$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145512.roa File: AS145512.roa (raw, json) Hash identifier: nG5jpxMQxfkzxtAQfBZ7Mq6QFf4iWhTVXqWRgEBJUOs= Subject key identifier: CA:D3:24:A4:24:96:07:42:2C:31:BB:9A:5E:C7:C6:14:54:B0:A3:C2 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4E9CE8C1C7B8DEECC4C82A40D0420A81596D55AE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145512.roa Signing time: Wed 04 Mar 2026 06:22:31 +0000 ROA not before: Wed 04 Mar 2026 06:17:31 +0000 ROA not after: Wed 03 Mar 2027 06:22:31 +0000 asID: 145512 IP address blocks: 240a:ab2e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:9c:e8:c1:c7:b8:de:ec:c4:c8:2a:40:d0:42:0a:81:59:6d:55:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:31 2026 GMT Not After : Mar 3 06:22:31 2027 GMT Subject: CN=CAD324A4249607422C31BB9A5EC7C61454B0A3C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d1:31:7c:c4:10:9a:cb:7b:e8:f0:46:e8:c8: 6e:b8:e2:a1:4a:98:bc:91:82:6e:81:e7:5a:d5:06: 04:e4:25:e7:7d:f1:0f:56:5b:0a:6b:42:a6:1a:0b: eb:50:67:9c:91:1e:d8:40:86:8c:8c:8e:9b:a9:77: 86:7b:4d:c3:d6:e7:a5:7d:94:43:ed:b1:41:1d:06: 03:03:60:d1:b1:3d:37:58:5d:f1:05:7a:9a:f3:b0: 8e:ac:45:b6:de:ad:fc:34:42:aa:aa:d6:53:af:dd: 1c:ac:32:e4:f2:e4:6a:0e:1f:8e:e6:0e:58:91:3f: 7a:96:08:7e:ab:70:ea:98:83:2d:2d:3c:ed:2c:2b: 49:9a:c9:c8:15:7d:42:57:37:21:fb:f4:13:5d:e4: ca:53:5d:63:26:b5:8e:f4:9a:34:50:0f:5c:83:03: c5:21:da:27:fc:0c:98:a7:36:49:e1:e8:84:f3:21: 89:25:90:58:71:fd:0d:0b:19:2d:74:33:ec:16:d1: 4b:bf:1b:f5:8d:c3:e9:4c:80:2b:08:b8:68:f0:ef: c5:1e:5f:66:3c:c4:d2:8c:f7:43:63:e6:f4:24:4f: 8f:ac:08:0f:57:d3:59:9d:7a:f6:81:ca:f7:ec:06: a7:d1:4a:0a:79:ad:30:cb:96:eb:ef:25:b4:d9:5c: fd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D3:24:A4:24:96:07:42:2C:31:BB:9A:5E:C7:C6:14:54:B0:A3:C2 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145512.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab2e::/32 Signature Algorithm: sha256WithRSAEncryption 63:18:8a:ac:0f:d6:95:56:4d:c8:27:87:4f:e1:b5:00:31:f0: 38:d6:4d:37:60:e1:74:56:be:22:b0:b7:ae:73:dc:31:39:2f: 61:28:81:a2:de:df:4b:17:a4:e0:28:41:9d:1d:9b:9b:f5:95: 6e:06:4e:30:e2:19:f9:17:55:6d:ee:6e:61:eb:07:33:b5:94: 5a:24:69:a9:b1:c8:09:42:51:04:f6:d6:b8:d5:4d:0f:b4:2a: 81:5c:9a:dc:c8:da:27:32:8f:a7:bd:b4:32:7e:85:e0:51:49: c0:0b:aa:76:d4:3d:9d:b7:17:da:ec:10:5a:b7:5c:73:a7:1e: 1f:4e:34:8c:e7:eb:e2:69:a0:02:7d:2c:07:5b:8e:a5:ae:79: 7a:ca:8a:f1:93:55:68:82:31:6b:1c:76:bb:2c:8a:d8:62:70: 23:73:b6:01:95:4a:db:10:7e:5a:4c:46:ac:b5:12:f9:6d:73: b8:ff:92:82:89:f4:2a:60:16:f0:f1:cd:1b:4f:75:05:4a:c5: c0:2e:b9:40:4f:dc:ae:81:34:84:a4:2c:10:9f:e9:6f:77:7a: a5:5c:0d:1e:e9:c5:91:32:18:2f:80:58:63:a7:09:41:56:2a: 00:c3:a6:dd:9f:df:5b:d2:24:d4:60:29:0a:3a:9a:cb:80:8f: d7:98:1f:b3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTpzowce43uzEyCpA0EIKgVltVa4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczMVoX DTI3MDMwMzA2MjIzMVowMzExMC8GA1UEAxMoQ0FEMzI0QTQyNDk2MDc0MjJDMzFC QjlBNUVDN0M2MTQ1NEIwQTNDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPRMXzEEJrLe+jwRujIbrjioUqYvJGCboHnWtUGBOQl533xD1ZbCmtCphoL 61BnnJEe2ECGjIyOm6l3hntNw9bnpX2UQ+2xQR0GAwNg0bE9N1hd8QV6mvOwjqxF tt6t/DRCqqrWU6/dHKwy5PLkag4fjuYOWJE/epYIfqtw6piDLS087SwrSZrJyBV9 Qlc3Ifv0E13kylNdYya1jvSaNFAPXIMDxSHaJ/wMmKc2SeHohPMhiSWQWHH9DQsZ LXQz7BbRS78b9Y3D6UyAKwi4aPDvxR5fZjzE0oz3Q2Pm9CRPj6wID1fTWZ169oHK 9+wGp9FKCnmtMMuW6+8ltNlc/W0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTK0ySk JJYHQiwxu5pex8YUVLCjwjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTUxMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qy4wDQYJKoZIhvcNAQELBQADggEBAGMYiqwP1pVWTcgnh0/htQAx8DjWTTdg4XRW viKwt65z3DE5L2EogaLe30sXpOAoQZ0dm5v1lW4GTjDiGfkXVW3ubmHrBzO1lFok aamxyAlCUQT21rjVTQ+0KoFcmtzI2icyj6e9tDJ+heBRScALqnbUPZ23F9rsEFq3 XHOnHh9ONIzn6+JpoAJ9LAdbjqWueXrKivGTVWiCMWscdrssithicCNztgGVStsQ flpMRqy1Evltc7j/koKJ9CpgFvDxzRtPdQVKxcAuuUBP3K6BNISkLBCf6W93eqVc DR7pxZEyGC+AWGOnCUFWKgDDpt2f31vSJNRgKQo6msuAj9eYH7M= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:13 2026 by rpki-client