$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145864.roa File: AS145864.roa (raw, json) Hash identifier: RYDLp4BBt1m6SFqrS7vWrmqUJFuaEIAHdp/GP89Cwnc= Subject key identifier: 94:DA:B0:02:4D:E6:BF:AF:80:35:06:E5:4A:D7:F9:FA:73:9C:81:74 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 635E8CE7E10E55877E1AB10E166D78A6FC6B9962 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145864.roa Signing time: Wed 04 Mar 2026 06:31:07 +0000 ROA not before: Wed 04 Mar 2026 06:26:07 +0000 ROA not after: Wed 03 Mar 2027 06:31:07 +0000 asID: 145864 IP address blocks: 240a:ac8e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:5e:8c:e7:e1:0e:55:87:7e:1a:b1:0e:16:6d:78:a6:fc:6b:99:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:26:07 2026 GMT Not After : Mar 3 06:31:07 2027 GMT Subject: CN=94DAB0024DE6BFAF803506E54AD7F9FA739C8174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ba:fe:aa:26:3b:f8:2a:8e:79:9e:49:4c:40: 0f:11:34:ee:f1:46:57:c9:a9:a7:3d:70:44:1c:74: 11:98:74:65:b0:e5:ee:49:15:f0:80:87:23:eb:3a: 51:af:67:38:e7:f7:fb:70:bb:e8:7a:98:dd:b2:8b: f2:b6:c3:de:c5:a6:83:9e:71:54:6d:fa:c1:9b:54: 16:e2:0c:15:14:97:d6:64:b3:d1:d6:2b:87:f1:82: 5d:e5:4e:9f:bc:8b:56:d4:c6:36:7e:9e:bb:ed:02: 59:88:32:e0:70:f0:1b:65:63:b4:d1:78:39:ba:6f: 26:31:46:30:ca:da:b7:bf:e3:48:1c:fc:a5:3f:7a: 6c:47:19:31:83:eb:f6:3c:71:8e:60:b4:26:0f:04: b9:e8:8f:61:89:37:30:5f:93:d0:a3:0a:99:2f:58: fa:70:c3:8c:5c:06:48:7c:3b:42:56:68:8e:82:56: cd:de:4c:46:c1:68:46:f0:be:b5:41:42:3f:26:86: 78:93:94:18:10:a9:86:a4:a4:ef:f7:28:c3:b6:60: 33:84:cf:6b:fc:03:41:0f:c0:3a:df:c1:6a:28:3b: e5:1c:2b:94:99:41:05:6f:68:63:6e:7f:5a:56:22: 55:cb:37:fc:da:4a:67:3a:97:4f:29:0a:89:35:53: 10:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:DA:B0:02:4D:E6:BF:AF:80:35:06:E5:4A:D7:F9:FA:73:9C:81:74 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac8e::/32 Signature Algorithm: sha256WithRSAEncryption ac:47:64:c7:d7:b3:33:65:0f:90:86:a8:df:2f:c2:4f:8c:ec: 3d:a7:c0:3c:8a:63:6b:76:22:91:9d:9b:44:9b:5f:23:e2:60: 22:54:0d:73:98:a8:23:ed:28:80:54:db:7d:9e:85:06:00:53: 79:88:ca:33:8d:01:ea:70:04:9b:2c:f2:cf:8f:7d:f5:d8:9a: e8:a8:60:ca:ab:b9:61:d4:b0:8e:46:49:20:55:6a:99:77:ad: 15:75:8f:8f:c4:87:21:9c:43:64:af:09:1c:71:34:3a:43:34: 9b:12:2a:46:09:b0:0f:d1:dc:1a:a6:43:8f:67:b5:a7:98:de: 37:79:07:3a:18:49:0c:e2:88:71:f2:f6:db:e9:1b:af:5e:33: 21:fc:6c:e0:10:2b:3d:e8:f5:ff:fd:99:d0:8f:a0:f4:ea:61: 30:ed:f3:18:4e:a9:2d:f2:25:0f:31:92:bd:51:55:c2:99:56: e0:af:ba:82:53:3d:f4:24:f7:46:3a:9c:a3:28:92:4b:35:55: f4:2f:3c:f0:ca:66:6b:db:ba:87:a1:8c:ee:e9:a0:24:8d:dc: 01:db:d5:f8:6a:1c:62:8d:04:db:a1:95:9d:26:ce:d5:e1:6f: aa:b2:5d:7d:ee:ba:cb:14:e0:60:d3:a0:c8:fc:2f:49:8e:34: be:2d:a2:d1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUY16M5+EOVYd+GrEOFm14pvxrmWIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjYwN1oX DTI3MDMwMzA2MzEwN1owMzExMC8GA1UEAxMoOTREQUIwMDI0REU2QkZBRjgwMzUw NkU1NEFEN0Y5RkE3MzlDODE3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKq6/qomO/gqjnmeSUxADxE07vFGV8mppz1wRBx0EZh0ZbDl7kkV8ICHI+s6 Ua9nOOf3+3C76HqY3bKL8rbD3sWmg55xVG36wZtUFuIMFRSX1mSz0dYrh/GCXeVO n7yLVtTGNn6eu+0CWYgy4HDwG2VjtNF4ObpvJjFGMMrat7/jSBz8pT96bEcZMYPr 9jxxjmC0Jg8EueiPYYk3MF+T0KMKmS9Y+nDDjFwGSHw7QlZojoJWzd5MRsFoRvC+ tUFCPyaGeJOUGBCphqSk7/cow7ZgM4TPa/wDQQ/AOt/Baig75RwrlJlBBW9oY25/ WlYiVcs3/NpKZzqXTykKiTVTECUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSU2rAC Tea/r4A1BuVK1/n6c5yBdDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTg2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rI4wDQYJKoZIhvcNAQELBQADggEBAKxHZMfXszNlD5CGqN8vwk+M7D2nwDyKY2t2 IpGdm0SbXyPiYCJUDXOYqCPtKIBU232ehQYAU3mIyjONAepwBJss8s+PffXYmuio YMqruWHUsI5GSSBVapl3rRV1j4/EhyGcQ2SvCRxxNDpDNJsSKkYJsA/R3BqmQ49n taeY3jd5BzoYSQziiHHy9tvpG69eMyH8bOAQKz3o9f/9mdCPoPTqYTDt8xhOqS3y JQ8xkr1RVcKZVuCvuoJTPfQk90Y6nKMokks1VfQvPPDKZmvbuoehjO7poCSN3AHb 1fhqHGKNBNuhlZ0mztXhb6qyXX3uussU4GDToMj8L0mONL4totE= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:34 2026 by rpki-client