$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145697.roa File: AS145697.roa (raw, json) Hash identifier: h7CeSKkMd7AEHCyR3CyEgl19M+xyErn9M9fhkr35Em8= Subject key identifier: EB:35:23:E6:85:6F:27:D5:4A:A3:15:05:7A:DC:56:80:49:57:46:39 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 577E4E4C2D666AE4C3CE45EBBA5003CA406904FD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145697.roa Signing time: Wed 04 Mar 2026 06:31:04 +0000 ROA not before: Wed 04 Mar 2026 06:26:04 +0000 ROA not after: Wed 03 Mar 2027 06:31:04 +0000 asID: 145697 IP address blocks: 240a:abe7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:7e:4e:4c:2d:66:6a:e4:c3:ce:45:eb:ba:50:03:ca:40:69:04:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:26:04 2026 GMT Not After : Mar 3 06:31:04 2027 GMT Subject: CN=EB3523E6856F27D54AA315057ADC568049574639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ae:04:bf:12:05:a9:47:29:74:c9:05:34:71: 14:9b:5d:63:8c:56:ac:54:85:b1:e4:ba:b1:c0:5f: af:31:72:d6:fa:db:f0:90:74:1b:de:90:19:b6:5d: 39:ed:75:dc:7a:df:f2:61:03:5d:13:36:57:1c:12: 6e:e9:e5:10:7b:ea:86:87:ae:64:26:e4:ac:b3:bd: 77:9d:fd:6f:c9:6a:be:00:a4:3d:6f:d2:bb:a1:8d: 76:1d:9b:17:07:ea:3b:b3:ac:e9:df:be:89:f7:3b: 3e:25:58:f1:d3:a2:78:bc:ce:7c:72:a9:cf:00:8c: d5:6b:7f:be:94:86:5f:5c:8c:d4:ce:45:dc:c9:2c: f7:0d:1d:d8:b7:c5:41:36:21:05:96:6a:ae:11:7d: f7:1b:8a:30:c2:09:38:46:b4:e9:af:38:af:df:b2: 65:eb:2f:52:5b:76:27:e5:f2:33:75:a7:07:8a:90: 12:48:ff:26:0d:63:a2:22:f2:2d:4f:f2:b2:48:1a: dc:65:68:8b:9e:6e:3c:d6:2a:d6:12:21:47:4d:d5: 9f:d3:98:fd:bc:c6:3f:4a:92:a4:01:79:c9:3e:79: 92:b6:e3:e1:03:fc:c3:1f:80:6a:c7:b7:8b:27:2f: 36:9d:bb:60:4a:05:01:87:3a:4f:54:e0:bf:80:aa: a1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:35:23:E6:85:6F:27:D5:4A:A3:15:05:7A:DC:56:80:49:57:46:39 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145697.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:abe7::/32 Signature Algorithm: sha256WithRSAEncryption 03:d2:5f:28:9b:2c:ea:d8:9b:f2:69:c1:a6:46:43:18:cd:8f: 25:1c:21:3d:c8:db:59:f0:48:bf:38:68:a0:6d:4f:51:e8:98: 44:9e:58:17:99:b7:27:21:98:db:a7:61:e7:d0:c5:45:f5:20: c8:bd:78:a2:4f:12:85:86:5c:7a:70:5e:ea:e7:04:08:a8:cf: a3:48:eb:bf:5b:fe:48:2e:00:29:9a:95:c0:f8:7f:b8:2c:ad: 06:03:26:d3:52:66:64:ab:be:c3:ce:4c:43:3b:e1:84:d1:5a: b7:ec:4d:5e:55:6d:12:68:4b:4b:f5:fb:0a:87:76:0f:65:cd: e5:09:81:ef:19:6a:2f:6a:4f:f0:e0:bc:cb:6a:56:6a:46:64: 8e:85:30:33:1b:19:5c:29:b8:4c:4e:85:5c:da:9d:64:77:26: 0b:ce:03:58:b4:6f:8c:0e:f1:61:f4:9a:79:75:f6:0d:49:8c: dd:4a:54:60:b7:ee:1c:ca:fb:94:f6:db:28:b7:56:dd:b8:13: 58:85:aa:46:74:de:98:6b:24:7b:7e:43:10:e4:37:55:43:2d: 4a:07:62:2f:ea:7c:ba:85:07:b0:18:21:f6:17:cb:73:8f:74: 91:28:5b:11:f8:dc:52:9b:b8:04:11:c9:84:49:c5:fa:4f:ba: 16:3b:18:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUV35OTC1mauTDzkXrulADykBpBP0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjYwNFoX DTI3MDMwMzA2MzEwNFowMzExMC8GA1UEAxMoRUIzNTIzRTY4NTZGMjdENTRBQTMx NTA1N0FEQzU2ODA0OTU3NDYzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJGuBL8SBalHKXTJBTRxFJtdY4xWrFSFseS6scBfrzFy1vrb8JB0G96QGbZd Oe113Hrf8mEDXRM2VxwSbunlEHvqhoeuZCbkrLO9d539b8lqvgCkPW/Su6GNdh2b FwfqO7Os6d++ifc7PiVY8dOieLzOfHKpzwCM1Wt/vpSGX1yM1M5F3Mks9w0d2LfF QTYhBZZqrhF99xuKMMIJOEa06a84r9+yZesvUlt2J+XyM3WnB4qQEkj/Jg1joiLy LU/yskga3GVoi55uPNYq1hIhR03Vn9OY/bzGP0qSpAF5yT55krbj4QP8wx+Aase3 iycvNp27YEoFAYc6T1Tgv4CqocMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTrNSPm hW8n1UqjFQV63FaASVdGOTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTY5Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q+cwDQYJKoZIhvcNAQELBQADggEBAAPSXyibLOrYm/JpwaZGQxjNjyUcIT3I21nw SL84aKBtT1HomESeWBeZtychmNunYefQxUX1IMi9eKJPEoWGXHpwXurnBAioz6NI 679b/kguACmalcD4f7gsrQYDJtNSZmSrvsPOTEM74YTRWrfsTV5VbRJoS0v1+wqH dg9lzeUJge8Zai9qT/DgvMtqVmpGZI6FMDMbGVwpuExOhVzanWR3JgvOA1i0b4wO 8WH0mnl19g1JjN1KVGC37hzK+5T22yi3Vt24E1iFqkZ03phrJHt+QxDkN1VDLUoH Yi/qfLqFB7AYIfYXy3OPdJEoWxH43FKbuAQRyYRJxfpPuhY7GFY= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:12 2026 by rpki-client