$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145910.roa File: AS145910.roa (raw, json) Hash identifier: RWpgKHYwLpi0KANCj3yjISpZ5nmkLzvz4x2XJZLZvnA= Subject key identifier: 47:7A:A2:F0:09:6B:A2:5B:9D:94:B7:4D:54:2F:87:2E:C0:06:A7:F8 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 16E7DAB8033019F79F10BB6D869C1E407D75C6C7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145910.roa Signing time: Wed 04 Mar 2026 06:31:08 +0000 ROA not before: Wed 04 Mar 2026 06:26:08 +0000 ROA not after: Wed 03 Mar 2027 06:31:08 +0000 asID: 145910 IP address blocks: 240a:acbc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e7:da:b8:03:30:19:f7:9f:10:bb:6d:86:9c:1e:40:7d:75:c6:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:26:08 2026 GMT Not After : Mar 3 06:31:08 2027 GMT Subject: CN=477AA2F0096BA25B9D94B74D542F872EC006A7F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:97:c9:45:82:76:a8:68:2c:31:eb:a7:3d: 45:c2:7c:6e:d9:f8:73:a9:b0:31:a7:49:b6:39:23: 8b:6b:fc:b0:bf:35:e6:ce:8f:8a:67:0c:8b:ff:e3: 21:f2:8b:85:7b:e3:c6:67:39:0d:2f:81:b5:88:27: e4:80:d8:0f:e7:ad:5e:b7:19:15:d5:47:50:56:26: 05:78:40:be:d9:98:f7:45:7a:0c:0e:99:d2:ca:0c: 42:53:b4:9b:e7:87:ab:df:e6:0b:48:cf:95:59:ef: a2:78:96:c5:5e:ae:ca:ff:5c:ee:25:f9:ba:64:6b: 42:8d:1a:22:d6:72:44:d6:3a:d1:74:72:bf:fa:9a: 59:4a:97:03:11:d2:49:89:94:c9:0c:27:4a:2d:37: 16:3b:d4:1a:e5:e1:af:b6:5c:ee:69:55:c6:ed:84: a9:bb:9a:bd:08:16:7c:ab:66:40:c7:96:68:c0:c1: 6f:59:96:88:aa:32:46:3d:bd:35:ec:5e:55:0d:b7: 94:bd:3c:a0:2e:4a:66:8e:6f:a7:18:03:e4:06:c4: 7e:ef:1f:cf:eb:72:86:9d:65:05:03:d8:19:a3:cc: 9a:75:b4:06:c0:35:da:0f:02:63:bb:47:3e:69:b6: 5a:28:19:ea:11:eb:b0:df:5c:d6:fc:75:4a:f8:69: be:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7A:A2:F0:09:6B:A2:5B:9D:94:B7:4D:54:2F:87:2E:C0:06:A7:F8 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145910.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:acbc::/32 Signature Algorithm: sha256WithRSAEncryption 96:c6:bf:5e:d4:92:76:95:6e:d0:48:79:d8:5e:35:5f:0b:c3: fc:1c:30:d2:eb:95:54:f4:8c:be:86:60:5b:7c:6b:34:0b:63: 23:86:02:89:86:72:5b:61:4f:ac:2f:76:7c:92:75:8c:53:4d: 78:a7:8e:12:ae:4e:a0:d7:02:7f:27:da:f7:e6:37:53:e7:89: f6:7d:fe:97:b0:01:50:31:5d:ad:58:0a:e5:f3:17:15:28:20: dc:19:24:32:66:25:e2:3b:f8:5d:e6:11:43:36:36:47:86:ac: 81:bd:20:92:a4:98:cf:38:49:2a:91:5f:a6:86:ce:24:33:f9: 43:9d:64:a2:52:4b:ae:e7:fe:ab:98:4f:9d:25:af:aa:34:53: 8d:0b:f9:52:15:69:b0:c6:0f:e6:ad:7a:74:d4:e3:df:0d:b2: 79:71:ea:31:ee:26:9d:5c:0b:57:27:7c:3a:fd:d6:81:03:2b: 9b:7e:f4:8f:b3:52:18:b0:92:a0:fe:05:3e:69:05:2f:17:7a: de:15:d6:35:a2:ba:1c:86:d1:0d:97:0d:01:bc:ac:18:4a:d5: 5b:52:eb:0b:a4:8f:6a:fb:a5:ff:0c:f6:65:70:62:6b:21:28: bc:04:df:98:6c:87:a2:85:47:ab:5c:74:0b:88:f0:a8:16:a2: 5a:b2:53:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFufauAMwGfefELtthpweQH11xscwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjYwOFoX DTI3MDMwMzA2MzEwOFowMzExMC8GA1UEAxMoNDc3QUEyRjAwOTZCQTI1QjlEOTRC NzRENTQyRjg3MkVDMDA2QTdGODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAPl8lFgnaoaCwx66c9RcJ8btn4c6mwMadJtjkji2v8sL815s6PimcMi//j IfKLhXvjxmc5DS+BtYgn5IDYD+etXrcZFdVHUFYmBXhAvtmY90V6DA6Z0soMQlO0 m+eHq9/mC0jPlVnvoniWxV6uyv9c7iX5umRrQo0aItZyRNY60XRyv/qaWUqXAxHS SYmUyQwnSi03FjvUGuXhr7Zc7mlVxu2EqbuavQgWfKtmQMeWaMDBb1mWiKoyRj29 NexeVQ23lL08oC5KZo5vpxgD5AbEfu8fz+tyhp1lBQPYGaPMmnW0BsA12g8CY7tH Pmm2WigZ6hHrsN9c1vx1SvhpvgECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRHeqLw CWuiW52Ut01UL4cuwAan+DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTkxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rLwwDQYJKoZIhvcNAQELBQADggEBAJbGv17UknaVbtBIedheNV8Lw/wcMNLrlVT0 jL6GYFt8azQLYyOGAomGclthT6wvdnySdYxTTXinjhKuTqDXAn8n2vfmN1PnifZ9 /pewAVAxXa1YCuXzFxUoINwZJDJmJeI7+F3mEUM2NkeGrIG9IJKkmM84SSqRX6aG ziQz+UOdZKJSS67n/quYT50lr6o0U40L+VIVabDGD+atenTU498Nsnlx6jHuJp1c C1cnfDr91oEDK5t+9I+zUhiwkqD+BT5pBS8Xet4V1jWiuhyG0Q2XDQG8rBhK1VtS 6wukj2r7pf8M9mVwYmshKLwE35hsh6KFR6tcdAuI8KgWolqyU+k= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:11 2026 by rpki-client