$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145449.roa File: AS145449.roa (raw, json) Hash identifier: H91vgtUZfuNWR+/7xJudrrIm110toqkKTpheUGBftuA= Subject key identifier: 9F:20:31:A7:EC:35:C6:4B:AB:8D:98:46:1A:9C:35:28:3A:55:91:13 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0CB30DFE25B1BF64F2DF60E93E55A1B93E57ED5F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145449.roa Signing time: Wed 04 Mar 2026 06:20:33 +0000 ROA not before: Wed 04 Mar 2026 06:15:33 +0000 ROA not after: Wed 03 Mar 2027 06:20:33 +0000 asID: 145449 IP address blocks: 240a:aaef::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b3:0d:fe:25:b1:bf:64:f2:df:60:e9:3e:55:a1:b9:3e:57:ed:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:33 2026 GMT Not After : Mar 3 06:20:33 2027 GMT Subject: CN=9F2031A7EC35C64BAB8D98461A9C35283A559113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f5:ec:68:ea:34:31:7f:25:b3:bf:41:05:92: 1e:8e:ad:7b:13:a9:bc:bd:93:0c:1c:25:b9:20:c5: 5b:d4:9e:65:06:3d:f6:69:3b:91:cb:44:d2:b3:eb: 49:0f:2d:fc:3e:42:d7:e4:0f:1e:56:6e:f3:33:73: 89:0e:50:06:a8:ab:5a:24:c3:66:8d:08:5e:3d:63: 33:0d:d1:23:d4:c7:b4:ef:86:ad:cb:58:e3:7c:7f: c1:f9:1a:45:31:66:46:37:6b:85:db:e9:bb:3e:d1: 60:d7:7c:f7:52:c6:65:da:dd:14:a6:61:76:32:46: f9:73:cd:d7:fd:6c:6c:ea:e1:5f:98:dc:fd:1e:27: b6:f3:48:35:17:47:8a:c8:0e:ac:73:70:c0:cc:af: c4:05:bd:c4:15:54:23:ab:e0:e6:fc:63:05:08:61: 11:dc:7d:ad:30:5b:7f:15:17:53:90:a5:a5:3e:5e: d7:91:cd:7b:5d:d7:ed:12:6e:86:d7:6f:10:b8:40: 50:25:ad:72:16:f3:4e:e7:40:e7:e9:10:e9:01:37: 51:0a:38:02:e1:4d:da:1e:c6:e8:49:d5:1e:b7:35: a0:b7:01:8d:7c:93:53:3d:b2:60:bc:cc:6c:81:df: b7:97:34:f5:14:01:88:3e:89:b3:30:dc:c7:b1:1a: 3b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:20:31:A7:EC:35:C6:4B:AB:8D:98:46:1A:9C:35:28:3A:55:91:13 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145449.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aaef::/32 Signature Algorithm: sha256WithRSAEncryption ce:ff:d7:2e:e6:39:36:4b:41:3b:12:2c:81:bd:e9:f7:fc:a9: 2b:08:8d:fb:d4:10:33:67:98:a4:32:13:ce:93:dd:cc:43:bc: 16:b2:5b:23:60:04:34:b9:a6:9b:41:c4:43:fa:89:d4:d5:e9: 05:f2:a9:31:3e:07:97:14:6b:ab:43:1f:4b:4b:2a:a2:0f:00: 0f:20:be:93:6a:2c:de:90:df:39:9a:55:50:f7:e7:e8:54:61: 74:e3:35:59:1b:e9:4c:d5:14:96:23:7a:31:fb:3c:b1:13:55: b3:66:f3:99:a7:87:e9:56:13:db:fa:07:e6:82:6c:ba:c6:6a: 49:ca:c7:46:86:e4:c6:bc:67:45:ad:79:7e:8e:b5:fd:9f:5c: 29:6f:a8:d4:e5:08:d5:b9:23:41:79:0e:7f:a5:95:da:3e:32: ec:5b:58:99:f6:6a:a7:57:a8:74:fa:8e:e2:6a:f6:a6:5a:3b: 14:65:dd:73:63:55:b7:d0:8b:d9:7e:4c:ec:71:fb:44:d9:a6: 31:86:db:da:93:9c:53:16:81:1a:f2:df:67:7c:4a:41:20:38: 9a:e8:f9:a1:35:2a:7e:96:fa:6a:8c:30:b7:65:07:85:68:0a: fd:7a:56:17:62:44:c6:bd:be:0e:03:4f:6b:4d:98:5b:5d:3a: 27:2d:c6:c7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDLMN/iWxv2Ty32DpPlWhuT5X7V8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUzM1oX DTI3MDMwMzA2MjAzM1owMzExMC8GA1UEAxMoOUYyMDMxQTdFQzM1QzY0QkFCOEQ5 ODQ2MUE5QzM1MjgzQTU1OTExMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALL17GjqNDF/JbO/QQWSHo6texOpvL2TDBwluSDFW9SeZQY99mk7kctE0rPr SQ8t/D5C1+QPHlZu8zNziQ5QBqirWiTDZo0IXj1jMw3RI9THtO+GrctY43x/wfka RTFmRjdrhdvpuz7RYNd891LGZdrdFKZhdjJG+XPN1/1sbOrhX5jc/R4ntvNINRdH isgOrHNwwMyvxAW9xBVUI6vg5vxjBQhhEdx9rTBbfxUXU5ClpT5e15HNe13X7RJu htdvELhAUCWtchbzTudA5+kQ6QE3UQo4AuFN2h7G6EnVHrc1oLcBjXyTUz2yYLzM bIHft5c09RQBiD6JszDcx7EaO6ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSfIDGn 7DXGS6uNmEYanDUoOlWREzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ0OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qu8wDQYJKoZIhvcNAQELBQADggEBAM7/1y7mOTZLQTsSLIG96ff8qSsIjfvUEDNn mKQyE86T3cxDvBayWyNgBDS5pptBxEP6idTV6QXyqTE+B5cUa6tDH0tLKqIPAA8g vpNqLN6Q3zmaVVD35+hUYXTjNVkb6UzVFJYjejH7PLETVbNm85mnh+lWE9v6B+aC bLrGaknKx0aG5Ma8Z0WteX6Otf2fXClvqNTlCNW5I0F5Dn+lldo+MuxbWJn2aqdX qHT6juJq9qZaOxRl3XNjVbfQi9l+TOxx+0TZpjGG29qTnFMWgRry32d8SkEgOJro +aE1Kn6W+mqMMLdlB4VoCv16VhdiRMa9vg4DT2tNmFtdOictxsc= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:08 2026 by rpki-client