$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144034.roa File: AS144034.roa (raw, json) Hash identifier: dS6ALxPagH7WiVOazl2vArRxQS+UuOmFWJkilPHLamw= Subject key identifier: 59:3D:26:38:E0:DD:75:4D:7D:70:07:35:7C:38:2A:92:B1:61:93:02 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 13252AD047B85F0EE44336139F12AEA615ED2FCB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144034.roa Signing time: Wed 04 Mar 2026 06:14:55 +0000 ROA not before: Wed 04 Mar 2026 06:09:55 +0000 ROA not after: Wed 03 Mar 2027 06:14:55 +0000 asID: 144034 IP address blocks: 240a:a568::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:25:2a:d0:47:b8:5f:0e:e4:43:36:13:9f:12:ae:a6:15:ed:2f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:55 2026 GMT Not After : Mar 3 06:14:55 2027 GMT Subject: CN=593D2638E0DD754D7D7007357C382A92B1619302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2e:0f:b0:ab:69:75:7f:83:42:fc:57:b3:02: 35:bf:92:0e:9c:ab:e7:6e:5f:a3:51:d0:45:2a:03: 42:db:68:3a:d0:bf:c1:39:9f:35:d1:e0:94:5c:72: 5d:98:b8:51:e6:d9:ad:01:9a:32:4b:6c:aa:bc:cb: 40:d6:02:55:08:fa:41:54:77:42:f9:e5:81:a8:0b: 4e:75:10:cc:e7:c0:48:69:c2:d1:d8:45:53:23:33: a9:4a:2f:e0:07:91:eb:be:1e:38:b5:23:07:4f:83: 7e:ec:30:97:5f:0d:0e:8f:75:98:39:90:d8:0f:90: bc:ab:3e:05:90:9b:87:47:08:7d:c6:30:a7:b4:b3: 34:a9:97:f4:c6:89:05:26:4c:2a:4a:f5:fc:45:22: 49:42:5f:3c:8a:40:4e:84:90:5d:be:29:d3:bb:9a: 48:66:3a:6e:db:48:0c:cc:59:6e:9a:45:f7:9b:a7: 6a:ab:7a:37:a6:da:31:d5:6f:e4:c9:d8:5b:80:d0: a2:1c:75:f9:c8:f0:d2:a9:2c:e3:c4:21:af:63:a5: ed:7b:15:0d:67:63:33:66:07:18:5d:f9:00:fe:a5: 43:81:98:94:27:40:b6:d4:a3:b3:ce:9c:68:f3:71: 86:5f:10:98:e1:ce:b5:ce:d9:cd:29:93:66:cb:f6: 5d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:3D:26:38:E0:DD:75:4D:7D:70:07:35:7C:38:2A:92:B1:61:93:02 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a568::/32 Signature Algorithm: sha256WithRSAEncryption 2d:47:c2:fb:94:d5:72:dd:40:f9:b6:46:07:20:c7:9d:70:86: b8:57:75:78:b0:82:3a:92:92:b3:65:e9:f9:71:b5:45:44:75: 22:47:7f:46:02:01:e5:9d:0f:5e:e5:c4:40:05:2b:55:82:de: 39:37:6b:73:8d:ed:f3:a9:ec:7d:98:37:67:1b:2b:1f:18:77: 0a:23:ac:3b:d2:82:32:52:00:13:9f:ec:03:ed:89:f8:60:d6: 77:c3:78:9e:70:ec:1c:6e:35:ac:b4:6a:1f:3b:c9:12:8a:4e: d5:ed:2b:df:2a:21:95:97:59:2c:74:ea:64:ec:24:24:2c:da: bc:04:4b:9b:8e:41:8c:0e:ef:c3:c5:65:19:73:1a:68:1c:8e: 6b:f1:fc:eb:a7:d6:fa:25:35:d7:41:fd:05:c4:00:d4:32:9c: 5c:68:3c:12:cc:39:6d:9a:04:c6:ce:1b:c7:4d:2f:66:96:f3: 26:21:31:1a:5d:c5:59:6e:ec:4b:43:a2:ea:e0:c6:9c:c6:75: af:33:2e:63:67:75:b8:8b:41:dd:37:92:21:e7:99:0d:27:38: ea:85:42:c1:73:ab:a6:95:3c:98:da:ca:ce:42:bb:f9:99:8b: ea:56:22:7d:d5:94:f0:5a:3b:1d:b2:8d:d8:a5:74:6e:8d:79: 89:0a:da:58 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUEyUq0Ee4Xw7kQzYTnxKuphXtL8swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk1NVoX DTI3MDMwMzA2MTQ1NVowMzExMC8GA1UEAxMoNTkzRDI2MzhFMERENzU0RDdENzAw NzM1N0MzODJBOTJCMTYxOTMwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEuD7CraXV/g0L8V7MCNb+SDpyr525fo1HQRSoDQttoOtC/wTmfNdHglFxy XZi4UebZrQGaMktsqrzLQNYCVQj6QVR3QvnlgagLTnUQzOfASGnC0dhFUyMzqUov 4AeR674eOLUjB0+Dfuwwl18NDo91mDmQ2A+QvKs+BZCbh0cIfcYwp7SzNKmX9MaJ BSZMKkr1/EUiSUJfPIpAToSQXb4p07uaSGY6bttIDMxZbppF95unaqt6N6baMdVv 5MnYW4DQohx1+cjw0qks48Qhr2Ol7XsVDWdjM2YHGF35AP6lQ4GYlCdAttSjs86c aPNxhl8QmOHOtc7ZzSmTZsv2XRcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRZPSY4 4N11TX1wBzV8OCqSsWGTAjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pWgwDQYJKoZIhvcNAQELBQADggEBAC1HwvuU1XLdQPm2Rgcgx51whrhXdXiwgjqS krNl6flxtUVEdSJHf0YCAeWdD17lxEAFK1WC3jk3a3ON7fOp7H2YN2cbKx8Ydwoj rDvSgjJSABOf7APtifhg1nfDeJ5w7BxuNay0ah87yRKKTtXtK98qIZWXWSx06mTs JCQs2rwES5uOQYwO78PFZRlzGmgcjmvx/Oun1volNddB/QXEANQynFxoPBLMOW2a BMbOG8dNL2aW8yYhMRpdxVlu7EtDourgxpzGda8zLmNndbiLQd03kiHnmQ0nOOqF QsFzq6aVPJjays5Cu/mZi+pWIn3VlPBaOx2yjdildG6NeYkK2lg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:48 2026 by rpki-client