$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145808.roa File: AS145808.roa (raw, json) Hash identifier: 8OSdXO63WyKrLj8AtudY4IbYPuz6kG9amL6bgVlMVVI= Subject key identifier: E9:15:A3:CF:CC:75:39:C6:7D:BE:90:EA:E5:9C:DC:1B:6B:8A:63:32 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6367BAA01135A7234FA28AE094D62E80D16429CA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145808.roa Signing time: Wed 04 Mar 2026 06:29:53 +0000 ROA not before: Wed 04 Mar 2026 06:24:53 +0000 ROA not after: Wed 03 Mar 2027 06:29:53 +0000 asID: 145808 IP address blocks: 240a:ac56::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:67:ba:a0:11:35:a7:23:4f:a2:8a:e0:94:d6:2e:80:d1:64:29:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:53 2026 GMT Not After : Mar 3 06:29:53 2027 GMT Subject: CN=E915A3CFCC7539C67DBE90EAE59CDC1B6B8A6332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:8b:f3:a3:5f:b1:77:c3:ae:a4:ac:dd:b7:0f: e7:b5:c6:81:b3:3c:20:f4:6b:00:60:ee:66:11:e2: 21:1e:f7:6a:dd:3d:97:19:32:20:34:1c:80:16:2c: 3d:ba:34:1d:35:bc:07:74:61:ac:0f:99:aa:18:d4: 81:ab:42:ba:9a:c8:f2:63:05:23:4d:44:6b:31:4a: db:89:57:d8:82:20:98:1d:48:02:0f:7d:b0:3a:69: dc:2d:cf:62:2b:3f:a5:06:5d:25:88:4c:f6:84:f4: bb:ac:e8:1a:0c:6f:ae:6b:df:6d:ad:7b:0e:b6:db: a5:57:60:f8:45:34:1e:7e:b0:db:7d:f0:6b:d3:5e: 87:e9:27:0b:78:34:41:ea:c8:a4:6b:27:c5:11:b6: e3:c6:90:f6:72:61:d3:1c:96:90:ca:6c:cf:ec:c4: 53:ca:91:8d:eb:3b:bd:65:cb:fe:a0:45:36:2a:f1: e7:81:93:be:b4:fe:38:74:42:ab:87:94:93:a5:ef: d8:f8:cc:85:ee:f3:a1:14:c6:20:ab:06:bd:30:46: ea:37:9d:7f:fd:aa:12:04:69:d2:53:c8:f9:f5:d6: e2:3e:e5:0c:09:7a:f5:e0:33:50:f1:84:3b:e5:8e: a5:2e:c2:e7:4a:fa:9c:eb:80:64:4e:ea:3b:4b:1e: 43:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:15:A3:CF:CC:75:39:C6:7D:BE:90:EA:E5:9C:DC:1B:6B:8A:63:32 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145808.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac56::/32 Signature Algorithm: sha256WithRSAEncryption 2b:9c:ae:e7:6f:6f:31:3d:b2:2e:c6:88:72:38:5d:35:a7:60: 54:17:8a:eb:2c:8a:f0:c4:c7:b2:88:bb:c2:32:17:5c:95:50: 01:2b:28:ae:09:44:55:a5:39:3a:c7:50:59:59:61:24:5d:f1: ce:4e:6d:e7:85:d3:6f:ad:c4:42:98:34:3a:56:ff:91:a6:16: 03:98:00:b2:0f:6d:ac:01:6b:c2:31:05:a8:90:84:da:d0:97: 1f:68:39:80:15:18:b0:55:09:9b:6e:f2:84:e0:a4:73:d8:ed: f6:08:4f:d0:11:81:8f:0e:32:ad:a9:26:6a:a3:3c:20:b3:74: 3f:80:4d:06:70:e1:01:60:ea:3e:cc:0b:95:a3:f7:17:a3:82: 52:7c:e8:77:46:8d:9b:d0:72:38:15:cf:3e:a8:bc:9e:44:30: 75:22:9b:ef:f3:a7:41:8c:41:5f:ad:e7:19:af:e1:0a:fc:7b: a1:f1:31:a0:29:63:50:cf:bd:35:49:4d:ea:6c:bd:96:f7:07: fe:d4:f0:3a:84:1e:8c:f6:29:a8:87:43:1b:bf:4e:43:ba:86: fb:a8:9c:5c:5a:e3:1a:26:86:86:13:f7:04:24:97:8b:fc:ac: 7e:a0:ff:01:5e:8b:97:d3:5a:80:2e:54:18:7d:11:b3:7a:d4: 3c:bc:ba:ec -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUY2e6oBE1pyNPoorglNYugNFkKcowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ1M1oX DTI3MDMwMzA2Mjk1M1owMzExMC8GA1UEAxMoRTkxNUEzQ0ZDQzc1MzlDNjdEQkU5 MEVBRTU5Q0RDMUI2QjhBNjMzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJWL86NfsXfDrqSs3bcP57XGgbM8IPRrAGDuZhHiIR73at09lxkyIDQcgBYs Pbo0HTW8B3RhrA+ZqhjUgatCuprI8mMFI01EazFK24lX2IIgmB1IAg99sDpp3C3P Yis/pQZdJYhM9oT0u6zoGgxvrmvfba17DrbbpVdg+EU0Hn6w233wa9Neh+knC3g0 QerIpGsnxRG248aQ9nJh0xyWkMpsz+zEU8qRjes7vWXL/qBFNirx54GTvrT+OHRC q4eUk6Xv2PjMhe7zoRTGIKsGvTBG6jedf/2qEgRp0lPI+fXW4j7lDAl69eAzUPGE O+WOpS7C50r6nOuAZE7qO0seQ2UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTpFaPP zHU5xn2+kOrlnNwba4pjMjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTgwOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rFYwDQYJKoZIhvcNAQELBQADggEBACucrudvbzE9si7GiHI4XTWnYFQXiussivDE x7KIu8IyF1yVUAErKK4JRFWlOTrHUFlZYSRd8c5ObeeF02+txEKYNDpW/5GmFgOY ALIPbawBa8IxBaiQhNrQlx9oOYAVGLBVCZtu8oTgpHPY7fYIT9ARgY8OMq2pJmqj PCCzdD+ATQZw4QFg6j7MC5Wj9xejglJ86HdGjZvQcjgVzz6ovJ5EMHUim+/zp0GM QV+t5xmv4Qr8e6HxMaApY1DPvTVJTepsvZb3B/7U8DqEHoz2KaiHQxu/TkO6hvuo nFxa4xomhoYT9wQkl4v8rH6g/wFei5fTWoAuVBh9EbN61Dy8uuw= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:24 2026 by rpki-client