$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145859.roa File: AS145859.roa (raw, json) Hash identifier: plMfekdtIOTt/mtGY4gFxJ+7uVSZXgimH5nYBkUVtaA= Subject key identifier: 60:DA:5E:C6:32:DD:82:03:C5:C2:E6:01:FA:05:52:EE:A9:21:33:7D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 13DB0AD628C6CD88D0AED053453AEF59B55FBB19 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145859.roa Signing time: Wed 04 Mar 2026 06:30:31 +0000 ROA not before: Wed 04 Mar 2026 06:25:31 +0000 ROA not after: Wed 03 Mar 2027 06:30:31 +0000 asID: 145859 IP address blocks: 240a:ac89::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:db:0a:d6:28:c6:cd:88:d0:ae:d0:53:45:3a:ef:59:b5:5f:bb:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:31 2026 GMT Not After : Mar 3 06:30:31 2027 GMT Subject: CN=60DA5EC632DD8203C5C2E601FA0552EEA921337D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:83:fb:52:f5:51:d2:bb:d9:71:7c:7e:b6:b9: 71:10:b0:c7:99:06:6f:4b:4e:4b:70:18:0c:2e:8f: d8:79:24:8f:65:e9:0a:58:ed:2a:06:2a:34:dd:fc: ea:c6:7b:a5:44:22:72:a9:3b:32:4c:ab:6a:8f:32: be:24:8b:65:07:42:43:7e:a8:0b:25:70:2a:63:44: a6:67:c1:07:64:4c:58:54:1f:6f:81:32:78:38:be: cd:d6:5d:d8:71:d9:e0:60:fd:8d:64:c6:6b:cc:ca: 1d:5c:09:49:e6:53:87:7d:bf:db:cf:62:c6:d1:55: 16:b7:04:20:60:bb:6b:05:7f:e5:39:49:1a:46:5d: 38:e3:52:b4:e7:cc:46:fb:9f:0f:3e:c6:f1:d3:15: c9:fe:b7:96:51:2f:40:ca:95:d3:a6:ae:05:28:37: d1:22:84:c0:de:56:1e:97:39:04:1a:73:f4:ed:14: ec:8c:ca:5c:3e:e0:52:af:50:d7:ca:24:5a:d7:a9: 83:26:ae:80:2c:93:39:48:65:c2:f9:38:89:b2:2b: b6:52:9a:26:16:f2:3c:7e:32:52:49:c1:32:b6:01: 67:92:74:36:61:67:94:92:80:f3:51:2b:60:37:57: 83:e0:3e:51:8f:9d:cc:be:c9:d6:18:e1:90:3b:c3: 16:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:DA:5E:C6:32:DD:82:03:C5:C2:E6:01:FA:05:52:EE:A9:21:33:7D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ac89::/32 Signature Algorithm: sha256WithRSAEncryption 77:fe:48:58:19:b3:50:23:c4:5d:a0:e2:af:ea:3a:c3:e2:3e: 64:86:b2:7e:7d:9f:18:3c:20:9e:07:10:92:86:c6:99:41:49: bc:93:f4:ab:60:1a:f2:80:3f:96:df:ed:56:c0:a1:27:5e:1f: 03:a7:49:a9:4b:9a:38:ad:e3:b1:24:4d:4e:1b:63:c1:07:14: a6:f1:57:70:12:61:70:94:6c:2c:cf:19:d4:2e:d5:23:41:9a: 95:c0:26:ba:90:18:b6:23:7d:5c:51:02:ca:65:f4:fe:4e:a8: f9:0a:dd:78:7a:8a:37:c8:68:6e:b9:be:ff:bb:5b:7f:1d:d2: fa:29:7c:4e:a9:0d:6a:30:c7:db:96:e8:a6:39:e6:9e:80:08: 34:dd:c0:dc:d2:c4:00:20:c3:df:6b:80:20:0e:2e:77:bf:39: b7:9a:5e:a3:53:df:a6:2f:cb:b2:67:70:6d:e3:82:36:b0:8f: 22:ae:ed:74:4a:51:71:5b:ad:60:fd:04:f4:ad:4d:07:1f:07: 3a:dd:67:4d:47:2f:dd:b3:6f:b5:98:51:b7:29:3f:2e:f0:74: d7:fb:87:60:0e:b7:70:0e:38:fa:04:58:cf:b4:af:b1:89:d9: 0d:a1:40:5f:c1:63:3a:37:7f:4f:05:55:e3:d5:c0:95:af:ce: a8:36:e6:88 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUE9sK1ijGzYjQrtBTRTrvWbVfuxkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUzMVoX DTI3MDMwMzA2MzAzMVowMzExMC8GA1UEAxMoNjBEQTVFQzYzMkREODIwM0M1QzJF NjAxRkEwNTUyRUVBOTIxMzM3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+D+1L1UdK72XF8fra5cRCwx5kGb0tOS3AYDC6P2Hkkj2XpCljtKgYqNN38 6sZ7pUQicqk7Mkyrao8yviSLZQdCQ36oCyVwKmNEpmfBB2RMWFQfb4EyeDi+zdZd 2HHZ4GD9jWTGa8zKHVwJSeZTh32/289ixtFVFrcEIGC7awV/5TlJGkZdOONStOfM RvufDz7G8dMVyf63llEvQMqV06auBSg30SKEwN5WHpc5BBpz9O0U7IzKXD7gUq9Q 18okWtepgyaugCyTOUhlwvk4ibIrtlKaJhbyPH4yUknBMrYBZ5J0NmFnlJKA81Er YDdXg+A+UY+dzL7J1hjhkDvDFtcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRg2l7G Mt2CA8XC5gH6BVLuqSEzfTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTg1OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rIkwDQYJKoZIhvcNAQELBQADggEBAHf+SFgZs1AjxF2g4q/qOsPiPmSGsn59nxg8 IJ4HEJKGxplBSbyT9KtgGvKAP5bf7VbAoSdeHwOnSalLmjit47EkTU4bY8EHFKbx V3ASYXCUbCzPGdQu1SNBmpXAJrqQGLYjfVxRAspl9P5OqPkK3Xh6ijfIaG65vv+7 W38d0vopfE6pDWowx9uW6KY55p6ACDTdwNzSxAAgw99rgCAOLne/ObeaXqNT36Yv y7JncG3jgjawjyKu7XRKUXFbrWD9BPStTQcfBzrdZ01HL92zb7WYUbcpPy7wdNf7 h2AOt3AOOPoEWM+0r7GJ2Q2hQF/BYzo3f08FVePVwJWvzqg25og= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:07 2026 by rpki-client