$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145922.roa File: AS145922.roa (raw, json) Hash identifier: djvdR2GpvrwIlEBD54CT41iWVukGjHdEdowpmpJBz4o= Subject key identifier: F1:38:F1:E4:2C:BF:3D:8B:98:4B:EC:2C:94:39:E6:58:D3:E3:3F:B1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 261F426EDE4920A4B08D9E8CE84D38797D5F9E67 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145922.roa Signing time: Wed 04 Mar 2026 06:30:48 +0000 ROA not before: Wed 04 Mar 2026 06:25:48 +0000 ROA not after: Wed 03 Mar 2027 06:30:48 +0000 asID: 145922 IP address blocks: 240a:acc8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:1f:42:6e:de:49:20:a4:b0:8d:9e:8c:e8:4d:38:79:7d:5f:9e:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:48 2026 GMT Not After : Mar 3 06:30:48 2027 GMT Subject: CN=F138F1E42CBF3D8B984BEC2C9439E658D3E33FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:70:1e:a7:c3:68:ee:93:ee:12:8e:df:5f:32: 59:30:f9:3b:d0:dd:8d:83:66:02:13:ca:bd:61:9f: bf:4d:f5:ef:9c:e0:16:1b:82:64:3b:e5:5a:be:cc: 5a:2c:e3:43:7c:3a:d0:cc:c8:aa:ad:c5:37:e6:ec: dc:c2:90:22:06:36:c0:e9:bd:82:af:36:c9:a2:a7: 7b:52:75:85:5e:5f:e4:c2:df:4d:17:ab:ef:1e:e7: f7:20:f6:af:d3:4f:15:e7:40:c4:df:05:41:49:e6: 07:6c:b5:ee:87:5a:37:ff:c5:1c:74:ec:13:a1:3f: 04:31:cf:a9:29:b5:6e:be:4a:9a:23:77:b5:72:c8: 8a:70:ff:de:40:42:85:0d:76:d9:d6:4e:b6:a9:c2: b5:45:14:f0:21:a0:8f:38:60:b1:74:6c:04:6d:05: 1b:b4:46:00:f5:fa:86:cc:32:f6:98:59:69:27:29: c6:04:3a:3a:b2:11:99:79:70:13:95:c0:5b:e4:a3: 4d:cb:19:de:32:f9:ca:43:d6:4e:97:64:0e:8e:fe: ac:fe:a4:d7:5c:da:48:22:8b:66:82:44:69:fc:91: 25:ac:48:bc:04:26:57:6e:8f:ea:67:61:22:a1:9a: 5d:98:93:42:82:04:40:9b:e4:42:9b:55:32:98:8e: 49:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:38:F1:E4:2C:BF:3D:8B:98:4B:EC:2C:94:39:E6:58:D3:E3:3F:B1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145922.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:acc8::/32 Signature Algorithm: sha256WithRSAEncryption 51:bf:70:94:53:66:2b:19:23:08:c8:50:50:56:be:64:ef:16: 80:92:10:2c:b5:f0:58:bb:35:8a:b4:b9:62:4f:53:59:cd:a0: 27:11:d4:14:24:0e:4d:96:c5:e7:78:bf:67:b9:d6:46:3d:49: e9:46:c7:6d:7d:da:17:06:f7:ca:ed:2f:af:1b:04:6c:a9:47: 32:47:f3:ff:9c:cb:d8:4e:67:bc:b9:10:ee:75:6f:d7:32:5d: 16:1c:3f:e0:e0:e1:76:1e:7d:60:c4:a8:7f:8e:85:e2:49:97: ba:b7:d4:d5:97:0f:e7:a2:ec:1e:f4:0b:8f:40:01:ba:45:a3: ca:6c:9d:1c:0f:39:3b:0e:7f:eb:1e:e3:16:83:77:71:8a:a8: 7c:8e:a2:07:56:ca:12:2d:95:06:da:19:2c:d2:f7:94:11:76: 80:07:d6:f4:42:8b:0b:30:2a:f8:67:90:dd:e7:5b:e0:ce:c2: 07:2c:fc:4d:2f:bf:85:ea:c8:aa:d1:52:4a:dd:21:84:09:dc: d8:8a:28:b8:b0:b8:bc:79:e3:db:44:58:02:a1:08:77:89:db: de:1b:83:1f:cf:78:3a:9e:2e:21:b0:41:ef:be:98:09:44:fe: 46:53:d4:1c:63:a0:e6:0d:15:b9:73:32:3d:32:81:73:6d:21: ef:bc:5f:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJh9Cbt5JIKSwjZ6M6E04eX1fnmcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU0OFoX DTI3MDMwMzA2MzA0OFowMzExMC8GA1UEAxMoRjEzOEYxRTQyQ0JGM0Q4Qjk4NEJF QzJDOTQzOUU2NThEM0UzM0ZCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFwHqfDaO6T7hKO318yWTD5O9DdjYNmAhPKvWGfv03175zgFhuCZDvlWr7M WizjQ3w60MzIqq3FN+bs3MKQIgY2wOm9gq82yaKne1J1hV5f5MLfTRer7x7n9yD2 r9NPFedAxN8FQUnmB2y17odaN//FHHTsE6E/BDHPqSm1br5KmiN3tXLIinD/3kBC hQ122dZOtqnCtUUU8CGgjzhgsXRsBG0FG7RGAPX6hswy9phZaScpxgQ6OrIRmXlw E5XAW+SjTcsZ3jL5ykPWTpdkDo7+rP6k11zaSCKLZoJEafyRJaxIvAQmV26P6mdh IqGaXZiTQoIEQJvkQptVMpiOSd0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTxOPHk LL89i5hL7CyUOeZY0+M/sTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTkyMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rMgwDQYJKoZIhvcNAQELBQADggEBAFG/cJRTZisZIwjIUFBWvmTvFoCSECy18Fi7 NYq0uWJPU1nNoCcR1BQkDk2Wxed4v2e51kY9SelGx2192hcG98rtL68bBGypRzJH 8/+cy9hOZ7y5EO51b9cyXRYcP+Dg4XYefWDEqH+OheJJl7q31NWXD+ei7B70C49A AbpFo8psnRwPOTsOf+se4xaDd3GKqHyOogdWyhItlQbaGSzS95QRdoAH1vRCiwsw KvhnkN3nW+DOwgcs/E0vv4XqyKrRUkrdIYQJ3NiKKLiwuLx549tEWAKhCHeJ294b gx/PeDqeLiGwQe++mAlE/kZT1BxjoOYNFblzMj0ygXNtIe+8X0U= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:09 2026 by rpki-client