$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145936.roa File: AS145936.roa (raw, json) Hash identifier: UcSUtHO3w7d65Dpz3Ai1/zr5FW7I9qnJrLijF7Ect0I= Subject key identifier: 00:57:64:D5:51:47:C1:F6:AF:0B:5E:9F:B0:BD:9E:0F:D1:EF:0D:53 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41114944E7F18D0A65CFD8873FB17B3A1120056C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145936.roa Signing time: Wed 04 Mar 2026 06:30:39 +0000 ROA not before: Wed 04 Mar 2026 06:25:39 +0000 ROA not after: Wed 03 Mar 2027 06:30:39 +0000 asID: 145936 IP address blocks: 240a:acd6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:11:49:44:e7:f1:8d:0a:65:cf:d8:87:3f:b1:7b:3a:11:20:05:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:39 2026 GMT Not After : Mar 3 06:30:39 2027 GMT Subject: CN=005764D55147C1F6AF0B5E9FB0BD9E0FD1EF0D53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a6:98:ee:d6:69:d6:f6:98:b5:7a:b9:89:a6: 6a:f3:3a:04:1e:f4:00:07:d9:1e:f5:7c:2f:f5:b4: d4:15:cf:73:f7:d3:c6:48:15:58:c3:33:bd:41:9d: a3:28:12:88:f7:ed:17:03:76:4b:d4:99:a0:76:c6: 95:e8:d8:86:f8:41:e3:93:45:62:57:cf:0a:bc:b9: 1d:9b:46:61:71:f1:31:1f:72:e0:a8:77:4a:a7:47: a7:20:a0:7f:33:5a:33:b4:a0:7b:72:4f:6a:69:1e: 20:46:b2:39:43:d8:d0:a8:41:ce:4b:31:a1:51:24: bf:76:ad:01:67:94:b3:da:6d:14:35:1e:2e:12:6c: 37:b9:e6:de:01:f8:35:ab:3f:38:80:33:87:1f:3c: 61:cf:8a:ab:7b:2c:58:8f:76:d1:41:fe:73:22:28: 27:d8:af:63:54:3e:aa:3d:c0:84:87:88:8f:65:d4: 18:7b:82:6a:e3:bd:bc:d0:46:91:6c:b7:29:c5:38: 4b:78:00:5a:c0:14:f7:7f:b5:bd:c1:77:6a:01:cf: b8:12:83:8e:57:18:da:55:36:e1:16:2a:e8:e9:f7: 42:34:69:d6:72:c4:38:c2:64:08:e5:25:58:4b:4a: 95:d7:2a:33:55:e9:b2:6e:04:26:76:85:5f:83:6d: a4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:57:64:D5:51:47:C1:F6:AF:0B:5E:9F:B0:BD:9E:0F:D1:EF:0D:53 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:acd6::/32 Signature Algorithm: sha256WithRSAEncryption c5:fc:07:cc:c2:67:a6:df:80:cb:2f:0e:36:95:df:49:ca:04: 0e:93:8e:40:17:d5:f9:c5:2c:15:07:69:3d:02:b1:6e:ba:e3: 34:3f:13:66:a9:41:05:22:da:92:4c:8e:ab:fd:e1:ab:c3:04: 74:38:4b:8f:c2:91:a4:78:32:18:19:36:af:12:d5:fe:df:ec: 34:16:a3:23:1e:f0:b9:98:c3:98:67:f0:24:b2:36:73:55:93: aa:0e:b0:ed:b2:8a:ea:22:34:18:b4:52:80:e1:6c:6a:3e:ee: e8:07:7b:04:e3:3a:d2:3e:a4:69:3e:6b:06:d9:ea:c5:e6:dc: ad:f0:d7:3d:dc:6e:ed:4f:8f:e6:50:9a:bd:67:99:48:0e:c1: ef:91:8d:b1:26:f5:1c:d6:17:19:e1:0f:ab:32:28:75:f1:7a: 4e:55:3a:d0:d4:18:39:c6:49:37:37:71:7e:c7:68:3d:b8:d0: bd:55:ac:b6:c0:46:fe:3a:2b:4c:7d:ef:84:62:6d:a0:78:30: e5:6e:09:83:a0:73:29:bb:a9:36:7f:f5:29:89:08:cd:e3:12: 50:0b:ff:0a:aa:ea:2c:15:30:f9:02:eb:a0:4d:3c:61:4d:07: cf:80:34:53:51:a0:25:57:67:08:dd:49:a2:b5:8d:1f:1e:53: 1c:4c:4f:3a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQRFJROfxjQplz9iHP7F7OhEgBWwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUzOVoX DTI3MDMwMzA2MzAzOVowMzExMC8GA1UEAxMoMDA1NzY0RDU1MTQ3QzFGNkFGMEI1 RTlGQjBCRDlFMEZEMUVGMEQ1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKmmmO7Wadb2mLV6uYmmavM6BB70AAfZHvV8L/W01BXPc/fTxkgVWMMzvUGd oygSiPftFwN2S9SZoHbGlejYhvhB45NFYlfPCry5HZtGYXHxMR9y4Kh3SqdHpyCg fzNaM7Sge3JPamkeIEayOUPY0KhBzksxoVEkv3atAWeUs9ptFDUeLhJsN7nm3gH4 Nas/OIAzhx88Yc+Kq3ssWI920UH+cyIoJ9ivY1Q+qj3AhIeIj2XUGHuCauO9vNBG kWy3KcU4S3gAWsAU93+1vcF3agHPuBKDjlcY2lU24RYq6On3QjRp1nLEOMJkCOUl WEtKldcqM1Xpsm4EJnaFX4NtpFECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQAV2TV UUfB9q8LXp+wvZ4P0e8NUzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTkzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rNYwDQYJKoZIhvcNAQELBQADggEBAMX8B8zCZ6bfgMsvDjaV30nKBA6TjkAX1fnF LBUHaT0CsW664zQ/E2apQQUi2pJMjqv94avDBHQ4S4/CkaR4MhgZNq8S1f7f7DQW oyMe8LmYw5hn8CSyNnNVk6oOsO2yiuoiNBi0UoDhbGo+7ugHewTjOtI+pGk+awbZ 6sXm3K3w1z3cbu1Pj+ZQmr1nmUgOwe+RjbEm9RzWFxnhD6syKHXxek5VOtDUGDnG STc3cX7HaD240L1VrLbARv46K0x974RibaB4MOVuCYOgcym7qTZ/9SmJCM3jElAL /wqq6iwVMPkC66BNPGFNB8+ANFNRoCVXZwjdSaK1jR8eUxxMTzo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:22 2026 by rpki-client