$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145804.roa File: AS145804.roa (raw, json) Hash identifier: 3mRqNMNw2QPeT2AaZDobf1YaSL/Df44PesnHTWdD91E= Subject key identifier: 63:B3:62:23:9D:24:64:66:E6:9B:FC:F5:89:E0:48:38:9D:FB:7E:16 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4C873F0D8BB6D459187F4FF45D9819AF83344F39 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145804.roa Signing time: Wed 04 Mar 2026 06:30:26 +0000 ROA not before: Wed 04 Mar 2026 06:25:26 +0000 ROA not after: Wed 03 Mar 2027 06:30:26 +0000 asID: 145804 IP address blocks: 240a:ac52::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:87:3f:0d:8b:b6:d4:59:18:7f:4f:f4:5d:98:19:af:83:34:4f:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:26 2026 GMT Not After : Mar 3 06:30:26 2027 GMT Subject: CN=63B362239D246466E69BFCF589E048389DFB7E16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9f:00:5c:a5:fa:ee:8e:32:e1:7a:c8:21:5c: 84:ee:2b:0c:23:25:50:22:72:5a:30:8c:6e:09:2f: b3:b2:4e:82:00:94:df:8b:88:66:ed:29:ae:2d:ea: c4:cc:6c:7e:72:91:17:48:b9:35:51:e5:78:6c:38: 1f:5a:ad:b5:d0:1e:df:2b:f7:05:90:49:77:e0:d6: 4d:35:12:8e:24:c2:e2:62:dc:7f:ff:5b:fa:0b:d7: fe:6f:e5:11:55:78:13:37:fb:39:84:19:60:51:f9: 81:21:d2:25:01:e8:af:f5:e0:80:cf:55:e2:4f:7b: 02:4f:90:10:33:c2:4d:4e:35:08:99:54:33:5a:cc: 5e:2f:20:fc:d3:ad:0e:5b:06:c9:d6:d6:96:76:e2: 91:27:12:fc:14:d4:5e:1c:8d:3b:7b:22:5f:ba:c5: 6b:2f:20:41:86:df:d7:0f:85:61:44:c9:05:e6:52: df:09:c2:be:87:1b:44:30:fa:54:05:04:84:17:31: 4b:d4:d2:39:7a:66:24:c6:a0:f5:08:71:46:64:57: 71:32:e0:18:89:b7:05:38:92:6b:13:36:ec:56:49: e1:da:d7:2c:a8:4a:75:98:b4:24:09:3a:cb:bf:5d: d4:dd:6e:21:93:2f:ae:74:10:41:18:6e:cd:0f:6e: 48:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B3:62:23:9D:24:64:66:E6:9B:FC:F5:89:E0:48:38:9D:FB:7E:16 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145804.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac52::/32 Signature Algorithm: sha256WithRSAEncryption 04:67:ef:3e:1a:f6:5a:b8:35:90:fe:8d:d9:82:1c:3d:fe:32: a3:0f:c4:8b:04:a9:10:f2:31:7b:1b:08:9d:7c:3d:04:48:74: 65:d2:46:59:6c:29:38:bd:72:cb:cf:6f:81:4f:cb:85:3a:4b: a1:b4:f0:8d:2f:ac:77:d1:36:ec:ae:1f:ed:18:61:a2:3a:b9: b6:4f:0a:80:da:cd:10:87:75:1b:1c:42:bb:85:4e:0a:f0:ed: f0:95:3a:20:2e:a1:34:f9:1a:ef:86:29:f4:0c:d0:c1:dc:8d: 3c:d2:f3:90:ce:99:38:e6:9e:34:29:be:be:dc:df:6d:52:98: 76:2a:81:20:64:37:29:e3:82:c5:dd:82:8c:ed:f8:ff:5f:14: 9d:11:f0:50:b9:0b:67:09:73:b8:32:d6:4f:a2:7c:b3:7d:6f: aa:64:c2:67:dc:30:77:1c:32:a9:68:26:57:2f:4a:78:17:d5: a8:ec:b6:45:f5:ec:06:1f:9b:21:5d:8f:41:09:14:78:35:36: 87:02:a6:54:c9:94:9d:37:b5:93:8f:7e:0f:a4:9a:6d:46:89: 20:48:d5:0f:94:53:77:74:d6:e0:8e:69:77:61:e6:5c:a5:6b: 50:f0:93:ea:58:43:44:03:28:0f:59:fb:86:e5:10:92:15:fb: 91:4f:67:ba -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTIc/DYu21FkYf0/0XZgZr4M0TzkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUyNloX DTI3MDMwMzA2MzAyNlowMzExMC8GA1UEAxMoNjNCMzYyMjM5RDI0NjQ2NkU2OUJG Q0Y1ODlFMDQ4Mzg5REZCN0UxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGfAFyl+u6OMuF6yCFchO4rDCMlUCJyWjCMbgkvs7JOggCU34uIZu0pri3q xMxsfnKRF0i5NVHleGw4H1qttdAe3yv3BZBJd+DWTTUSjiTC4mLcf/9b+gvX/m/l EVV4Ezf7OYQZYFH5gSHSJQHor/XggM9V4k97Ak+QEDPCTU41CJlUM1rMXi8g/NOt DlsGydbWlnbikScS/BTUXhyNO3siX7rFay8gQYbf1w+FYUTJBeZS3wnCvocbRDD6 VAUEhBcxS9TSOXpmJMag9QhxRmRXcTLgGIm3BTiSaxM27FZJ4drXLKhKdZi0JAk6 y79d1N1uIZMvrnQQQRhuzQ9uSN0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRjs2Ij nSRkZuab/PWJ4Eg4nft+FjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTgwNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rFIwDQYJKoZIhvcNAQELBQADggEBAARn7z4a9lq4NZD+jdmCHD3+MqMPxIsEqRDy MXsbCJ18PQRIdGXSRllsKTi9csvPb4FPy4U6S6G08I0vrHfRNuyuH+0YYaI6ubZP CoDazRCHdRscQruFTgrw7fCVOiAuoTT5Gu+GKfQM0MHcjTzS85DOmTjmnjQpvr7c 321SmHYqgSBkNynjgsXdgozt+P9fFJ0R8FC5C2cJc7gy1k+ifLN9b6pkwmfcMHcc MqloJlcvSngX1ajstkX17AYfmyFdj0EJFHg1NocCplTJlJ03tZOPfg+kmm1GiSBI 1Q+UU3d01uCOaXdh5lyla1Dwk+pYQ0QDKA9Z+4blEJIV+5FPZ7o= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:43 2026 by rpki-client