$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145228.roa File: AS145228.roa (raw, json) Hash identifier: fKaFLn6t1zcO3Rnr8Ap3f4DsQA0mzlbgbDwxP1bxkSE= Subject key identifier: 93:D8:24:69:E5:EE:99:CE:B8:A5:59:2B:37:EC:89:94:A4:42:CF:1F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 374FD5F736A09AD831E822EA8659AF99E9044E0B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145228.roa Signing time: Wed 04 Mar 2026 06:22:33 +0000 ROA not before: Wed 04 Mar 2026 06:17:33 +0000 ROA not after: Wed 03 Mar 2027 06:22:33 +0000 asID: 145228 IP address blocks: 240a:aa12::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:4f:d5:f7:36:a0:9a:d8:31:e8:22:ea:86:59:af:99:e9:04:4e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:33 2026 GMT Not After : Mar 3 06:22:33 2027 GMT Subject: CN=93D82469E5EE99CEB8A5592B37EC8994A442CF1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:88:7b:aa:2f:11:42:97:25:a8:81:95:29:f0: 7f:33:b7:a0:5f:84:bf:c8:ba:1f:23:0d:7a:ec:92: 3b:01:b5:0e:0d:18:12:01:88:f8:66:0c:7d:47:32: b8:1c:e7:97:fc:c3:da:76:02:68:72:24:f4:b9:30: 65:d3:73:1b:75:af:76:3d:7c:eb:69:b4:26:45:db: 0e:c8:ac:31:ca:28:d3:64:c3:c1:1b:90:c8:15:a3: 4e:14:76:52:16:e6:8f:20:55:8d:29:ae:7e:a7:25: 4c:c3:b4:26:63:d0:ef:15:05:0a:16:62:59:54:44: b7:d4:01:7e:15:e4:a6:61:65:d4:2d:96:e5:fb:12: 3a:c5:91:38:8b:3a:ad:11:9b:5d:bd:ad:0f:46:e9: 7b:8d:81:72:4c:09:1c:49:bc:15:19:7c:83:39:7c: de:81:cd:9f:4b:c1:d1:9f:9e:87:53:2a:21:4d:66: 8b:86:c0:bf:b5:3e:33:bb:35:8e:89:c6:55:61:fa: 43:40:ee:05:e3:14:a4:83:a4:7b:04:74:62:6e:1b: 3f:c0:6e:fb:21:06:b2:80:71:61:b6:ea:79:39:85: 13:68:4f:06:de:4f:4a:b7:25:3d:ab:0f:fb:cc:e8: ba:b3:c4:44:aa:e9:98:97:7c:30:35:62:fc:7b:b5: 44:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D8:24:69:E5:EE:99:CE:B8:A5:59:2B:37:EC:89:94:A4:42:CF:1F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145228.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aa12::/32 Signature Algorithm: sha256WithRSAEncryption 81:64:ae:17:b5:56:53:db:21:77:f4:58:89:c3:07:18:31:8a: 63:1e:e6:b6:95:e7:82:49:9b:4a:21:7c:6f:6d:b3:20:87:f6: c6:d5:9f:22:98:94:79:2a:19:fd:dc:db:76:97:74:ba:fe:71: 13:d3:19:cb:96:88:9c:17:8e:78:2f:88:fa:ef:41:d8:d4:5c: 24:c1:ae:a8:7d:fe:7f:ed:95:fe:82:d0:6a:eb:c1:d1:b0:54: dd:17:4c:cc:b3:23:ff:b7:dc:d6:98:44:5a:1c:55:25:5e:2a: 16:ef:23:9f:f8:11:bc:f3:68:3a:9e:44:c7:c3:14:d3:b1:16: ff:62:03:76:76:7e:ff:94:ab:5c:92:c3:fc:80:74:6b:7a:96: e3:73:5e:88:e7:94:c0:53:66:a0:10:98:84:f4:e6:ad:1f:f9: ec:e9:5e:d7:93:1d:16:92:b8:a8:9a:17:c1:1c:68:d8:31:78: d6:27:a1:86:8b:6b:50:01:a8:e0:ce:43:8c:b2:4b:79:cc:07: 85:e7:74:04:3a:c0:b1:1c:af:ea:55:70:ff:45:2b:bb:71:98: cd:f1:df:e1:38:6d:d0:53:5c:56:73:92:5d:d7:3b:13:52:63: 9d:1e:57:a4:a8:72:7a:a6:6d:cb:b6:c5:3d:cd:3e:3e:d3:56: e8:b1:97:54 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUN0/V9zagmtgx6CLqhlmvmekETgswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczM1oX DTI3MDMwMzA2MjIzM1owMzExMC8GA1UEAxMoOTNEODI0NjlFNUVFOTlDRUI4QTU1 OTJCMzdFQzg5OTRBNDQyQ0YxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKuIe6ovEUKXJaiBlSnwfzO3oF+Ev8i6HyMNeuySOwG1Dg0YEgGI+GYMfUcy uBznl/zD2nYCaHIk9LkwZdNzG3Wvdj1862m0JkXbDsisMcoo02TDwRuQyBWjThR2 UhbmjyBVjSmufqclTMO0JmPQ7xUFChZiWVREt9QBfhXkpmFl1C2W5fsSOsWROIs6 rRGbXb2tD0bpe42BckwJHEm8FRl8gzl83oHNn0vB0Z+eh1MqIU1mi4bAv7U+M7s1 jonGVWH6Q0DuBeMUpIOkewR0Ym4bP8Bu+yEGsoBxYbbqeTmFE2hPBt5PSrclPasP +8zourPERKrpmJd8MDVi/Hu1RAcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBST2CRp 5e6ZzrilWSs37ImUpELPHzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTIyOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qhIwDQYJKoZIhvcNAQELBQADggEBAIFkrhe1VlPbIXf0WInDBxgximMe5raV54JJ m0ohfG9tsyCH9sbVnyKYlHkqGf3c23aXdLr+cRPTGcuWiJwXjngviPrvQdjUXCTB rqh9/n/tlf6C0GrrwdGwVN0XTMyzI/+33NaYRFocVSVeKhbvI5/4EbzzaDqeRMfD FNOxFv9iA3Z2fv+Uq1ySw/yAdGt6luNzXojnlMBTZqAQmIT05q0f+ezpXteTHRaS uKiaF8EcaNgxeNYnoYaLa1ABqODOQ4yyS3nMB4XndAQ6wLEcr+pVcP9FK7txmM3x 3+E4bdBTXFZzkl3XOxNSY50eV6Socnqmbcu2xT3NPj7TVuixl1Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:11 2026 by rpki-client