$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145179.roa File: AS145179.roa (raw, json) Hash identifier: N7P3vTagp3JPQHMFX7tZL/6rTI9UM7qIc7xN6+DUyjA= Subject key identifier: 63:DD:8B:76:BA:A2:03:3E:83:48:C7:41:08:4D:E8:9D:AE:66:0A:54 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7A185B5301E1087F20EF56549D30752DFD01347E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145179.roa Signing time: Wed 04 Mar 2026 06:21:47 +0000 ROA not before: Wed 04 Mar 2026 06:16:47 +0000 ROA not after: Wed 03 Mar 2027 06:21:47 +0000 asID: 145179 IP address blocks: 240a:a9e1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:18:5b:53:01:e1:08:7f:20:ef:56:54:9d:30:75:2d:fd:01:34:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:47 2026 GMT Not After : Mar 3 06:21:47 2027 GMT Subject: CN=63DD8B76BAA2033E8348C741084DE89DAE660A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:89:21:f8:f2:31:dd:3f:41:7d:a8:e7:38:0c: 0a:42:cc:9b:b7:ef:bf:e3:4a:08:b9:42:68:de:86: 0b:75:32:bc:d6:5f:f7:f7:49:b3:4a:8f:d0:a5:71: 76:20:9a:e3:7f:ea:d0:af:4e:25:3e:f4:0b:a8:ca: 83:df:74:5e:b2:c4:55:13:47:9e:7e:0c:93:0c:02: 35:a6:f2:82:ab:63:55:fb:5d:4f:19:fe:2c:2e:0f: b8:6a:8f:31:b7:27:60:77:24:a9:49:de:77:1e:fa: f8:82:57:cc:11:e5:60:a0:28:eb:c4:d2:f6:eb:4e: 0d:9c:03:92:66:d3:d2:06:af:ff:13:22:e0:f6:1d: ec:51:5e:3d:a3:7d:c8:49:dd:d5:32:47:aa:0f:1e: fa:ff:e2:69:3f:e4:f5:69:da:0d:93:45:8d:15:41: 86:7a:5e:13:40:60:53:46:0b:d3:3f:dd:b5:27:fa: 17:a0:1b:ff:be:9e:ba:2d:03:ba:15:11:b8:2d:9f: 8c:df:5c:b7:73:72:06:7f:55:b8:95:8c:04:32:f7: 0b:8a:f8:73:be:2e:b5:3d:3e:e1:ec:3b:56:22:b9: 95:0d:c3:eb:0f:24:8f:70:1e:c9:1c:d2:7d:f0:75: df:32:96:3c:6d:37:f7:b8:62:0d:43:42:e9:d8:ee: 53:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DD:8B:76:BA:A2:03:3E:83:48:C7:41:08:4D:E8:9D:AE:66:0A:54 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145179.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9e1::/32 Signature Algorithm: sha256WithRSAEncryption 41:3a:2e:47:cc:ee:d1:a3:b8:60:6d:bf:e5:bc:c0:6b:84:79: 00:7f:4c:db:ba:8e:74:66:cd:5c:af:cd:09:8a:21:3c:db:a8: 2a:f2:f9:1b:a3:07:b3:12:00:8e:f1:da:6e:42:a0:6c:06:cb: 0d:d7:ee:ca:69:26:92:59:4a:5d:91:92:b0:b5:75:4f:b3:22: 6b:78:2b:9b:b5:54:5f:9c:40:4e:46:1f:9d:ab:1b:76:eb:50: 43:5a:18:40:1f:47:ec:25:57:2e:2a:f3:da:6d:9d:9b:81:38: 40:29:62:47:f5:07:24:23:a8:42:96:53:85:91:13:70:d5:db: fc:59:f4:a9:e7:5c:f7:ae:a3:b1:83:72:b1:f4:60:cb:4c:df: bd:8d:2b:f1:bf:97:2c:01:f3:cb:66:fd:e2:17:99:e4:79:77: cd:33:c3:9f:6a:6d:8d:56:c7:5e:47:90:49:94:d5:5b:de:ac: a5:8e:1d:c3:e1:ba:af:98:b5:28:c8:a4:4b:f7:ba:2d:7d:a2: cd:0e:59:59:bf:fb:e0:46:a8:af:bb:82:f8:01:8b:44:27:b0: 3d:9a:48:4e:5a:46:29:7d:8c:09:45:ac:93:c8:4c:14:af:ca: eb:48:c5:81:d5:8d:72:c8:75:45:45:d6:8d:53:98:c2:07:8b: df:57:f3:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUehhbUwHhCH8g71ZUnTB1Lf0BNH4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0N1oX DTI3MDMwMzA2MjE0N1owMzExMC8GA1UEAxMoNjNERDhCNzZCQUEyMDMzRTgzNDhD NzQxMDg0REU4OURBRTY2MEE1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqJIfjyMd0/QX2o5zgMCkLMm7fvv+NKCLlCaN6GC3UyvNZf9/dJs0qP0KVx diCa43/q0K9OJT70C6jKg990XrLEVRNHnn4MkwwCNabygqtjVftdTxn+LC4PuGqP MbcnYHckqUnedx76+IJXzBHlYKAo68TS9utODZwDkmbT0gav/xMi4PYd7FFePaN9 yEnd1TJHqg8e+v/iaT/k9WnaDZNFjRVBhnpeE0BgU0YL0z/dtSf6F6Ab/76eui0D uhURuC2fjN9ct3NyBn9VuJWMBDL3C4r4c74utT0+4ew7ViK5lQ3D6w8kj3AeyRzS ffB13zKWPG0397hiDUNC6djuU/0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRj3Yt2 uqIDPoNIx0EITeidrmYKVDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE3OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qeEwDQYJKoZIhvcNAQELBQADggEBAEE6LkfM7tGjuGBtv+W8wGuEeQB/TNu6jnRm zVyvzQmKITzbqCry+RujB7MSAI7x2m5CoGwGyw3X7sppJpJZSl2RkrC1dU+zImt4 K5u1VF+cQE5GH52rG3brUENaGEAfR+wlVy4q89ptnZuBOEApYkf1ByQjqEKWU4WR E3DV2/xZ9KnnXPeuo7GDcrH0YMtM372NK/G/lywB88tm/eIXmeR5d80zw59qbY1W x15HkEmU1VverKWOHcPhuq+YtSjIpEv3ui19os0OWVm/++BGqK+7gvgBi0QnsD2a SE5aRil9jAlFrJPITBSvyutIxYHVjXLIdUVF1o1TmMIHi99X8/w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:09 2026 by rpki-client