$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145800.roa File: AS145800.roa (raw, json) Hash identifier: cEJpkaT8GYK78aZTxar7vIHL3B+qpNGTvUMln9FwYk0= Subject key identifier: 0C:49:09:64:48:22:3F:34:47:77:AC:00:3F:9D:98:6F:8F:6D:B4:46 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2B3773B6718EDF8FA8FE255FCBCC2FF94B48AFBE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145800.roa Signing time: Wed 04 Mar 2026 06:29:59 +0000 ROA not before: Wed 04 Mar 2026 06:24:59 +0000 ROA not after: Wed 03 Mar 2027 06:29:59 +0000 asID: 145800 IP address blocks: 240a:ac4e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:37:73:b6:71:8e:df:8f:a8:fe:25:5f:cb:cc:2f:f9:4b:48:af:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:59 2026 GMT Not After : Mar 3 06:29:59 2027 GMT Subject: CN=0C49096448223F344777AC003F9D986F8F6DB446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8f:38:aa:03:20:47:89:ee:02:5c:ae:3c:41: 69:66:e6:df:f2:b6:8d:38:55:45:8a:2c:03:55:51: 31:5c:55:6c:9a:83:4f:97:da:11:3a:92:1e:3e:ac: ff:da:a1:04:91:ac:55:10:6c:27:98:69:a5:ab:3b: 03:d4:cf:d0:c3:0b:65:df:d7:b5:6a:2c:0f:6c:c4: bc:43:2b:e3:5d:19:63:f2:e7:98:2b:97:93:5e:f0: c9:8b:6e:af:d9:5b:80:81:16:0e:ab:af:1d:30:fd: eb:56:7b:a4:8d:8e:8b:14:5c:98:59:25:a5:cf:e5: 67:47:e0:28:be:e7:be:51:f4:6b:ac:d5:1a:0b:7e: c8:ab:d3:1b:8d:75:e3:0f:b3:9a:14:c6:5f:5a:6d: 9e:30:36:5e:79:b7:88:08:c8:cd:4e:72:08:8f:5e: ca:03:9c:79:1e:02:c1:33:e5:d6:9d:a2:92:42:6c: bf:e5:e8:13:2a:b3:d1:3e:cc:4a:8d:1a:2f:ba:30: 24:75:16:7c:59:b0:ed:69:08:e9:2d:c0:7a:c9:6d: 1b:1e:db:ec:b0:7d:9a:72:7c:36:3b:8e:04:18:20: 14:07:63:ec:e9:26:44:60:59:7d:da:25:ab:35:14: d2:bc:ab:ac:f0:27:14:8d:a0:5b:72:d4:20:0e:34: bb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:49:09:64:48:22:3F:34:47:77:AC:00:3F:9D:98:6F:8F:6D:B4:46 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145800.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac4e::/32 Signature Algorithm: sha256WithRSAEncryption 1c:0f:36:bd:5e:60:6c:e3:2c:fb:ed:bf:4e:ee:a1:55:c4:71: 93:a0:cb:e1:34:2d:19:70:97:39:d2:b1:5f:94:cf:2c:e2:a6: dc:ab:b2:3e:9e:d8:0e:59:a6:7b:90:8a:16:ba:a9:dc:cf:59: 74:66:e8:3b:f1:70:52:2e:aa:99:f6:05:38:cd:81:2e:62:5f: 00:b3:2f:d6:67:74:83:6c:30:5e:98:a3:b5:fa:fc:73:24:8c: 5b:09:42:be:1b:db:d7:95:4e:96:30:f3:94:e1:b5:aa:42:98: cb:36:0d:77:b0:5c:07:ba:57:80:e2:23:6e:06:54:e8:ad:92: c1:2b:0e:33:f6:71:1a:ab:99:db:8b:e7:0b:cd:03:b2:a5:e5: c0:a7:f7:98:1c:af:d1:09:2a:d5:0d:06:5c:15:2e:86:4b:18: 64:17:81:92:fc:7d:d0:cf:60:d2:a7:f4:d6:77:dd:4d:69:03: a3:bd:02:11:11:e0:64:11:36:9f:ea:f9:7d:bb:0d:f9:b1:35: 5c:cd:09:26:28:0d:72:26:22:ba:b4:6b:1e:29:af:c4:7d:f2: a6:fe:ef:d4:22:69:13:a5:14:52:4c:5c:45:46:b7:f1:bc:6a: 5a:64:a2:ce:41:ca:6d:83:5a:7c:3e:f7:a4:69:ed:ac:06:c8: 3b:ed:85:6e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKzdztnGO34+o/iVfy8wv+UtIr74wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ1OVoX DTI3MDMwMzA2Mjk1OVowMzExMC8GA1UEAxMoMEM0OTA5NjQ0ODIyM0YzNDQ3NzdB QzAwM0Y5RDk4NkY4RjZEQjQ0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMiPOKoDIEeJ7gJcrjxBaWbm3/K2jThVRYosA1VRMVxVbJqDT5faETqSHj6s /9qhBJGsVRBsJ5hppas7A9TP0MMLZd/XtWosD2zEvEMr410ZY/LnmCuXk17wyYtu r9lbgIEWDquvHTD961Z7pI2OixRcmFklpc/lZ0fgKL7nvlH0a6zVGgt+yKvTG411 4w+zmhTGX1ptnjA2Xnm3iAjIzU5yCI9eygOceR4CwTPl1p2ikkJsv+XoEyqz0T7M So0aL7owJHUWfFmw7WkI6S3AesltGx7b7LB9mnJ8NjuOBBggFAdj7OkmRGBZfdol qzUU0ryrrPAnFI2gW3LUIA40u/8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQMSQlk SCI/NEd3rAA/nZhvj220RjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTgwMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rE4wDQYJKoZIhvcNAQELBQADggEBABwPNr1eYGzjLPvtv07uoVXEcZOgy+E0LRlw lznSsV+Uzyziptyrsj6e2A5ZpnuQiha6qdzPWXRm6DvxcFIuqpn2BTjNgS5iXwCz L9ZndINsMF6Yo7X6/HMkjFsJQr4b29eVTpYw85ThtapCmMs2DXewXAe6V4DiI24G VOitksErDjP2cRqrmduL5wvNA7Kl5cCn95gcr9EJKtUNBlwVLoZLGGQXgZL8fdDP YNKn9NZ33U1pA6O9AhER4GQRNp/q+X27DfmxNVzNCSYoDXImIrq0ax4pr8R98qb+ 79QiaROlFFJMXEVGt/G8alpkos5Bym2DWnw+96Rp7awGyDvthW4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:34 2026 by rpki-client