$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144015.roa File: AS144015.roa (raw, json) Hash identifier: OFL6rnV/eBrdprXpo8fZkvESI6oTYGfnJC8tPWsZhYc= Subject key identifier: F9:9B:98:0B:3E:AE:CE:88:53:6D:DF:82:30:C5:C4:21:A2:E7:13:FD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 545DA0CB297C9A476C5645AFBE9810F1C440D4E7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144015.roa Signing time: Wed 04 Mar 2026 06:15:50 +0000 ROA not before: Wed 04 Mar 2026 06:10:50 +0000 ROA not after: Wed 03 Mar 2027 06:15:50 +0000 asID: 144015 IP address blocks: 240a:a555::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:5d:a0:cb:29:7c:9a:47:6c:56:45:af:be:98:10:f1:c4:40:d4:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:50 2026 GMT Not After : Mar 3 06:15:50 2027 GMT Subject: CN=F99B980B3EAECE88536DDF8230C5C421A2E713FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f4:3d:9d:37:f2:d7:cb:dd:92:fb:51:aa:df: 1b:ba:79:90:a3:2e:82:b5:81:61:21:3f:57:fa:81: 36:0e:b9:ff:df:3d:17:21:da:e3:d4:b7:16:7a:75: e7:17:0a:8c:3c:6b:f5:dc:b8:50:fb:f3:6a:b9:7b: 19:83:88:25:06:79:c8:3a:2a:02:06:16:d6:b2:c0: 55:c4:7e:6a:21:62:7f:84:ee:d2:fc:5d:46:85:f6: 14:0e:8f:fc:75:4c:07:f7:a0:7b:a7:ab:be:98:89: ca:5a:af:1b:9f:5b:90:e0:fa:0a:f8:a4:2c:2f:79: 93:46:a4:01:fc:24:07:32:bd:50:ea:59:e3:f6:50: fa:61:eb:29:03:a5:df:b5:95:44:9e:d0:e4:fd:71: d9:80:3b:13:26:25:fa:18:62:53:91:1b:34:2b:3b: 4a:5c:1a:2a:a7:bd:ad:5b:81:fc:e5:c0:7c:f7:2c: 6d:50:4b:13:d8:81:30:e2:84:99:81:e6:05:6d:1e: f8:14:a9:cb:ea:32:58:98:9a:22:89:2a:ad:1d:b7: ca:f0:e1:c2:83:32:46:01:47:79:87:e0:85:e7:7b: e9:9e:6f:d9:37:9b:96:b8:73:72:4e:5b:96:8e:cd: 01:f3:cf:cd:0a:76:d9:23:c6:e2:4d:0a:40:df:0e: 54:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9B:98:0B:3E:AE:CE:88:53:6D:DF:82:30:C5:C4:21:A2:E7:13:FD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144015.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a555::/32 Signature Algorithm: sha256WithRSAEncryption 8c:7e:b5:70:4d:c2:0f:c6:93:ba:29:2a:1f:88:10:c7:ea:f1: 8d:97:cd:b9:e7:17:a5:0e:63:69:f4:9b:b0:59:b8:6f:14:8d: 14:d3:d8:b6:62:04:ce:22:8f:fb:d8:9f:ab:54:05:88:50:9c: 40:3f:b1:db:6c:3f:2e:09:fc:0d:83:4a:a5:c9:53:98:b7:2e: 10:66:3b:a7:e7:e2:b4:54:1d:cd:e5:6d:91:ba:fb:b7:b6:a4: 00:cc:0c:0c:fd:3a:cc:36:aa:a7:bf:43:f6:4e:3d:11:b0:be: 14:54:a6:f4:cc:cc:4d:ca:16:17:44:cb:d5:20:ec:dd:d8:ca: 29:f6:57:cf:ed:ab:54:0a:6a:e7:69:b4:46:fe:86:1c:80:0a: b1:54:f9:2c:3c:c7:3e:5a:9d:e2:1a:b3:18:26:93:ec:68:2c: 27:ce:a2:4a:c5:b1:33:76:e7:f2:81:8e:15:bb:37:2b:a4:1c: c3:09:45:05:42:80:17:3e:e3:8a:61:bf:1a:59:78:e5:45:30: 5e:5c:5d:d9:0d:9f:df:35:a9:e0:c7:41:c4:df:d4:0e:f1:b8: 35:45:e6:37:1d:20:b9:74:d7:b0:ee:07:8c:90:84:5d:0f:df: 93:41:22:1c:8a:4d:2c:85:27:33:ca:0e:a5:4b:26:11:3e:b1: 5a:60:cb:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVF2gyyl8mkdsVkWvvpgQ8cRA1OcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTA1MFoX DTI3MDMwMzA2MTU1MFowMzExMC8GA1UEAxMoRjk5Qjk4MEIzRUFFQ0U4ODUzNkRE RjgyMzBDNUM0MjFBMkU3MTNGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANz0PZ038tfL3ZL7UarfG7p5kKMugrWBYSE/V/qBNg65/989FyHa49S3Fnp1 5xcKjDxr9dy4UPvzarl7GYOIJQZ5yDoqAgYW1rLAVcR+aiFif4Tu0vxdRoX2FA6P /HVMB/ege6ervpiJylqvG59bkOD6CvikLC95k0akAfwkBzK9UOpZ4/ZQ+mHrKQOl 37WVRJ7Q5P1x2YA7EyYl+hhiU5EbNCs7SlwaKqe9rVuB/OXAfPcsbVBLE9iBMOKE mYHmBW0e+BSpy+oyWJiaIokqrR23yvDhwoMyRgFHeYfghed76Z5v2Teblrhzck5b lo7NAfPPzQp22SPG4k0KQN8OVO8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT5m5gL Pq7OiFNt34IwxcQhoucT/TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAxNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pVUwDQYJKoZIhvcNAQELBQADggEBAIx+tXBNwg/Gk7opKh+IEMfq8Y2XzbnnF6UO Y2n0m7BZuG8UjRTT2LZiBM4ij/vYn6tUBYhQnEA/sdtsPy4J/A2DSqXJU5i3LhBm O6fn4rRUHc3lbZG6+7e2pADMDAz9Osw2qqe/Q/ZOPRGwvhRUpvTMzE3KFhdEy9Ug 7N3Yyin2V8/tq1QKaudptEb+hhyACrFU+Sw8xz5aneIasxgmk+xoLCfOokrFsTN2 5/KBjhW7NyukHMMJRQVCgBc+44phvxpZeOVFMF5cXdkNn981qeDHQcTf1A7xuDVF 5jcdILl017DuB4yQhF0P35NBIhyKTSyFJzPKDqVLJhE+sVpgy0w= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:43 2026 by rpki-client