$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145314.roa File: AS145314.roa (raw, json) Hash identifier: yo7H0NGLxGwzHXLCilgNKaNvckgGwOEQTStDrDbc/p4= Subject key identifier: FC:F9:B9:04:73:60:AF:46:21:5E:99:F5:2C:E2:90:EE:9F:9D:15:A5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 028322810FB5E85DC8BCBE1C38A5E6EF1F60FC77 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145314.roa Signing time: Wed 04 Mar 2026 06:20:42 +0000 ROA not before: Wed 04 Mar 2026 06:15:42 +0000 ROA not after: Wed 03 Mar 2027 06:20:42 +0000 asID: 145314 IP address blocks: 240a:aa68::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:83:22:81:0f:b5:e8:5d:c8:bc:be:1c:38:a5:e6:ef:1f:60:fc:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:42 2026 GMT Not After : Mar 3 06:20:42 2027 GMT Subject: CN=FCF9B9047360AF46215E99F52CE290EE9F9D15A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:85:28:7c:2d:d6:4d:e8:31:b2:f0:a1:7a:7b: 89:e9:1c:8e:df:e9:72:dd:35:9b:ae:bf:32:b1:e8: e0:0f:27:9a:42:aa:10:dc:c7:04:5c:ca:bd:82:ea: c5:89:58:10:d6:e4:89:ec:d4:dc:e2:e0:f9:f2:3a: 4d:ea:0b:7a:47:a7:53:bc:a6:17:58:84:5b:a5:7a: e8:2b:2c:87:ad:f4:08:18:9e:64:f3:7b:2e:44:78: 51:96:08:f6:98:2f:fb:58:55:94:09:12:ac:31:fd: bf:7b:2f:93:23:8e:7d:fe:4b:c5:3d:57:e1:fb:90: 10:a9:61:89:6a:59:2c:10:c8:8b:55:fb:f9:69:15: 02:cd:0c:1e:3f:12:17:1f:c5:9b:73:2d:d7:9b:43: 0b:06:f3:9e:de:4e:47:1a:e0:c4:f6:4f:4b:6c:db: 3b:bc:99:4a:4a:23:fd:8e:bb:d4:37:a5:5d:fe:29: 54:80:9d:8c:fa:31:f6:3b:bd:c7:90:bf:15:df:ee: bb:2d:c0:ee:2d:f7:40:70:29:8f:79:55:c0:87:47: fd:63:46:88:be:17:e6:d0:c7:36:9a:23:66:35:db: 3b:79:5f:e6:14:50:d7:d1:cf:dd:42:cc:2d:68:97: 81:01:74:7c:37:69:7a:8c:ec:3e:91:02:ce:f3:fb: b2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F9:B9:04:73:60:AF:46:21:5E:99:F5:2C:E2:90:EE:9F:9D:15:A5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145314.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa68::/32 Signature Algorithm: sha256WithRSAEncryption da:77:62:fe:e9:20:85:af:c7:cb:b0:ff:39:f0:5e:8f:b1:e3: 2b:d0:ac:9a:da:59:98:07:20:72:61:04:09:a7:bb:0b:e7:db: 08:8c:f2:b5:45:d9:c9:77:46:da:d8:3a:24:43:36:bd:37:9e: 9d:40:1d:f2:ac:06:31:85:16:80:80:e1:95:5d:94:0c:81:62: 75:fa:05:fe:a4:ed:42:02:14:84:1d:f5:0f:1c:17:14:3d:74: 4c:fd:b8:4f:bb:00:41:e6:94:f8:f2:3d:f6:6b:b0:c5:9d:2b: 52:77:3c:3c:f1:6b:dd:35:6c:f3:c7:58:6e:0b:bb:0c:30:6b: b2:43:55:0d:11:e1:2a:61:49:cb:b3:eb:ab:0a:79:1c:8e:0c: 94:24:1f:42:04:e5:4b:ef:17:d7:3a:09:f9:b2:3c:8d:49:83: b5:d3:56:d2:90:57:20:7a:6b:3e:52:7f:b1:9a:da:ee:20:a0: 73:b8:78:dd:ea:a5:3c:7b:61:0c:34:db:df:32:3a:e3:97:94: ee:6b:09:02:ed:0b:8b:4d:47:a2:59:0b:f9:62:8c:6f:22:04: 4e:ce:97:ee:b9:46:5c:0b:d2:84:cf:ed:20:d4:74:23:6a:c0: 76:d3:41:dd:15:26:1c:d3:b1:13:86:9a:70:12:ff:ae:de:d2: 31:0d:94:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUAoMigQ+16F3IvL4cOKXm7x9g/HcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0MloX DTI3MDMwMzA2MjA0MlowMzExMC8GA1UEAxMoRkNGOUI5MDQ3MzYwQUY0NjIxNUU5 OUY1MkNFMjkwRUU5RjlEMTVBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaFKHwt1k3oMbLwoXp7iekcjt/pct01m66/MrHo4A8nmkKqENzHBFzKvYLq xYlYENbkiezU3OLg+fI6TeoLekenU7ymF1iEW6V66Cssh630CBieZPN7LkR4UZYI 9pgv+1hVlAkSrDH9v3svkyOOff5LxT1X4fuQEKlhiWpZLBDIi1X7+WkVAs0MHj8S Fx/Fm3Mt15tDCwbznt5ORxrgxPZPS2zbO7yZSkoj/Y671DelXf4pVICdjPox9ju9 x5C/Fd/uuy3A7i33QHApj3lVwIdH/WNGiL4X5tDHNpojZjXbO3lf5hRQ19HP3ULM LWiXgQF0fDdpeozsPpECzvP7slsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT8+bkE c2CvRiFemfUs4pDun50VpTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTMxNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qmgwDQYJKoZIhvcNAQELBQADggEBANp3Yv7pIIWvx8uw/znwXo+x4yvQrJraWZgH IHJhBAmnuwvn2wiM8rVF2cl3RtrYOiRDNr03np1AHfKsBjGFFoCA4ZVdlAyBYnX6 Bf6k7UICFIQd9Q8cFxQ9dEz9uE+7AEHmlPjyPfZrsMWdK1J3PDzxa901bPPHWG4L uwwwa7JDVQ0R4SphScuz66sKeRyODJQkH0IE5UvvF9c6CfmyPI1Jg7XTVtKQVyB6 az5Sf7Ga2u4goHO4eN3qpTx7YQw0298yOuOXlO5rCQLtC4tNR6JZC/lijG8iBE7O l+65RlwL0oTP7SDUdCNqwHbTQd0VJhzTsROGmnAS/67e0jENlLA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:01 2026 by rpki-client