$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145727.roa File: AS145727.roa (raw, json) Hash identifier: hOE5Nlvx7RKJbecwhEiNCt+/rfEm4DMpOkgynSEWkX0= Subject key identifier: 9E:EE:44:BE:47:05:0D:90:EB:B8:8F:78:56:C2:6F:5B:C4:B4:BA:28 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3E9D064E0703FC55FD5FA2645E4BEB6247F08FC3 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145727.roa Signing time: Wed 04 Mar 2026 06:31:05 +0000 ROA not before: Wed 04 Mar 2026 06:26:05 +0000 ROA not after: Wed 03 Mar 2027 06:31:05 +0000 asID: 145727 IP address blocks: 240a:ac05::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:9d:06:4e:07:03:fc:55:fd:5f:a2:64:5e:4b:eb:62:47:f0:8f:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:26:05 2026 GMT Not After : Mar 3 06:31:05 2027 GMT Subject: CN=9EEE44BE47050D90EBB88F7856C26F5BC4B4BA28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:68:8a:c4:b7:09:95:f6:3a:ca:12:7e:bb:89: 2b:67:be:1a:d0:95:55:a1:60:6e:cc:eb:93:a3:c0: 72:68:ea:4e:00:9b:60:67:dd:92:b4:31:98:5f:69: a0:d7:c3:56:eb:8f:77:c4:38:74:b8:66:5b:7b:ae: 57:59:00:94:8a:33:74:20:d6:90:f4:25:2f:33:77: a9:72:97:80:f0:6a:67:85:8d:03:af:87:e7:84:1c: 13:ae:b1:d5:a5:18:b3:5c:0a:a5:f7:15:a7:da:d3: 13:82:77:3b:d1:9e:09:25:20:2c:35:51:68:7a:9f: 89:32:ec:3e:7c:35:4c:17:e2:d3:e6:b7:15:a5:a1: 95:7d:b6:90:bc:54:4c:a7:f7:44:7f:4a:ce:49:a3: bd:70:2c:52:a9:65:3c:31:4e:07:0f:54:8a:c6:d1: d4:96:08:47:e4:e1:db:e7:3b:c8:af:8b:4d:29:13: b2:98:bc:52:18:bf:1a:dc:51:75:4c:9e:37:29:88: 42:c7:af:74:56:9a:5d:64:60:cf:f8:71:de:58:5e: 3a:14:7a:e9:21:c4:99:9f:ce:9b:7f:bf:5b:ad:7f: 95:b6:a6:2d:68:05:6a:b6:81:14:fe:47:da:75:0f: 57:f0:a0:38:95:33:0c:24:f6:04:46:25:fb:47:10: 8e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EE:44:BE:47:05:0D:90:EB:B8:8F:78:56:C2:6F:5B:C4:B4:BA:28 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145727.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac05::/32 Signature Algorithm: sha256WithRSAEncryption 87:28:8e:bc:ec:60:72:09:79:01:ca:0c:6c:1e:f1:db:71:40: 64:34:3e:e5:05:ce:bf:43:a4:39:d6:fb:cd:a5:2b:98:58:2e: b3:8b:b5:35:1b:81:d7:fd:c0:d8:8b:89:80:9d:1e:79:07:40: eb:fe:70:b2:d9:0f:71:af:7d:ff:ad:bf:5d:9c:dd:ff:5d:78: 73:df:2b:02:13:65:c3:65:21:c8:5e:dc:6d:f2:1a:5b:e2:7b: 0a:c9:4c:e8:67:04:a8:fa:94:13:56:ad:aa:b4:ff:86:82:52: a0:6d:18:6a:df:14:ac:db:e9:48:4c:f5:5f:00:db:31:f7:77: be:c4:59:94:bd:ca:8c:57:fb:09:b3:1a:a2:66:1a:27:19:86: f2:1a:72:08:51:7a:bc:31:fb:48:ad:9c:09:38:42:bd:d0:c7: 3c:35:d9:08:25:de:82:9a:0b:c2:94:77:c0:16:82:b2:a7:3a: 7f:01:d6:ca:84:a1:a3:22:e8:d3:67:39:5c:71:b4:df:0e:4e: 76:a7:da:65:4c:f2:7a:30:47:e8:d7:1b:bc:9c:ef:93:eb:b8: 11:85:f3:5c:aa:15:d8:8e:b7:f5:20:a0:05:3e:3d:ae:a1:3c: 89:ea:93:d0:47:13:53:32:13:40:86:2b:d1:6f:db:0e:88:8a: b7:9e:6c:80 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPp0GTgcD/FX9X6JkXkvrYkfwj8MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjYwNVoX DTI3MDMwMzA2MzEwNVowMzExMC8GA1UEAxMoOUVFRTQ0QkU0NzA1MEQ5MEVCQjg4 Rjc4NTZDMjZGNUJDNEI0QkEyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtoisS3CZX2OsoSfruJK2e+GtCVVaFgbszrk6PAcmjqTgCbYGfdkrQxmF9p oNfDVuuPd8Q4dLhmW3uuV1kAlIozdCDWkPQlLzN3qXKXgPBqZ4WNA6+H54QcE66x 1aUYs1wKpfcVp9rTE4J3O9GeCSUgLDVRaHqfiTLsPnw1TBfi0+a3FaWhlX22kLxU TKf3RH9KzkmjvXAsUqllPDFOBw9UisbR1JYIR+Th2+c7yK+LTSkTspi8Uhi/GtxR dUyeNymIQsevdFaaXWRgz/hx3lheOhR66SHEmZ/Om3+/W61/lbamLWgFaraBFP5H 2nUPV/CgOJUzDCT2BEYl+0cQjn0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSe7kS+ RwUNkOu4j3hWwm9bxLS6KDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTcyNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rAUwDQYJKoZIhvcNAQELBQADggEBAIcojrzsYHIJeQHKDGwe8dtxQGQ0PuUFzr9D pDnW+82lK5hYLrOLtTUbgdf9wNiLiYCdHnkHQOv+cLLZD3Gvff+tv12c3f9deHPf KwITZcNlIche3G3yGlviewrJTOhnBKj6lBNWraq0/4aCUqBtGGrfFKzb6UhM9V8A 2zH3d77EWZS9yoxX+wmzGqJmGicZhvIacghRerwx+0itnAk4Qr3Qxzw12Qgl3oKa C8KUd8AWgrKnOn8B1sqEoaMi6NNnOVxxtN8OTnan2mVM8nowR+jXG7yc75PruBGF 81yqFdiOt/UgoAU+Pa6hPInqk9BHE1MyE0CGK9Fv2w6IireebIA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:02 2026 by rpki-client