$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144001.roa File: AS144001.roa (raw, json) Hash identifier: Ll1pp54G8gB52Gdzz/GARShoXEkeVo+ykogRcl/frVI= Subject key identifier: 93:CF:86:75:A4:02:6E:F0:AF:3E:AD:24:72:26:8D:D6:E5:52:8B:A1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 37F55BBBACEACA370052ECC01E713CE34EA139E9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144001.roa Signing time: Wed 04 Mar 2026 06:12:40 +0000 ROA not before: Wed 04 Mar 2026 06:07:40 +0000 ROA not after: Wed 03 Mar 2027 06:12:40 +0000 asID: 144001 IP address blocks: 240a:a547::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:f5:5b:bb:ac:ea:ca:37:00:52:ec:c0:1e:71:3c:e3:4e:a1:39:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:40 2026 GMT Not After : Mar 3 06:12:40 2027 GMT Subject: CN=93CF8675A4026EF0AF3EAD2472268DD6E5528BA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:94:a7:62:87:39:08:93:d8:0b:32:49:6e:77: 43:9f:a8:1d:33:6f:c8:b0:aa:21:7e:b1:41:e7:19: 8c:db:38:7f:20:ca:ef:74:43:b4:29:a2:93:f1:3c: 80:0d:05:56:7d:29:fe:87:f9:2a:c1:10:3e:b5:0b: 43:5a:f8:18:c4:e3:8b:f0:90:e5:5f:11:e2:a0:22: 3e:89:c2:7b:45:42:98:34:3f:c7:0d:0b:72:8b:21: 44:30:22:78:70:19:5c:14:ae:63:d8:e7:39:32:84: 9f:d1:61:39:8e:f2:d8:b0:8c:fa:ac:a6:bd:89:92: 9e:2b:e1:d8:75:bf:cb:6b:3d:b6:42:33:53:79:70: dd:2b:cc:c1:43:f6:dd:da:b1:a6:bc:8b:c0:aa:33: 41:98:8c:21:51:8e:a7:f2:94:9c:c4:76:84:bd:24: 77:58:26:1c:19:79:7d:11:29:e4:b2:7c:8d:a4:b4: 45:5a:25:91:51:96:60:77:3a:b9:58:e2:d7:50:ad: 92:71:47:dd:cc:75:e0:b0:af:fc:d7:ae:01:47:a8: cd:23:58:27:fa:ce:c2:f5:44:a8:63:18:cc:1a:04: 39:6b:46:80:07:c1:4f:4b:f7:2e:65:03:9d:c5:f8: 3d:76:a5:0f:35:b1:78:3b:82:c9:e5:5f:b8:2b:08: d2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CF:86:75:A4:02:6E:F0:AF:3E:AD:24:72:26:8D:D6:E5:52:8B:A1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144001.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a547::/32 Signature Algorithm: sha256WithRSAEncryption 19:26:74:7d:6e:c3:5f:e5:d2:0b:c7:99:9e:70:74:9d:86:81: d8:ec:86:47:f8:85:91:97:69:0f:82:14:a3:0d:c2:66:45:76: d8:d3:5e:9a:7d:d9:4b:5e:f4:e4:af:4e:65:dc:67:04:8b:8c: 53:bc:a4:d3:f8:71:06:55:c3:80:8c:76:88:0f:c1:d2:a2:50: df:a8:18:fc:ad:d7:f5:f1:a8:52:1e:41:18:43:3a:c8:98:4f: c1:ad:0f:3a:a3:32:f0:fc:a8:9d:98:da:a5:fb:12:1a:44:52: 89:95:66:43:cf:ae:a8:a1:ae:53:f0:ab:6b:5c:31:3f:83:d2: 4d:e6:9e:95:6d:e2:52:06:f2:a4:6d:1d:f9:60:71:2f:ca:56: d4:4c:ef:11:f3:e0:14:c6:d4:8c:45:a5:6a:d4:c2:6d:5d:25: 5a:41:be:0b:a4:2a:3a:d5:e0:7d:55:33:bd:26:e5:33:d5:f2: d2:d0:b4:d4:ce:6d:82:cb:ff:2f:04:f4:5f:16:25:92:93:8d: 50:a9:a4:36:b5:77:d3:51:a6:9f:02:06:6a:11:cc:18:24:98: a9:f0:7b:a1:df:20:b9:d2:b5:6b:4a:3b:c6:cc:5f:80:a9:a3: f4:f3:20:dd:24:a7:06:84:cb:a5:ac:3a:0a:cf:be:4e:d2:d7: 85:a4:80:95 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUN/Vbu6zqyjcAUuzAHnE8406hOekwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc0MFoX DTI3MDMwMzA2MTI0MFowMzExMC8GA1UEAxMoOTNDRjg2NzVBNDAyNkVGMEFGM0VB RDI0NzIyNjhERDZFNTUyOEJBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWUp2KHOQiT2AsySW53Q5+oHTNvyLCqIX6xQecZjNs4fyDK73RDtCmik/E8 gA0FVn0p/of5KsEQPrULQ1r4GMTji/CQ5V8R4qAiPonCe0VCmDQ/xw0LcoshRDAi eHAZXBSuY9jnOTKEn9FhOY7y2LCM+qymvYmSnivh2HW/y2s9tkIzU3lw3SvMwUP2 3dqxpryLwKozQZiMIVGOp/KUnMR2hL0kd1gmHBl5fREp5LJ8jaS0RVolkVGWYHc6 uVji11CtknFH3cx14LCv/NeuAUeozSNYJ/rOwvVEqGMYzBoEOWtGgAfBT0v3LmUD ncX4PXalDzWxeDuCyeVfuCsI0jkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSTz4Z1 pAJu8K8+rSRyJo3W5VKLoTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAwMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pUcwDQYJKoZIhvcNAQELBQADggEBABkmdH1uw1/l0gvHmZ5wdJ2Ggdjshkf4hZGX aQ+CFKMNwmZFdtjTXpp92Ute9OSvTmXcZwSLjFO8pNP4cQZVw4CMdogPwdKiUN+o GPyt1/XxqFIeQRhDOsiYT8GtDzqjMvD8qJ2Y2qX7EhpEUomVZkPPrqihrlPwq2tc MT+D0k3mnpVt4lIG8qRtHflgcS/KVtRM7xHz4BTG1IxFpWrUwm1dJVpBvgukKjrV 4H1VM70m5TPV8tLQtNTObYLL/y8E9F8WJZKTjVCppDa1d9NRpp8CBmoRzBgkmKnw e6HfILnStWtKO8bMX4Cpo/TzIN0kpwaEy6WsOgrPvk7S14WkgJU= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:29 2026 by rpki-client