$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145961.roa File: AS145961.roa (raw, json) Hash identifier: a7F4snhQuYmykrj2/fLFKF4Epk3u9wrnCO4lscrR19Q= Subject key identifier: 20:2E:50:EB:12:CB:CD:9B:68:DB:CC:AD:40:57:23:EC:52:18:C1:05 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 613A52A97D5749A43B2605FC6C48BAEF410E66D9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145961.roa Signing time: Wed 04 Mar 2026 06:31:13 +0000 ROA not before: Wed 04 Mar 2026 06:26:13 +0000 ROA not after: Wed 03 Mar 2027 06:31:13 +0000 asID: 145961 IP address blocks: 240a:acef::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:3a:52:a9:7d:57:49:a4:3b:26:05:fc:6c:48:ba:ef:41:0e:66:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:26:13 2026 GMT Not After : Mar 3 06:31:13 2027 GMT Subject: CN=202E50EB12CBCD9B68DBCCAD405723EC5218C105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c7:7c:ea:99:3f:2e:9c:ee:f4:d6:95:ac:0d: 20:9c:51:61:fb:96:24:50:76:09:20:9f:c4:55:21: 2e:18:a1:42:57:b7:03:26:d1:d1:a1:b2:b6:31:ae: b2:7b:4d:9e:dd:4e:ff:92:32:c5:26:04:ba:ea:bc: 7b:17:3c:c3:38:06:d3:8d:47:f9:9f:cf:60:df:35: 3c:eb:3a:e5:6c:14:f2:36:29:9c:7f:0d:33:9e:8b: 2e:7b:76:e6:b3:5f:8b:ed:4c:f4:25:08:76:68:b5: 45:ed:5d:02:34:9e:52:e8:cf:61:1d:b4:ce:98:57: cb:46:e5:71:07:e6:10:00:bc:28:4c:68:77:1f:65: 7d:53:1e:35:c1:9e:e7:1b:ad:22:f0:53:18:57:60: 92:d9:0f:0a:d6:de:d3:66:66:10:b1:ed:29:09:da: fa:38:53:51:34:9b:b8:15:47:04:73:a5:6f:e2:93: ea:c9:d2:e5:8a:9c:83:ae:ee:1c:60:18:67:a1:e9: 21:df:ab:df:7a:e9:ed:7b:5e:6e:73:06:5c:ee:21: 85:1e:df:a1:b0:a6:94:c5:ce:ec:6a:07:ed:3c:38: 4d:5b:2c:37:d9:3f:a4:86:26:d0:e9:8a:f8:70:7c: bf:51:2c:7b:a5:a0:7f:f6:90:27:bb:1e:84:c2:a3: fa:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2E:50:EB:12:CB:CD:9B:68:DB:CC:AD:40:57:23:EC:52:18:C1:05 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145961.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:acef::/32 Signature Algorithm: sha256WithRSAEncryption 10:38:b7:ed:01:3c:6d:18:47:50:02:bf:b1:43:5e:6c:cd:d7: 7a:11:79:be:1c:c2:c4:02:02:88:15:80:64:e8:99:f2:e4:1c: 3a:7e:ca:18:c2:59:34:c0:3e:05:75:ec:cb:fa:27:56:b7:b1: 2e:c2:96:c8:78:6b:cc:29:3b:2d:01:0b:ca:c2:b6:be:92:11: e9:14:b5:7c:a9:d3:47:ec:20:14:23:f8:10:b0:9b:da:74:e4: ed:79:6e:8e:f8:4e:11:15:65:9f:58:b1:52:15:d4:63:0a:59: f6:21:d7:01:bf:8d:7c:db:c7:a7:df:72:2e:69:b0:a1:47:64: 50:54:b1:c1:31:4a:de:dd:f6:0c:39:32:e0:a4:6f:93:4d:f2: 3b:61:d3:6a:b7:fe:50:fe:4d:55:72:e4:56:85:3a:e2:1e:29: da:8c:87:89:42:58:c0:38:d6:18:c2:c9:50:d3:16:fd:e5:c6: c9:40:f3:3e:19:c4:3d:18:80:27:5d:8c:6f:0f:93:15:b4:b5: 69:7a:59:09:29:92:29:57:bc:ac:92:97:77:1b:84:49:cd:ea: 2c:bc:b5:c9:a7:93:2e:a8:88:9d:1c:60:7d:68:66:e0:74:86: b1:84:4f:72:59:20:32:bb:3f:fc:53:4d:c6:6f:f1:d6:62:3b: f9:7d:ac:84 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYTpSqX1XSaQ7JgX8bEi670EOZtkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjYxM1oX DTI3MDMwMzA2MzExM1owMzExMC8GA1UEAxMoMjAyRTUwRUIxMkNCQ0Q5QjY4REJD Q0FENDA1NzIzRUM1MjE4QzEwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDHfOqZPy6c7vTWlawNIJxRYfuWJFB2CSCfxFUhLhihQle3AybR0aGytjGu sntNnt1O/5IyxSYEuuq8exc8wzgG041H+Z/PYN81POs65WwU8jYpnH8NM56LLnt2 5rNfi+1M9CUIdmi1Re1dAjSeUujPYR20zphXy0blcQfmEAC8KExodx9lfVMeNcGe 5xutIvBTGFdgktkPCtbe02ZmELHtKQna+jhTUTSbuBVHBHOlb+KT6snS5Yqcg67u HGAYZ6HpId+r33rp7XtebnMGXO4hhR7fobCmlMXO7GoH7Tw4TVssN9k/pIYm0OmK +HB8v1Ese6Wgf/aQJ7sehMKj+msCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQgLlDr EsvNm2jbzK1AVyPsUhjBBTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTk2MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rO8wDQYJKoZIhvcNAQELBQADggEBABA4t+0BPG0YR1ACv7FDXmzN13oReb4cwsQC AogVgGTomfLkHDp+yhjCWTTAPgV17Mv6J1a3sS7Clsh4a8wpOy0BC8rCtr6SEekU tXyp00fsIBQj+BCwm9p05O15bo74ThEVZZ9YsVIV1GMKWfYh1wG/jXzbx6ffci5p sKFHZFBUscExSt7d9gw5MuCkb5NN8jth02q3/lD+TVVy5FaFOuIeKdqMh4lCWMA4 1hjCyVDTFv3lxslA8z4ZxD0YgCddjG8PkxW0tWl6WQkpkilXvKySl3cbhEnN6iy8 tcmnky6oiJ0cYH1oZuB0hrGET3JZIDK7P/xTTcZv8dZiO/l9rIQ= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:44 2026 by rpki-client