$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145499.roa File: AS145499.roa (raw, json) Hash identifier: Bnoga18ziDJs4Jyvgjy4votrdFHQ7ae5wAC/q3vFfY0= Subject key identifier: 7B:35:C3:22:7A:B5:91:DE:D3:00:C4:18:33:3D:EB:C4:EA:6B:89:5D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 38A00E648E65E1A58A244CE533098328A196566E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145499.roa Signing time: Wed 04 Mar 2026 06:20:15 +0000 ROA not before: Wed 04 Mar 2026 06:15:15 +0000 ROA not after: Wed 03 Mar 2027 06:20:15 +0000 asID: 145499 IP address blocks: 240a:ab21::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a0:0e:64:8e:65:e1:a5:8a:24:4c:e5:33:09:83:28:a1:96:56:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:15 2026 GMT Not After : Mar 3 06:20:15 2027 GMT Subject: CN=7B35C3227AB591DED300C418333DEBC4EA6B895D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d9:87:0c:0f:48:d8:cc:ec:b2:45:1b:1f:dd: e8:e4:60:95:c2:b3:7a:ac:86:23:ed:56:03:bf:9e: 2c:a7:48:e3:d6:fb:6d:bb:2a:2e:f2:c7:b2:9a:f3: bd:b3:16:0a:5e:48:aa:55:a3:66:74:82:e0:7a:e7: eb:eb:32:1b:ba:6c:17:c7:54:81:d6:0b:d6:ba:0b: dc:09:b6:f0:c0:30:cc:29:8b:ac:98:01:08:95:3d: fe:04:d0:e8:19:cd:3b:0c:ba:33:d8:3b:26:1d:bc: 35:df:7f:0f:5d:2c:e0:b4:20:a6:de:ce:93:bc:ac: 3b:da:9f:4a:da:3e:d0:3f:1b:f9:ac:1f:f0:f6:34: 39:a3:d4:e4:d4:98:66:67:a7:ac:bf:7b:28:25:17: 4d:d3:9a:3a:93:cd:a6:37:30:ce:5e:c8:41:fb:e8: b4:6b:08:fd:66:5d:f0:6b:1a:24:2d:2c:70:66:86: 02:11:c3:1e:1a:85:b5:a5:8c:79:e2:6c:90:f0:40: 5d:83:ba:9e:e4:96:5d:11:c0:f7:08:45:10:e8:b6: 1f:83:77:98:0a:36:20:13:ae:98:a3:e6:30:21:7c: f4:7d:a2:68:9c:5c:23:eb:21:61:e2:62:b2:6e:3f: b0:6c:b3:6a:80:f4:4b:97:56:e3:33:71:17:fc:d1: 21:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:35:C3:22:7A:B5:91:DE:D3:00:C4:18:33:3D:EB:C4:EA:6B:89:5D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145499.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab21::/32 Signature Algorithm: sha256WithRSAEncryption 22:70:de:d1:ef:0c:79:64:1a:a6:d2:5d:eb:81:ef:24:30:ca: e7:1b:e7:02:ce:81:67:ae:ae:ea:8b:1d:ed:66:7d:96:fe:f2: cb:f8:f2:d6:cf:4e:2a:35:10:5f:f6:82:f1:45:b8:b6:7b:7b: 71:17:fc:14:62:a5:a9:88:1e:fc:88:9a:44:90:03:e9:b0:ee: 49:db:f6:ae:5f:6f:2d:f1:8a:71:98:df:51:77:7a:d6:92:67: 78:8f:cd:0d:99:f5:18:42:f1:de:c0:e9:89:8a:f7:56:6a:0a: 7b:5a:18:e8:00:6b:50:41:85:fd:59:50:c9:d1:4c:1b:94:84: 73:df:2a:74:3e:0b:f5:51:c4:57:d4:25:45:be:f4:ec:fc:94: 10:98:bb:83:06:2c:c2:65:36:28:87:8c:eb:00:f5:f4:df:ad: e5:15:fa:0d:06:b7:41:ed:78:d5:e7:3a:84:75:14:b7:09:6d: 80:3e:50:bb:cc:b1:dd:bc:ec:72:22:b8:d8:4a:d9:c3:f6:49: 86:64:c4:45:3b:f0:c8:b2:a3:e4:d0:c7:9a:f6:b3:d7:0f:ae: 3c:d8:eb:45:aa:6a:55:3b:93:81:c4:c7:61:07:7b:e4:54:7b: b1:99:aa:5b:f5:ce:41:46:50:46:2b:12:e7:d1:91:e8:81:4c: ec:a3:1f:fa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOKAOZI5l4aWKJEzlMwmDKKGWVm4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUxNVoX DTI3MDMwMzA2MjAxNVowMzExMC8GA1UEAxMoN0IzNUMzMjI3QUI1OTFERUQzMDBD NDE4MzMzREVCQzRFQTZCODk1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDZhwwPSNjM7LJFGx/d6ORglcKzeqyGI+1WA7+eLKdI49b7bbsqLvLHsprz vbMWCl5IqlWjZnSC4Hrn6+syG7psF8dUgdYL1roL3Am28MAwzCmLrJgBCJU9/gTQ 6BnNOwy6M9g7Jh28Nd9/D10s4LQgpt7Ok7ysO9qfSto+0D8b+awf8PY0OaPU5NSY ZmenrL97KCUXTdOaOpPNpjcwzl7IQfvotGsI/WZd8GsaJC0scGaGAhHDHhqFtaWM eeJskPBAXYO6nuSWXRHA9whFEOi2H4N3mAo2IBOumKPmMCF89H2iaJxcI+shYeJi sm4/sGyzaoD0S5dW4zNxF/zRIQ0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR7NcMi erWR3tMAxBgzPevE6muJXTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTQ5OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qyEwDQYJKoZIhvcNAQELBQADggEBACJw3tHvDHlkGqbSXeuB7yQwyucb5wLOgWeu ruqLHe1mfZb+8sv48tbPTio1EF/2gvFFuLZ7e3EX/BRipamIHvyImkSQA+mw7knb 9q5fby3xinGY31F3etaSZ3iPzQ2Z9RhC8d7A6YmK91ZqCntaGOgAa1BBhf1ZUMnR TBuUhHPfKnQ+C/VRxFfUJUW+9Oz8lBCYu4MGLMJlNiiHjOsA9fTfreUV+g0Gt0Ht eNXnOoR1FLcJbYA+ULvMsd287HIiuNhK2cP2SYZkxEU78Miyo+TQx5r2s9cPrjzY 60WqalU7k4HEx2EHe+RUe7GZqlv1zkFGUEYrEufRkeiBTOyjH/o= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:09 2026 by rpki-client