$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145927.roa File: AS145927.roa (raw, json) Hash identifier: NOVxZHL4IUgzG9b7Tsn0suN0njw1AP0FKg6ZgAraSk4= Subject key identifier: E0:2B:62:7C:ED:96:A0:2B:DE:37:3B:FE:F9:70:97:BF:C7:90:F9:18 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2B71AE8B7AAB89513D2F600B21E575A1394B7E6D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145927.roa Signing time: Wed 04 Mar 2026 06:30:24 +0000 ROA not before: Wed 04 Mar 2026 06:25:24 +0000 ROA not after: Wed 03 Mar 2027 06:30:24 +0000 asID: 145927 IP address blocks: 240a:accd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:71:ae:8b:7a:ab:89:51:3d:2f:60:0b:21:e5:75:a1:39:4b:7e:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:24 2026 GMT Not After : Mar 3 06:30:24 2027 GMT Subject: CN=E02B627CED96A02BDE373BFEF97097BFC790F918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d4:a4:a2:5c:ec:8a:3f:3b:d2:61:96:6c:7a: 9c:d6:61:42:16:4e:98:f6:99:a7:6f:d6:78:59:63: 80:fd:47:e5:6c:e2:90:1e:3e:73:e1:fa:d0:c8:51: 1a:67:c6:7a:55:05:86:37:7f:9c:e4:68:aa:f6:c3: 29:c4:b2:02:4d:73:2c:2e:bb:1b:05:5d:0b:ad:8d: cd:81:77:47:03:9c:a1:ec:2e:f2:50:26:82:70:97: 7e:5e:e4:df:15:80:07:32:0c:aa:85:29:3c:ac:d8: 6c:3d:df:04:41:dc:8f:fe:a2:eb:d7:2c:ea:3e:83: 9a:f5:60:4c:02:9b:23:04:e1:33:55:28:73:2e:93: 27:a5:a2:91:a0:9b:83:69:fc:1b:75:0c:5d:cd:84: e5:d0:76:31:bf:26:b1:ad:c4:bb:98:5d:9b:c8:0f: 09:bd:17:5d:20:41:b1:7d:68:58:64:e0:52:83:b5: 48:93:ac:c4:2c:43:85:22:b9:15:0e:57:a3:27:e9: fd:eb:4a:32:a1:04:42:d0:70:4a:1e:f3:eb:b6:58: 6d:4b:fd:56:75:f5:36:36:f8:81:4e:69:53:cc:13: e7:8b:ae:ae:7e:22:3a:32:c8:17:cd:72:ac:da:dd: 06:88:d1:3e:64:da:9e:50:ba:31:34:a9:08:3f:e2: a2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2B:62:7C:ED:96:A0:2B:DE:37:3B:FE:F9:70:97:BF:C7:90:F9:18 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145927.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:accd::/32 Signature Algorithm: sha256WithRSAEncryption 34:ed:f4:63:64:b7:ed:e1:be:e1:f5:bc:e3:52:bf:72:e1:d9: dd:3d:0a:78:30:eb:77:78:3e:36:e6:1c:3e:31:fa:4e:70:91: 3b:55:7d:93:27:8e:39:eb:cc:33:96:e7:d5:ce:62:03:4c:35: 1e:8d:c6:f9:4f:ec:5b:a0:2d:81:5a:7f:41:e2:6a:4d:c4:11: fa:d8:2d:7b:7e:b6:e5:9f:41:20:fc:ba:51:09:2d:2e:d6:ef: 5c:0a:e4:cc:a4:a5:2e:4b:67:ae:ed:37:86:ea:b6:0f:c7:a5: b1:99:e1:97:41:4e:a1:4c:27:bf:39:5a:b8:e4:9e:b2:d2:ae: e0:5a:97:eb:00:44:13:21:63:d2:b6:ce:de:c5:b9:c5:62:95: ef:87:e7:c1:99:5a:25:6f:6b:b9:d2:35:65:17:f2:c4:90:01: 47:f9:81:51:1b:d6:b7:13:f6:5b:d2:3d:44:76:70:77:ac:40: 82:29:ea:4e:7e:05:8b:be:a9:f0:45:4c:be:3c:93:3c:e1:01: eb:b2:0c:30:ec:5c:3c:38:81:0e:c0:b2:26:0c:f2:85:73:ca: 4b:9f:42:ae:04:4c:60:bb:7a:15:c1:9f:b6:8c:4e:3d:b3:19: 3a:71:bc:4a:0a:d5:87:e4:c6:a9:03:14:41:5f:b0:14:c0:ef: 35:a4:31:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUK3Gui3qriVE9L2ALIeV1oTlLfm0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjUyNFoX DTI3MDMwMzA2MzAyNFowMzExMC8GA1UEAxMoRTAyQjYyN0NFRDk2QTAyQkRFMzcz QkZFRjk3MDk3QkZDNzkwRjkxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfUpKJc7Io/O9Jhlmx6nNZhQhZOmPaZp2/WeFljgP1H5WzikB4+c+H60MhR GmfGelUFhjd/nORoqvbDKcSyAk1zLC67GwVdC62NzYF3RwOcoewu8lAmgnCXfl7k 3xWABzIMqoUpPKzYbD3fBEHcj/6i69cs6j6DmvVgTAKbIwThM1Uocy6TJ6WikaCb g2n8G3UMXc2E5dB2Mb8msa3Eu5hdm8gPCb0XXSBBsX1oWGTgUoO1SJOsxCxDhSK5 FQ5Xoyfp/etKMqEEQtBwSh7z67ZYbUv9VnX1Njb4gU5pU8wT54uurn4iOjLIF81y rNrdBojRPmTanlC6MTSpCD/iokECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTgK2J8 7ZagK943O/75cJe/x5D5GDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTkyNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rM0wDQYJKoZIhvcNAQELBQADggEBADTt9GNkt+3hvuH1vONSv3Lh2d09Cngw63d4 PjbmHD4x+k5wkTtVfZMnjjnrzDOW59XOYgNMNR6NxvlP7FugLYFaf0Hiak3EEfrY LXt+tuWfQSD8ulEJLS7W71wK5MykpS5LZ67tN4bqtg/HpbGZ4ZdBTqFMJ785Wrjk nrLSruBal+sARBMhY9K2zt7FucVile+H58GZWiVva7nSNWUX8sSQAUf5gVEb1rcT 9lvSPUR2cHesQIIp6k5+BYu+qfBFTL48kzzhAeuyDDDsXDw4gQ7AsiYM8oVzykuf Qq4ETGC7ehXBn7aMTj2zGTpxvEoK1YfkxqkDFEFfsBTA7zWkMWk= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:01 2026 by rpki-client