$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145363.roa File: AS145363.roa (raw, json) Hash identifier: 3XymwVu6uX9X+w0AofL7+ES6+vUeJUcNZUbWR175+Y0= Subject key identifier: 04:94:A4:16:3E:2D:A9:AF:C5:90:A2:7E:6A:EE:59:9D:7E:48:A0:AD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6B9C33FE0320EFDB19B787447B233ED01EF61875 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145363.roa Signing time: Wed 04 Mar 2026 06:20:11 +0000 ROA not before: Wed 04 Mar 2026 06:15:11 +0000 ROA not after: Wed 03 Mar 2027 06:20:11 +0000 asID: 145363 IP address blocks: 240a:aa99::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:9c:33:fe:03:20:ef:db:19:b7:87:44:7b:23:3e:d0:1e:f6:18:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:11 2026 GMT Not After : Mar 3 06:20:11 2027 GMT Subject: CN=0494A4163E2DA9AFC590A27E6AEE599D7E48A0AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:16:7a:de:64:28:a4:ae:9d:3d:d2:3a:bb: bd:ec:c2:9e:35:14:22:b6:f5:c9:48:60:18:78:82: 22:f7:09:10:d0:a4:c0:b1:26:0b:c6:6a:93:5a:e1: 46:e4:b2:63:40:a8:79:e7:a2:cd:4d:24:54:c1:7f: 2b:e2:b4:37:b4:a9:bf:9a:4d:32:3d:0a:95:fe:5e: 69:33:71:14:d1:1b:bf:b7:5b:c1:75:01:91:81:b2: f2:12:8b:1c:02:92:48:f8:d8:b1:cf:4e:66:fd:a5: 84:f5:39:bf:1e:06:b2:9b:c8:45:64:98:6f:18:ac: a4:1a:ea:ab:a6:4a:3d:6a:c5:fb:f0:7a:f6:27:10: c6:05:b2:d8:bd:85:7f:36:81:c0:0f:05:08:f6:d5: ea:ab:73:28:3e:2e:cc:ef:d1:03:e2:80:1a:79:b3: 15:7f:58:c2:76:47:26:dc:f5:fd:81:e9:88:98:3a: c3:87:18:5c:18:17:81:cc:aa:11:e6:3c:24:f8:38: 10:2c:80:78:75:4a:30:9c:23:e7:a1:56:2d:cc:f6: 31:c3:a6:a7:68:36:25:19:fc:ad:ed:00:37:62:c6: f3:32:77:f9:fa:3a:3c:12:11:72:38:3c:c8:00:f2: 27:21:35:c9:08:ca:23:5c:7c:87:37:24:9e:7b:fc: 3d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:94:A4:16:3E:2D:A9:AF:C5:90:A2:7E:6A:EE:59:9D:7E:48:A0:AD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa99::/32 Signature Algorithm: sha256WithRSAEncryption 67:1a:32:06:0e:ad:c0:8c:b1:8c:63:38:05:3c:2c:b6:88:4f: a8:69:bf:32:43:d5:85:06:c5:07:79:7a:b2:eb:8e:58:7e:1c: 16:36:c6:1b:e4:43:b9:aa:90:cd:0c:50:00:25:a3:05:d0:d7: c8:9e:60:e0:64:9c:2d:39:16:40:83:28:25:18:2b:96:86:7b: 4c:b8:f4:6f:cb:ea:73:e7:f2:34:5c:57:ac:50:6d:9d:1e:85: 8b:85:2d:14:e5:e3:7c:a5:57:50:a3:d1:d8:53:be:5b:7e:fe: fc:7f:14:2e:45:f1:5f:b7:e6:2a:7d:f3:d5:0f:bd:2c:cf:cc: 0e:41:8c:bc:94:1b:34:a7:6a:34:c7:4d:d9:f3:5e:fb:c2:33: d3:3a:13:1f:89:ca:15:12:4b:37:66:57:46:21:f5:af:84:bf: 87:4d:8d:99:1e:91:68:5a:9b:a0:fe:8f:8d:87:c7:0b:f4:ec: c8:cd:3b:2c:3d:02:53:bc:d6:7a:7c:88:fc:09:e2:26:57:6b: 69:c3:f2:94:ed:94:cc:d6:e2:09:20:60:6f:ad:73:73:0f:e3: cb:71:ab:0d:f3:07:bf:e3:35:5b:dd:f0:ad:4d:1e:eb:92:c6: 0d:3f:1c:a0:44:99:db:13:84:21:f0:70:d3:8c:9c:2f:f0:81: 30:1c:9c:e3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUa5wz/gMg79sZt4dEeyM+0B72GHUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUxMVoX DTI3MDMwMzA2MjAxMVowMzExMC8GA1UEAxMoMDQ5NEE0MTYzRTJEQTlBRkM1OTBB MjdFNkFFRTU5OUQ3RTQ4QTBBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTwFnreZCikrp090jq7vezCnjUUIrb1yUhgGHiCIvcJENCkwLEmC8Zqk1rh RuSyY0CoeeeizU0kVMF/K+K0N7Spv5pNMj0Klf5eaTNxFNEbv7dbwXUBkYGy8hKL HAKSSPjYsc9OZv2lhPU5vx4GspvIRWSYbxispBrqq6ZKPWrF+/B69icQxgWy2L2F fzaBwA8FCPbV6qtzKD4uzO/RA+KAGnmzFX9YwnZHJtz1/YHpiJg6w4cYXBgXgcyq EeY8JPg4ECyAeHVKMJwj56FWLcz2McOmp2g2JRn8re0AN2LG8zJ3+fo6PBIRcjg8 yADyJyE1yQjKI1x8hzcknnv8Pc8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQElKQW Pi2pr8WQon5q7lmdfkigrTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTM2My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qpkwDQYJKoZIhvcNAQELBQADggEBAGcaMgYOrcCMsYxjOAU8LLaIT6hpvzJD1YUG xQd5erLrjlh+HBY2xhvkQ7mqkM0MUAAlowXQ18ieYOBknC05FkCDKCUYK5aGe0y4 9G/L6nPn8jRcV6xQbZ0ehYuFLRTl43ylV1Cj0dhTvlt+/vx/FC5F8V+35ip989UP vSzPzA5BjLyUGzSnajTHTdnzXvvCM9M6Ex+JyhUSSzdmV0Yh9a+Ev4dNjZkekWha m6D+j42Hxwv07MjNOyw9AlO81np8iPwJ4iZXa2nD8pTtlMzW4gkgYG+tc3MP48tx qw3zB7/jNVvd8K1NHuuSxg0/HKBEmdsThCHwcNOMnC/wgTAcnOM= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:36 2026 by rpki-client