$ rpki-client -vvf rsync.cernet.net/repo/cernet/0/AS131490.roa File: AS131490.roa (raw, json) Hash identifier: sB+1YVSfk1O/7BOIpPgkXEno3l9UFHptTgkKveOBsTY= Subject key identifier: E0:AE:62:8C:18:9D:BC:33:83:13:20:42:2F:7D:D8:67:DD:03:8C:8E Certificate issuer: /CN=A91E5D610001/serialNumber=C1EF392C500597CA3CBA2E1EC7AA1EC3F50A28B2 Certificate serial: 3E38D9460613368EBB9C62745E404B5B378E4F27 Authority key identifier: C1:EF:39:2C:50:05:97:CA:3C:BA:2E:1E:C7:AA:1E:C3:F5:0A:28:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/we85LFAFl8o8ui4ex6oew_UKKLI.cer Subject info access: rsync://rsync.cernet.net/repo/cernet/0/AS131490.roa Signing time: Thu 11 Jun 2026 09:06:21 +0000 ROA not before: Thu 11 Jun 2026 09:01:21 +0000 ROA not after: Thu 10 Jun 2027 09:06:21 +0000 asID: 131490 IP address blocks: 240c:c0a1::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.cernet.net/repo/cernet/0/C1EF392C500597CA3CBA2E1EC7AA1EC3F50A28B2.crl rsync://rsync.cernet.net/repo/cernet/0/C1EF392C500597CA3CBA2E1EC7AA1EC3F50A28B2.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/we85LFAFl8o8ui4ex6oew_UKKLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 03:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:38:d9:46:06:13:36:8e:bb:9c:62:74:5e:40:4b:5b:37:8e:4f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=C1EF392C500597CA3CBA2E1EC7AA1EC3F50A28B2 Validity Not Before: Jun 11 09:01:21 2026 GMT Not After : Jun 10 09:06:21 2027 GMT Subject: CN=E0AE628C189DBC33831320422F7DD867DD038C8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:d3:16:26:be:16:b0:c1:01:56:8a:26:43: 1b:2f:0b:89:e6:39:b2:6d:01:63:67:45:b4:d7:02: c9:9c:f5:87:ba:7b:80:b1:76:6d:6c:a2:bc:f0:59: b3:b1:95:e0:13:84:64:20:a8:40:36:9e:7d:d5:78: 34:53:29:ef:a0:47:16:91:11:6a:98:0b:d2:c7:3d: 84:4a:81:3a:cc:8d:00:4f:f5:a5:be:53:13:9b:4e: b2:0c:8f:06:19:be:32:2b:b3:79:59:50:70:a1:a8: 32:eb:fa:30:d8:9a:92:34:b0:fe:ff:92:e7:99:e2: c7:65:4d:cf:6c:3a:1b:ab:30:18:12:22:d5:8f:b5: 02:25:fb:5a:2f:2b:87:d3:91:ef:c2:e3:1c:17:c3: 18:5a:fa:04:ef:10:b3:d9:51:21:0d:f9:9c:0a:7c: 41:0d:e8:9c:36:dc:07:e1:d3:01:c4:32:03:c9:20: dc:ec:b8:d5:5c:bf:3e:48:d0:85:93:a7:52:32:bd: ef:92:cc:f3:31:b7:84:4d:90:d3:9b:22:c2:68:11: a3:63:fa:5f:7c:da:3f:51:8f:1c:78:89:a1:3a:a2: 73:30:be:db:8d:08:a4:e6:22:67:d1:b8:58:a1:b3: e0:fe:c6:76:2d:18:52:c7:27:ec:e4:d3:92:53:5f: 5f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AE:62:8C:18:9D:BC:33:83:13:20:42:2F:7D:D8:67:DD:03:8C:8E X509v3 Authority Key Identifier: keyid:C1:EF:39:2C:50:05:97:CA:3C:BA:2E:1E:C7:AA:1E:C3:F5:0A:28:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.cernet.net/repo/cernet/0/C1EF392C500597CA3CBA2E1EC7AA1EC3F50A28B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/we85LFAFl8o8ui4ex6oew_UKKLI.cer Subject Information Access: Signed Object - URI:rsync://rsync.cernet.net/repo/cernet/0/AS131490.