$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145196.roa File: AS145196.roa (raw, json) Hash identifier: Iss46ZWVydmlE2BwW8E/8pHVwoYn3fUV650s474NFxE= Subject key identifier: 96:47:19:F2:D6:4D:99:88:39:86:07:82:80:65:19:B4:84:B9:0C:27 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2C2DC62EF8D6D7E90E5BFA26044ED695EE5E0CDD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145196.roa Signing time: Wed 04 Mar 2026 06:19:40 +0000 ROA not before: Wed 04 Mar 2026 06:14:40 +0000 ROA not after: Wed 03 Mar 2027 06:19:40 +0000 asID: 145196 IP address blocks: 240a:a9f2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:2d:c6:2e:f8:d6:d7:e9:0e:5b:fa:26:04:4e:d6:95:ee:5e:0c:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:40 2026 GMT Not After : Mar 3 06:19:40 2027 GMT Subject: CN=964719F2D64D998839860782806519B484B90C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:fa:37:9d:eb:db:9a:52:d0:06:6d:be:ff: 29:e6:e7:9d:65:fa:75:8c:f8:6d:79:2a:c9:2f:02: b0:3e:2b:da:bc:25:94:33:f7:62:b7:8b:55:87:db: 45:25:d0:cd:00:51:7e:b8:a5:c7:ff:d5:1e:4b:a0: e3:d0:34:98:1d:e0:e8:fc:bc:01:a8:ae:50:76:7f: 8a:6a:aa:72:45:bf:4e:58:0c:e2:e5:de:63:52:75: 5b:2a:4d:83:d9:36:82:cc:29:71:cb:93:36:f3:65: 4e:75:3c:6a:31:55:e6:33:99:d2:bb:8d:50:b1:7c: 8b:2a:eb:cf:15:be:6c:05:17:86:01:fa:da:87:c2: 1f:f1:23:21:91:0a:54:fd:9c:d8:03:e1:43:5f:7a: cd:e6:97:49:08:f1:b5:eb:87:3d:4f:d3:5b:70:20: bd:d1:00:c1:21:72:b0:ba:3c:b4:aa:11:bf:50:2f: 8b:0e:e6:54:3f:74:a0:7a:bd:8f:80:57:57:13:b9: 14:48:ac:2e:f9:c3:e5:be:73:fd:e9:98:4c:f2:51: 64:d2:b3:61:3d:8c:75:6d:5e:a7:25:4b:78:d7:dc: db:13:a9:ff:c2:e9:49:2a:3a:81:ea:db:e8:42:1b: d8:9f:b0:77:77:d9:a2:47:8c:be:12:7d:fe:1e:7a: bf:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:47:19:F2:D6:4D:99:88:39:86:07:82:80:65:19:B4:84:B9:0C:27 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145196.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a9f2::/32 Signature Algorithm: sha256WithRSAEncryption be:cd:f1:f8:15:e1:ad:55:59:e8:eb:2c:a1:b7:2e:03:d8:38: bb:8d:eb:33:5b:18:bb:49:8e:f0:6e:37:fc:92:ef:5a:09:bd: a3:27:14:7a:b1:ab:19:34:0f:21:08:86:3a:8b:95:2b:d3:00: 13:2c:d6:26:ed:0d:4c:cd:1f:a3:04:1c:0e:09:a0:f3:a6:2d: f8:2a:af:df:57:af:5c:c6:02:4a:63:27:8d:7c:d2:0e:2e:d6: e9:e6:58:ef:0b:d9:de:d5:87:0d:45:82:fc:f9:2f:d8:f3:d7: 76:f9:5a:68:c4:b3:00:a5:d7:54:4b:73:f1:82:f6:2c:17:d6: 81:e0:b6:9b:0a:b4:01:cf:16:45:6e:8c:52:eb:7c:ea:57:ea: a5:d4:85:c8:1f:a4:f1:dd:80:b1:93:5c:ab:c8:57:78:b7:66: 75:bc:1c:3a:1e:f2:ad:14:a6:73:42:c2:86:54:2d:fc:8b:09: da:8f:3f:c6:8b:10:90:b6:63:58:37:0a:24:5a:32:e1:2d:a7: ac:16:93:12:91:03:9e:a9:2d:73:65:14:e5:7e:ea:a2:8c:59: 70:c6:2c:4a:aa:8a:c7:14:4a:0c:7e:67:00:af:bc:f9:ed:c7: a8:6f:02:3b:4b:d5:c6:09:b0:5a:1d:67:af:dd:ce:45:d7:90: 34:76:36:40 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULC3GLvjW1+kOW/omBE7Wle5eDN0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0MFoX DTI3MDMwMzA2MTk0MFowMzExMC8GA1UEAxMoOTY0NzE5RjJENjREOTk4ODM5ODYw NzgyODA2NTE5QjQ4NEI5MEMyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCk+jed69uaUtAGbb7/KebnnWX6dYz4bXkqyS8CsD4r2rwllDP3YreLVYfb RSXQzQBRfrilx//VHkug49A0mB3g6Py8AaiuUHZ/imqqckW/TlgM4uXeY1J1WypN g9k2gswpccuTNvNlTnU8ajFV5jOZ0ruNULF8iyrrzxW+bAUXhgH62ofCH/EjIZEK VP2c2APhQ196zeaXSQjxteuHPU/TW3AgvdEAwSFysLo8tKoRv1Aviw7mVD90oHq9 j4BXVxO5FEisLvnD5b5z/emYTPJRZNKzYT2MdW1epyVLeNfc2xOp/8LpSSo6gerb 6EIb2J+wd3fZokeMvhJ9/h56vx0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSWRxny 1k2ZiDmGB4KAZRm0hLkMJzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTE5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qfIwDQYJKoZIhvcNAQELBQADggEBAL7N8fgV4a1VWejrLKG3LgPYOLuN6zNbGLtJ jvBuN/yS71oJvaMnFHqxqxk0DyEIhjqLlSvTABMs1ibtDUzNH6MEHA4JoPOmLfgq r99Xr1zGAkpjJ4180g4u1unmWO8L2d7Vhw1Fgvz5L9jz13b5WmjEswCl11RLc/GC 9iwX1oHgtpsKtAHPFkVujFLrfOpX6qXUhcgfpPHdgLGTXKvIV3i3ZnW8HDoe8q0U pnNCwoZULfyLCdqPP8aLEJC2Y1g3CiRaMuEtp6wWkxKRA56pLXNlFOV+6qKMWXDG LEqqiscUSgx+ZwCvvPntx6hvAjtL1cYJsFodZ6/dzkXXkDR2NkA= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:06 2026 by rpki-client