$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145779.roa File: AS145779.roa (raw, json) Hash identifier: MgIRWJ66jHGNNwIjTIIYOAH8HvzAs8z29dZ671ruJHQ= Subject key identifier: 17:90:E5:1D:D8:C5:BE:07:03:22:06:79:AA:6D:78:78:83:95:97:18 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7B8EA3BE79D21E01646C6163A102595B5B03A37F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145779.roa Signing time: Wed 04 Mar 2026 06:30:55 +0000 ROA not before: Wed 04 Mar 2026 06:25:55 +0000 ROA not after: Wed 03 Mar 2027 06:30:55 +0000 asID: 145779 IP address blocks: 240a:ac39::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8e:a3:be:79:d2:1e:01:64:6c:61:63:a1:02:59:5b:5b:03:a3:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:55 2026 GMT Not After : Mar 3 06:30:55 2027 GMT Subject: CN=1790E51DD8C5BE0703220679AA6D787883959718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:97:54:9f:44:9e:2d:c0:02:6c:bb:11:66:c1: 59:23:2b:ff:41:7e:83:0e:d2:d9:1b:24:70:20:96: 4f:aa:b7:ad:86:2a:af:2c:34:70:2e:25:d4:09:4e: 2c:9f:9c:8c:d1:f1:7b:a6:27:25:47:c1:e8:32:0c: 45:56:4f:16:a2:1a:b7:2b:f0:ab:cc:1f:8e:c2:c8: e0:f2:d4:8e:d0:76:4a:65:1a:b8:ad:38:f8:6b:2e: 74:df:2f:f9:51:11:d7:29:1d:67:a8:c1:8e:3a:e5: 39:d2:81:8f:ec:16:5b:51:94:57:86:45:28:30:91: 65:e5:81:6b:7a:22:c9:3d:f2:0f:c9:4c:a5:86:d5: 52:18:5d:90:fc:95:95:c3:36:43:ce:71:3d:1a:75: c6:ef:fc:39:18:81:f0:01:81:d9:7a:e0:34:27:39: 88:a1:41:d2:42:f3:5d:35:2b:c4:7f:6d:52:37:d9: 78:13:3c:b9:2b:1e:88:58:0b:13:1e:7c:67:39:5d: 9a:d7:b4:93:12:ef:2e:d5:3d:68:c0:7b:83:2b:a8: 19:9e:25:36:5f:24:19:08:9e:c9:e2:41:02:12:05: 9a:37:b2:36:e7:c1:2c:87:fb:11:8e:54:39:37:86: 0d:2f:16:99:d5:13:cb:93:58:9d:c1:1d:f1:9c:18: fb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:90:E5:1D:D8:C5:BE:07:03:22:06:79:AA:6D:78:78:83:95:97:18 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145779.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac39::/32 Signature Algorithm: sha256WithRSAEncryption 9f:29:6a:78:e4:a2:ac:fb:fe:6f:0b:2d:87:be:0b:42:bf:6b: cb:0d:82:d0:11:e3:84:9b:c0:1e:4f:09:3c:5d:73:5e:89:f1: 16:ec:55:14:65:3e:2b:64:71:22:02:53:1e:8b:fd:73:47:e7: a0:00:89:8c:cd:f2:62:34:f1:ae:9d:b0:ff:eb:c4:cb:cf:22: 01:88:0f:f0:e8:cb:3a:d7:be:d1:7f:ae:96:b8:bd:92:58:4e: 7a:c0:0e:6d:4b:62:6f:1f:11:89:5b:41:cf:5a:2d:2a:cc:b2: 73:3a:c2:ab:24:47:ea:f0:9d:64:3b:b4:3e:07:48:0b:19:00: 34:66:98:4b:b5:45:36:ee:f3:d4:7d:17:f2:ed:8d:a9:6f:6c: bb:cb:d1:62:0a:0d:6d:fd:6a:e8:ba:41:25:c3:ac:2b:57:3f: 5f:04:ee:b6:7e:52:02:76:5c:76:51:d2:41:74:96:df:b3:8d: e2:3c:6e:b0:88:28:2d:6b:4d:f9:2e:a1:1a:ed:db:5f:de:66: 5b:bc:21:c6:a5:f5:0f:13:9d:90:56:7c:0a:e3:3b:46:8b:1e: 11:3f:c7:ed:48:31:4a:f6:f6:2d:2e:82:45:82:53:30:39:3a: d8:e1:34:cb:e2:dd:93:1a:1b:1d:16:d6:d2:00:0a:a7:03:23: 45:c2:3b:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUe46jvnnSHgFkbGFjoQJZW1sDo38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU1NVoX DTI3MDMwMzA2MzA1NVowMzExMC8GA1UEAxMoMTc5MEU1MUREOEM1QkUwNzAzMjIw Njc5QUE2RDc4Nzg4Mzk1OTcxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWXVJ9Eni3AAmy7EWbBWSMr/0F+gw7S2RskcCCWT6q3rYYqryw0cC4l1AlO LJ+cjNHxe6YnJUfB6DIMRVZPFqIatyvwq8wfjsLI4PLUjtB2SmUauK04+GsudN8v +VER1ykdZ6jBjjrlOdKBj+wWW1GUV4ZFKDCRZeWBa3oiyT3yD8lMpYbVUhhdkPyV lcM2Q85xPRp1xu/8ORiB8AGB2XrgNCc5iKFB0kLzXTUrxH9tUjfZeBM8uSseiFgL Ex58Zzldmte0kxLvLtU9aMB7gyuoGZ4lNl8kGQieyeJBAhIFmjeyNufBLIf7EY5U OTeGDS8WmdUTy5NYncEd8ZwY+98CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQXkOUd 2MW+BwMiBnmqbXh4g5WXGDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc3OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rDkwDQYJKoZIhvcNAQELBQADggEBAJ8panjkoqz7/m8LLYe+C0K/a8sNgtAR44Sb wB5PCTxdc16J8RbsVRRlPitkcSICUx6L/XNH56AAiYzN8mI08a6dsP/rxMvPIgGI D/DoyzrXvtF/rpa4vZJYTnrADm1LYm8fEYlbQc9aLSrMsnM6wqskR+rwnWQ7tD4H SAsZADRmmEu1RTbu89R9F/LtjalvbLvL0WIKDW39aui6QSXDrCtXP18E7rZ+UgJ2 XHZR0kF0lt+zjeI8brCIKC1rTfkuoRrt21/eZlu8Ical9Q8TnZBWfArjO0aLHhE/ x+1IMUr29i0ugkWCUzA5OtjhNMvi3ZMaGx0W1tIACqcDI0XCO4U= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:42 2026 by rpki-client