$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145945.roa File: AS145945.roa (raw, json) Hash identifier: pUSuuVKcpG/we639cmRjTMv9pUccOBVJUDxJNIJ8Cpg= Subject key identifier: 83:B1:9E:07:24:F0:CA:2B:65:69:C9:7E:E4:A0:42:02:92:D8:CF:49 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 50DE361AF54FAD84C297A1FFD94EC92BA4DC998D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145945.roa Signing time: Wed 04 Mar 2026 06:29:42 +0000 ROA not before: Wed 04 Mar 2026 06:24:42 +0000 ROA not after: Wed 03 Mar 2027 06:29:42 +0000 asID: 145945 IP address blocks: 240a:acdf::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:de:36:1a:f5:4f:ad:84:c2:97:a1:ff:d9:4e:c9:2b:a4:dc:99:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:42 2026 GMT Not After : Mar 3 06:29:42 2027 GMT Subject: CN=83B19E0724F0CA2B6569C97EE4A0420292D8CF49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:53:39:33:35:cf:19:05:de:69:21:10:c1:34: a7:c0:26:c9:56:75:bf:54:da:d7:78:08:db:22:f2: 45:55:d3:b2:99:04:73:8d:2d:97:08:65:67:a6:7e: 0e:b6:ad:af:39:b3:d8:6c:17:ef:5b:d2:17:68:e3: 55:77:2c:75:29:ef:b5:ec:60:4b:60:0a:e0:63:13: a7:b6:c4:4c:c8:73:31:86:d0:9a:80:5e:ef:87:71: 01:0a:ff:5d:ee:89:f9:3a:74:3f:d9:59:57:bb:d1: 0b:32:3b:10:b7:7a:59:f8:e0:d4:41:c2:ef:ae:4e: af:31:fb:d0:58:8b:26:f4:89:dc:af:50:be:c6:1c: 3f:0d:eb:8c:66:8d:9c:20:5d:76:a8:33:fc:cc:ef: af:fc:e6:18:f1:48:2a:38:d9:78:9b:12:ba:5a:a3: 0c:18:f7:8a:ee:12:2b:7f:c9:0c:dd:4a:f7:fc:5d: 02:c9:af:05:31:ce:d5:a7:d2:2c:35:2f:00:27:41: 9d:99:60:cf:52:db:17:ab:8b:24:6f:35:dd:de:37: d8:31:d1:7c:24:3d:72:70:ab:b3:78:5a:a9:a4:4c: 1a:c0:67:b4:03:ec:3d:72:fa:66:d4:5a:3a:74:a3: f2:1a:b8:ac:5c:c5:e4:26:af:3b:9d:37:b0:cb:09: c4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B1:9E:07:24:F0:CA:2B:65:69:C9:7E:E4:A0:42:02:92:D8:CF:49 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145945.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:acdf::/32 Signature Algorithm: sha256WithRSAEncryption c9:f5:c4:7b:25:72:2e:43:f7:a9:74:a8:fb:dd:68:8e:1e:e7: 0b:27:c3:06:96:50:48:2f:25:11:d4:f6:19:68:74:06:b4:cf: ec:66:ca:47:fe:35:d8:cd:7f:e9:dd:50:b4:5c:7a:5d:36:16: 51:d9:7a:89:f1:8a:fa:3a:7c:90:f4:cd:2f:6f:6d:2f:d0:d5: 72:d8:2f:3b:55:cf:e3:ab:46:0a:05:94:3a:fb:8b:91:f7:03: 1b:88:f1:c3:89:5a:63:6e:ce:af:77:78:8b:6d:61:3b:b3:22: 35:c4:54:7f:32:43:e0:81:31:12:b5:8d:f5:8d:83:95:72:65: 3a:27:40:a0:ce:71:00:36:6f:fd:0e:21:c1:ff:03:c0:b0:00: a0:52:c3:1a:6b:39:88:f5:21:4e:b3:df:2f:f5:d2:e1:85:47: 03:3b:11:30:14:9e:66:c4:c2:1a:4d:c6:c2:c4:c2:33:ea:09: 26:07:4f:79:c9:d5:1e:55:60:0c:da:b0:0e:91:ae:16:cc:3a: 98:ed:86:56:20:5d:87:dc:a3:9e:df:2a:a9:a3:b0:72:79:d3: 84:f5:6b:93:0a:fd:49:da:b2:a5:86:40:d9:29:79:91:6b:bc: 4f:3e:e1:51:33:38:71:aa:99:5d:95:6c:cf:11:71:83:f6:ba: 61:23:f7:d6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUN42GvVPrYTCl6H/2U7JK6TcmY0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ0MloX DTI3MDMwMzA2Mjk0MlowMzExMC8GA1UEAxMoODNCMTlFMDcyNEYwQ0EyQjY1NjlD OTdFRTRBMDQyMDI5MkQ4Q0Y0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJlTOTM1zxkF3mkhEME0p8AmyVZ1v1Ta13gI2yLyRVXTspkEc40tlwhlZ6Z+ Dratrzmz2GwX71vSF2jjVXcsdSnvtexgS2AK4GMTp7bETMhzMYbQmoBe74dxAQr/ Xe6J+Tp0P9lZV7vRCzI7ELd6Wfjg1EHC765OrzH70FiLJvSJ3K9QvsYcPw3rjGaN nCBddqgz/Mzvr/zmGPFIKjjZeJsSulqjDBj3iu4SK3/JDN1K9/xdAsmvBTHO1afS LDUvACdBnZlgz1LbF6uLJG813d432DHRfCQ9cnCrs3haqaRMGsBntAPsPXL6ZtRa OnSj8hq4rFzF5CavO503sMsJxCMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSDsZ4H JPDKK2VpyX7koEICktjPSTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTk0NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rN8wDQYJKoZIhvcNAQELBQADggEBAMn1xHslci5D96l0qPvdaI4e5wsnwwaWUEgv JRHU9hlodAa0z+xmykf+NdjNf+ndULRcel02FlHZeonxivo6fJD0zS9vbS/Q1XLY LztVz+OrRgoFlDr7i5H3AxuI8cOJWmNuzq93eIttYTuzIjXEVH8yQ+CBMRK1jfWN g5VyZTonQKDOcQA2b/0OIcH/A8CwAKBSwxprOYj1IU6z3y/10uGFRwM7ETAUnmbE whpNxsLEwjPqCSYHT3nJ1R5VYAzasA6RrhbMOpjthlYgXYfco57fKqmjsHJ504T1 a5MK/UnasqWGQNkpeZFrvE8+4VEzOHGqmV2VbM8RcYP2umEj99Y= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:05 2026 by rpki-client