$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145369.roa File: AS145369.roa (raw, json) Hash identifier: gRXO9Fg12TObj/CW1hRHHCCQefO3ho2xifnoSu+Xlgs= Subject key identifier: FE:E0:02:A7:21:61:DD:F1:C3:6B:07:B5:D9:ED:D6:91:C5:6B:55:6F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3CFB1B2C4CC31B13596C32C6A42A43A63E1DF549 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145369.roa Signing time: Wed 04 Mar 2026 06:21:18 +0000 ROA not before: Wed 04 Mar 2026 06:16:18 +0000 ROA not after: Wed 03 Mar 2027 06:21:18 +0000 asID: 145369 IP address blocks: 240a:aa9f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fb:1b:2c:4c:c3:1b:13:59:6c:32:c6:a4:2a:43:a6:3e:1d:f5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:18 2026 GMT Not After : Mar 3 06:21:18 2027 GMT Subject: CN=FEE002A72161DDF1C36B07B5D9EDD691C56B556F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:68:1a:c1:09:9d:ef:b5:c5:e3:87:fd:43:4c: b8:f9:30:a2:96:5d:ab:fe:5a:aa:7a:de:f5:db:ab: 4d:e2:81:30:a5:83:8c:5f:fe:dc:42:7f:95:06:f7: e9:41:3b:f8:f1:fc:b9:24:cd:62:ec:c5:da:cd:5a: 6a:c1:db:10:1a:61:a4:ba:bd:32:ee:ab:72:0f:25: 54:6f:90:53:18:60:66:42:86:38:f3:05:80:5c:68: da:d5:0d:51:a0:75:ff:79:75:bc:c7:a8:a2:f3:03: 36:7e:c0:90:7b:f3:10:2e:7b:b0:3d:2f:f4:74:d4: bd:1d:73:ef:ce:31:c6:60:9b:26:66:6e:9a:2f:3f: 2a:36:46:9f:af:12:27:4a:09:f3:71:f8:50:fb:3e: 3e:bc:cf:6c:f4:00:4a:14:43:6a:cc:a6:a7:82:54: 3a:b0:bd:3f:00:df:e2:ed:03:9c:8f:98:40:8c:0a: eb:73:1d:b9:0a:84:c3:25:a8:43:8e:22:8c:7e:94: b7:89:cc:8e:bd:be:4f:2f:27:cd:72:4d:bc:6b:be: 08:d0:76:a7:0b:07:9e:53:ee:a5:c0:ff:9e:cb:42: 83:d1:9f:53:2d:a0:78:48:62:ec:5c:13:35:ee:3d: 96:d0:aa:d0:0b:9d:9f:c1:26:94:74:68:1b:2b:27: bf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E0:02:A7:21:61:DD:F1:C3:6B:07:B5:D9:ED:D6:91:C5:6B:55:6F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145369.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa9f::/32 Signature Algorithm: sha256WithRSAEncryption 79:27:82:7d:29:0a:04:85:65:cf:90:b6:db:33:ba:f4:1e:ac: 02:61:d9:0e:e4:e5:0e:f2:13:76:da:c6:1b:f4:ed:d3:20:e6: 8a:34:da:e8:86:b2:f7:d5:93:a9:7f:ab:51:e3:d0:54:47:ab: 60:1d:7c:27:e4:9a:a7:05:15:0e:ef:67:54:21:62:8f:fb:68: 26:7e:54:c6:d2:9a:d3:b6:06:54:ee:ab:9a:d7:3f:ea:01:ba: 3c:3a:94:eb:8e:2c:de:2a:e1:79:4e:43:d5:6e:4f:f9:6f:41: 68:c0:65:a7:d2:aa:2d:f1:74:ba:ea:0a:9a:3a:30:93:df:c4: 7c:43:0d:69:c1:30:e8:a4:ac:ba:77:e7:3c:84:e2:f0:5b:33: b9:41:70:71:ad:ab:a1:4d:a6:5a:81:0f:f8:6e:26:46:86:ca: 1f:b3:43:73:4b:37:db:27:f8:16:b4:f2:02:5a:bd:ac:f0:5b: ad:9f:fa:5d:8e:76:c7:a4:f9:4f:56:69:bb:59:c7:bb:e8:b3: 8d:f4:90:1c:2f:a1:5c:6c:5e:2c:b2:86:45:04:76:d5:d7:f7: dc:d3:fa:97:2e:64:6a:b9:c2:73:7d:41:a6:1d:ad:ab:9c:9a: 52:2d:f9:ef:c7:eb:a4:e3:9d:3d:94:57:7d:e5:fe:8c:87:c3: b8:c0:34:f3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPPsbLEzDGxNZbDLGpCpDpj4d9UkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYxOFoX DTI3MDMwMzA2MjExOFowMzExMC8GA1UEAxMoRkVFMDAyQTcyMTYxRERGMUMzNkIw N0I1RDlFREQ2OTFDNTZCNTU2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPdoGsEJne+1xeOH/UNMuPkwopZdq/5aqnre9durTeKBMKWDjF/+3EJ/lQb3 6UE7+PH8uSTNYuzF2s1aasHbEBphpLq9Mu6rcg8lVG+QUxhgZkKGOPMFgFxo2tUN UaB1/3l1vMeoovMDNn7AkHvzEC57sD0v9HTUvR1z784xxmCbJmZumi8/KjZGn68S J0oJ83H4UPs+PrzPbPQAShRDasymp4JUOrC9PwDf4u0DnI+YQIwK63MduQqEwyWo Q44ijH6Ut4nMjr2+Ty8nzXJNvGu+CNB2pwsHnlPupcD/nstCg9GfUy2geEhi7FwT Ne49ltCq0Audn8EmlHRoGysnv2sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT+4AKn IWHd8cNrB7XZ7daRxWtVbzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTM2OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qp8wDQYJKoZIhvcNAQELBQADggEBAHkngn0pCgSFZc+QttszuvQerAJh2Q7k5Q7y E3baxhv07dMg5oo02uiGsvfVk6l/q1Hj0FRHq2AdfCfkmqcFFQ7vZ1QhYo/7aCZ+ VMbSmtO2BlTuq5rXP+oBujw6lOuOLN4q4XlOQ9VuT/lvQWjAZafSqi3xdLrqCpo6 MJPfxHxDDWnBMOikrLp35zyE4vBbM7lBcHGtq6FNplqBD/huJkaGyh+zQ3NLN9sn +Ba08gJavazwW62f+l2Odsek+U9WabtZx7vos430kBwvoVxsXiyyhkUEdtXX99zT +pcuZGq5wnN9QaYdraucmlIt+e/H66TjnT2UV33l/oyHw7jANPM= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:05 2026 by rpki-client