$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145035.roa File: AS145035.roa (raw, json) Hash identifier: syp3zpqryQwrv0SSXNJj3cuKKz/CvMg8VDq1gAVCHig= Subject key identifier: F0:DE:87:8E:F7:07:09:35:74:86:0F:6D:1F:92:33:F4:02:CB:43:AD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4B2B8B2FBBEC62612F6E606121E7D59EBEE10FE5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145035.roa Signing time: Wed 04 Mar 2026 06:20:26 +0000 ROA not before: Wed 04 Mar 2026 06:15:26 +0000 ROA not after: Wed 03 Mar 2027 06:20:26 +0000 asID: 145035 IP address blocks: 240a:a951::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:2b:8b:2f:bb:ec:62:61:2f:6e:60:61:21:e7:d5:9e:be:e1:0f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:26 2026 GMT Not After : Mar 3 06:20:26 2027 GMT Subject: CN=F0DE878EF707093574860F6D1F9233F402CB43AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:50:bc:25:28:b8:d5:7c:17:b3:f3:80:cd:4c: 02:aa:74:c6:9c:76:a0:73:f0:08:f1:65:a9:09:3b: 8f:e6:4e:47:43:c0:0d:3a:cb:04:02:34:12:ff:a7: 9c:29:bb:3f:be:e1:4c:fa:52:08:b2:41:7f:80:df: fc:99:a0:83:fd:15:71:73:b1:1a:be:0d:b3:81:c6: 8e:a0:6f:4f:15:e2:74:bb:0b:33:7b:8e:e2:54:6f: 74:a0:4f:51:4a:f4:0b:7e:5f:ed:6c:ce:30:ab:b8: 52:9d:7d:1d:d9:71:8f:69:47:fe:3c:94:54:50:16: 28:71:e2:a5:0e:4f:20:98:f1:90:25:f5:b4:86:aa: 7d:0f:a1:37:39:e3:6c:48:1e:45:2b:ce:00:c3:ae: 3d:0a:ce:b5:6d:e8:db:28:08:8f:a6:e6:34:21:cf: 46:08:a6:ef:df:bf:fc:67:22:e8:55:14:73:1b:dc: 55:27:2d:0c:9a:25:8b:da:bc:b4:03:ef:3d:16:14: a8:f9:d3:ef:99:87:35:34:93:78:0e:16:25:84:f0: e9:21:99:52:0b:1e:a6:3b:0b:cf:ed:54:d7:c0:57: a4:1c:9b:fa:5f:92:b7:f8:69:40:cb:ed:ff:ec:2a: 85:a7:a9:33:0e:27:6d:8e:fb:84:68:2a:7c:01:9e: d0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DE:87:8E:F7:07:09:35:74:86:0F:6D:1F:92:33:F4:02:CB:43:AD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a951::/32 Signature Algorithm: sha256WithRSAEncryption c8:0f:4d:3e:5d:86:6c:10:50:20:ea:3b:ca:f2:98:2e:de:2a: 8c:20:45:b3:ca:34:8f:b5:28:28:c2:0d:be:11:74:16:a9:85: 0b:d0:ea:cd:f1:0c:69:29:89:19:d4:8f:24:2d:a5:68:f9:5a: 2a:32:1a:14:97:e5:d4:eb:01:f2:48:34:0a:1c:f3:9c:5b:e9: 59:a8:1a:2f:bf:f4:a6:d3:a5:a6:3d:65:83:8d:55:fd:0d:51: 9a:70:34:e3:4f:6b:b7:7c:f0:b5:e3:6d:31:3a:e3:46:6e:40: d4:52:7d:8b:f2:d1:29:bd:0a:36:aa:d2:16:9a:e5:24:9d:0d: 10:84:e4:36:5a:d5:d4:14:0c:5a:72:91:1e:dc:08:c6:f3:89: 08:57:d2:5c:3b:ae:b3:45:76:0a:03:22:70:a6:02:75:51:4d: d1:b7:6d:a5:cf:d1:12:ff:ee:68:4a:b5:ec:20:c5:49:35:c3: a5:d1:76:83:ed:61:a9:d0:5b:91:c8:89:29:29:84:73:b0:92: 4f:10:12:37:a2:fd:20:99:c9:32:00:8f:89:d7:69:68:3d:47: 6a:ca:fa:dd:c3:16:86:c7:ce:27:3e:aa:5b:28:58:e6:48:9a: f2:cb:e8:d1:c6:05:b0:28:b6:f8:62:c0:ac:44:5d:d9:92:31: 80:77:ab:30 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSyuLL7vsYmEvbmBhIefVnr7hD+UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUyNloX DTI3MDMwMzA2MjAyNlowMzExMC8GA1UEAxMoRjBERTg3OEVGNzA3MDkzNTc0ODYw RjZEMUY5MjMzRjQwMkNCNDNBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVQvCUouNV8F7PzgM1MAqp0xpx2oHPwCPFlqQk7j+ZOR0PADTrLBAI0Ev+n nCm7P77hTPpSCLJBf4Df/Jmgg/0VcXOxGr4Ns4HGjqBvTxXidLsLM3uO4lRvdKBP UUr0C35f7WzOMKu4Up19Hdlxj2lH/jyUVFAWKHHipQ5PIJjxkCX1tIaqfQ+hNznj bEgeRSvOAMOuPQrOtW3o2ygIj6bmNCHPRgim79+//Gci6FUUcxvcVSctDJoli9q8 tAPvPRYUqPnT75mHNTSTeA4WJYTw6SGZUgsepjsLz+1U18BXpByb+l+St/hpQMvt /+wqhaepMw4nbY77hGgqfAGe0PcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTw3oeO 9wcJNXSGD20fkjP0AstDrTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTAzNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qVEwDQYJKoZIhvcNAQELBQADggEBAMgPTT5dhmwQUCDqO8rymC7eKowgRbPKNI+1 KCjCDb4RdBaphQvQ6s3xDGkpiRnUjyQtpWj5WioyGhSX5dTrAfJINAoc85xb6Vmo Gi+/9KbTpaY9ZYONVf0NUZpwNONPa7d88LXjbTE640ZuQNRSfYvy0Sm9Cjaq0haa 5SSdDRCE5DZa1dQUDFpykR7cCMbziQhX0lw7rrNFdgoDInCmAnVRTdG3baXP0RL/ 7mhKtewgxUk1w6XRdoPtYanQW5HIiSkphHOwkk8QEjei/SCZyTIAj4nXaWg9R2rK +t3DFobHzic+qlsoWOZImvLL6NHGBbAotvhiwKxEXdmSMYB3qzA= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:44 2026 by rpki-client