$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145274.roa File: AS145274.roa (raw, json) Hash identifier: o7Y4AejiGrYdPa8bqJZGfTpnv6dt9RUaWyqtGcE3Osk= Subject key identifier: 26:04:B3:21:FC:DE:0A:D6:40:77:65:CF:B6:0A:E0:47:3C:C0:34:42 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 35B8D9E96C7743895D2AB302F48DBC5C9CCE921A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145274.roa Signing time: Wed 04 Mar 2026 06:21:47 +0000 ROA not before: Wed 04 Mar 2026 06:16:47 +0000 ROA not after: Wed 03 Mar 2027 06:21:47 +0000 asID: 145274 IP address blocks: 240a:aa40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b8:d9:e9:6c:77:43:89:5d:2a:b3:02:f4:8d:bc:5c:9c:ce:92:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:47 2026 GMT Not After : Mar 3 06:21:47 2027 GMT Subject: CN=2604B321FCDE0AD6407765CFB60AE0473CC03442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8c:01:b2:8d:2f:f3:00:de:23:c9:4b:c8:16: 96:a3:3a:04:5b:43:a5:d0:8a:04:7c:11:32:3a:b2: 96:89:a6:dd:e3:da:bb:89:94:fc:77:13:bc:56:f3: 50:49:98:8e:90:63:bf:c0:c9:dd:a1:5b:69:34:3a: 2b:25:99:6c:f0:f2:bf:d3:0f:07:6b:13:50:27:ae: 84:49:9e:df:99:52:cc:a5:72:f0:0e:ef:0d:e6:c7: 63:24:4b:6e:d9:fe:c6:9a:fc:7e:5b:e1:09:41:8f: fe:99:18:28:ce:b0:e8:d7:96:64:3a:43:25:91:10: 21:b6:6a:3f:37:e8:ef:2b:a0:11:17:44:9a:33:b0: 59:aa:db:4e:62:26:6d:ef:dd:73:49:dd:f2:09:14: b5:23:41:54:76:5f:a0:32:ba:a9:df:b6:69:7d:f9: 1d:66:6f:42:44:c8:9a:91:79:7c:1e:87:89:d0:61: a1:17:09:3e:4b:e9:ab:3d:ea:6b:5f:90:19:23:02: c2:4d:3b:86:ad:e1:d0:fe:1f:83:17:88:72:e8:cb: c3:a3:95:84:13:f2:ff:5d:99:4a:7b:ed:7f:d9:1f: 13:ef:ae:b6:ed:7f:3e:b7:61:6c:11:96:7a:3a:06: 7d:f6:db:ba:5c:4c:e6:9f:ed:43:c7:c3:c7:a0:ac: 07:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:04:B3:21:FC:DE:0A:D6:40:77:65:CF:B6:0A:E0:47:3C:C0:34:42 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145274.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa40::/32 Signature Algorithm: sha256WithRSAEncryption 3f:fb:c1:f7:41:a0:17:23:53:4c:17:47:7c:96:fb:4d:97:0b: c7:df:cb:84:ac:8e:a3:23:a1:b4:a5:5c:39:a7:0e:e7:a0:bd: e7:94:3b:61:f5:f7:9f:7c:00:da:f8:0e:6c:3e:44:fd:0a:ca: 18:1d:22:76:4c:22:48:3c:f2:06:52:be:bc:39:9f:55:58:56: 86:4d:5e:33:92:42:cc:d3:d3:cb:8c:4e:25:5c:ec:91:1f:e7: 6d:cc:61:7a:9e:8f:0d:d7:33:59:7f:05:a6:17:4a:ba:74:51: 6b:b4:51:2c:c2:f9:54:8e:27:13:fe:ce:b8:d4:fd:2e:5d:94: 2f:6d:b6:66:3d:8d:37:ae:5f:97:bd:29:6a:1c:f8:85:12:5a: 8d:d6:8a:28:94:b3:c6:7a:4a:04:a6:88:cd:8a:a0:47:89:ea: 80:f8:36:80:d4:b7:00:49:f0:68:27:8f:ab:dc:a4:54:56:45: d2:17:5a:2c:32:1d:f8:52:f7:b8:17:ea:77:26:79:4f:b1:10: c6:19:50:8b:45:71:af:6c:9d:1a:95:bf:83:02:85:3d:8b:a8: a4:d5:51:48:99:ca:79:6e:f3:2c:3c:23:29:fd:9f:c4:53:85: 3f:19:d2:5d:52:df:e3:f7:e0:57:e5:c5:7f:17:89:40:23:99: c5:0a:b6:c4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNbjZ6Wx3Q4ldKrMC9I28XJzOkhowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0N1oX DTI3MDMwMzA2MjE0N1owMzExMC8GA1UEAxMoMjYwNEIzMjFGQ0RFMEFENjQwNzc2 NUNGQjYwQUUwNDczQ0MwMzQ0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANaMAbKNL/MA3iPJS8gWlqM6BFtDpdCKBHwRMjqylomm3ePau4mU/HcTvFbz UEmYjpBjv8DJ3aFbaTQ6KyWZbPDyv9MPB2sTUCeuhEme35lSzKVy8A7vDebHYyRL btn+xpr8flvhCUGP/pkYKM6w6NeWZDpDJZEQIbZqPzfo7yugERdEmjOwWarbTmIm be/dc0nd8gkUtSNBVHZfoDK6qd+2aX35HWZvQkTImpF5fB6HidBhoRcJPkvpqz3q a1+QGSMCwk07hq3h0P4fgxeIcujLw6OVhBPy/12ZSnvtf9kfE++utu1/PrdhbBGW ejoGffbbulxM5p/tQ8fDx6CsBxkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQmBLMh /N4K1kB3Zc+2CuBHPMA0QjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTI3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qkAwDQYJKoZIhvcNAQELBQADggEBAD/7wfdBoBcjU0wXR3yW+02XC8ffy4SsjqMj obSlXDmnDuegveeUO2H19598ANr4Dmw+RP0KyhgdInZMIkg88gZSvrw5n1VYVoZN XjOSQszT08uMTiVc7JEf523MYXqejw3XM1l/BaYXSrp0UWu0USzC+VSOJxP+zrjU /S5dlC9ttmY9jTeuX5e9KWoc+IUSWo3WiiiUs8Z6SgSmiM2KoEeJ6oD4NoDUtwBJ 8Ggnj6vcpFRWRdIXWiwyHfhS97gX6ncmeU+xEMYZUItFca9snRqVv4MChT2LqKTV UUiZynlu8yw8Iyn9n8RThT8Z0l1S3+P34FflxX8XiUAjmcUKtsQ= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:27 2026 by rpki-client