$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145792.roa File: AS145792.roa (raw, json) Hash identifier: RASIKx2J4ezjgYFzRZKOin7bAkSwVKY4VW+k/KDCcxg= Subject key identifier: A0:5D:FD:FD:62:1C:26:BC:29:95:76:15:A3:2A:B0:F9:62:BA:A5:D0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 57CDF159C0DF574D958B16F3654A8D23F17F4AE6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145792.roa Signing time: Wed 04 Mar 2026 06:30:20 +0000 ROA not before: Wed 04 Mar 2026 06:25:20 +0000 ROA not after: Wed 03 Mar 2027 06:30:20 +0000 asID: 145792 IP address blocks: 240a:ac46::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:cd:f1:59:c0:df:57:4d:95:8b:16:f3:65:4a:8d:23:f1:7f:4a:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:20 2026 GMT Not After : Mar 3 06:30:20 2027 GMT Subject: CN=A05DFDFD621C26BC29957615A32AB0F962BAA5D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:74:ba:f9:ef:76:49:14:08:f9:12:8e:32:7e: 4d:3e:bd:5e:66:65:3e:c4:02:5f:8c:72:5d:af:13: b7:ae:e6:fc:7f:02:7b:fb:54:59:d3:1f:90:d2:ad: 2f:db:bf:c4:50:2f:7c:3c:a6:bd:3a:6b:a2:c0:22: b0:a3:cd:b3:61:21:e9:f0:45:9a:b9:f4:d1:78:02: 12:2f:88:a7:4b:2b:88:56:5c:ac:ef:2b:ac:96:92: 84:7d:11:04:91:9b:27:8b:71:f5:60:6c:5d:00:26: 2b:1f:58:5f:5b:a0:49:23:07:c7:ac:2e:b3:f1:88: ad:03:03:62:85:07:4d:2d:92:a2:08:96:5a:df:1f: 77:80:31:30:c3:5f:5e:c2:e5:75:ea:a8:3b:ec:9c: 71:97:84:a8:bb:24:89:ef:fb:77:e6:e4:34:4e:ca: 6f:e8:a9:a0:ff:bc:8a:bb:7f:24:88:c5:84:c2:c5: 32:50:69:06:6b:30:84:83:e8:5f:8e:4b:90:22:bb: 3e:08:6c:2f:86:6e:42:4a:c7:46:18:7d:15:0a:85: be:cb:e6:2c:ea:ae:a0:83:86:e0:7e:ca:4e:67:3c: 8a:52:84:8a:07:f6:89:90:7e:a8:a7:95:88:d7:95: 52:0c:8f:bb:43:7d:e9:14:2d:a8:81:a8:b0:e5:0b: 4f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5D:FD:FD:62:1C:26:BC:29:95:76:15:A3:2A:B0:F9:62:BA:A5:D0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145792.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac46::/32 Signature Algorithm: sha256WithRSAEncryption 63:f5:32:98:57:84:79:1f:74:57:fb:ee:af:1b:46:bc:85:48: 91:f4:db:43:86:79:ed:4e:ff:96:46:58:35:ca:10:99:fd:5e: b6:fb:f0:46:f4:65:15:91:87:d5:cc:f9:f9:f1:23:25:5c:47: 22:45:53:21:64:da:b2:f3:9a:04:b7:ce:7b:2e:71:56:c0:10: 96:0b:6f:ba:51:3c:6f:ac:b9:e3:24:7e:e3:1c:41:2e:1e:36: 89:a9:34:82:cd:b8:b8:6d:30:b6:01:e9:47:64:55:4d:38:31: f9:55:20:19:fc:8b:78:8f:13:3a:11:d8:cb:e5:66:80:1f:a5: 5e:69:44:06:f5:67:f0:20:ea:5f:fd:d1:d2:bb:c0:80:a0:e8: 42:a9:dc:a4:f1:fa:e7:26:6a:cc:16:bb:0f:24:b2:d0:96:ef: eb:3f:d3:d1:b5:70:8e:70:39:19:5d:39:ac:4b:54:e3:9d:34: ea:8f:55:1c:0e:92:11:98:6f:44:94:8a:b9:29:f2:60:22:8b: c7:a7:18:24:da:17:d3:ed:c1:76:64:52:ec:5e:a9:3a:73:b7: 1f:f4:76:c1:9f:d1:f6:b7:e6:1d:9b:a5:15:d6:2c:72:02:01: fa:a2:fb:ce:a0:26:99:68:49:69:6c:42:83:10:ec:dd:12:45: ea:94:11:f4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUV83xWcDfV02VixbzZUqNI/F/SuYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUyMFoX DTI3MDMwMzA2MzAyMFowMzExMC8GA1UEAxMoQTA1REZERkQ2MjFDMjZCQzI5OTU3 NjE1QTMyQUIwRjk2MkJBQTVEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANl0uvnvdkkUCPkSjjJ+TT69XmZlPsQCX4xyXa8Tt67m/H8Ce/tUWdMfkNKt L9u/xFAvfDymvTprosAisKPNs2Eh6fBFmrn00XgCEi+Ip0sriFZcrO8rrJaShH0R BJGbJ4tx9WBsXQAmKx9YX1ugSSMHx6wus/GIrQMDYoUHTS2SogiWWt8fd4AxMMNf XsLldeqoO+yccZeEqLskie/7d+bkNE7Kb+ipoP+8irt/JIjFhMLFMlBpBmswhIPo X45LkCK7PghsL4ZuQkrHRhh9FQqFvsvmLOquoIOG4H7KTmc8ilKEigf2iZB+qKeV iNeVUgyPu0N96RQtqIGosOULTz8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSgXf39 YhwmvCmVdhWjKrD5Yrql0DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTc5Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rEYwDQYJKoZIhvcNAQELBQADggEBAGP1MphXhHkfdFf77q8bRryFSJH020OGee1O /5ZGWDXKEJn9Xrb78Eb0ZRWRh9XM+fnxIyVcRyJFUyFk2rLzmgS3znsucVbAEJYL b7pRPG+sueMkfuMcQS4eNompNILNuLhtMLYB6UdkVU04MflVIBn8i3iPEzoR2Mvl ZoAfpV5pRAb1Z/Ag6l/90dK7wICg6EKp3KTx+ucmaswWuw8kstCW7+s/09G1cI5w ORldOaxLVOOdNOqPVRwOkhGYb0SUirkp8mAii8enGCTaF9PtwXZkUuxeqTpztx/0 dsGf0fa35h2bpRXWLHICAfqi+86gJploSWlsQoMQ7N0SReqUEfQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:53 2026 by rpki-client