$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145834.roa File: AS145834.roa (raw, json) Hash identifier: oiqkB7l8NmnEpDM2a67pQZz1Ic8LCLGJ8tfyXzssY7E= Subject key identifier: 13:52:2E:86:EB:ED:3D:E4:87:38:C8:22:CA:1C:FB:68:BF:E0:8C:EA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 713CC606A1E6386AC7FDD7E1535DB91F478BB18B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145834.roa Signing time: Wed 04 Mar 2026 06:30:57 +0000 ROA not before: Wed 04 Mar 2026 06:25:57 +0000 ROA not after: Wed 03 Mar 2027 06:30:57 +0000 asID: 145834 IP address blocks: 240a:ac70::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:3c:c6:06:a1:e6:38:6a:c7:fd:d7:e1:53:5d:b9:1f:47:8b:b1:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:57 2026 GMT Not After : Mar 3 06:30:57 2027 GMT Subject: CN=13522E86EBED3DE48738C822CA1CFB68BFE08CEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6f:ea:0e:41:c4:9b:2a:52:6a:73:72:64:82: 6f:fe:53:c2:d2:6e:b6:47:57:b6:ec:49:c6:29:75: 00:7a:3f:7a:25:d6:8e:1f:7c:3c:37:0f:e6:f3:ea: 05:d7:a3:94:59:cc:f2:b0:9c:a2:d0:4c:ea:37:48: ee:80:66:ca:ce:db:6c:16:79:36:01:22:3c:ad:18: 9d:ec:7a:ac:26:02:61:1b:b7:41:38:0c:cd:9b:e8: 8c:10:ab:17:1a:46:7e:67:3f:2a:d8:e8:91:b6:62: 8f:98:cc:ef:33:d4:27:f5:e9:f0:40:36:03:06:f9: a5:23:8e:99:73:99:a3:4f:e2:16:36:fb:e0:8e:3f: 1b:73:85:ed:0a:75:38:1d:c7:bb:33:2f:01:f5:86: e7:05:c4:d5:cd:bb:a1:38:99:2e:98:42:90:98:a9: 2d:d2:8c:8e:d0:05:ab:0f:9b:88:a9:45:a4:3c:29: 5a:be:56:29:e6:0f:81:9d:ae:57:a5:4c:c5:06:46: dd:2f:e9:da:a9:99:95:a1:ed:9e:a5:d3:db:8e:39: f7:84:17:5f:e8:4b:2d:bc:95:47:ea:74:93:30:42: 27:31:69:44:f2:80:da:c6:67:f8:07:c1:53:fc:04: 86:5d:6a:f0:4b:12:8d:73:ed:7f:af:5e:af:ed:ed: c2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:52:2E:86:EB:ED:3D:E4:87:38:C8:22:CA:1C:FB:68:BF:E0:8C:EA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac70::/32 Signature Algorithm: sha256WithRSAEncryption 94:8e:73:d5:28:63:18:44:40:ee:81:0b:40:04:4a:90:d2:0e: 13:3c:fb:19:50:ff:4a:f6:84:d3:11:b3:59:64:ff:22:e9:48: a1:bd:58:dd:e5:28:76:30:8c:83:a9:f2:27:97:9c:b1:d5:17: 1a:b3:bd:b2:f6:52:74:ac:53:f9:f6:9f:bf:dc:91:92:b3:e8: 47:77:e9:6b:56:e5:57:69:8b:11:e0:20:eb:74:03:29:c7:4d: da:4b:03:59:1e:d2:7e:33:6f:c1:82:48:9f:b1:07:cd:36:f9: cf:0f:12:aa:75:31:ea:c0:d3:0f:33:f9:0b:63:16:8e:9b:67: 06:f1:79:3a:36:31:af:60:c0:4d:77:14:6e:05:94:41:39:c1: cf:b4:cd:c8:6a:1b:0c:bc:e6:0d:5b:41:d2:53:0c:9d:50:81: d9:28:4d:e2:54:dd:10:69:c4:16:91:94:83:4b:17:a7:c1:6c: b6:88:b8:91:00:95:40:e1:85:6e:27:89:e4:bf:d6:87:64:b5: 5e:a8:33:10:c3:68:3e:01:9c:51:56:02:9b:9c:fc:88:8f:b0: ab:5a:59:f2:68:cb:ae:05:0d:a1:03:72:bd:0d:01:61:62:40: 35:fa:27:f6:31:88:ab:9d:c4:50:b9:82:3a:3e:db:5b:f8:2e: 91:be:40:50 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUcTzGBqHmOGrH/dfhU125H0eLsYswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU1N1oX DTI3MDMwMzA2MzA1N1owMzExMC8GA1UEAxMoMTM1MjJFODZFQkVEM0RFNDg3MzhD ODIyQ0ExQ0ZCNjhCRkUwOENFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOJv6g5BxJsqUmpzcmSCb/5TwtJutkdXtuxJxil1AHo/eiXWjh98PDcP5vPq BdejlFnM8rCcotBM6jdI7oBmys7bbBZ5NgEiPK0Ynex6rCYCYRu3QTgMzZvojBCr FxpGfmc/KtjokbZij5jM7zPUJ/Xp8EA2Awb5pSOOmXOZo0/iFjb74I4/G3OF7Qp1 OB3HuzMvAfWG5wXE1c27oTiZLphCkJipLdKMjtAFqw+biKlFpDwpWr5WKeYPgZ2u V6VMxQZG3S/p2qmZlaHtnqXT244594QXX+hLLbyVR+p0kzBCJzFpRPKA2sZn+AfB U/wEhl1q8EsSjXPtf69er+3twpECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQTUi6G 6+095Ic4yCLKHPtov+CM6jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTgzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rHAwDQYJKoZIhvcNAQELBQADggEBAJSOc9UoYxhEQO6BC0AESpDSDhM8+xlQ/0r2 hNMRs1lk/yLpSKG9WN3lKHYwjIOp8ieXnLHVFxqzvbL2UnSsU/n2n7/ckZKz6Ed3 6WtW5VdpixHgIOt0AynHTdpLA1ke0n4zb8GCSJ+xB802+c8PEqp1MerA0w8z+Qtj Fo6bZwbxeTo2Ma9gwE13FG4FlEE5wc+0zchqGwy85g1bQdJTDJ1QgdkoTeJU3RBp xBaRlINLF6fBbLaIuJEAlUDhhW4nieS/1odktV6oMxDDaD4BnFFWApuc/IiPsKta WfJoy64FDaEDcr0NAWFiQDX6J/YxiKudxFC5gjo+21v4LpG+QFA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:56 2026 by rpki-client