$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145496.roa File: AS145496.roa (raw, json) Hash identifier: c/dQ8tLK/vYKpNEmzZhn+ZXzNmCWlwd6829kXdrCDZo= Subject key identifier: B3:83:93:21:41:D6:3F:F2:A4:8C:4C:A9:16:57:69:50:86:5C:3B:C0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 356D7BAED982E2CC381D910ADDDAA9B881BEE0EA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145496.roa Signing time: Wed 04 Mar 2026 06:20:49 +0000 ROA not before: Wed 04 Mar 2026 06:15:49 +0000 ROA not after: Wed 03 Mar 2027 06:20:49 +0000 asID: 145496 IP address blocks: 240a:ab1e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:6d:7b:ae:d9:82:e2:cc:38:1d:91:0a:dd:da:a9:b8:81:be:e0:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:49 2026 GMT Not After : Mar 3 06:20:49 2027 GMT Subject: CN=B383932141D63FF2A48C4CA916576950865C3BC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:41:4b:e6:f7:87:83:bd:bb:8e:41:bf:49:df: 35:33:b8:97:fe:02:4b:f8:a1:2d:f1:fd:de:1a:28: c8:f3:0f:2d:59:9a:07:cd:9e:c3:b2:6b:ea:08:4a: fa:d2:27:b5:5e:5e:3a:c9:58:94:36:aa:72:b8:3e: 36:6d:54:d6:63:b4:1a:dd:00:f0:a5:4e:a8:a5:84: ae:91:dc:b4:9d:2c:3a:cc:ba:7e:7d:9f:8d:4e:78: 4e:49:e0:fc:16:a3:4c:b7:5a:17:fb:6d:9f:c2:b8: 9e:ac:a3:ba:ad:0d:ac:00:b2:50:58:1c:62:6c:58: df:47:dd:fd:73:7f:6c:d5:dc:9f:7c:3b:91:d0:88: 3b:97:c6:e3:15:a6:6e:e3:d4:5b:99:d2:92:36:3f: dc:2c:f3:3f:a8:0b:28:8b:71:55:c6:c9:d9:39:be: 73:88:0d:f0:34:41:fc:ae:e8:37:72:3e:6e:66:7d: e4:9e:93:53:10:51:9c:d7:32:ad:39:d9:20:9d:12: b9:7a:08:b0:f3:c3:59:c4:d8:71:fa:94:5d:e0:46: 67:6a:9a:a6:3e:2a:e0:ba:f0:ee:2d:64:f4:3b:25: 71:bd:b1:fb:b3:16:31:7a:27:9f:ac:d5:7b:20:1c: b2:85:ea:84:a7:19:5b:fb:dd:d0:76:cd:23:cc:7b: a7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:83:93:21:41:D6:3F:F2:A4:8C:4C:A9:16:57:69:50:86:5C:3B:C0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145496.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab1e::/32 Signature Algorithm: sha256WithRSAEncryption d8:09:63:55:76:de:90:03:7a:be:e1:2c:70:61:04:48:2b:84: eb:8f:ac:86:92:91:2e:c5:ec:e1:f9:c5:41:f9:39:21:ee:1f: 22:b2:41:af:85:c9:97:1c:61:ec:e3:93:15:eb:46:2b:8d:99: 20:13:ba:53:8a:d6:55:e5:1b:93:93:3f:9e:ce:45:ab:5e:bf: b6:6f:ee:f1:03:24:e9:cb:28:b8:b4:3b:68:a0:25:93:24:c4: 93:80:24:18:77:9d:ed:d3:71:85:b3:2a:3d:e6:cb:0d:5a:43: 15:e1:7f:d4:29:8c:cb:c7:c1:6c:6a:ed:43:05:7b:df:0a:5b: 2c:22:c5:85:ae:80:27:d1:0b:53:ad:be:dd:9d:ab:e9:72:68: 86:0c:68:2f:78:3b:63:ee:7a:9d:d8:40:54:c1:45:14:2e:f8: 58:ad:52:b7:c6:63:72:97:8b:66:34:10:50:e0:6e:96:32:62: f9:ae:42:e5:5e:85:cc:2f:b1:46:13:59:55:02:9c:20:88:9a: 88:5e:2d:d1:cc:bc:e0:3c:fd:ca:0d:ff:b0:07:15:5d:d6:c9: 71:d3:be:e8:5b:7f:0e:f1:1f:0f:d0:c6:99:8f:e9:6f:1c:d0: 5b:71:ad:15:fc:95:a6:68:23:88:68:61:89:52:1d:67:4b:39: 19:bc:f2:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNW17rtmC4sw4HZEK3dqpuIG+4OowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0OVoX DTI3MDMwMzA2MjA0OVowMzExMC8GA1UEAxMoQjM4MzkzMjE0MUQ2M0ZGMkE0OEM0 Q0E5MTY1NzY5NTA4NjVDM0JDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpBS+b3h4O9u45Bv0nfNTO4l/4CS/ihLfH93hooyPMPLVmaB82ew7Jr6ghK +tIntV5eOslYlDaqcrg+Nm1U1mO0Gt0A8KVOqKWErpHctJ0sOsy6fn2fjU54Tkng /BajTLdaF/ttn8K4nqyjuq0NrACyUFgcYmxY30fd/XN/bNXcn3w7kdCIO5fG4xWm buPUW5nSkjY/3CzzP6gLKItxVcbJ2Tm+c4gN8DRB/K7oN3I+bmZ95J6TUxBRnNcy rTnZIJ0SuXoIsPPDWcTYcfqUXeBGZ2qapj4q4Lrw7i1k9Dslcb2x+7MWMXonn6zV eyAcsoXqhKcZW/vd0HbNI8x7p6sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSzg5Mh QdY/8qSMTKkWV2lQhlw7wDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qx4wDQYJKoZIhvcNAQELBQADggEBANgJY1V23pADer7hLHBhBEgrhOuPrIaSkS7F 7OH5xUH5OSHuHyKyQa+FyZccYezjkxXrRiuNmSATulOK1lXlG5OTP57ORatev7Zv 7vEDJOnLKLi0O2igJZMkxJOAJBh3ne3TcYWzKj3myw1aQxXhf9QpjMvHwWxq7UMF e98KWywixYWugCfRC1Otvt2dq+lyaIYMaC94O2Puep3YQFTBRRQu+FitUrfGY3KX i2Y0EFDgbpYyYvmuQuVehcwvsUYTWVUCnCCImoheLdHMvOA8/coN/7AHFV3WyXHT vuhbfw7xHw/QxpmP6W8c0FtxrRX8laZoI4hoYYlSHWdLORm88oI= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:02 2026 by rpki-client