$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145282.roa File: AS145282.roa (raw, json) Hash identifier: BnRmE5yzbZgeqSHTHtW6GNfOugKBKMImKeb1qpNFnM8= Subject key identifier: 4E:A0:E2:C3:47:99:40:B0:8D:BD:FF:0B:1E:8A:55:C0:EB:FD:41:27 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 100D9719CEACB7EB9302AA883F66375C701A6AAA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145282.roa Signing time: Wed 04 Mar 2026 06:20:27 +0000 ROA not before: Wed 04 Mar 2026 06:15:27 +0000 ROA not after: Wed 03 Mar 2027 06:20:27 +0000 asID: 145282 IP address blocks: 240a:aa48::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:0d:97:19:ce:ac:b7:eb:93:02:aa:88:3f:66:37:5c:70:1a:6a:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:27 2026 GMT Not After : Mar 3 06:20:27 2027 GMT Subject: CN=4EA0E2C3479940B08DBDFF0B1E8A55C0EBFD4127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b6:97:a7:49:fb:13:5f:a8:5e:76:7a:e9:bc: 05:7e:00:c8:5e:48:5e:85:96:99:6e:dc:27:be:4b: 9e:de:92:c1:51:cd:16:94:9b:ec:e7:e4:30:2a:04: 1d:a3:5c:67:1e:41:6d:d1:5b:b9:d8:77:82:96:e1: f5:d3:bf:3e:de:7c:49:91:cd:f1:ab:da:5d:74:12: 73:77:24:8e:90:cd:fe:fd:38:4c:d3:bb:52:43:fa: 7b:07:10:44:ff:7e:2f:83:57:31:f9:c6:09:53:ff: 0d:52:4e:89:96:18:25:d8:32:42:08:39:e3:76:9d: a4:c9:ae:fb:4e:9f:76:99:2c:df:5f:03:8c:03:d8: 0e:11:7b:84:0f:ce:69:c5:9d:34:bf:73:60:e8:d1: a8:99:66:c3:a8:ba:de:dc:f4:c8:69:fb:bc:c1:77: 20:59:9c:bc:37:c9:2d:1a:51:d7:4b:dd:17:fb:52: 93:3f:b3:1a:1d:be:2f:c7:c1:25:63:c5:02:fc:82: 45:b6:0e:03:8f:31:39:42:33:71:da:36:c5:05:91: 93:b8:38:0d:55:18:dd:ec:7e:94:62:3a:4f:1f:00: 33:8e:3d:99:02:3e:99:49:45:f9:9a:6f:e2:8a:f6: 5b:41:75:c8:ba:68:8d:a7:86:15:0c:ce:f0:5b:b6: 93:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A0:E2:C3:47:99:40:B0:8D:BD:FF:0B:1E:8A:55:C0:EB:FD:41:27 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145282.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa48::/32 Signature Algorithm: sha256WithRSAEncryption 9b:ff:f7:14:c9:43:ea:b9:69:24:95:ba:d6:bc:65:97:13:80: 4f:0f:72:d3:31:34:5c:49:6d:6e:b0:96:7e:bd:27:ca:d3:b4: 8e:d3:76:16:52:71:79:43:0c:2b:9d:b4:05:a3:e7:31:a7:49: 60:5c:3a:2e:97:e9:6e:1e:6b:1a:8f:d3:b8:e1:20:9d:99:a5: 16:76:45:1c:8e:82:c1:71:dc:0b:93:30:d5:c2:bf:da:03:3c: b8:4b:d1:55:10:cf:77:9a:ff:f1:5f:02:17:43:13:5d:bb:1c: de:81:c5:bf:b2:e8:18:d1:9d:34:ec:8b:dd:eb:79:63:fb:0e: 3e:48:2d:ef:21:66:eb:15:6e:ab:3f:94:12:74:62:f8:e1:8d: 5c:5e:f4:41:af:4b:1a:80:31:15:15:1f:22:a6:69:1b:80:88: 5d:76:12:63:2c:d6:c4:66:54:23:40:e1:a6:a5:6b:b2:4b:b0: d7:88:8f:95:29:9a:41:7d:ce:f8:bd:3f:bf:fd:43:40:b1:41: 93:1f:e2:c6:04:9e:0e:8e:c0:de:03:3c:a1:c5:85:bf:8d:e6: 69:cf:9b:c6:d9:53:bf:4f:ba:ed:59:0f:10:99:a9:5f:5d:a6: f6:37:02:c6:2e:d9:bf:49:d0:0e:67:f7:94:33:77:5c:46:c2: af:cc:e1:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUEA2XGc6st+uTAqqIP2Y3XHAaaqowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUyN1oX DTI3MDMwMzA2MjAyN1owMzExMC8GA1UEAxMoNEVBMEUyQzM0Nzk5NDBCMDhEQkRG RjBCMUU4QTU1QzBFQkZENDEyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKi2l6dJ+xNfqF52eum8BX4AyF5IXoWWmW7cJ75Lnt6SwVHNFpSb7OfkMCoE HaNcZx5BbdFbudh3gpbh9dO/Pt58SZHN8avaXXQSc3ckjpDN/v04TNO7UkP6ewcQ RP9+L4NXMfnGCVP/DVJOiZYYJdgyQgg543adpMmu+06fdpks318DjAPYDhF7hA/O acWdNL9zYOjRqJlmw6i63tz0yGn7vMF3IFmcvDfJLRpR10vdF/tSkz+zGh2+L8fB JWPFAvyCRbYOA48xOUIzcdo2xQWRk7g4DVUY3ex+lGI6Tx8AM449mQI+mUlF+Zpv 4or2W0F1yLpojaeGFQzO8Fu2kzcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBROoOLD R5lAsI29/wseilXA6/1BJzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTI4Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qkgwDQYJKoZIhvcNAQELBQADggEBAJv/9xTJQ+q5aSSVuta8ZZcTgE8PctMxNFxJ bW6wln69J8rTtI7TdhZScXlDDCudtAWj5zGnSWBcOi6X6W4eaxqP07jhIJ2ZpRZ2 RRyOgsFx3AuTMNXCv9oDPLhL0VUQz3ea//FfAhdDE127HN6Bxb+y6BjRnTTsi93r eWP7Dj5ILe8hZusVbqs/lBJ0YvjhjVxe9EGvSxqAMRUVHyKmaRuAiF12EmMs1sRm VCNA4aala7JLsNeIj5UpmkF9zvi9P7/9Q0CxQZMf4sYEng6OwN4DPKHFhb+N5mnP m8bZU79Puu1ZDxCZqV9dpvY3AsYu2b9J0A5n95Qzd1xGwq/M4eo= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:44 2026 by rpki-client