$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144013.roa File: AS144013.roa (raw, json) Hash identifier: cUuQ0R14OEAH6e0WCSf2wkAb2WLUibVcJ4knvq14z1o= Subject key identifier: DA:0A:3D:3F:4B:B5:B6:83:47:8E:CB:E3:A1:E0:5D:C7:DF:1E:BD:5C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 18808773437BB089D1F3426A9AA17EE865409B25 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144013.roa Signing time: Wed 04 Mar 2026 06:13:18 +0000 ROA not before: Wed 04 Mar 2026 06:08:18 +0000 ROA not after: Wed 03 Mar 2027 06:13:18 +0000 asID: 144013 IP address blocks: 240a:a553::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:80:87:73:43:7b:b0:89:d1:f3:42:6a:9a:a1:7e:e8:65:40:9b:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:18 2026 GMT Not After : Mar 3 06:13:18 2027 GMT Subject: CN=DA0A3D3F4BB5B683478ECBE3A1E05DC7DF1EBD5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bb:bc:c0:ca:8f:2e:03:c2:6b:25:02:20:b6: ca:21:ae:1f:6f:42:ad:6b:06:40:b6:0f:cd:df:5d: 2b:f9:b3:9a:3a:77:68:97:29:a7:f9:cf:4b:ec:97: 58:78:9e:1c:32:de:b6:76:90:e4:c3:d9:6f:3d:03: d7:13:47:6f:e1:0a:75:4c:f7:33:cc:1b:a1:9b:8b: 8d:ec:07:36:ac:78:73:8e:cf:34:fb:de:6d:1b:1f: c5:b9:8b:58:dc:47:1e:55:23:0f:f3:e4:4a:13:91: 0e:95:e6:42:2b:d5:d2:87:58:eb:63:c9:00:cc:20: b5:10:89:6b:7d:87:1a:8e:ea:c1:f1:33:3c:a5:34: 91:69:c8:c7:20:5a:9d:01:5e:a6:6b:9e:37:33:f8: 3d:ac:f5:33:18:b6:df:5d:6d:40:52:96:7c:09:76: 4c:1a:f4:a0:cb:ac:d8:82:31:10:3b:df:63:f5:fd: 48:61:54:d0:41:9e:76:9e:cd:ad:d8:cd:ee:d5:b5: ed:8f:f7:2e:8e:1b:b2:7e:86:97:60:06:4d:94:2b: 0d:96:4c:25:a5:4c:64:ff:06:e9:2c:04:ca:a7:5a: b7:94:60:63:51:5f:61:95:82:a3:cd:4e:80:49:15: e5:58:43:f1:94:ce:6c:70:c0:cb:af:3b:3a:63:43: ec:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0A:3D:3F:4B:B5:B6:83:47:8E:CB:E3:A1:E0:5D:C7:DF:1E:BD:5C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144013.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a553::/32 Signature Algorithm: sha256WithRSAEncryption bf:7d:0d:8d:8e:87:cd:e5:2f:7b:d2:22:07:2b:aa:ee:ff:c1: 59:09:27:86:8d:0f:ee:15:7b:42:ce:9a:57:10:ed:16:20:1d: aa:18:7e:6e:05:15:a9:be:24:d5:99:1d:e2:0c:b1:75:fa:ac: b8:39:9f:8a:30:d3:03:7c:cd:5d:dd:ff:d0:1f:a9:2e:15:e2: 69:0e:c3:67:29:37:2a:58:5e:bd:82:f2:a9:42:f2:c7:1e:20: 22:7e:9a:ff:2a:f2:65:58:a9:cd:63:28:df:63:36:35:fb:0f: 4e:50:fa:6f:4f:2b:ee:44:34:ca:5d:bc:0b:ac:c2:83:b1:da: f9:77:3e:21:1f:da:a4:37:60:e5:15:10:4f:f2:fb:21:a5:bb: 97:e8:2c:32:a1:87:d4:2a:fd:9b:3a:f2:97:43:4f:c5:e0:8e: 1e:d8:fe:6a:e2:73:ee:dc:35:d2:c9:f5:7d:cc:58:cb:28:d8: 8c:44:07:07:75:1b:cb:23:80:f3:ef:ab:9e:30:9a:f4:d0:bb: ec:a6:2c:3c:f2:c8:6d:ad:69:80:6b:06:1f:04:44:ed:ce:b4: 59:0f:16:b4:27:3c:9a:a8:5c:e0:db:eb:0f:f6:97:07:61:71: 53:00:35:48:82:a8:2d:47:8c:b5:35:16:1f:7d:0d:50:e4:ed: ed:17:95:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGICHc0N7sInR80JqmqF+6GVAmyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgxOFoX DTI3MDMwMzA2MTMxOFowMzExMC8GA1UEAxMoREEwQTNEM0Y0QkI1QjY4MzQ3OEVD QkUzQTFFMDVEQzdERjFFQkQ1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALm7vMDKjy4DwmslAiC2yiGuH29CrWsGQLYPzd9dK/mzmjp3aJcpp/nPS+yX WHieHDLetnaQ5MPZbz0D1xNHb+EKdUz3M8wboZuLjewHNqx4c47PNPvebRsfxbmL WNxHHlUjD/PkShORDpXmQivV0odY62PJAMwgtRCJa32HGo7qwfEzPKU0kWnIxyBa nQFepmueNzP4Paz1Mxi2311tQFKWfAl2TBr0oMus2IIxEDvfY/X9SGFU0EGedp7N rdjN7tW17Y/3Lo4bsn6Gl2AGTZQrDZZMJaVMZP8G6SwEyqdat5RgY1FfYZWCo81O gEkV5VhD8ZTObHDAy687OmND7E0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTaCj0/ S7W2g0eOy+Oh4F3H3x69XDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAxMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pVMwDQYJKoZIhvcNAQELBQADggEBAL99DY2Oh83lL3vSIgcrqu7/wVkJJ4aND+4V e0LOmlcQ7RYgHaoYfm4FFam+JNWZHeIMsXX6rLg5n4ow0wN8zV3d/9AfqS4V4mkO w2cpNypYXr2C8qlC8sceICJ+mv8q8mVYqc1jKN9jNjX7D05Q+m9PK+5ENMpdvAus woOx2vl3PiEf2qQ3YOUVEE/y+yGlu5foLDKhh9Qq/Zs68pdDT8Xgjh7Y/mric+7c NdLJ9X3MWMso2IxEBwd1G8sjgPPvq54wmvTQu+ymLDzyyG2taYBrBh8ERO3OtFkP FrQnPJqoXODb6w/2lwdhcVMANUiCqC1HjLU1Fh99DVDk7e0XlSI= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:05 2026 by rpki-client