$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145906.roa File: AS145906.roa (raw, json) Hash identifier: SkM6LtRkZ2jAtiavTtHjz3yAo6M9KZ9I+Yfpc4UtzKg= Subject key identifier: 6C:90:FC:76:CD:FB:D4:58:68:2B:DB:AC:86:73:96:0D:3F:FE:E9:50 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 34AC80E4D3D54EA171FEAA87E2CEACF8C2C564C2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145906.roa Signing time: Wed 04 Mar 2026 06:30:55 +0000 ROA not before: Wed 04 Mar 2026 06:25:55 +0000 ROA not after: Wed 03 Mar 2027 06:30:55 +0000 asID: 145906 IP address blocks: 240a:acb8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ac:80:e4:d3:d5:4e:a1:71:fe:aa:87:e2:ce:ac:f8:c2:c5:64:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:55 2026 GMT Not After : Mar 3 06:30:55 2027 GMT Subject: CN=6C90FC76CDFBD458682BDBAC8673960D3FFEE950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3a:f2:93:d9:ad:11:86:1e:04:cc:67:1a:02: 3e:c3:f7:84:01:8c:da:4b:ff:02:22:ac:24:49:92: f9:8b:f3:77:0c:25:0d:02:19:be:e7:9e:29:19:c4: 81:d0:dd:22:fc:38:4d:d8:fd:4e:34:6b:5c:38:d3: 85:16:a9:10:9d:91:dd:19:23:82:ce:78:6e:f1:c8: 91:99:36:9e:1d:f4:51:6d:f7:c5:a9:02:7b:8b:c2: 4a:f4:30:40:e4:49:01:3c:82:64:11:1b:30:e8:ac: 8b:9f:65:83:6b:67:71:dd:5c:d8:81:07:57:ad:46: ed:1f:8d:5c:d4:3b:d3:f0:ee:bd:a8:12:60:ca:03: 7a:eb:4b:af:29:df:e8:49:6e:7c:8a:bf:7e:58:1b: a9:aa:24:d8:f7:8d:e8:83:ac:5a:39:ff:a6:5e:50: ca:0d:6a:e0:92:a8:1b:04:11:2b:80:81:ec:52:21: 7f:df:ef:be:40:17:e1:5a:c7:6e:09:33:da:1b:d6: 91:2c:3d:e1:82:0c:e2:e8:c8:9e:56:44:bd:59:5f: bc:a4:13:7a:3c:55:9a:c6:dc:0f:40:aa:2b:73:a3: d6:2b:5e:63:f5:6f:65:9a:7a:88:f8:c6:e4:27:f5: 58:49:23:8f:12:60:d1:33:a8:77:f2:4a:01:f4:5a: fa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:90:FC:76:CD:FB:D4:58:68:2B:DB:AC:86:73:96:0D:3F:FE:E9:50 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145906.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:acb8::/32 Signature Algorithm: sha256WithRSAEncryption d5:f7:e5:e8:ed:ad:1d:e6:cb:37:01:36:fb:a1:f5:bf:da:d4: 31:e1:46:ab:66:8f:2d:8c:43:3b:d2:03:19:e3:92:0d:1a:56: 63:66:08:45:d1:b4:e5:ef:e3:34:54:d4:36:e9:b9:76:92:13: 86:e8:b5:4b:33:d2:4e:23:a1:8f:1a:aa:19:b0:94:f9:e8:d3: 59:78:9e:f4:f4:9f:ea:e7:80:4d:66:2b:7b:7b:67:b9:44:40: 33:af:f1:3f:58:23:c9:68:3f:46:ba:93:29:25:6e:85:bc:fc: fa:e7:ff:28:ad:ad:9e:c2:1e:4b:52:bd:4d:38:dc:f6:41:e2: 34:07:78:ad:fd:ed:84:cf:ae:c9:12:55:2d:4c:47:fd:22:c6: ed:4f:d6:e3:bb:93:30:cb:22:cc:4e:e5:e2:b9:fc:1a:d3:48: ca:8e:93:b2:c0:92:45:89:f0:0b:01:91:8b:fd:82:ae:68:7d: 4a:66:fe:44:f0:48:9b:34:fc:92:6e:3d:62:10:0d:66:87:6b: 05:3f:e3:0c:e6:ba:44:6c:e0:c0:9f:46:de:c4:de:4c:97:b8: 22:11:fd:11:ff:f4:86:ef:0d:85:93:e4:aa:13:f5:fa:da:45: ad:27:99:54:34:11:13:31:fa:12:94:9e:e7:c2:fc:01:32:34: 2c:ae:9c:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNKyA5NPVTqFx/qqH4s6s+MLFZMIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU1NVoX DTI3MDMwMzA2MzA1NVowMzExMC8GA1UEAxMoNkM5MEZDNzZDREZCRDQ1ODY4MkJE QkFDODY3Mzk2MEQzRkZFRTk1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK868pPZrRGGHgTMZxoCPsP3hAGM2kv/AiKsJEmS+YvzdwwlDQIZvueeKRnE gdDdIvw4Tdj9TjRrXDjThRapEJ2R3Rkjgs54bvHIkZk2nh30UW33xakCe4vCSvQw QORJATyCZBEbMOisi59lg2tncd1c2IEHV61G7R+NXNQ70/DuvagSYMoDeutLrynf 6ElufIq/flgbqaok2PeN6IOsWjn/pl5Qyg1q4JKoGwQRK4CB7FIhf9/vvkAX4VrH bgkz2hvWkSw94YIM4ujInlZEvVlfvKQTejxVmsbcD0CqK3Oj1iteY/VvZZp6iPjG 5Cf1WEkjjxJg0TOod/JKAfRa+o8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRskPx2 zfvUWGgr26yGc5YNP/7pUDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTkwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rLgwDQYJKoZIhvcNAQELBQADggEBANX35ejtrR3myzcBNvuh9b/a1DHhRqtmjy2M QzvSAxnjkg0aVmNmCEXRtOXv4zRU1DbpuXaSE4botUsz0k4joY8aqhmwlPno01l4 nvT0n+rngE1mK3t7Z7lEQDOv8T9YI8loP0a6kyklboW8/Prn/yitrZ7CHktSvU04 3PZB4jQHeK397YTPrskSVS1MR/0ixu1P1uO7kzDLIsxO5eK5/BrTSMqOk7LAkkWJ 8AsBkYv9gq5ofUpm/kTwSJs0/JJuPWIQDWaHawU/4wzmukRs4MCfRt7E3kyXuCIR /RH/9IbvDYWT5KoT9fraRa0nmVQ0ERMx+hKUnufC/AEyNCyunHI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:43 2026 by rpki-client