$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145929.roa File: AS145929.roa (raw, json) Hash identifier: LBMaEh8sHoeR4byaCNB0jX31+Tm2YWfvfB0itqEtV6M= Subject key identifier: 05:A7:F6:B9:2E:B5:06:6C:A6:1F:42:3B:B7:A7:B5:91:C3:1A:75:EC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5801B92894544E6FFC6535D7D97282753CCF3DF9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145929.roa Signing time: Wed 04 Mar 2026 06:30:54 +0000 ROA not before: Wed 04 Mar 2026 06:25:54 +0000 ROA not after: Wed 03 Mar 2027 06:30:54 +0000 asID: 145929 IP address blocks: 240a:accf::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:01:b9:28:94:54:4e:6f:fc:65:35:d7:d9:72:82:75:3c:cf:3d:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:54 2026 GMT Not After : Mar 3 06:30:54 2027 GMT Subject: CN=05A7F6B92EB5066CA61F423BB7A7B591C31A75EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5b:4d:37:3e:94:17:64:38:d5:94:96:ab:59: 78:40:32:c9:c8:f8:e9:e0:ec:b9:03:38:a9:06:09: bc:be:c7:41:82:b9:f1:e5:e7:a4:ca:8e:9c:bd:96: 84:e2:e3:e2:33:89:89:97:c9:39:ab:2b:78:8e:19: 78:af:af:fe:1b:18:b8:0c:45:d3:1b:d3:d4:ea:31: a1:b0:59:0c:51:31:48:9f:4e:4f:16:98:a1:4d:ef: 56:17:a0:5a:bf:53:94:a7:99:98:40:83:ae:cf:e7: fb:43:26:3c:51:70:99:73:9f:3a:08:1e:25:a5:27: 6e:8a:19:98:00:f7:ae:e6:3d:28:1f:a5:14:79:6f: 1e:b9:b6:46:1b:06:a1:2b:fb:2b:4b:34:47:d0:07: 95:cb:c3:b7:db:fa:a3:d2:7e:01:20:ae:65:4c:16: 5a:25:f4:f4:2a:ee:50:f2:97:95:61:f6:d3:28:1f: 97:16:5b:fd:fc:90:77:98:3f:01:3b:1f:04:4a:c3: 27:06:17:39:9f:b8:20:13:a5:e7:53:7f:a7:45:62: 9d:a8:f8:2e:19:5d:6d:84:be:c9:90:3d:2a:3e:32: ee:cf:e5:1d:79:4a:bf:27:82:d8:5d:a2:05:c0:cb: 7a:08:bd:36:02:e3:cc:66:75:7e:26:9a:dc:47:71: e5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A7:F6:B9:2E:B5:06:6C:A6:1F:42:3B:B7:A7:B5:91:C3:1A:75:EC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:accf::/32 Signature Algorithm: sha256WithRSAEncryption 7d:82:81:75:58:c4:74:63:03:48:93:1d:13:8f:0f:ca:16:41: 78:b8:c3:98:ef:bc:2d:98:8f:ab:2f:2d:f0:06:08:48:54:c1: ac:e8:6b:b9:f1:79:07:be:b5:98:02:6d:db:3e:f0:c6:7f:42: 17:73:26:85:dd:33:4f:93:25:7d:de:05:c2:70:ad:c0:08:ab: 39:8d:8c:ff:17:27:a9:29:80:b8:2e:15:4a:8f:d2:75:bf:5a: 51:96:52:31:5c:4e:18:0b:e4:8d:26:2c:c1:d4:c8:b5:30:84: 2a:7c:97:f9:f2:50:45:84:76:fe:21:ba:7e:6d:50:7a:67:09: 78:23:64:54:9f:98:cf:0d:11:6b:0e:75:19:4c:58:90:97:84: 5c:28:1d:9f:c5:3b:80:86:a6:fc:f5:1e:58:12:14:1f:53:ef: 93:77:df:b8:d4:81:8d:e4:b7:1e:fd:53:b6:c2:15:ee:4e:a7: a4:38:2f:6f:86:29:7f:c3:7c:85:89:aa:91:04:26:b0:6a:d0: 67:99:a7:5f:89:42:ad:37:1d:c0:5e:41:dd:12:78:24:4b:c4: ed:5b:1f:99:b5:0c:fd:fd:6e:d6:a5:b0:f2:3f:38:db:4d:44: 68:c3:99:b3:66:3c:03:6d:43:6a:e7:3c:6b:c1:de:1c:40:3e: 96:23:17:0d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUWAG5KJRUTm/8ZTXX2XKCdTzPPfkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU1NFoX DTI3MDMwMzA2MzA1NFowMzExMC8GA1UEAxMoMDVBN0Y2QjkyRUI1MDY2Q0E2MUY0 MjNCQjdBN0I1OTFDMzFBNzVFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOlbTTc+lBdkONWUlqtZeEAyycj46eDsuQM4qQYJvL7HQYK58eXnpMqOnL2W hOLj4jOJiZfJOasreI4ZeK+v/hsYuAxF0xvT1OoxobBZDFExSJ9OTxaYoU3vVheg Wr9TlKeZmECDrs/n+0MmPFFwmXOfOggeJaUnbooZmAD3ruY9KB+lFHlvHrm2RhsG oSv7K0s0R9AHlcvDt9v6o9J+ASCuZUwWWiX09CruUPKXlWH20ygflxZb/fyQd5g/ ATsfBErDJwYXOZ+4IBOl51N/p0Vinaj4LhldbYS+yZA9Kj4y7s/lHXlKvyeC2F2i BcDLegi9NgLjzGZ1fiaa3Edx5YMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQFp/a5 LrUGbKYfQju3p7WRwxp17DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTkyOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rM8wDQYJKoZIhvcNAQELBQADggEBAH2CgXVYxHRjA0iTHROPD8oWQXi4w5jvvC2Y j6svLfAGCEhUwazoa7nxeQe+tZgCbds+8MZ/QhdzJoXdM0+TJX3eBcJwrcAIqzmN jP8XJ6kpgLguFUqP0nW/WlGWUjFcThgL5I0mLMHUyLUwhCp8l/nyUEWEdv4hun5t UHpnCXgjZFSfmM8NEWsOdRlMWJCXhFwoHZ/FO4CGpvz1HlgSFB9T75N337jUgY3k tx79U7bCFe5Op6Q4L2+GKX/DfIWJqpEEJrBq0GeZp1+JQq03HcBeQd0SeCRLxO1b H5m1DP39btalsPI/ONtNRGjDmbNmPANtQ2rnPGvB3hxAPpYjFw0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:53 2026 by rpki-client