$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145441.roa File: AS145441.roa (raw, json) Hash identifier: 84XpstZjAE1ZA6hCPvvp+2bVhyWnKHZ2Mbni7IgzmZQ= Subject key identifier: 99:F6:27:A1:45:15:97:0E:B4:C4:24:91:9F:6B:70:66:28:56:04:B7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6B98CEDBB47651EA5791F9207D0643F22F68BA27 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145441.roa Signing time: Wed 04 Mar 2026 06:21:11 +0000 ROA not before: Wed 04 Mar 2026 06:16:11 +0000 ROA not after: Wed 03 Mar 2027 06:21:11 +0000 asID: 145441 IP address blocks: 240a:aae7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:98:ce:db:b4:76:51:ea:57:91:f9:20:7d:06:43:f2:2f:68:ba:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:11 2026 GMT Not After : Mar 3 06:21:11 2027 GMT Subject: CN=99F627A14515970EB4C424919F6B7066285604B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:aa:e7:88:3b:79:15:e2:32:8a:f0:50:d8: aa:05:14:bd:1a:b6:06:0b:41:5d:aa:35:1f:04:5f: a9:6a:2f:ad:b6:76:2c:f9:23:31:5e:e2:ee:bc:ea: 6b:08:04:77:ac:5e:1c:12:f8:77:08:e7:f7:dd:39: 63:8c:81:36:c9:f0:e7:8a:3c:c7:65:2a:c4:d0:4d: a5:b9:97:0c:c6:c4:6b:5c:ea:7a:07:3e:ee:38:2a: a0:25:34:e6:6b:ec:49:05:b5:5b:ae:49:fb:0d:10: 16:30:2e:1e:01:ce:05:91:a6:97:6a:19:41:43:d3: 07:ad:f8:fb:08:ff:bb:bd:c0:59:8d:00:36:f9:99: fe:5c:19:3e:6d:3d:c2:35:5b:c8:de:d5:7c:a7:79: 11:fe:90:26:a4:db:3f:4a:42:99:08:f8:68:3d:c0: cd:21:2f:0d:a0:4b:6b:13:cd:f7:b0:48:38:14:f0: 1e:a9:21:b9:ca:0b:09:df:a1:f8:6e:65:62:5a:f9: 51:9e:11:a6:29:d0:91:44:53:a9:35:bd:95:f6:e5: 06:bf:16:1d:e7:ab:93:d4:55:4b:af:a7:4a:d4:d6: ae:05:47:f9:af:56:57:fe:d1:e0:51:e8:50:ee:27: b8:5d:20:43:88:74:49:a7:db:89:50:46:16:97:2e: 03:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F6:27:A1:45:15:97:0E:B4:C4:24:91:9F:6B:70:66:28:56:04:B7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145441.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aae7::/32 Signature Algorithm: sha256WithRSAEncryption 83:83:64:62:8f:04:c7:1e:50:26:43:89:45:cf:69:5e:57:da: 66:27:01:82:62:00:fe:dd:01:d0:91:30:db:72:18:ac:f2:be: 60:be:39:9b:65:d5:8b:1a:1c:61:53:8b:69:8a:23:fa:8e:1f: b6:c7:58:d6:aa:44:58:f9:c7:26:c1:f0:2b:57:fb:86:ab:08: 61:32:22:43:f4:c4:90:d8:a6:2c:53:87:8b:02:9e:32:e3:0b: 2a:61:74:c2:d0:e4:10:f3:57:f4:0c:49:4f:4b:ef:16:6d:6b: 77:0c:53:d0:72:83:6f:76:29:31:d7:a2:59:e4:a2:2e:f0:a4: 91:e9:41:b3:8d:89:d0:a3:f9:15:e2:72:af:be:a5:7e:ec:4f: 98:98:24:87:03:08:7b:5a:6c:07:c4:34:8f:b7:0c:a4:6f:7d: a7:36:ae:38:b3:47:9b:6b:fb:cf:3f:cd:79:07:5e:d6:0a:fa: 58:8c:fe:2d:70:46:bc:32:de:77:aa:0c:4c:a2:a9:01:71:f6: 0d:61:0c:21:20:80:c4:54:37:28:0a:c3:1a:ab:c4:f4:c6:b5: 8a:2c:28:14:e2:d1:f2:2f:2a:26:87:44:29:49:ea:0e:ce:30: 1c:94:a4:b5:b1:f4:85:a8:ef:32:c3:be:49:74:c8:ca:7f:65: d3:2e:0b:d8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUa5jO27R2UepXkfkgfQZD8i9ouicwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYxMVoX DTI3MDMwMzA2MjExMVowMzExMC8GA1UEAxMoOTlGNjI3QTE0NTE1OTcwRUI0QzQy NDkxOUY2QjcwNjYyODU2MDRCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/IqueIO3kV4jKK8FDYqgUUvRq2BgtBXao1HwRfqWovrbZ2LPkjMV7i7rzq awgEd6xeHBL4dwjn9905Y4yBNsnw54o8x2UqxNBNpbmXDMbEa1zqegc+7jgqoCU0 5mvsSQW1W65J+w0QFjAuHgHOBZGml2oZQUPTB634+wj/u73AWY0ANvmZ/lwZPm09 wjVbyN7VfKd5Ef6QJqTbP0pCmQj4aD3AzSEvDaBLaxPN97BIOBTwHqkhucoLCd+h +G5lYlr5UZ4RpinQkURTqTW9lfblBr8WHeerk9RVS6+nStTWrgVH+a9WV/7R4FHo UO4nuF0gQ4h0SafbiVBGFpcuAzECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSZ9ieh RRWXDrTEJJGfa3BmKFYEtzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ0MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qucwDQYJKoZIhvcNAQELBQADggEBAIODZGKPBMceUCZDiUXPaV5X2mYnAYJiAP7d AdCRMNtyGKzyvmC+OZtl1YsaHGFTi2mKI/qOH7bHWNaqRFj5xybB8CtX+4arCGEy IkP0xJDYpixTh4sCnjLjCyphdMLQ5BDzV/QMSU9L7xZta3cMU9Byg292KTHXolnk oi7wpJHpQbONidCj+RXicq++pX7sT5iYJIcDCHtabAfENI+3DKRvfac2rjizR5tr +88/zXkHXtYK+liM/i1wRrwy3neqDEyiqQFx9g1hDCEggMRUNygKwxqrxPTGtYos KBTi0fIvKiaHRClJ6g7OMByUpLWx9IWo7zLDvkl0yMp/ZdMuC9g= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:44 2026 by rpki-client