$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144010.roa File: AS144010.roa (raw, json) Hash identifier: ledxf6zRmROu+KWJhCDsXPYAqZsMZA7huMO2QKpbPuI= Subject key identifier: 9A:1E:C8:09:CD:64:35:06:B0:2A:06:04:25:B7:EB:C2:A4:0E:B7:CE Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7F5F41AD918B2CDF42B77BC4C2F8354180191CE9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144010.roa Signing time: Wed 04 Mar 2026 06:14:29 +0000 ROA not before: Wed 04 Mar 2026 06:09:29 +0000 ROA not after: Wed 03 Mar 2027 06:14:29 +0000 asID: 144010 IP address blocks: 240a:a550::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:5f:41:ad:91:8b:2c:df:42:b7:7b:c4:c2:f8:35:41:80:19:1c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:29 2026 GMT Not After : Mar 3 06:14:29 2027 GMT Subject: CN=9A1EC809CD643506B02A060425B7EBC2A40EB7CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0b:94:99:3e:8e:73:20:49:c2:2f:ee:e5:bd: ac:58:b8:b8:cc:2e:87:20:c2:11:1d:67:c0:70:a1: 22:3f:f9:d7:74:dd:78:c0:58:f2:49:1b:61:a7:12: 0d:f9:d2:68:55:bf:da:bf:7f:bf:c7:8f:9a:28:b0: da:57:53:20:e4:ba:50:8a:86:18:fa:70:b4:11:3c: dc:24:8a:a9:00:79:b0:9f:ed:e7:ef:79:c4:56:e6: c8:c5:5a:6f:32:c7:71:ef:31:39:bb:06:a8:5d:97: 42:04:b0:49:4b:a6:d2:4d:45:7b:3e:63:4e:e8:00: 70:b2:f5:26:7a:05:9d:63:92:88:2a:b8:ad:db:49: 48:9f:c0:2c:15:ea:d9:d3:3e:31:9b:a4:d1:1c:bb: 71:d3:e5:b6:b6:5b:97:f4:b8:6e:e9:2b:f8:4c:2d: 60:a0:5d:cc:7a:5b:5f:71:b7:7b:c6:24:c7:81:fd: f5:81:d7:23:be:cc:df:0d:67:61:31:bc:0a:3e:2b: 61:ad:1b:e1:2f:12:30:35:ad:f6:d7:ea:16:64:5c: 02:a6:ab:8b:a6:cf:b3:8d:5a:7d:88:e0:54:44:34: 93:13:83:43:ed:5e:c6:f9:32:f6:2e:40:30:40:5c: 5b:ff:d7:19:7a:8a:07:47:77:f3:a3:84:f8:e1:5c: 65:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1E:C8:09:CD:64:35:06:B0:2A:06:04:25:B7:EB:C2:A4:0E:B7:CE X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144010.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a550::/32 Signature Algorithm: sha256WithRSAEncryption 0b:7f:32:f0:44:c9:69:50:b7:7e:92:4c:18:5a:3e:2a:63:d8: da:8d:54:73:1d:ba:68:e6:9c:31:2d:3b:6f:be:24:61:58:67: a9:24:e7:47:03:82:a4:40:79:b9:5a:d3:40:a2:4d:ab:7e:79: 98:9f:d0:b7:00:33:19:62:51:44:62:95:3d:02:2c:7f:ad:4b: aa:a0:90:73:94:69:d4:6f:cc:87:49:8e:b4:1d:0f:6f:98:48: 0d:8b:68:b4:3e:c1:c6:b9:79:12:d9:e6:f8:1a:18:93:c3:52: bd:8c:7a:ec:39:9a:8e:5d:a8:17:7f:4c:20:28:2f:cf:6c:1c: d3:7b:55:68:39:c1:9f:16:f0:8f:44:d2:c9:d7:e7:a2:36:dd: c1:fe:87:f6:1c:70:34:84:8d:cd:5e:3b:f3:d4:c0:5a:66:74: 8b:f4:d7:7f:ce:b0:18:6a:fa:70:bd:62:b8:38:93:8d:01:18: 90:2e:4a:dc:3e:62:3b:d7:3a:31:ae:72:4e:98:14:08:fd:d0: d1:8e:ae:51:8d:19:cb:79:7a:33:b6:78:be:3a:9e:5f:be:d3: 0f:a7:70:5a:b8:cd:4d:9f:94:2e:91:d5:ab:30:56:a1:76:4d: 3d:1f:48:e7:6b:95:37:64:5f:69:33:15:1c:0c:4a:77:93:4c: 77:a9:c8:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUf19BrZGLLN9Ct3vEwvg1QYAZHOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkyOVoX DTI3MDMwMzA2MTQyOVowMzExMC8GA1UEAxMoOUExRUM4MDlDRDY0MzUwNkIwMkEw NjA0MjVCN0VCQzJBNDBFQjdDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANELlJk+jnMgScIv7uW9rFi4uMwuhyDCER1nwHChIj/513TdeMBY8kkbYacS DfnSaFW/2r9/v8ePmiiw2ldTIOS6UIqGGPpwtBE83CSKqQB5sJ/t5+95xFbmyMVa bzLHce8xObsGqF2XQgSwSUum0k1Fez5jTugAcLL1JnoFnWOSiCq4rdtJSJ/ALBXq 2dM+MZuk0Ry7cdPltrZbl/S4bukr+EwtYKBdzHpbX3G3e8Ykx4H99YHXI77M3w1n YTG8Cj4rYa0b4S8SMDWt9tfqFmRcAqari6bPs41afYjgVEQ0kxODQ+1exvky9i5A MEBcW//XGXqKB0d386OE+OFcZesCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSaHsgJ zWQ1BrAqBgQlt+vCpA63zjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pVAwDQYJKoZIhvcNAQELBQADggEBAAt/MvBEyWlQt36STBhaPipj2NqNVHMdumjm nDEtO2++JGFYZ6kk50cDgqRAebla00CiTat+eZif0LcAMxliUURilT0CLH+tS6qg kHOUadRvzIdJjrQdD2+YSA2LaLQ+wca5eRLZ5vgaGJPDUr2Meuw5mo5dqBd/TCAo L89sHNN7VWg5wZ8W8I9E0snX56I23cH+h/YccDSEjc1eO/PUwFpmdIv013/OsBhq +nC9Yrg4k40BGJAuStw+YjvXOjGuck6YFAj90NGOrlGNGct5ejO2eL46nl++0w+n cFq4zU2flC6R1aswVqF2TT0fSOdrlTdkX2kzFRwMSneTTHepyKA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:22 2026 by rpki-client