$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145820.roa File: AS145820.roa (raw, json) Hash identifier: dGo9zngv9KzXXYBr3Z5L0h5Z9xUTQ5QMR4F+y/hrGF4= Subject key identifier: 79:CB:D4:FC:64:EC:9A:9E:C5:CF:11:36:27:05:02:68:8F:C7:D1:4B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 61ABD0E12DED8A2B89AF879AE897ED2667AB3D07 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145820.roa Signing time: Wed 04 Mar 2026 06:30:03 +0000 ROA not before: Wed 04 Mar 2026 06:25:03 +0000 ROA not after: Wed 03 Mar 2027 06:30:03 +0000 asID: 145820 IP address blocks: 240a:ac62::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ab:d0:e1:2d:ed:8a:2b:89:af:87:9a:e8:97:ed:26:67:ab:3d:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:03 2026 GMT Not After : Mar 3 06:30:03 2027 GMT Subject: CN=79CBD4FC64EC9A9EC5CF1136270502688FC7D14B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:13:58:a0:2e:9a:88:47:32:42:ff:4f:af:5b: e4:29:69:23:f9:e0:4e:dd:8e:69:df:5c:1b:81:ee: ba:a2:ef:97:58:68:3f:25:aa:7f:02:97:b8:0e:59: 89:71:34:cc:3e:3d:be:72:31:f0:e0:71:34:e7:6e: c8:3c:4d:64:9e:4c:1e:9d:26:17:4f:89:9d:d7:fc: 63:5b:3e:24:c3:54:bb:b2:08:fe:da:5d:e6:45:eb: 39:75:ec:f7:87:51:5a:c9:50:ca:7b:c9:cc:ef:36: a8:9c:a9:d0:16:b2:f7:63:55:f5:2f:f9:ee:d3:6e: c5:88:ef:0d:ed:e9:c4:69:62:fc:f3:1b:35:3a:da: c5:a1:d3:7c:e6:8a:fd:64:f9:12:15:ed:85:ec:50: ec:62:bc:f6:40:66:4b:53:68:60:e4:55:1f:5c:37: ba:bf:57:69:a1:ce:31:57:7e:42:46:f8:bd:10:48: a7:24:97:8d:5f:eb:31:70:92:7a:24:61:47:b6:9e: af:92:e3:39:2d:f6:b6:8d:42:2e:ad:c0:30:a6:68: 17:72:b9:f3:69:b4:fb:2e:7d:8b:22:ed:ee:96:c3: 7e:f9:4e:8f:cf:32:3c:b3:75:f0:23:b9:fa:2c:2b: c8:f3:7d:e2:bb:24:f1:07:a4:b8:f0:ff:72:36:87: 82:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CB:D4:FC:64:EC:9A:9E:C5:CF:11:36:27:05:02:68:8F:C7:D1:4B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145820.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac62::/32 Signature Algorithm: sha256WithRSAEncryption 07:b3:b3:51:dc:6c:3b:4a:a6:d8:e5:df:23:d9:7c:17:e1:d5: 00:b3:7c:5a:0b:79:a8:8e:53:53:4f:67:0e:61:8f:d7:a6:af: 7d:2a:08:29:4e:77:b9:0e:07:8d:a1:ac:4b:d6:5b:94:25:8e: 31:05:d0:05:2d:ab:cd:99:72:80:d4:5d:21:31:9c:9c:fc:c7: 9f:67:e3:f2:36:05:06:ce:98:23:db:b6:f8:3a:bb:ca:b5:cc: 6a:ec:d5:db:ed:52:01:ec:8c:42:e6:29:e8:21:d4:46:ce:4d: 4e:cd:b2:4e:94:17:7f:ac:1a:22:c2:cb:68:66:e3:6e:d0:77: 2b:b7:c9:42:66:b1:e1:00:db:d6:83:80:0a:38:1a:e2:48:65: 44:2f:92:45:1e:6f:f4:73:9d:9d:e9:4f:8d:e5:e5:4b:e4:43: f5:fa:1b:83:b5:51:e2:c4:7f:73:35:13:4c:51:ad:79:bb:00: 56:b7:68:11:44:67:58:4a:52:aa:4e:ef:ab:94:3b:c2:e6:54: 20:69:81:62:49:ce:69:b4:b3:f3:41:01:1c:ff:d3:34:cc:8f: 7a:1d:bd:04:4a:4d:ff:dc:83:9b:b5:44:44:67:a1:18:53:a7: 25:c4:07:f4:a6:61:27:46:d2:3b:bb:09:94:1f:db:80:bb:60: 7b:af:3b:e1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYavQ4S3tiiuJr4ea6JftJmerPQcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUwM1oX DTI3MDMwMzA2MzAwM1owMzExMC8GA1UEAxMoNzlDQkQ0RkM2NEVDOUE5RUM1Q0Yx MTM2MjcwNTAyNjg4RkM3RDE0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALITWKAumohHMkL/T69b5ClpI/ngTt2Oad9cG4HuuqLvl1hoPyWqfwKXuA5Z iXE0zD49vnIx8OBxNOduyDxNZJ5MHp0mF0+Jndf8Y1s+JMNUu7II/tpd5kXrOXXs 94dRWslQynvJzO82qJyp0Bay92NV9S/57tNuxYjvDe3pxGli/PMbNTraxaHTfOaK /WT5EhXthexQ7GK89kBmS1NoYORVH1w3ur9XaaHOMVd+Qkb4vRBIpySXjV/rMXCS eiRhR7aer5LjOS32to1CLq3AMKZoF3K582m0+y59iyLt7pbDfvlOj88yPLN18CO5 +iwryPN94rsk8QekuPD/cjaHgtsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR5y9T8 ZOyansXPETYnBQJoj8fRSzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTgyMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rGIwDQYJKoZIhvcNAQELBQADggEBAAezs1HcbDtKptjl3yPZfBfh1QCzfFoLeaiO U1NPZw5hj9emr30qCClOd7kOB42hrEvWW5QljjEF0AUtq82ZcoDUXSExnJz8x59n 4/I2BQbOmCPbtvg6u8q1zGrs1dvtUgHsjELmKegh1EbOTU7Nsk6UF3+sGiLCy2hm 427Qdyu3yUJmseEA29aDgAo4GuJIZUQvkkUeb/RznZ3pT43l5UvkQ/X6G4O1UeLE f3M1E0xRrXm7AFa3aBFEZ1hKUqpO76uUO8LmVCBpgWJJzmm0s/NBARz/0zTMj3od vQRKTf/cg5u1RERnoRhTpyXEB/SmYSdG0ju7CZQf24C7YHuvO+E= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:04 2026 by rpki-client