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240c:c0a1::/32 Signature Algorithm: sha256WithRSAEncryption d7:5c:46:ca:af:77:25:d4:fc:32:12:39:38:b4:24:c6:e4:8c: e9:a1:ba:4b:55:d2:15:86:87:64:38:d9:cb:b8:d6:d8:b0:8c: 5c:ee:f6:b1:b7:4a:b8:69:79:5f:21:a1:6a:75:c4:86:25:78: 92:79:58:7a:33:11:25:53:3d:b5:d4:38:f1:b8:d3:4b:07:db: 5c:d1:82:39:4c:a5:d4:d2:9c:fd:b9:de:24:aa:c7:fa:3d:5a: 7b:45:29:99:fd:f1:55:84:4f:32:fd:e3:fc:0c:90:45:d4:12: 84:45:28:57:a4:c7:18:ea:04:61:c0:cc:c7:21:83:e0:44:da: 99:4a:a0:94:b1:a8:e2:aa:3a:9f:99:64:3e:39:31:12:39:db: 78:7f:f2:34:f3:e8:f3:0f:f9:6b:17:ef:f4:16:f6:9c:86:07: 77:04:26:58:d7:eb:90:ee:88:57:81:9c:b2:df:52:1b:da:31: a7:02:cf:83:93:2a:52:5a:5a:31:f0:b1:0b:5e:5b:b3:4c:f5: 59:44:bd:b2:8a:be:b5:21:d7:ac:7c:8c:50:70:d6:7f:50:aa: 48:07:81:2e:5a:ee:ff:7d:8e:ac:f6:63:6a:02:71:ca:32:b5: 2b:9d:62:15:95:84:67:a2:07:20:ae:2e:cc:51:b4:f5:d5:ae: 3f:25:4f:ca -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUPjjZRgYTNo67nGJ0XkBLWzeOTycwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEyhDMUVGMzkyQzUw MDU5N0NBM0NCQTJFMUVDN0FBMUVDM0Y1MEEyOEIyMB4XDTI2MDYxMTA5MDEyMVoX DTI3MDYxMDA5MDYyMVowMzExMC8GA1UEAxMoRTBBRTYyOEMxODlEQkMzMzgzMTMy MDQyMkY3REQ4NjdERDAzOEM4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2Z0xYmvhawwQFWiiZDGy8LieY5sm0BY2dFtNcCyZz1h7p7gLF2bWyivPBZ s7GV4BOEZCCoQDaefdV4NFMp76BHFpERapgL0sc9hEqBOsyNAE/1pb5TE5tOsgyP Bhm+MiuzeVlQcKGoMuv6MNiakjSw/v+S55nix2VNz2w6G6swGBIi1Y+1AiX7Wi8r h9OR78LjHBfDGFr6BO8Qs9lRIQ35nAp8QQ3onDbcB+HTAcQyA8kg3Oy41Vy/PkjQ hZOnUjK975LM8zG3hE2Q05siwmgRo2P6X3zaP1GPHHiJoTqiczC+240IpOYiZ9G4 WKGz4P7Gdi0YUscn7OTTklNfX1cCAwEAAaOCAccwggHDMB0GA1UdDgQWBBTgrmKM GJ28M4MTIEIvfdhn3QOMjjAfBgNVHSMEGDAWgBTB7zksUAWXyjy6Lh7Hqh7D9Qoo sjAOBgNVHQ8BAf8EBAMCB4AwZAYDVR0fBF0wWzBZoFegVYZTcnN5bmM6Ly9yc3lu Yy5jZXJuZXQubmV0L3JlcG8vY2VybmV0LzAvQzFFRjM5MkM1MDA1OTdDQTNDQkEy RTFFQzdBQTFFQzNGNTBBMjhCMi5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUF BzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgx RDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd2U4NUxGQUZsOG84dWk0ZXg2b2V3X1VL S0xJLmNlcjBPBggrBgEFBQcBCwRDMEEwPwYIKwYBBQUHMAuGM3JzeW5jOi8vcnN5 bmMuY2VybmV0Lm5ldC9yZXBvL2Nlcm5ldC8wL0FTMTMxNDkwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAzAoTANBgkqhkiG9w0BAQsFAAOCAQEA11xGyq93JdT8MhI5OLQkxuSM6aG6S1XS FYaHZDjZy7jW2LCMXO72sbdKuGl5XyGhanXEhiV4knlYejMRJVM9tdQ48bjTSwfb XNGCOUyl1NKc/bneJKrH+j1ae0Upmf3xVYRPMv3j/AyQRdQShEUoV6THGOoEYcDM xyGD4ETamUqglLGo4qo6n5lkPjkxEjnbeH/yNPPo8w/5axfv9Bb2nIYHdwQmWNfr kO6IV4Gcst9SG9oxpwLPg5MqUlpaMfCxC15bs0z1WUS9soq+tSHXrHyMUHDWf1Cq SAeBLlru/32OrPZjagJxyjK1K51iFZWEZ6IHIK4uzFG09dWuPyVPyg== -----END CERTIFICATE-----Generated at Fri Jun 12 09:49:21 2026 by rpki-client