$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145334.roa File: AS145334.roa (raw, json) Hash identifier: p5zAjt8IKBSP5ugw0U6Ew/WYJBiChVkoD+8SdfZB0PA= Subject key identifier: 6E:0D:E5:2F:22:9C:E3:E4:8D:8A:47:E2:A2:A1:60:5B:F4:47:AA:03 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4803ADF19DCF1006CF539A4718F3F1ED6000F10F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145334.roa Signing time: Wed 04 Mar 2026 06:22:03 +0000 ROA not before: Wed 04 Mar 2026 06:17:03 +0000 ROA not after: Wed 03 Mar 2027 06:22:03 +0000 asID: 145334 IP address blocks: 240a:aa7c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:03:ad:f1:9d:cf:10:06:cf:53:9a:47:18:f3:f1:ed:60:00:f1:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:03 2026 GMT Not After : Mar 3 06:22:03 2027 GMT Subject: CN=6E0DE52F229CE3E48D8A47E2A2A1605BF447AA03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:21:01:0d:50:b0:1a:3b:c3:2f:f8:7b:66:83: 0c:ea:ed:8c:a9:8f:cc:5e:99:fa:bf:0c:b5:47:63: 6a:87:9e:e8:39:c1:4b:33:a4:c1:4f:4a:b0:ac:75: be:a9:66:8e:dc:1f:a1:41:f9:d7:be:0e:79:2d:ea: f2:ce:a4:a4:fd:92:c0:9d:e8:63:65:68:34:66:fe: 56:50:cd:d1:e4:f3:3c:04:bd:4f:4e:7d:60:d0:78: 6e:cc:24:ef:4c:eb:ac:68:b6:93:12:b7:30:f1:76: 1b:f9:f0:d9:6c:52:23:8e:d5:28:85:5c:cd:07:ec: 1d:0c:42:7d:11:64:17:4d:fd:ba:d5:21:fc:e4:a2: 02:74:ec:71:e3:81:ae:3d:c0:c2:38:2c:56:c2:2e: 1e:3f:d3:52:fc:2c:b5:bc:45:06:ae:de:63:6b:de: 7f:ae:88:2b:30:c0:3e:51:d4:58:37:07:a1:4f:23: 15:e7:be:05:05:99:10:b6:9f:ac:20:48:68:13:40: ff:5b:22:4d:6d:14:b1:23:7e:93:d2:c4:0c:fd:66: 94:0e:c0:89:c2:58:ec:e5:a8:57:0d:83:39:75:3c: e1:4d:73:af:e8:2f:fe:36:ec:cf:b6:36:3b:9d:91: 8b:d9:6e:25:65:b3:dd:20:78:3f:9f:5a:ae:dd:f2: 41:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0D:E5:2F:22:9C:E3:E4:8D:8A:47:E2:A2:A1:60:5B:F4:47:AA:03 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa7c::/32 Signature Algorithm: sha256WithRSAEncryption 72:d2:cd:9b:a6:2b:37:db:c3:35:12:df:21:09:19:53:a3:f9: 9b:53:29:c7:1b:34:79:cc:6f:fc:82:12:c5:bc:b3:af:35:a1: 5f:87:6a:83:88:e1:09:32:2a:b0:58:b1:e2:23:b3:53:e1:f7: 75:4e:1e:46:38:cb:54:bb:b4:85:16:03:cc:6f:5e:66:51:e6: d2:19:05:df:c3:ab:27:03:4a:59:0f:e7:6b:f4:fb:d3:a8:aa: ab:c2:9a:ef:5c:87:76:17:1d:51:ef:e2:7e:12:5b:46:e8:93: f3:a1:dc:47:69:2f:92:8c:01:70:a4:9e:be:c9:ab:e2:2b:6c: cc:0d:97:90:dc:08:62:3f:30:35:4e:6a:42:9a:07:16:b0:64: 7a:d0:51:7a:10:96:a8:23:92:cb:cf:59:82:92:c6:60:4d:49: b7:fb:10:e0:2d:68:71:13:a6:e0:64:e1:fd:b7:35:fa:98:74: ad:f7:bf:35:64:c3:36:4e:89:2a:fd:4f:c4:74:07:0f:86:c9: 1b:7d:3f:c6:b4:26:70:ba:05:40:f7:f3:e4:c8:4e:40:de:5e: e7:99:e9:ff:ae:26:98:8a:84:d7:d4:36:44:7e:0d:76:0c:7e: e1:73:8b:83:f2:31:fd:fd:0e:72:6e:49:d1:09:f2:6f:88:69: 8d:1f:ec:46 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSAOt8Z3PEAbPU5pHGPPx7WAA8Q8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcwM1oX DTI3MDMwMzA2MjIwM1owMzExMC8GA1UEAxMoNkUwREU1MkYyMjlDRTNFNDhEOEE0 N0UyQTJBMTYwNUJGNDQ3QUEwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKshAQ1QsBo7wy/4e2aDDOrtjKmPzF6Z+r8MtUdjaoee6DnBSzOkwU9KsKx1 vqlmjtwfoUH5174OeS3q8s6kpP2SwJ3oY2VoNGb+VlDN0eTzPAS9T059YNB4bswk 70zrrGi2kxK3MPF2G/nw2WxSI47VKIVczQfsHQxCfRFkF039utUh/OSiAnTsceOB rj3AwjgsVsIuHj/TUvwstbxFBq7eY2vef66IKzDAPlHUWDcHoU8jFee+BQWZELaf rCBIaBNA/1siTW0UsSN+k9LEDP1mlA7AicJY7OWoVw2DOXU84U1zr+gv/jbsz7Y2 O52Ri9luJWWz3SB4P59art3yQfUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRuDeUv Ipzj5I2KR+KioWBb9EeqAzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTMzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qnwwDQYJKoZIhvcNAQELBQADggEBAHLSzZumKzfbwzUS3yEJGVOj+ZtTKccbNHnM b/yCEsW8s681oV+HaoOI4QkyKrBYseIjs1Ph93VOHkY4y1S7tIUWA8xvXmZR5tIZ Bd/DqycDSlkP52v0+9OoqqvCmu9ch3YXHVHv4n4SW0bok/Oh3EdpL5KMAXCknr7J q+IrbMwNl5DcCGI/MDVOakKaBxawZHrQUXoQlqgjksvPWYKSxmBNSbf7EOAtaHET puBk4f23NfqYdK33vzVkwzZOiSr9T8R0Bw+GyRt9P8a0JnC6BUD38+TITkDeXueZ 6f+uJpiKhNfUNkR+DXYMfuFzi4PyMf39DnJuSdEJ8m+IaY0f7EY= -----END CERTIFICATE-----Generated at Sat Mar 28 13:15:13 2026 by rpki-client