$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145097.roa File: AS145097.roa (raw, json) Hash identifier: EijiSwx96s9FGkxhUoXbRGYPCrmLaxf/to7kVm4mWCQ= Subject key identifier: 6A:86:F6:EE:14:FF:85:32:74:C0:80:36:FD:E6:E0:2E:4F:9D:CA:5C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2CCD38DEB3688A76D30AC85676A12EEB03769747 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145097.roa Signing time: Wed 04 Mar 2026 06:21:34 +0000 ROA not before: Wed 04 Mar 2026 06:16:34 +0000 ROA not after: Wed 03 Mar 2027 06:21:34 +0000 asID: 145097 IP address blocks: 240a:a98f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:cd:38:de:b3:68:8a:76:d3:0a:c8:56:76:a1:2e:eb:03:76:97:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:34 2026 GMT Not After : Mar 3 06:21:34 2027 GMT Subject: CN=6A86F6EE14FF853274C08036FDE6E02E4F9DCA5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f6:bf:16:cd:3b:9b:95:ee:fe:a4:ec:7f:e7: 0a:d8:51:91:50:e2:9d:8c:55:4c:3e:f8:7d:5b:c4: 19:e5:8d:1b:19:80:ae:f7:a0:f9:3f:85:b5:31:b7: fc:67:25:83:9a:a5:15:23:03:58:49:9d:00:0f:ba: 46:ec:dd:d1:1f:72:13:75:f3:fb:fa:fd:bb:fb:a3: 82:4b:87:f9:80:5e:3b:01:d3:6f:f9:22:75:75:8b: 90:03:4f:d6:73:ec:c0:b6:ae:f6:dd:6f:6f:ce:11: 22:ff:19:5e:9f:c4:8b:3f:05:58:14:8f:db:23:65: 20:07:b6:35:bb:2d:f7:f5:1a:b6:50:84:be:e5:0a: 9e:a7:91:09:39:e6:51:36:03:38:65:44:2a:9d:02: e2:34:1e:1b:f9:e4:6c:52:5b:2f:15:b1:8b:88:b4: 29:e0:5a:f4:d3:97:01:46:9b:03:a7:7a:b8:02:80: 95:14:2b:ad:5e:0a:5f:4a:49:35:29:7d:16:f2:71: bf:08:5b:53:c5:f6:a6:fe:06:ab:84:1e:dc:24:92: c8:c3:94:10:85:2d:8e:15:c1:44:ff:dc:8c:0f:ae: 67:b0:4b:44:cb:68:8e:50:cf:73:e6:5b:c9:ff:d6: 80:6c:d7:92:b1:87:d3:7b:f1:04:38:fc:0c:08:14: e1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:86:F6:EE:14:FF:85:32:74:C0:80:36:FD:E6:E0:2E:4F:9D:CA:5C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145097.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a98f::/32 Signature Algorithm: sha256WithRSAEncryption 60:aa:2d:be:a6:7f:9e:79:73:f3:dc:c1:41:0d:5c:fa:7c:8f: 85:78:ee:d6:6f:e8:0d:34:0f:90:44:12:c6:1e:ef:48:1f:b6: a8:5e:de:42:73:6c:f3:e9:61:8d:f8:c1:29:7a:44:a9:8d:7e: 9c:8c:d0:97:59:5b:f0:08:07:5f:5e:62:8b:46:3e:35:f2:6b: 7f:7a:ff:0f:e9:98:9f:fc:49:eb:fc:bf:d1:06:15:64:8a:16: 0e:30:40:8c:63:b1:84:b9:56:b2:02:30:27:f5:58:8e:fc:33: bd:53:77:ad:97:7a:b0:c2:da:fe:58:51:a7:12:cf:1f:c8:4a: f8:b0:ad:b9:a2:20:67:74:82:05:40:1d:ac:1a:29:07:5f:eb: ce:bc:bb:bc:b9:96:44:a4:e8:14:86:0a:f6:37:86:1b:ac:ce: 09:10:a5:2f:d2:b2:25:85:2f:da:8f:fa:fe:be:98:33:f6:14: 28:31:df:2b:2b:a9:d1:6e:54:30:11:a8:08:1d:93:bd:90:e1: f1:7e:6e:1a:86:2f:a6:6f:8c:3a:be:34:3e:13:93:90:a0:9b: 22:9c:0d:3f:98:3f:56:f3:a4:ca:7e:9c:38:4e:66:54:ab:17: 46:e0:1f:e2:a0:bc:88:9e:aa:d9:a8:e8:f2:3e:2b:0d:fe:ed: 9a:b6:7b:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULM043rNoinbTCshWdqEu6wN2l0cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYzNFoX DTI3MDMwMzA2MjEzNFowMzExMC8GA1UEAxMoNkE4NkY2RUUxNEZGODUzMjc0QzA4 MDM2RkRFNkUwMkU0RjlEQ0E1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKP2vxbNO5uV7v6k7H/nCthRkVDinYxVTD74fVvEGeWNGxmArveg+T+FtTG3 /Gclg5qlFSMDWEmdAA+6Ruzd0R9yE3Xz+/r9u/ujgkuH+YBeOwHTb/kidXWLkANP 1nPswLau9t1vb84RIv8ZXp/Eiz8FWBSP2yNlIAe2Nbst9/UatlCEvuUKnqeRCTnm UTYDOGVEKp0C4jQeG/nkbFJbLxWxi4i0KeBa9NOXAUabA6d6uAKAlRQrrV4KX0pJ NSl9FvJxvwhbU8X2pv4Gq4Qe3CSSyMOUEIUtjhXBRP/cjA+uZ7BLRMtojlDPc+Zb yf/WgGzXkrGH03vxBDj8DAgU4cECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRqhvbu FP+FMnTAgDb95uAuT53KXDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTA5Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qY8wDQYJKoZIhvcNAQELBQADggEBAGCqLb6mf555c/PcwUENXPp8j4V47tZv6A00 D5BEEsYe70gftqhe3kJzbPPpYY34wSl6RKmNfpyM0JdZW/AIB19eYotGPjXya396 /w/pmJ/8Sev8v9EGFWSKFg4wQIxjsYS5VrICMCf1WI78M71Td62XerDC2v5YUacS zx/ISviwrbmiIGd0ggVAHawaKQdf6868u7y5lkSk6BSGCvY3hhuszgkQpS/SsiWF L9qP+v6+mDP2FCgx3ysrqdFuVDARqAgdk72Q4fF+bhqGL6ZvjDq+ND4Tk5CgmyKc DT+YP1bzpMp+nDhOZlSrF0bgH+KgvIieqtmo6PI+Kw3+7Zq2e0I= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:03 2026 by rpki-client