$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145592.roa File: AS145592.roa (raw, json) Hash identifier: G//Hkr/rO2rdvyXNFDgfqmTto1VE4/0AuvW6BhMMcZ4= Subject key identifier: A4:0C:1D:C6:93:75:8E:0D:A0:D1:F9:D9:A3:34:9A:0A:67:97:B1:18 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 59A52D8E403309FB936420313FF0470E729B5586 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145592.roa Signing time: Wed 04 Mar 2026 06:30:30 +0000 ROA not before: Wed 04 Mar 2026 06:25:30 +0000 ROA not after: Wed 03 Mar 2027 06:30:30 +0000 asID: 145592 IP address blocks: 240a:ab7e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a5:2d:8e:40:33:09:fb:93:64:20:31:3f:f0:47:0e:72:9b:55:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:30 2026 GMT Not After : Mar 3 06:30:30 2027 GMT Subject: CN=A40C1DC693758E0DA0D1F9D9A3349A0A6797B118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3a:7f:d0:42:bd:ff:c7:e1:68:15:a2:9e:e3: 82:63:4d:57:d8:cd:b2:a9:28:23:34:03:1c:37:98: d4:1c:ed:cb:b4:20:9e:96:12:7b:c6:93:62:7a:ab: 65:99:ff:89:ea:ef:64:d8:61:cf:c2:42:8c:21:c1: dc:4a:cc:40:72:12:6d:a1:fd:31:e2:37:bf:68:19: 80:8c:0b:96:2a:77:5c:42:c5:9a:76:e1:3f:e0:39: 37:eb:70:46:9a:c7:ec:83:ef:9e:be:ee:57:f7:bb: bb:4e:80:06:73:e5:7c:59:a1:eb:be:d9:d0:f1:4a: 07:ff:11:7f:71:cd:ae:27:88:05:7c:2d:81:6f:ab: e8:24:bd:05:ae:32:9e:10:7f:3d:26:2d:bb:af:7a: 79:3d:fa:6a:e4:ef:dc:d7:18:49:28:36:2d:6d:c0: 91:d6:48:96:13:04:44:f8:4c:1b:2f:0e:27:d7:8a: 78:da:b1:f6:14:1d:2c:80:a3:38:46:c2:4a:d1:d8: f1:bc:09:06:c3:4e:17:57:1c:4c:4a:33:32:3b:80: b8:8d:80:5d:e6:e0:85:c0:16:c1:bf:19:74:d6:d9: 6e:6a:79:52:28:d7:f3:47:8c:2b:b2:6e:c8:37:75: de:a7:b6:b8:86:f8:be:3f:39:89:77:2d:c4:84:cb: 8f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0C:1D:C6:93:75:8E:0D:A0:D1:F9:D9:A3:34:9A:0A:67:97:B1:18 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ab7e::/32 Signature Algorithm: sha256WithRSAEncryption c6:3f:7b:48:dc:e0:3f:43:98:01:d3:9b:9e:49:b7:b5:74:29: da:b3:ca:b5:87:b2:39:35:f7:3c:20:eb:8f:92:84:8c:ad:c8: 60:52:40:a4:9c:dc:f3:03:1f:33:21:7d:1e:e4:4c:56:23:72: a6:c0:ef:4d:59:07:63:b8:83:17:42:9b:fc:2b:e7:ce:9c:eb: 1e:3c:4f:d3:d6:df:42:63:71:51:2e:ab:62:e8:27:0a:3a:18: df:4f:d7:aa:85:be:4a:4b:48:07:d5:c7:16:31:c4:87:94:ea: 9b:6f:4f:26:32:e4:55:ec:f5:89:d5:7f:4f:2c:8b:d5:ce:b4: 77:3e:09:c8:db:30:c3:49:d9:b3:a1:02:95:7a:60:05:79:c4: 24:9d:09:81:e7:3b:fb:3c:9b:da:68:53:10:1c:77:b2:fb:7e: 82:80:97:7c:6b:4a:5f:89:77:1e:5a:f5:62:d6:7a:0d:da:7d: 39:b1:dd:6d:f1:68:b4:64:70:34:7b:f2:71:ea:4e:55:1f:d4: 1c:10:1e:13:6d:97:cc:43:e2:34:ae:af:83:5f:ae:49:2f:42: 4f:06:20:a0:03:e2:22:9b:c1:a7:9b:10:c9:95:b1:b1:34:5d: 37:e5:21:e8:db:36:ce:1f:2d:73:a8:c5:b0:cc:f5:31:e2:86: 5d:94:1b:b6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUWaUtjkAzCfuTZCAxP/BHDnKbVYYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUzMFoX DTI3MDMwMzA2MzAzMFowMzExMC8GA1UEAxMoQTQwQzFEQzY5Mzc1OEUwREEwRDFG OUQ5QTMzNDlBMEE2Nzk3QjExODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALM6f9BCvf/H4WgVop7jgmNNV9jNsqkoIzQDHDeY1Bzty7QgnpYSe8aTYnqr ZZn/iervZNhhz8JCjCHB3ErMQHISbaH9MeI3v2gZgIwLlip3XELFmnbhP+A5N+tw RprH7IPvnr7uV/e7u06ABnPlfFmh677Z0PFKB/8Rf3HNrieIBXwtgW+r6CS9Ba4y nhB/PSYtu696eT36auTv3NcYSSg2LW3AkdZIlhMERPhMGy8OJ9eKeNqx9hQdLICj OEbCStHY8bwJBsNOF1ccTEozMjuAuI2AXebghcAWwb8ZdNbZbmp5UijX80eMK7Ju yDd13qe2uIb4vj85iXctxITLj3ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSkDB3G k3WODaDR+dmjNJoKZ5exGDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTU5Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK q34wDQYJKoZIhvcNAQELBQADggEBAMY/e0jc4D9DmAHTm55Jt7V0KdqzyrWHsjk1 9zwg64+ShIytyGBSQKSc3PMDHzMhfR7kTFYjcqbA701ZB2O4gxdCm/wr586c6x48 T9PW30JjcVEuq2LoJwo6GN9P16qFvkpLSAfVxxYxxIeU6ptvTyYy5FXs9YnVf08s i9XOtHc+CcjbMMNJ2bOhApV6YAV5xCSdCYHnO/s8m9poUxAcd7L7foKAl3xrSl+J dx5a9WLWeg3afTmx3W3xaLRkcDR78nHqTlUf1BwQHhNtl8xD4jSur4NfrkkvQk8G IKAD4iKbwaebEMmVsbE0XTflIejbNs4fLXOoxbDM9THihl2UG7Y= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:03 2026 by rpki-client