$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS145992.roa File: AS145992.roa (raw, json) Hash identifier: C30VKi1xEst1r+W8WPLg3cLVCgNI5pwfk4/XpdW5jf4= Subject key identifier: 5D:24:A7:5B:07:C4:2A:C0:84:F3:10:33:29:A1:B3:98:C5:A8:92:51 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 58C54F23A2151992E3DF3503445AD58D73038A95 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS145992.roa Signing time: Wed 04 Mar 2026 06:29:36 +0000 ROA not before: Wed 04 Mar 2026 06:24:36 +0000 ROA not after: Wed 03 Mar 2027 06:29:36 +0000 asID: 145992 IP address blocks: 240a:ad0e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c5:4f:23:a2:15:19:92:e3:df:35:03:44:5a:d5:8d:73:03:8a:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:36 2026 GMT Not After : Mar 3 06:29:36 2027 GMT Subject: CN=5D24A75B07C42AC084F3103329A1B398C5A89251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4b:5a:45:90:39:05:88:0b:14:b2:81:1d:6f: 4d:34:f8:01:8c:10:e7:50:17:9c:17:e6:29:8e:50: 18:5f:0f:69:cf:57:91:f6:3b:bc:ed:27:67:c9:c0: 99:4c:bd:dc:c5:48:a9:f7:b5:7a:74:b2:9e:47:ee: c5:03:c7:da:93:1d:f4:cb:a7:ad:78:6c:37:28:9c: da:e3:b1:db:4c:cd:c2:5c:ab:85:e0:18:7d:e4:b7: 45:a5:e3:ed:58:f7:d7:98:7f:c9:20:b7:af:6a:9f: c8:c5:d1:2c:3e:ef:0a:44:1a:5b:ff:13:6b:91:c7: 90:24:18:2c:ef:fb:e3:95:db:23:39:02:3f:b7:3c: 29:13:1d:f1:68:d5:c0:a1:4a:cb:25:af:ed:10:0c: fd:b6:26:ef:11:11:fe:25:ea:0c:2b:60:3f:34:fb: fe:3f:e1:87:f9:fd:b5:ad:92:c0:aa:f6:76:ac:12: 8c:c4:42:78:b2:41:d7:73:2f:e2:8a:f9:46:0f:16: 8c:7e:2c:4d:d2:97:ce:2f:83:e5:ff:8b:67:67:bd: 04:9e:a4:e6:8c:54:6a:72:b7:15:df:a1:40:96:2c: b6:08:e4:85:ad:f2:48:14:18:7d:ae:85:ec:3a:85: ce:31:5f:21:b9:7d:f7:99:49:04:7c:c2:e3:c6:98: 81:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:24:A7:5B:07:C4:2A:C0:84:F3:10:33:29:A1:B3:98:C5:A8:92:51 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS145992.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad0e::/32 Signature Algorithm: sha256WithRSAEncryption 7a:7c:13:0d:f0:48:87:d6:36:7d:b9:d1:c0:36:5f:a1:8c:33: 3a:86:f8:c9:be:ef:d3:36:31:8f:92:6f:7f:5c:15:b4:40:b5: 21:89:7d:79:1e:95:d9:b7:a3:fb:2a:9b:86:9a:28:9a:4a:fd: 6f:66:c4:cf:24:2d:ea:6b:e6:58:fe:ee:a2:bf:10:b2:a8:a4: 4d:26:9d:82:56:82:a0:ab:02:c3:9c:6f:f7:a2:e6:0e:4a:c5: ac:04:94:26:66:96:bf:1f:b8:6c:fc:1e:b1:e7:d0:07:47:98: 1e:c5:70:5f:9f:41:b6:53:51:74:31:c1:c4:2b:4b:ba:b9:69: 2c:28:1c:ae:58:99:1a:3d:0c:9d:3b:1f:8e:1f:75:68:a1:47: cb:90:84:8c:a0:6b:fc:86:5b:03:48:d2:16:6b:ce:4e:9f:56: b8:07:fd:00:6d:d4:2f:a6:0a:4e:88:eb:82:d5:17:76:e9:9b: 20:22:2e:33:f9:ca:a2:30:5c:ba:bd:30:ac:3d:b9:f5:54:c3: db:8a:9e:96:53:71:f5:4f:ec:4a:0c:26:ec:55:86:fa:fa:bf: 49:84:ba:af:5b:ba:6d:3c:8b:6b:a8:22:99:fa:d0:96:f2:6a: 94:ed:1e:1f:e9:94:da:33:1c:22:4e:d8:22:2b:81:20:34:4d: 81:a5:09:1b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUWMVPI6IVGZLj3zUDRFrVjXMDipUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQzNloX DTI3MDMwMzA2MjkzNlowMzExMC8GA1UEAxMoNUQyNEE3NUIwN0M0MkFDMDg0RjMx MDMzMjlBMUIzOThDNUE4OTI1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKFLWkWQOQWICxSygR1vTTT4AYwQ51AXnBfmKY5QGF8Pac9XkfY7vO0nZ8nA mUy93MVIqfe1enSynkfuxQPH2pMd9MunrXhsNyic2uOx20zNwlyrheAYfeS3RaXj 7Vj315h/ySC3r2qfyMXRLD7vCkQaW/8Ta5HHkCQYLO/745XbIzkCP7c8KRMd8WjV wKFKyyWv7RAM/bYm7xER/iXqDCtgPzT7/j/hh/n9ta2SwKr2dqwSjMRCeLJB13Mv 4or5Rg8WjH4sTdKXzi+D5f+LZ2e9BJ6k5oxUanK3Fd+hQJYstgjkha3ySBQYfa6F 7DqFzjFfIbl995lJBHzC48aYgTkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRdJKdb B8QqwITzEDMpobOYxaiSUTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NTk5Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rQ4wDQYJKoZIhvcNAQELBQADggEBAHp8Ew3wSIfWNn250cA2X6GMMzqG+Mm+79M2 MY+Sb39cFbRAtSGJfXkeldm3o/sqm4aaKJpK/W9mxM8kLepr5lj+7qK/ELKopE0m nYJWgqCrAsOcb/ei5g5KxawElCZmlr8fuGz8HrHn0AdHmB7FcF+fQbZTUXQxwcQr S7q5aSwoHK5YmRo9DJ07H44fdWihR8uQhIyga/yGWwNI0hZrzk6fVrgH/QBt1C+m Ck6I64LVF3bpmyAiLjP5yqIwXLq9MKw9ufVUw9uKnpZTcfVP7EoMJuxVhvr6v0mE uq9bum08i2uoIpn60JbyapTtHh/plNozHCJO2CIrgSA0TYGlCRs= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:09 2026 by rpki-client