$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145114.roa File: AS145114.roa (raw, json) Hash identifier: q42JlUya/35jYywJEHOf2CazxxU8NmOEMrSvfUWXiBo= Subject key identifier: AC:EB:A3:B6:26:D0:6A:B6:AF:BC:90:26:76:DB:32:0F:AC:D3:FD:2D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4A062B9D6F6EAA5758B28A0ABDB26AA574464D25 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145114.roa Signing time: Wed 04 Mar 2026 06:21:02 +0000 ROA not before: Wed 04 Mar 2026 06:16:02 +0000 ROA not after: Wed 03 Mar 2027 06:21:02 +0000 asID: 145114 IP address blocks: 240a:a9a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:06:2b:9d:6f:6e:aa:57:58:b2:8a:0a:bd:b2:6a:a5:74:46:4d:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:02 2026 GMT Not After : Mar 3 06:21:02 2027 GMT Subject: CN=ACEBA3B626D06AB6AFBC902676DB320FACD3FD2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d7:21:91:e1:74:0c:f9:d8:a6:84:cd:a7:64: ad:0a:d9:ce:c3:a7:6e:d2:c5:af:4b:2e:8d:62:0b: 6b:a0:54:20:ba:06:a7:77:5f:5f:90:a3:8b:9b:d9: dd:63:3e:2f:0f:ff:1d:d1:76:40:02:c9:5c:32:a7: fe:7a:08:4e:e4:3b:15:27:c7:06:7a:d3:87:da:f9: ec:03:a0:64:75:bc:2d:57:55:8f:d4:99:00:61:5e: 1e:2f:d6:46:85:64:15:3e:1e:f9:c3:11:7d:b2:29: 5d:43:88:ff:ac:1e:04:53:29:88:c5:0e:45:e1:a3: 83:e0:74:28:4d:85:e6:30:8e:4a:45:98:fb:4b:ee: 6d:6f:b7:20:90:dd:04:f3:06:2f:22:fe:2f:01:13: 25:4d:07:58:84:08:2d:e3:14:9e:df:f5:71:86:06: 0d:2b:55:77:52:b9:d8:a4:81:12:a6:82:db:a2:e2: 46:98:35:cf:eb:4a:cd:3d:d0:98:dc:e2:bc:2f:91: 20:6e:d4:62:6d:49:f4:0c:bc:e6:27:c1:7e:3f:b8: f2:fb:5c:5b:9b:8d:20:ff:d9:63:bf:5d:09:37:cc: b8:3c:cc:d7:e5:b7:43:fd:2d:58:8a:e5:32:3a:4d: 30:62:d1:06:39:1a:ed:10:ec:24:82:c0:7c:d7:f0: 61:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:EB:A3:B6:26:D0:6A:B6:AF:BC:90:26:76:DB:32:0F:AC:D3:FD:2D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145114.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9a0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:ec:7f:e5:98:e2:1d:3a:99:ba:75:83:2c:c8:3d:e3:ac:19: 7e:76:06:3c:34:5c:5a:a3:7e:02:4e:22:8f:09:cf:00:21:ef: 2b:5d:16:4a:c8:da:65:81:5e:19:07:fb:2c:2d:76:fe:2b:17: 5f:bf:f4:26:29:76:c5:3e:5e:fc:1c:96:e6:11:a6:96:bf:63: 53:ff:8c:64:40:a5:ae:41:5b:96:3f:e0:0a:45:a4:d5:c6:9f: 26:38:0d:80:02:1a:cf:0e:38:2d:17:2f:87:d1:74:6c:46:b2: f5:9d:8a:10:81:77:6e:06:ad:06:cc:65:e7:a2:d6:d4:cf:56: b8:b9:24:ff:15:2d:5b:92:57:28:40:3e:09:3f:87:e8:71:72: ef:c2:d8:a3:7f:4f:0e:ef:a3:85:95:a8:5c:49:72:1d:51:6f: f7:8f:87:49:84:ce:39:c5:f9:38:b8:59:f2:f7:04:a7:0b:a9: 20:a3:6c:90:24:92:73:db:f6:df:28:38:ff:9d:ce:b3:c8:34: e0:65:71:90:ac:c5:8a:10:36:38:97:ee:7d:d5:d9:7a:15:da: c8:dc:b6:5b:28:6c:e5:13:e1:b1:c2:fa:8c:19:45:38:3f:fa: 9f:24:8f:f4:58:96:fe:09:cf:85:2c:0d:0d:75:18:de:38:83: 62:87:45:3f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSgYrnW9uqldYsooKvbJqpXRGTSUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwMloX DTI3MDMwMzA2MjEwMlowMzExMC8GA1UEAxMoQUNFQkEzQjYyNkQwNkFCNkFGQkM5 MDI2NzZEQjMyMEZBQ0QzRkQyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbXIZHhdAz52KaEzadkrQrZzsOnbtLFr0sujWILa6BUILoGp3dfX5Cji5vZ 3WM+Lw//HdF2QALJXDKn/noITuQ7FSfHBnrTh9r57AOgZHW8LVdVj9SZAGFeHi/W RoVkFT4e+cMRfbIpXUOI/6weBFMpiMUOReGjg+B0KE2F5jCOSkWY+0vubW+3IJDd BPMGLyL+LwETJU0HWIQILeMUnt/1cYYGDStVd1K52KSBEqaC26LiRpg1z+tKzT3Q mNzivC+RIG7UYm1J9Ay85ifBfj+48vtcW5uNIP/ZY79dCTfMuDzM1+W3Q/0tWIrl MjpNMGLRBjka7RDsJILAfNfwYUMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSs66O2 JtBqtq+8kCZ22zIPrNP9LTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTExNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qaAwDQYJKoZIhvcNAQELBQADggEBAF3sf+WY4h06mbp1gyzIPeOsGX52Bjw0XFqj fgJOIo8JzwAh7ytdFkrI2mWBXhkH+ywtdv4rF1+/9CYpdsU+XvwcluYRppa/Y1P/ jGRApa5BW5Y/4ApFpNXGnyY4DYACGs8OOC0XL4fRdGxGsvWdihCBd24GrQbMZeei 1tTPVri5JP8VLVuSVyhAPgk/h+hxcu/C2KN/Tw7vo4WVqFxJch1Rb/ePh0mEzjnF +Ti4WfL3BKcLqSCjbJAkknPb9t8oOP+dzrPINOBlcZCsxYoQNjiX7n3V2XoV2sjc tlsobOUT4bHC+owZRTg/+p8kj/RYlv4Jz4UsDQ11GN44g2KHRT8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:51 2026 by rpki-client