$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145575.roa File: AS145575.roa (raw, json) Hash identifier: 1tg9XJ2MezJ/TzEgEU8rMT/LkjWNeH3txQAfuusEblg= Subject key identifier: 7E:21:1A:56:64:6C:62:9E:99:F3:26:B4:0A:29:64:59:6C:A5:32:0B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 07773BE2FA299D8C8D974AAB41841E1F5002A000 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145575.roa Signing time: Wed 04 Mar 2026 06:30:41 +0000 ROA not before: Wed 04 Mar 2026 06:25:41 +0000 ROA not after: Wed 03 Mar 2027 06:30:41 +0000 asID: 145575 IP address blocks: 240a:ab6d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:77:3b:e2:fa:29:9d:8c:8d:97:4a:ab:41:84:1e:1f:50:02:a0:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:41 2026 GMT Not After : Mar 3 06:30:41 2027 GMT Subject: CN=7E211A56646C629E99F326B40A2964596CA5320B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:f5:c1:da:02:cc:16:9f:8e:9f:81:e1:1b: 6a:16:75:5f:13:1c:56:0e:3d:dc:d8:71:d3:13:73: 4b:5f:54:1e:c1:3f:a4:b7:f7:e4:75:43:e2:e7:7f: c1:31:14:23:7d:30:18:d3:32:a7:d5:5f:1b:ca:7f: 02:58:62:6a:4a:cc:49:45:b5:21:e1:0b:40:c3:dd: 22:5a:2e:c9:60:5f:80:ae:42:f7:9b:06:7b:ba:b0: bb:ac:9b:31:2b:0e:67:3e:2a:1c:9b:7a:f4:17:90: 45:e6:43:a6:58:f5:ef:4a:9e:2c:c9:3b:27:ad:94: 26:58:79:b9:84:8a:02:91:4f:80:4d:ce:9a:0d:5d: 88:0a:6c:10:61:59:bc:3b:53:78:8b:ea:83:9f:24: aa:c0:bf:f6:ca:9a:60:6c:dc:f0:b7:35:ed:1a:15: 08:25:41:d7:b6:ff:ef:f2:23:89:f8:4f:79:66:f8: be:ea:6a:77:3f:2e:67:97:c3:f4:c5:a8:6d:42:44: 26:a0:0c:7b:d3:af:dd:58:ae:f4:53:f0:65:d6:fc: 06:be:9b:93:40:8d:7b:96:d9:9e:d6:b0:6e:a6:c2: ec:e5:fd:34:4a:a5:d5:3c:b5:ef:46:83:9a:27:2a: e9:65:6c:10:8a:cd:64:58:b1:9f:fb:c3:4a:58:43: 75:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:21:1A:56:64:6C:62:9E:99:F3:26:B4:0A:29:64:59:6C:A5:32:0B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145575.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab6d::/32 Signature Algorithm: sha256WithRSAEncryption c8:06:db:a8:82:16:31:1f:ad:8e:0e:57:78:f1:d7:dc:7b:78: 8a:a3:ef:50:a3:75:6c:00:f6:b2:83:ae:66:1d:a7:84:8c:8d: 68:64:fb:0b:53:f5:39:89:21:00:83:cb:cf:31:6f:08:0a:e8: 27:e6:d6:e9:d3:f1:68:3c:1c:6e:7a:c2:74:9d:44:e5:19:54: f2:98:d3:fa:ff:83:b8:38:f1:a6:0b:ef:b9:86:84:e2:99:8a: 65:c0:d9:4a:d6:ca:54:4a:77:b8:f0:27:2b:bd:fe:0d:4c:9b: e0:42:3d:47:c6:70:a1:da:71:a5:6d:b2:6d:1d:47:cd:1b:0f: 18:0d:6a:fa:25:c6:c0:26:43:6b:d2:77:cd:d6:99:6f:bb:b3: f4:cc:a2:85:22:e1:9b:05:db:29:12:3b:19:3b:3b:a3:3c:98: 4e:04:47:b5:22:6f:60:23:5e:20:00:ad:4f:fb:65:31:2b:d1: 6c:9e:7e:c1:cf:53:6d:b8:2c:dd:02:68:74:95:15:0d:ac:3f: 12:cb:f0:a6:6b:72:28:f5:37:48:a2:61:aa:a0:4c:a2:ec:07: 31:bd:ee:5e:41:9d:b2:e1:11:a8:c1:c6:9e:d4:1d:f7:d4:0d: a1:0d:41:0a:19:a4:a3:bd:55:fe:eb:98:a2:dd:f9:3d:ff:b4: 09:13:e5:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUB3c74vopnYyNl0qrQYQeH1ACoAAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU0MVoX DTI3MDMwMzA2MzA0MVowMzExMC8GA1UEAxMoN0UyMTFBNTY2NDZDNjI5RTk5RjMy NkI0MEEyOTY0NTk2Q0E1MzIwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZp9cHaAswWn46fgeEbahZ1XxMcVg493Nhx0xNzS19UHsE/pLf35HVD4ud/ wTEUI30wGNMyp9VfG8p/AlhiakrMSUW1IeELQMPdIlouyWBfgK5C95sGe7qwu6yb MSsOZz4qHJt69BeQReZDplj170qeLMk7J62UJlh5uYSKApFPgE3Omg1diApsEGFZ vDtTeIvqg58kqsC/9sqaYGzc8Lc17RoVCCVB17b/7/IjifhPeWb4vupqdz8uZ5fD 9MWobUJEJqAMe9Ov3Viu9FPwZdb8Br6bk0CNe5bZntawbqbC7OX9NEql1Ty170aD micq6WVsEIrNZFixn/vDSlhDdTcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR+IRpW ZGxinpnzJrQKKWRZbKUyCzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTU3NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q20wDQYJKoZIhvcNAQELBQADggEBAMgG26iCFjEfrY4OV3jx19x7eIqj71CjdWwA 9rKDrmYdp4SMjWhk+wtT9TmJIQCDy88xbwgK6Cfm1unT8Wg8HG56wnSdROUZVPKY 0/r/g7g48aYL77mGhOKZimXA2UrWylRKd7jwJyu9/g1Mm+BCPUfGcKHacaVtsm0d R80bDxgNavolxsAmQ2vSd83WmW+7s/TMooUi4ZsF2ykSOxk7O6M8mE4ER7Uib2Aj XiAArU/7ZTEr0WyefsHPU224LN0CaHSVFQ2sPxLL8KZrcij1N0iiYaqgTKLsBzG9 7l5BnbLhEajBxp7UHffUDaENQQoZpKO9Vf7rmKLd+T3/tAkT5Ug= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:04 2026 by rpki-client