$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144000.roa File: AS144000.roa (raw, json) Hash identifier: 476Nppg8i23bxWrUwc0yD8X7UdvcAFQOegFTZwIgbww= Subject key identifier: BC:0B:10:92:21:41:6D:6C:A7:A4:60:B8:3A:E2:0F:58:69:0B:B9:59 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5631A91F0CCC76C59920DFEBFFC5215F8429A3D8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144000.roa Signing time: Wed 04 Mar 2026 06:13:38 +0000 ROA not before: Wed 04 Mar 2026 06:08:38 +0000 ROA not after: Wed 03 Mar 2027 06:13:38 +0000 asID: 144000 IP address blocks: 240a:a546::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:31:a9:1f:0c:cc:76:c5:99:20:df:eb:ff:c5:21:5f:84:29:a3:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:38 2026 GMT Not After : Mar 3 06:13:38 2027 GMT Subject: CN=BC0B109221416D6CA7A460B83AE20F58690BB959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c0:f9:da:4f:07:71:ed:30:d2:da:71:b5:5b: 92:58:4d:30:3e:76:69:4f:da:f7:f7:d5:2e:87:ed: 23:95:6d:77:7e:17:85:e2:f1:b6:2f:9e:56:05:f5: 35:12:d9:de:98:b5:f5:c4:39:8a:e6:47:60:6a:a0: 72:8c:01:41:36:a6:f5:59:cc:80:29:aa:89:90:8a: 24:df:f2:4c:aa:7e:d3:9e:60:c0:f8:71:7e:20:ff: e5:c4:a2:3b:dd:96:80:3f:87:44:62:1f:42:15:66: ee:d5:87:9e:8a:2a:48:a9:ec:17:22:42:3e:81:b6: 6d:44:e4:50:32:e5:9b:e9:69:34:d2:ff:f7:17:4c: fe:9c:d8:ed:65:5b:f6:11:1e:e0:2d:9d:92:9c:77: 57:39:d0:41:74:88:e0:12:93:4b:db:7a:49:8f:70: 06:3e:41:69:2a:27:1c:86:ed:58:b9:4b:2f:27:dd: b8:7c:a2:dd:d1:d5:e1:66:aa:03:82:2a:ae:dc:b2: f5:8e:9e:20:ff:69:2e:f4:2a:3a:1f:17:4f:85:34: 86:ea:e9:37:6c:80:38:05:4d:e1:51:c6:3a:83:a5: 03:ac:48:98:f9:d7:1e:c3:dd:b6:7a:3b:b5:f2:4e: d3:30:6f:88:54:b6:25:46:1c:69:dc:c4:0f:51:e6: c8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0B:10:92:21:41:6D:6C:A7:A4:60:B8:3A:E2:0F:58:69:0B:B9:59 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144000.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a546::/32 Signature Algorithm: sha256WithRSAEncryption 6f:49:b1:b6:52:8a:97:4e:bf:d4:e1:f8:6a:11:1b:b9:07:27: 9f:3a:16:e3:a0:22:77:45:43:b1:6f:71:6a:ac:af:79:5e:e6: 5a:e5:ea:65:b6:3d:ef:7e:a1:94:0c:ff:ee:da:a2:2a:8c:33: 6a:08:f4:9c:ac:6a:25:0f:b7:4e:53:4b:af:cd:43:bd:86:5d: dc:b1:19:c1:27:bb:3e:55:0d:31:a0:6d:9a:4f:07:64:c9:97: 7d:b7:11:7f:d9:94:ac:d0:e9:ea:78:13:5b:3c:c5:e4:98:1e: 31:19:04:9b:bc:6d:70:7e:b0:e0:32:c3:7d:1f:00:bd:eb:25: 1e:a5:3c:b6:de:65:2a:22:4e:e0:e3:78:60:92:dc:b6:fb:37: 7e:1e:3f:cd:f0:0b:18:a6:b3:5e:80:71:05:4a:ee:c9:85:13: 92:e5:31:9b:b2:ed:da:39:25:4c:5a:ed:f8:91:06:24:a5:71: 36:46:99:c8:5c:2a:28:47:3f:d9:d2:f4:ee:89:8a:2c:fe:e0: 13:8f:d8:62:15:b6:d6:4b:ae:e6:ea:f9:29:b0:b0:89:7d:4c: 64:45:bc:77:46:ef:75:c5:be:9c:18:a3:eb:f7:7e:dc:da:2d: 42:3e:61:01:84:7c:15:d5:fe:14:37:34:7f:70:19:f7:76:6b: 14:da:55:98 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVjGpHwzMdsWZIN/r/8UhX4Qpo9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgzOFoX DTI3MDMwMzA2MTMzOFowMzExMC8GA1UEAxMoQkMwQjEwOTIyMTQxNkQ2Q0E3QTQ2 MEI4M0FFMjBGNTg2OTBCQjk1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbA+dpPB3HtMNLacbVbklhNMD52aU/a9/fVLoftI5Vtd34XheLxti+eVgX1 NRLZ3pi19cQ5iuZHYGqgcowBQTam9VnMgCmqiZCKJN/yTKp+055gwPhxfiD/5cSi O92WgD+HRGIfQhVm7tWHnooqSKnsFyJCPoG2bUTkUDLlm+lpNNL/9xdM/pzY7WVb 9hEe4C2dkpx3VznQQXSI4BKTS9t6SY9wBj5BaSonHIbtWLlLLyfduHyi3dHV4Waq A4Iqrtyy9Y6eIP9pLvQqOh8XT4U0hurpN2yAOAVN4VHGOoOlA6xImPnXHsPdtno7 tfJO0zBviFS2JUYcadzED1HmyBUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS8CxCS IUFtbKekYLg64g9YaQu5WTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAwMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pUYwDQYJKoZIhvcNAQELBQADggEBAG9JsbZSipdOv9Th+GoRG7kHJ586FuOgIndF Q7FvcWqsr3le5lrl6mW2Pe9+oZQM/+7aoiqMM2oI9JysaiUPt05TS6/NQ72GXdyx GcEnuz5VDTGgbZpPB2TJl323EX/ZlKzQ6ep4E1s8xeSYHjEZBJu8bXB+sOAyw30f AL3rJR6lPLbeZSoiTuDjeGCS3Lb7N34eP83wCxims16AcQVK7smFE5LlMZuy7do5 JUxa7fiRBiSlcTZGmchcKihHP9nS9O6Jiiz+4BOP2GIVttZLrubq+SmwsIl9TGRF vHdG73XFvpwYo+v3ftzaLUI+YQGEfBXV/hQ3NH9wGfd2axTaVZg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:51 2026 by rpki-client