$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144026.roa File: AS144026.roa (raw, json) Hash identifier: C37u/1oLbGwLR5kcXXs9Tx952vspwbuKRpzPGpgwjSM= Subject key identifier: 7F:5D:43:7C:E6:29:F1:05:EA:90:E7:36:4C:C7:A1:F1:44:9C:C4:17 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7695EDD8833239361169AC35BCE66DB1A4151A61 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144026.roa Signing time: Wed 04 Mar 2026 06:14:26 +0000 ROA not before: Wed 04 Mar 2026 06:09:26 +0000 ROA not after: Wed 03 Mar 2027 06:14:26 +0000 asID: 144026 IP address blocks: 240a:a560::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:95:ed:d8:83:32:39:36:11:69:ac:35:bc:e6:6d:b1:a4:15:1a:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:26 2026 GMT Not After : Mar 3 06:14:26 2027 GMT Subject: CN=7F5D437CE629F105EA90E7364CC7A1F1449CC417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e1:28:69:d5:86:fa:98:ea:e5:c0:2b:0b:0c: a4:61:1e:38:a1:74:e2:c5:6e:ef:9f:f6:27:8b:33: 73:35:ae:6d:9c:b0:51:6b:cc:b7:d6:8c:d0:8b:5e: ab:86:ee:6a:10:26:bc:60:dd:9e:05:a7:27:39:ef: 10:4d:24:d9:a7:a5:87:0e:cd:bf:f7:dc:9d:a6:de: 08:aa:9d:de:38:60:8e:ff:32:15:95:ee:07:4d:a7: e6:68:65:42:5c:65:1e:d3:93:1a:31:62:cd:b4:c0: b7:3f:a0:65:c3:f1:34:56:4c:2d:35:89:b8:6b:99: a6:55:7b:ab:23:f3:ef:0d:c6:71:d3:d9:c2:a5:a2: 29:3a:c8:b9:2e:91:7a:e2:38:b6:9f:e8:ea:9e:61: d9:d2:8c:e7:fe:9a:79:2d:f4:59:c6:6b:78:37:4b: 05:4e:5f:6f:4d:14:f4:b4:60:75:8c:c2:0b:ce:62: c7:7c:82:39:03:2f:21:45:27:fc:fb:7a:85:46:d1: b1:86:e3:f4:cf:89:e5:a0:74:ad:c4:c4:c7:61:ec: c3:70:cc:43:a5:46:7d:b4:fe:92:b4:2a:e1:38:d4: 2f:29:d6:af:b4:45:2b:48:77:69:6f:68:4e:83:1e: f4:ac:1d:3d:0b:f8:0d:8a:a5:e9:20:bb:3c:da:d3: 53:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5D:43:7C:E6:29:F1:05:EA:90:E7:36:4C:C7:A1:F1:44:9C:C4:17 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144026.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a560::/32 Signature Algorithm: sha256WithRSAEncryption 93:01:9c:70:72:5b:30:5a:44:c8:59:ff:e8:49:83:a5:fb:b7: 40:f9:f6:2c:e8:de:53:78:b7:f2:9a:62:52:f3:89:e4:6a:6d: d8:df:b1:51:86:30:12:a1:8a:8b:68:79:f5:41:f7:41:3c:33: 56:91:e9:36:72:d3:66:e4:9e:b7:52:68:47:73:68:94:26:8d: c4:f8:d6:47:2e:95:59:26:0f:be:70:18:1e:c9:b9:16:e6:99: ec:89:48:c9:4c:42:19:83:5f:99:2d:8f:57:68:05:32:33:1e: 3a:75:c7:f1:9d:64:b8:45:7e:10:28:4a:8f:26:7a:53:b5:ce: 41:b1:2c:cb:e0:a1:94:21:9b:f0:c9:b0:48:d2:7a:0e:5d:c7: 30:41:30:52:7d:66:09:dc:dc:c0:a8:18:b5:ec:9e:19:4b:31: 74:89:54:07:6e:b0:7f:17:69:a0:fc:15:d1:61:4f:d3:0d:09: 09:b2:2c:b0:65:09:99:ce:74:e9:95:4f:f9:b8:2b:f1:11:3e: f5:18:3e:9b:11:a2:73:4c:65:51:a2:ea:a3:4c:51:07:2d:f2: ba:55:90:19:75:d6:0a:ec:fb:01:b8:45:4a:61:c0:1e:33:c7: cf:cf:47:09:95:89:1c:71:09:6c:c4:4d:bf:4f:b3:e4:b8:e8: 5f:3a:14:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdpXt2IMyOTYRaaw1vOZtsaQVGmEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkyNloX DTI3MDMwMzA2MTQyNlowMzExMC8GA1UEAxMoN0Y1RDQzN0NFNjI5RjEwNUVBOTBF NzM2NENDN0ExRjE0NDlDQzQxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJfhKGnVhvqY6uXAKwsMpGEeOKF04sVu75/2J4szczWubZywUWvMt9aM0Ite q4buahAmvGDdngWnJznvEE0k2aelhw7Nv/fcnabeCKqd3jhgjv8yFZXuB02n5mhl QlxlHtOTGjFizbTAtz+gZcPxNFZMLTWJuGuZplV7qyPz7w3GcdPZwqWiKTrIuS6R euI4tp/o6p5h2dKM5/6aeS30WcZreDdLBU5fb00U9LRgdYzCC85ix3yCOQMvIUUn /Pt6hUbRsYbj9M+J5aB0rcTEx2Hsw3DMQ6VGfbT+krQq4TjULynWr7RFK0h3aW9o ToMe9KwdPQv4DYql6SC7PNrTU7kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR/XUN8 5inxBeqQ5zZMx6HxRJzEFzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAyNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pWAwDQYJKoZIhvcNAQELBQADggEBAJMBnHByWzBaRMhZ/+hJg6X7t0D59izo3lN4 t/KaYlLzieRqbdjfsVGGMBKhiotoefVB90E8M1aR6TZy02bknrdSaEdzaJQmjcT4 1kculVkmD75wGB7JuRbmmeyJSMlMQhmDX5ktj1doBTIzHjp1x/GdZLhFfhAoSo8m elO1zkGxLMvgoZQhm/DJsEjSeg5dxzBBMFJ9Zgnc3MCoGLXsnhlLMXSJVAdusH8X aaD8FdFhT9MNCQmyLLBlCZnOdOmVT/m4K/ERPvUYPpsRonNMZVGi6qNMUQct8rpV kBl11grs+wG4RUphwB4zx8/PRwmViRxxCWzETb9Ps+S46F86FJ4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:47 2026 by rpki-client