$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145513.roa File: AS145513.roa (raw, json) Hash identifier: vaKaPEGyPXZHcsN4zxNE2uG4tDxNZ2WFpUwmz9vmFZk= Subject key identifier: 4A:86:5F:59:0B:E7:06:3E:95:20:EA:51:AC:7E:21:C1:3D:CF:9B:6B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0B4C2C9BCDF9F6150A34913EDBBAE98ABE9A887B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145513.roa Signing time: Wed 04 Mar 2026 06:20:52 +0000 ROA not before: Wed 04 Mar 2026 06:15:52 +0000 ROA not after: Wed 03 Mar 2027 06:20:52 +0000 asID: 145513 IP address blocks: 240a:ab2f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:4c:2c:9b:cd:f9:f6:15:0a:34:91:3e:db:ba:e9:8a:be:9a:88:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:52 2026 GMT Not After : Mar 3 06:20:52 2027 GMT Subject: CN=4A865F590BE7063E9520EA51AC7E21C13DCF9B6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:31:56:c4:27:82:5f:ee:e4:ae:07:e0:71:29: 4f:a9:0a:16:f3:05:d9:9e:4d:5e:1c:ba:2b:dc:cc: 73:e0:9f:b5:f2:5f:1d:d4:18:bb:0b:66:65:fe:63: 08:d0:8f:c1:62:07:73:9b:cf:16:10:46:c2:be:12: eb:3e:35:c6:34:98:d7:9d:e5:80:ae:44:02:f5:0a: d3:45:ab:e5:0f:65:0f:bb:15:da:28:56:59:30:3a: c3:d5:b8:1b:7b:7e:59:5f:d5:eb:07:fb:4a:bc:81: 28:52:b5:81:03:6c:f8:10:7c:15:9a:40:2b:56:58: 1e:c4:19:f0:15:14:43:72:cf:1e:dc:06:06:0e:a6: 48:c8:04:3a:23:65:28:fe:85:e0:9f:ed:98:72:5c: 05:e4:6a:3a:c0:70:5d:8a:98:69:9a:dc:3c:9e:97: 12:20:67:2c:31:51:ac:01:b5:eb:6c:4a:cd:b0:88: 18:15:23:38:4e:5f:a3:42:b4:70:cc:01:9c:fb:95: 17:9d:44:28:b0:56:25:da:17:7f:af:87:32:19:0a: ed:a0:ea:d6:3c:e6:42:0b:1c:23:5c:26:dc:fa:f6: 2d:48:4c:c2:8b:36:d3:53:49:65:34:1e:bd:0f:5e: a1:44:c1:62:6a:e1:2e:2d:eb:b3:57:fa:fc:f7:1e: d6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:86:5F:59:0B:E7:06:3E:95:20:EA:51:AC:7E:21:C1:3D:CF:9B:6B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145513.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab2f::/32 Signature Algorithm: sha256WithRSAEncryption 2a:3c:5e:5f:ff:da:48:e2:8a:0e:65:5f:9e:9b:d4:ad:ca:a4: 32:b5:57:81:d1:73:98:89:48:21:04:0a:35:5d:92:d0:b3:e8: bb:f5:1f:f6:cf:5e:d8:be:17:7c:af:e3:ab:db:d4:e4:7d:f4: bf:e4:d9:03:72:e1:af:ff:e9:6c:1c:fd:8c:60:2d:cf:e7:69: 62:ec:5d:9e:f3:84:41:48:f7:4e:de:7c:fe:a3:7d:bb:7c:0b: b2:f0:71:fd:49:45:42:11:86:5c:72:c4:c0:71:7c:0f:fa:fa: 9f:ad:9c:fd:41:93:be:c1:c5:7e:84:ed:c4:b5:88:09:ab:df: 0b:e0:1f:43:30:39:fd:13:1c:b8:89:4c:ac:72:9b:87:50:11: 80:ba:58:68:4a:50:17:4f:a5:14:3a:69:58:49:68:7b:70:22: 62:dc:00:91:1f:aa:81:6f:68:88:38:06:74:40:03:24:e3:ba: 62:63:6f:4d:25:34:7f:7a:4b:72:cb:86:f6:83:3f:99:14:b7: c8:2a:46:3b:b9:b4:60:73:82:88:98:83:d1:61:d6:f4:75:75: 92:96:69:65:e3:9c:06:30:e2:df:de:c4:3f:3f:c3:4b:22:66: 30:33:94:ca:54:dd:6d:82:35:8c:70:cc:96:73:1d:2d:74:8d: 84:10:e5:06 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUC0wsm8359hUKNJE+27rpir6aiHswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU1MloX DTI3MDMwMzA2MjA1MlowMzExMC8GA1UEAxMoNEE4NjVGNTkwQkU3MDYzRTk1MjBF QTUxQUM3RTIxQzEzRENGOUI2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUxVsQngl/u5K4H4HEpT6kKFvMF2Z5NXhy6K9zMc+CftfJfHdQYuwtmZf5j CNCPwWIHc5vPFhBGwr4S6z41xjSY153lgK5EAvUK00Wr5Q9lD7sV2ihWWTA6w9W4 G3t+WV/V6wf7SryBKFK1gQNs+BB8FZpAK1ZYHsQZ8BUUQ3LPHtwGBg6mSMgEOiNl KP6F4J/tmHJcBeRqOsBwXYqYaZrcPJ6XEiBnLDFRrAG162xKzbCIGBUjOE5fo0K0 cMwBnPuVF51EKLBWJdoXf6+HMhkK7aDq1jzmQgscI1wm3Pr2LUhMwos201NJZTQe vQ9eoUTBYmrhLi3rs1f6/Pce1oMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRKhl9Z C+cGPpUg6lGsfiHBPc+bazAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTUxMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qy8wDQYJKoZIhvcNAQELBQADggEBACo8Xl//2kjiig5lX56b1K3KpDK1V4HRc5iJ SCEECjVdktCz6Lv1H/bPXti+F3yv46vb1OR99L/k2QNy4a//6Wwc/YxgLc/naWLs XZ7zhEFI907efP6jfbt8C7Lwcf1JRUIRhlxyxMBxfA/6+p+tnP1Bk77BxX6E7cS1 iAmr3wvgH0MwOf0THLiJTKxym4dQEYC6WGhKUBdPpRQ6aVhJaHtwImLcAJEfqoFv aIg4BnRAAyTjumJjb00lNH96S3LLhvaDP5kUt8gqRju5tGBzgoiYg9Fh1vR1dZKW aWXjnAYw4t/exD8/w0siZjAzlMpU3W2CNYxwzJZzHS10jYQQ5QY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:55 2026 by rpki-client