$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145840.roa File: AS145840.roa (raw, json) Hash identifier: JzDzsTWkUTIcErjRhPc0v/cTPbUW/3u9lSIfoIHrR5E= Subject key identifier: ED:80:64:C2:4C:B6:55:6E:72:0A:A7:74:7A:E6:C6:21:D0:31:CF:11 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0D7C16316900A53C6322FF2A3689DF4824475ACA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145840.roa Signing time: Wed 04 Mar 2026 06:31:12 +0000 ROA not before: Wed 04 Mar 2026 06:26:12 +0000 ROA not after: Wed 03 Mar 2027 06:31:12 +0000 asID: 145840 IP address blocks: 240a:ac76::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:7c:16:31:69:00:a5:3c:63:22:ff:2a:36:89:df:48:24:47:5a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:26:12 2026 GMT Not After : Mar 3 06:31:12 2027 GMT Subject: CN=ED8064C24CB6556E720AA7747AE6C621D031CF11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6b:5c:f0:85:8a:04:b7:c4:5c:51:d7:68:73: a9:0c:2b:3c:88:84:c1:51:60:8c:7d:45:d2:41:bf: bc:dc:10:27:d6:cf:40:38:b7:df:59:c3:17:ed:95: 21:ed:c8:a9:62:ce:c7:1d:67:05:08:07:bf:c6:51: ce:4f:56:4a:d5:db:9a:7c:c9:03:21:57:13:b3:c7: f5:6f:10:60:2f:b9:76:b6:43:04:7c:ae:9c:0a:0f: a6:b6:b5:35:61:58:e2:50:d5:d6:20:d3:fe:01:f9: 83:5f:a4:55:4a:cd:a6:81:36:ca:b0:bf:17:2c:04: f9:68:c5:8a:dc:e6:b5:31:54:e0:3e:97:5f:22:e8: 3c:1f:c6:2b:2a:15:22:29:53:dc:23:43:b2:51:45: 4f:db:29:f3:2b:6f:f9:39:ce:3f:a1:0c:43:9b:b2: b8:71:fb:d8:87:e9:c2:70:24:22:ec:63:9f:e5:b4: 74:0d:eb:db:12:b8:3b:36:af:d8:76:95:58:35:c1: 57:0a:e3:a5:fd:7f:5b:44:09:6c:60:dd:4b:15:49: d8:2c:66:25:61:d9:06:44:21:50:4b:ff:17:ea:be: 9c:f1:f9:cf:1b:45:e5:f5:09:13:c8:a6:ca:48:1a: 62:b5:6a:96:cf:7c:e0:85:a4:57:5c:0b:d4:9a:01: 05:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:80:64:C2:4C:B6:55:6E:72:0A:A7:74:7A:E6:C6:21:D0:31:CF:11 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac76::/32 Signature Algorithm: sha256WithRSAEncryption 62:a4:7e:1f:35:c7:d4:fd:d4:bf:df:5e:65:8a:95:55:9c:19: ff:72:3f:97:ef:b1:de:27:58:7d:41:85:1a:de:c3:6a:83:5d: a4:48:33:53:ab:db:8a:95:84:65:1d:92:4c:c6:fa:ab:d2:28: 38:d2:b1:5f:bb:f4:ef:c9:7d:3e:4e:c3:6f:4f:6d:80:a4:94: 76:e9:34:5b:0a:d2:55:3a:49:44:ad:3c:9e:c4:e8:a8:f1:40: 61:fb:7c:e7:e5:33:ee:c3:51:bb:74:c1:5b:89:48:30:6e:94: 3b:10:c0:9c:80:9c:a1:8a:c8:3a:9f:89:1f:b8:b9:1f:6c:18: e4:29:d4:83:50:c8:ea:65:1f:5b:9e:b1:f5:18:20:4d:76:d4: d4:76:af:5b:65:4d:ee:d7:96:d1:5a:51:78:d0:6e:a9:0e:7f: fc:2e:97:8c:a5:64:c0:b0:4c:62:b5:7e:2d:35:85:1b:a3:71: 41:b2:e1:eb:35:bd:6f:2b:08:f6:db:9e:76:76:ac:07:a8:e9: 5e:83:57:11:9e:67:ea:ff:29:e1:7d:7d:31:60:f6:f9:95:d1: 4c:f0:3c:24:54:4b:f3:2a:db:2f:5f:7a:ab:7c:99:fe:d7:3c: 79:c5:93:29:3f:0e:16:08:f6:19:d8:5d:15:92:6f:53:2e:3f: 4f:ea:7b:49 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDXwWMWkApTxjIv8qNonfSCRHWsowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjYxMloX DTI3MDMwMzA2MzExMlowMzExMC8GA1UEAxMoRUQ4MDY0QzI0Q0I2NTU2RTcyMEFB Nzc0N0FFNkM2MjFEMDMxQ0YxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZrXPCFigS3xFxR12hzqQwrPIiEwVFgjH1F0kG/vNwQJ9bPQDi331nDF+2V Ie3IqWLOxx1nBQgHv8ZRzk9WStXbmnzJAyFXE7PH9W8QYC+5drZDBHyunAoPpra1 NWFY4lDV1iDT/gH5g1+kVUrNpoE2yrC/FywE+WjFitzmtTFU4D6XXyLoPB/GKyoV IilT3CNDslFFT9sp8ytv+TnOP6EMQ5uyuHH72IfpwnAkIuxjn+W0dA3r2xK4Ozav 2HaVWDXBVwrjpf1/W0QJbGDdSxVJ2CxmJWHZBkQhUEv/F+q+nPH5zxtF5fUJE8im ykgaYrVqls984IWkV1wL1JoBBTsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTtgGTC TLZVbnIKp3R65sYh0DHPETAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTg0MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rHYwDQYJKoZIhvcNAQELBQADggEBAGKkfh81x9T91L/fXmWKlVWcGf9yP5fvsd4n WH1BhRrew2qDXaRIM1Or24qVhGUdkkzG+qvSKDjSsV+79O/JfT5Ow29PbYCklHbp NFsK0lU6SUStPJ7E6KjxQGH7fOflM+7DUbt0wVuJSDBulDsQwJyAnKGKyDqfiR+4 uR9sGOQp1INQyOplH1uesfUYIE121NR2r1tlTe7XltFaUXjQbqkOf/wul4ylZMCw TGK1fi01hRujcUGy4es1vW8rCPbbnnZ2rAeo6V6DVxGeZ+r/KeF9fTFg9vmV0Uzw PCRUS/Mq2y9feqt8mf7XPHnFkyk/DhYI9hnYXRWSb1MuP0/qe0k= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:14 2026 by rpki-client