78:0c:19:96:36:62:b0:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:49 2026 GMT Not After : Mar 3 06:29:49 2027 GMT Subject: CN=CFF073FC6507BB17C8B0690E8318E59BB73AD5A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a7:3f:72:5e:c8:d9:84:af:c5:3a:e4:ca:72: 48:c5:b5:bb:b7:86:de:79:6e:79:d4:20:22:1c:a6: dd:53:b2:85:f6:cd:fa:e9:05:94:44:cc:05:18:67: 75:f6:dc:06:dd:21:a3:05:a8:3b:35:0d:75:61:d7: cd:75:ad:90:37:ba:10:db:6b:c8:d5:c3:54:9f:99: 77:bc:a0:da:b5:7e:2b:3e:1b:f8:d7:e3:ee:c3:e0: aa:41:92:ec:07:ad:bf:01:11:4a:fd:5d:3e:b7:77: c1:af:67:b7:6d:64:51:f2:c1:f9:86:d0:6c:95:b5: 72:48:95:24:f2:3d:0a:11:bf:41:f4:ee:f4:ea:8c: 43:18:23:ff:3b:ea:4f:48:14:5d:6f:cd:75:6b:18: c7:63:75:67:29:3a:f5:1d:f6:51:4b:0a:07:3f:da: df:aa:db:a3:47:6a:92:db:8a:61:70:6e:e5:8d:a5: 9b:50:86:a2:9a:04:09:ae:5e:0b:5c:09:21:04:61: 32:9d:dd:79:ae:18:80:c0:65:ae:db:bd:2f:8e:3d: 92:2d:76:49:fe:bd:2c:64:7a:1b:01:65:cc:28:01: cf:74:17:b7:aa:2a:18:0b:59:07:e9:81:99:99:9f: b2:b1:09:8e:14:6a:19:12:a4:f9:97:5d:00:3c:38: 8e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F0:73:FC:65:07:BB:17:C8:B0:69:0E:83:18:E5:9B:B7:3A:D5:A3 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145796.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac4a::/32 Signature Algorithm: sha256WithRSAEncryption 7d:ec:5c:cd:a2:b1:ba:5d:75:a8:03:b5:20:1c:ff:b8:94:81: 9c:1a:08:ce:2a:f0:8d:6f:70:c0:d5:cd:47:ec:fe:11:ec:d6: 88:a1:1f:b6:8c:1d:31:61:ea:11:2f:77:e2:e3:14:29:d2:51: 51:ce:29:55:ac:71:c9:4b:07:7a:b9:a2:3f:c0:22:bf:86:fd: 67:1d:b2:5a:4e:1e:50:e7:55:e7:47:33:fe:50:83:9d:24:42: 20:0c:83:2b:a1:fe:19:21:f2:ee:28:9b:83:ad:17:33:8a:9f: b2:eb:ec:63:26:42:50:ee:20:7a:02:cf:8b:c7:1f:29:6a:26: c5:ab:4c:93:b9:2b:11:88:32:59:7f:72:68:f2:ec:6b:a4:cc: 97:3d:57:5c:16:05:3d:32:16:a1:08:c1:61:a7:dc:03:a9:95: b3:db:d5:78:5b:d3:ea:a2:c8:80:cf:36:28:22:c8:03:03:61: 4d:a8:c5:b1:9f:18:89:cd:60:e8:09:da:f8:a0:30:af:13:01: fc:9c:a3:6a:a4:37:8c:c0:7f:20:61:23:c0:8c:72:eb:d4:51: c5:5f:e0:1c:dd:63:97:02:cc:19:c5:09:b1:f6:c1:83:b1:db: 66:7a:d9:58:73:7e:e5:d7:fe:4f:03:06:ff:98:3e:f1:03:6a: 10:7e:b6:a1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIhuOBSVIlvrfofSmeAwZljZisLwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ0OVoX DTI3MDMwMzA2Mjk0OVowMzExMC8GA1UEAxMoQ0ZGMDczRkM2NTA3QkIxN0M4QjA2 OTBFODMxOEU1OUJCNzNBRDVBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOGnP3JeyNmEr8U65MpySMW1u7eG3nluedQgIhym3VOyhfbN+ukFlETMBRhn dfbcBt0howWoOzUNdWHXzXWtkDe6ENtryNXDVJ+Zd7yg2rV+Kz4b+Nfj7sPgqkGS 7AetvwERSv1dPrd3wa9nt21kUfLB+YbQbJW1ckiVJPI9ChG/QfTu9OqMQxgj/zvq T0gUXW/NdWsYx2N1Zyk69R32UUsKBz/a36rbo0dqktuKYXBu5Y2lm1CGopoECa5e C1wJIQRhMp3dea4YgMBlrtu9L449ki12Sf69LGR6GwFlzCgBz3QXt6oqGAtZB+mB mZmfsrEJjhRqGRKk+ZddADw4jhUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTP8HP8 ZQe7F8iwaQ6DGOWbtzrVozAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rEowDQYJKoZIhvcNAQELBQADggEBAH3sXM2isbpddagDtSAc/7iUgZwaCM4q8I1v cMDVzUfs/hHs1oihH7aMHTFh6hEvd+LjFCnSUVHOKVWscclLB3q5oj/AIr+G/Wcd slpOHlDnVedHM/5Qg50kQiAMgyuh/hkh8u4om4OtFzOKn7Lr7GMmQlDuIHoCz4vH HylqJsWrTJO5KxGIMll/cmjy7GukzJc9V1wWBT0yFqEIwWGn3AOplbPb1Xhb0+qi yIDPNigiyAMDYU2oxbGfGInNYOgJ2vigMK8TAfyco2qkN4zAfyBhI8CMcuvUUcVf 4BzdY5cCzBnFCbH2wYOx22Z62VhzfuXX/k8DBv+YPvEDahB+tqE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:08 2026 by rpki-client