$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145172.roa File: AS145172.roa (raw, json) Hash identifier: UlMFoUr6sP7JJcCri+Jcl4zhXh/k6Yi0tEgFt0mayFc= Subject key identifier: 19:A9:02:23:07:C3:0A:9F:18:CB:7F:92:D2:FC:09:44:9E:C1:F5:27 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 13C6566F794F57CE72615FFCA00C39C3E96A6EB4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145172.roa Signing time: Wed 04 Mar 2026 06:20:25 +0000 ROA not before: Wed 04 Mar 2026 06:15:25 +0000 ROA not after: Wed 03 Mar 2027 06:20:25 +0000 asID: 145172 IP address blocks: 240a:a9da::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c6:56:6f:79:4f:57:ce:72:61:5f:fc:a0:0c:39:c3:e9:6a:6e:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:25 2026 GMT Not After : Mar 3 06:20:25 2027 GMT Subject: CN=19A9022307C30A9F18CB7F92D2FC09449EC1F527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:58:6b:ad:46:98:2a:30:f1:80:e6:62:32: 01:0b:6c:88:fb:1c:46:72:7a:ec:90:4c:3a:35:79: 3a:3c:8d:94:49:85:d3:7e:ac:a8:c3:99:5c:8d:f0: ab:ba:87:6e:aa:35:5f:6c:ea:5f:3c:16:c3:35:eb: 22:6f:91:86:50:40:e9:ae:5d:a0:1e:e6:7b:3a:e4: 94:bd:39:e0:8c:85:98:78:78:4c:70:0c:0e:f0:76: d7:08:d9:5c:c4:0d:f0:07:80:f2:c0:d9:1d:36:bb: 31:65:87:21:61:2c:82:2d:67:ec:e4:30:86:3c:8a: e2:3a:1e:07:35:a0:a5:bc:bb:88:6b:b8:6b:1d:1c: ee:09:c6:f4:1f:5d:9d:1a:bb:33:56:94:1d:39:f1: 66:10:b7:a5:a9:6c:6f:de:d4:54:f9:b0:c0:1e:19: 6b:d9:47:34:e5:d2:dd:54:44:b8:c9:df:47:94:08: 64:1e:f4:20:3a:3c:0b:b9:32:9c:e1:17:c0:b0:01: 87:a2:d1:44:c3:4e:24:33:ab:6a:aa:4a:e5:ed:ff: 42:8c:cc:a4:8f:55:57:c5:6e:de:9b:e2:50:71:a1: 07:ca:ac:09:67:76:ee:03:77:6f:48:2d:cf:47:05: e1:e5:61:07:5f:34:f7:3b:02:bc:dd:88:2c:44:43: 5c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A9:02:23:07:C3:0A:9F:18:CB:7F:92:D2:FC:09:44:9E:C1:F5:27 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145172.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9da::/32 Signature Algorithm: sha256WithRSAEncryption 5e:95:f6:46:79:8b:58:b0:c0:d6:d9:c1:62:a7:7a:40:59:51: 52:f8:bb:28:44:dd:a9:e6:f6:c1:19:1e:1c:57:89:37:12:10: bc:4d:d0:0a:e0:a3:50:70:8f:50:24:77:a7:58:b3:46:05:14: 0f:73:61:e4:1c:9d:e6:dd:13:7e:6a:c5:ff:35:ee:80:ca:f0: d8:d3:65:c5:03:31:7a:7f:f4:53:88:01:84:cd:30:0f:c9:08: 59:2e:38:e3:7c:8f:31:6a:d5:f5:59:fd:20:49:e7:5f:71:14: 2f:5d:5c:23:fa:b0:6d:a0:b5:d5:49:7e:41:39:24:70:54:11: 83:8b:59:3f:ff:04:c4:a5:3a:13:c6:57:60:0f:25:f8:c3:da: ae:04:11:28:ee:ae:65:88:ec:e1:0f:5b:9a:b4:50:88:ce:a1: d9:51:73:ca:dc:ec:21:48:0a:15:27:29:0e:e8:b6:53:48:1a: ee:f9:af:6f:de:1f:7b:d1:ff:0d:30:d6:e5:07:fc:c8:38:82: cf:da:0c:59:8c:ba:c9:43:57:0c:b9:7d:d9:87:75:9b:28:55: 53:bb:df:c2:f3:ef:b2:ce:76:9f:b2:3b:55:ca:73:fc:3d:4c: e2:65:fc:2a:36:d6:55:04:62:c3:37:c9:3a:1c:ba:45:a4:a2: ba:cc:26:7c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUE8ZWb3lPV85yYV/8oAw5w+lqbrQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUyNVoX DTI3MDMwMzA2MjAyNVowMzExMC8GA1UEAxMoMTlBOTAyMjMwN0MzMEE5RjE4Q0I3 RjkyRDJGQzA5NDQ5RUMxRjUyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSwWGutRpgqMPGA5mIyAQtsiPscRnJ67JBMOjV5OjyNlEmF036sqMOZXI3w q7qHbqo1X2zqXzwWwzXrIm+RhlBA6a5doB7mezrklL054IyFmHh4THAMDvB21wjZ XMQN8AeA8sDZHTa7MWWHIWEsgi1n7OQwhjyK4joeBzWgpby7iGu4ax0c7gnG9B9d nRq7M1aUHTnxZhC3palsb97UVPmwwB4Za9lHNOXS3VREuMnfR5QIZB70IDo8C7ky nOEXwLABh6LRRMNOJDOraqpK5e3/QozMpI9VV8Vu3pviUHGhB8qsCWd27gN3b0gt z0cF4eVhB1809zsCvN2ILERDXLsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQZqQIj B8MKnxjLf5LS/AlEnsH1JzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE3Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qdowDQYJKoZIhvcNAQELBQADggEBAF6V9kZ5i1iwwNbZwWKnekBZUVL4uyhE3anm 9sEZHhxXiTcSELxN0Argo1Bwj1Akd6dYs0YFFA9zYeQcnebdE35qxf817oDK8NjT ZcUDMXp/9FOIAYTNMA/JCFkuOON8jzFq1fVZ/SBJ519xFC9dXCP6sG2gtdVJfkE5 JHBUEYOLWT//BMSlOhPGV2APJfjD2q4EESjurmWI7OEPW5q0UIjOodlRc8rc7CFI ChUnKQ7otlNIGu75r2/eH3vR/w0w1uUH/Mg4gs/aDFmMuslDVwy5fdmHdZsoVVO7 38Lz77LOdp+yO1XKc/w9TOJl/Co21lUEYsM3yTocukWkorrMJnw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:16 2026 by rpki-client