$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145141.roa File: AS145141.roa (raw, json) Hash identifier: pefoRHiFrUcWVTK6qOcsPR3b3gbF4GOfeCoseVL2BNA= Subject key identifier: 03:EB:BF:21:B3:11:DB:E7:A6:17:F0:AD:1D:84:AF:4D:BA:78:80:B6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7F964689D73BD9AD5B29AECDAFAED742927DC802 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145141.roa Signing time: Wed 04 Mar 2026 06:19:41 +0000 ROA not before: Wed 04 Mar 2026 06:14:41 +0000 ROA not after: Wed 03 Mar 2027 06:19:41 +0000 asID: 145141 IP address blocks: 240a:a9bb::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:96:46:89:d7:3b:d9:ad:5b:29:ae:cd:af:ae:d7:42:92:7d:c8:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:41 2026 GMT Not After : Mar 3 06:19:41 2027 GMT Subject: CN=03EBBF21B311DBE7A617F0AD1D84AF4DBA7880B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c6:b9:64:c1:7f:b6:7e:db:38:d0:03:ab:e2: a8:01:67:04:4c:a7:e4:5f:bd:fa:1b:1a:4f:1b:f2: 39:d8:55:ae:89:0f:d9:6d:ec:49:59:08:e4:82:84: 86:64:30:e7:f7:90:68:40:af:16:ec:8d:2e:64:b4: 95:2c:ab:75:46:25:8d:e8:2d:a6:e7:f8:03:bc:3b: c9:13:11:d8:ac:9a:0f:0a:e7:d4:c1:1d:f0:14:3e: 31:f1:42:6e:70:9e:7e:2e:d1:77:b8:0b:64:76:1c: 9b:0c:39:ac:81:a5:c4:c1:1d:72:5c:4f:e4:c1:18: 40:c6:1a:9d:c0:7c:92:96:48:da:1c:c3:77:eb:1a: 6c:ad:c6:69:83:6e:dd:9d:64:22:de:b9:33:96:15: 18:78:4c:c1:f4:68:d2:f9:3e:2a:b0:47:bd:6b:38: 3e:f2:cf:cf:20:18:86:aa:2c:da:61:28:1d:75:a7: 3d:50:39:79:99:7e:7b:2d:0d:fd:8b:dd:bd:c8:dd: db:3b:27:80:dc:12:c1:c0:dd:4a:a2:e5:49:89:e5: ba:f1:ea:a2:f2:31:5a:ca:d6:ce:65:0b:4a:56:10: 6d:ce:cb:84:eb:44:67:4b:bf:46:6c:61:f8:c2:4c: 15:bb:51:d7:c4:60:8d:07:61:a6:be:11:63:04:b2: 0e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EB:BF:21:B3:11:DB:E7:A6:17:F0:AD:1D:84:AF:4D:BA:78:80:B6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9bb::/32 Signature Algorithm: sha256WithRSAEncryption bb:d3:0e:84:e0:a3:0b:ab:58:09:f3:65:55:a9:f8:8b:cd:15: db:6f:a4:d7:71:d2:50:46:0d:07:44:18:ad:e3:c6:f7:3d:28: 90:d0:7b:05:4c:9c:dd:61:58:88:c1:77:f8:e7:8a:4a:fb:16: c6:71:9a:9f:f1:b5:7e:4d:2d:ce:6f:60:40:c5:95:27:50:fd: 9f:2a:8b:11:11:05:99:e7:7e:69:42:e3:f6:58:fc:ca:eb:10: 47:5e:f4:7f:89:08:cf:98:1a:d4:2c:14:3b:5e:14:d0:02:b9: b6:a7:c0:ff:ef:ad:ba:bd:cc:1c:17:66:da:af:07:22:78:39: c0:6a:a1:8f:39:b1:8c:47:b4:3f:f0:ba:45:00:3a:3b:f1:1a: 93:56:16:5a:f6:a2:50:23:73:b9:e6:bc:2c:09:1c:cd:83:7d: cd:38:81:45:d8:f4:72:e5:63:bb:8b:b8:35:58:82:6b:44:23: 45:73:33:48:b1:c1:44:21:0f:2b:cf:c7:5d:92:5b:f5:22:a4: b8:46:dd:7e:bd:58:86:f2:18:2c:79:d0:2d:a8:82:6a:93:3c: 59:e3:76:12:c1:71:27:b2:25:f1:8d:90:ae:6f:c1:d3:ed:f7: af:01:24:42:f7:67:cb:a2:7c:ee:ae:8e:de:1c:00:7c:b1:7c: b4:ae:b5:30 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUf5ZGidc72a1bKa7Nr67XQpJ9yAIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0MVoX DTI3MDMwMzA2MTk0MVowMzExMC8GA1UEAxMoMDNFQkJGMjFCMzExREJFN0E2MTdG MEFEMUQ4NEFGNERCQTc4ODBCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAInGuWTBf7Z+2zjQA6viqAFnBEyn5F+9+hsaTxvyOdhVrokP2W3sSVkI5IKE hmQw5/eQaECvFuyNLmS0lSyrdUYljegtpuf4A7w7yRMR2KyaDwrn1MEd8BQ+MfFC bnCefi7Rd7gLZHYcmww5rIGlxMEdclxP5MEYQMYancB8kpZI2hzDd+sabK3GaYNu 3Z1kIt65M5YVGHhMwfRo0vk+KrBHvWs4PvLPzyAYhqos2mEoHXWnPVA5eZl+ey0N /Yvdvcjd2zsngNwSwcDdSqLlSYnluvHqovIxWsrWzmULSlYQbc7LhOtEZ0u/Rmxh +MJMFbtR18RgjQdhpr4RYwSyDmUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQD678h sxHb56YX8K0dhK9NuniAtjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE0MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qbswDQYJKoZIhvcNAQELBQADggEBALvTDoTgowurWAnzZVWp+IvNFdtvpNdx0lBG DQdEGK3jxvc9KJDQewVMnN1hWIjBd/jnikr7FsZxmp/xtX5NLc5vYEDFlSdQ/Z8q ixERBZnnfmlC4/ZY/MrrEEde9H+JCM+YGtQsFDteFNACubanwP/vrbq9zBwXZtqv ByJ4OcBqoY85sYxHtD/wukUAOjvxGpNWFlr2olAjc7nmvCwJHM2Dfc04gUXY9HLl Y7uLuDVYgmtEI0VzM0ixwUQhDyvPx12SW/UipLhG3X69WIbyGCx50C2ogmqTPFnj dhLBcSeyJfGNkK5vwdPt968BJEL3Z8uifO6ujt4cAHyxfLSutTA= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:07 2026 by rpki-client