$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145877.roa File: AS145877.roa (raw, json) Hash identifier: LBWjh7dD3Jz0RQALYHcU4tu9SxCJxmR+qFCflGWfEzs= Subject key identifier: 63:D6:18:E2:05:A2:12:E2:29:BB:DA:D8:91:A7:E5:E6:39:25:7F:FE Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 423AA865B98B63A3383B36D61882878B0C405320 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145877.roa Signing time: Wed 04 Mar 2026 06:29:53 +0000 ROA not before: Wed 04 Mar 2026 06:24:53 +0000 ROA not after: Wed 03 Mar 2027 06:29:53 +0000 asID: 145877 IP address blocks: 240a:ac9b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:3a:a8:65:b9:8b:63:a3:38:3b:36:d6:18:82:87:8b:0c:40:53:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:53 2026 GMT Not After : Mar 3 06:29:53 2027 GMT Subject: CN=63D618E205A212E229BBDAD891A7E5E639257FFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8a:1c:90:4d:8f:24:6c:88:0b:df:31:95:23: bc:63:b2:da:60:fb:4e:31:61:f7:b6:72:b4:c4:9e: 2b:15:89:e4:9e:e9:0f:28:c2:31:af:14:03:3e:62: f7:f1:1a:1c:b0:a4:87:00:73:ac:81:b4:49:0c:f2: a0:2c:ca:fc:11:4c:a9:b4:b6:6f:34:6d:72:84:f6: 50:0c:50:bb:a3:dd:d8:df:42:90:32:c6:22:d8:da: 33:06:e2:a8:a4:12:b1:74:a8:97:1b:f3:17:1b:7e: ff:f7:90:97:fa:83:9c:3b:da:af:7c:00:43:8b:b7: 14:79:1b:87:de:ef:22:27:9a:17:66:40:bd:bd:8c: 35:57:69:bd:d2:72:0a:d7:54:ea:38:e4:bd:fe:5a: cf:34:d3:08:0a:fc:01:72:07:4c:74:5f:28:c3:3a: 25:bb:4e:a4:e7:17:f0:43:48:4d:a2:d1:44:8d:51: ac:68:95:11:e7:6a:d8:59:71:a7:58:05:27:48:da: b1:2d:c6:ed:f4:52:e3:0d:1c:f1:15:06:0f:ea:b4: 87:a7:55:9e:34:68:46:75:d1:d1:df:58:52:42:84: 95:a1:a1:5c:bf:4f:25:bc:5e:46:b9:71:e3:fa:e1: 72:64:6f:4a:f4:38:cb:08:17:1b:95:7f:65:4a:72: 30:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D6:18:E2:05:A2:12:E2:29:BB:DA:D8:91:A7:E5:E6:39:25:7F:FE X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145877.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac9b::/32 Signature Algorithm: sha256WithRSAEncryption d0:cd:2f:bb:76:89:f6:be:9f:18:ce:a4:13:83:2d:e9:c4:bf: 35:ea:04:70:de:e3:e1:93:e9:c0:10:5e:36:88:2f:b2:f1:56: 60:42:5e:9d:a0:32:89:f3:28:1c:31:d4:04:d4:42:c0:a5:17: 91:e3:12:f9:40:da:68:e9:b4:f2:83:e6:97:dd:93:7e:0c:70: 5a:24:0f:0e:78:e7:7a:2c:f7:96:ba:bc:1f:45:ea:e6:76:f3: 18:d8:7e:32:a4:a5:f4:00:a5:2e:21:ea:d9:59:74:dc:24:8d: 55:4d:c3:ff:0d:f5:c8:07:fc:69:0c:c7:26:d7:12:39:da:3d: 59:e2:16:0c:2f:bd:64:b8:96:a4:fa:3f:be:41:06:74:75:e7: 93:ae:90:88:83:25:87:be:ba:7d:44:a1:d7:af:ce:cc:d8:ec: a9:e8:44:f3:ab:5c:e5:f0:52:f4:16:46:94:30:36:7a:33:6a: 61:46:67:e6:31:ef:44:2a:92:44:d0:a2:25:cb:d0:31:05:18: 96:32:3b:b3:19:a7:8f:c4:55:fd:5d:af:1f:e5:a3:3a:3b:ab: 2d:4f:13:cb:ab:fc:24:b2:de:19:3d:c9:4b:2e:69:e2:63:74: 36:a8:a7:1c:be:05:0b:c3:56:39:08:9a:07:47:6d:f0:db:c8: 8d:10:72:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQjqoZbmLY6M4OzbWGIKHiwxAUyAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ1M1oX DTI3MDMwMzA2Mjk1M1owMzExMC8GA1UEAxMoNjNENjE4RTIwNUEyMTJFMjI5QkJE QUQ4OTFBN0U1RTYzOTI1N0ZGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOuKHJBNjyRsiAvfMZUjvGOy2mD7TjFh97ZytMSeKxWJ5J7pDyjCMa8UAz5i 9/EaHLCkhwBzrIG0SQzyoCzK/BFMqbS2bzRtcoT2UAxQu6Pd2N9CkDLGItjaMwbi qKQSsXSolxvzFxt+//eQl/qDnDvar3wAQ4u3FHkbh97vIieaF2ZAvb2MNVdpvdJy CtdU6jjkvf5azzTTCAr8AXIHTHRfKMM6JbtOpOcX8ENITaLRRI1RrGiVEedq2Flx p1gFJ0jasS3G7fRS4w0c8RUGD+q0h6dVnjRoRnXR0d9YUkKElaGhXL9PJbxeRrlx 4/rhcmRvSvQ4ywgXG5V/ZUpyMEUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRj1hji BaIS4im72tiRp+XmOSV//jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTg3Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rJswDQYJKoZIhvcNAQELBQADggEBANDNL7t2ifa+nxjOpBODLenEvzXqBHDe4+GT 6cAQXjaIL7LxVmBCXp2gMonzKBwx1ATUQsClF5HjEvlA2mjptPKD5pfdk34McFok Dw5453os95a6vB9F6uZ28xjYfjKkpfQApS4h6tlZdNwkjVVNw/8N9cgH/GkMxybX EjnaPVniFgwvvWS4lqT6P75BBnR155OukIiDJYe+un1EodevzszY7KnoRPOrXOXw UvQWRpQwNnozamFGZ+Yx70QqkkTQoiXL0DEFGJYyO7MZp4/EVf1drx/lozo7qy1P E8ur/CSy3hk9yUsuaeJjdDaopxy+BQvDVjkImgdHbfDbyI0Qckg= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:12 2026 by rpki-client