$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145822.roa File: AS145822.roa (raw, json) Hash identifier: umNSQ6EVpILZVZI04jIu6U9MFRoFJMQr36ns3Hw4pIc= Subject key identifier: 5B:06:AE:7A:05:D4:CE:DD:AA:A7:52:96:34:3D:C5:6E:8B:C7:E4:01 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1EA81AF3183C0A524F7A777DFC118808EF276680 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145822.roa Signing time: Wed 04 Mar 2026 06:31:04 +0000 ROA not before: Wed 04 Mar 2026 06:26:04 +0000 ROA not after: Wed 03 Mar 2027 06:31:04 +0000 asID: 145822 IP address blocks: 240a:ac64::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a8:1a:f3:18:3c:0a:52:4f:7a:77:7d:fc:11:88:08:ef:27:66:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:26:04 2026 GMT Not After : Mar 3 06:31:04 2027 GMT Subject: CN=5B06AE7A05D4CEDDAAA75296343DC56E8BC7E401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1b:76:60:c6:c1:2a:1c:a3:4b:69:0c:25:1f: 73:56:cb:fc:b6:0f:7c:ae:f3:22:36:a4:5a:e4:26: 08:61:da:f1:ca:70:1f:d9:45:f5:6a:0c:cd:3b:b2: 86:5d:d7:de:eb:22:8e:9d:87:c9:c2:ce:99:3c:4c: 8f:13:9a:83:e0:f4:5a:0d:4d:fb:b1:44:01:65:e3: 83:3e:5e:66:70:28:8a:0f:dd:a9:f1:3a:c9:cf:82: 94:8f:5a:3c:5c:dd:d6:a1:79:da:49:e5:1b:bd:dd: ff:01:ba:5d:a9:62:65:56:f1:b9:fd:26:23:44:38: 3d:39:59:77:07:b5:45:61:5d:51:ce:64:16:30:94: 8d:a5:15:bf:d9:83:4d:1a:a9:68:d3:f8:12:1b:f8: fc:c3:14:82:9f:4f:71:35:f9:0a:58:5c:a5:aa:2b: a8:7e:76:7b:9b:1e:b4:43:17:4b:45:76:a5:c8:2b: 59:73:2d:6c:99:20:38:a5:b8:35:35:93:9f:2c:b8: e7:ad:b3:17:89:08:48:42:bc:b1:82:eb:45:ee:9e: aa:11:32:3f:3f:36:f2:6c:d7:b5:1b:b5:c5:3d:43: d8:e5:04:42:24:90:eb:51:cc:87:00:42:69:cd:6a: e0:e0:93:9c:cb:eb:4e:41:bc:9f:e2:7a:0b:56:91: c3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:06:AE:7A:05:D4:CE:DD:AA:A7:52:96:34:3D:C5:6E:8B:C7:E4:01 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145822.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac64::/32 Signature Algorithm: sha256WithRSAEncryption 5a:e4:ce:0e:aa:4f:e4:a7:05:a5:05:05:05:fa:12:e1:be:c1: e0:c3:1a:a8:9a:40:d3:a0:ba:8f:fc:eb:55:82:84:ba:b6:0e: d2:44:14:3e:a3:2d:d5:9f:6e:42:cf:9d:ce:d2:18:a0:72:26: a2:48:3c:cb:13:8f:f5:c7:75:ea:e8:be:a5:15:49:5b:71:3a: 88:76:f3:bb:39:b7:12:66:cb:73:f2:ca:fe:19:fb:4c:90:3a: 4d:0c:aa:81:57:1a:a7:02:74:59:e8:5b:76:c4:7a:6b:d7:73: fa:e0:4d:80:85:75:fb:49:26:dc:b4:ed:0d:89:2d:1d:2a:e5: 7e:ea:0a:50:72:da:67:14:e7:f4:56:8b:64:81:2f:e0:d7:df: e4:eb:97:dc:08:50:28:06:9c:93:e9:83:12:a0:9c:eb:9f:92: 16:74:0a:6f:87:2f:40:82:56:dd:99:f4:02:70:38:9d:43:9d: 6f:82:18:fd:7d:97:af:2b:8b:7b:18:61:2d:ac:7f:8e:72:1d: aa:4b:a1:a5:cc:ff:0b:76:dc:b7:dd:0c:06:78:38:82:97:b3: 82:5f:8d:76:8c:ca:47:14:2b:70:31:1f:ed:74:87:ea:dd:69: ae:f1:5e:b5:2f:85:82:32:d3:df:94:b0:80:ba:c8:a6:2c:d8: 8a:81:8a:6e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHqga8xg8ClJPend9/BGICO8nZoAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjYwNFoX DTI3MDMwMzA2MzEwNFowMzExMC8GA1UEAxMoNUIwNkFFN0EwNUQ0Q0VEREFBQTc1 Mjk2MzQzREM1NkU4QkM3RTQwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYbdmDGwSoco0tpDCUfc1bL/LYPfK7zIjakWuQmCGHa8cpwH9lF9WoMzTuy hl3X3usijp2HycLOmTxMjxOag+D0Wg1N+7FEAWXjgz5eZnAoig/dqfE6yc+ClI9a PFzd1qF52knlG73d/wG6XaliZVbxuf0mI0Q4PTlZdwe1RWFdUc5kFjCUjaUVv9mD TRqpaNP4Ehv4/MMUgp9PcTX5ClhcpaorqH52e5setEMXS0V2pcgrWXMtbJkgOKW4 NTWTnyy4562zF4kISEK8sYLrRe6eqhEyPz828mzXtRu1xT1D2OUEQiSQ61HMhwBC ac1q4OCTnMvrTkG8n+J6C1aRw4sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRbBq56 BdTO3aqnUpY0PcVui8fkATAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTgyMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rGQwDQYJKoZIhvcNAQELBQADggEBAFrkzg6qT+SnBaUFBQX6EuG+weDDGqiaQNOg uo/861WChLq2DtJEFD6jLdWfbkLPnc7SGKByJqJIPMsTj/XHderovqUVSVtxOoh2 87s5txJmy3Pyyv4Z+0yQOk0MqoFXGqcCdFnoW3bEemvXc/rgTYCFdftJJty07Q2J LR0q5X7qClBy2mcU5/RWi2SBL+DX3+Trl9wIUCgGnJPpgxKgnOufkhZ0Cm+HL0CC Vt2Z9AJwOJ1DnW+CGP19l68ri3sYYS2sf45yHapLoaXM/wt23LfdDAZ4OIKXs4Jf jXaMykcUK3AxH+10h+rdaa7xXrUvhYIy09+UsIC6yKYs2IqBim4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:10 2026 by rpki-client