$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144035.roa File: AS144035.roa (raw, json) Hash identifier: YcnNTTOjcwec/XNnpv3iKARpHeR+teoCqWEFUbukp/c= Subject key identifier: 97:C9:AF:23:7C:FA:B8:7C:F7:EB:0A:D6:64:5A:20:42:F3:36:BD:94 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 72F05DF8D75E09BFC710B234AD861620251443CD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144035.roa Signing time: Wed 04 Mar 2026 06:14:47 +0000 ROA not before: Wed 04 Mar 2026 06:09:47 +0000 ROA not after: Wed 03 Mar 2027 06:14:47 +0000 asID: 144035 IP address blocks: 240a:a569::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f0:5d:f8:d7:5e:09:bf:c7:10:b2:34:ad:86:16:20:25:14:43:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:47 2026 GMT Not After : Mar 3 06:14:47 2027 GMT Subject: CN=97C9AF237CFAB87CF7EB0AD6645A2042F336BD94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:6c:8d:ed:4b:9c:84:77:d7:99:19:3a:5f: cd:b4:5d:f4:fe:b5:6e:fa:af:c1:bf:20:51:43:bf: b8:32:d0:49:02:f9:1a:03:20:c8:10:0e:0c:61:c5: 2d:76:76:01:18:65:ff:3c:2e:55:d0:d8:94:bd:7a: 50:67:32:50:fe:1e:2b:5e:b8:28:aa:ea:8a:72:3c: eb:d9:02:94:9e:8e:45:0b:17:3c:d4:73:bd:99:39: c3:53:dc:c2:d0:22:f1:63:74:ac:11:36:f9:77:40: 14:fb:42:9d:27:9b:41:40:a8:38:74:b4:ca:66:39: 81:d8:53:d3:4d:d0:01:f3:6b:ed:1b:5e:6d:ff:5a: fa:86:ba:ad:09:67:1f:23:ae:21:f6:a5:45:40:8e: 1b:c7:71:27:0a:e3:c1:4a:5d:e5:21:22:dd:3a:26: b1:a8:4c:3c:d6:f9:dd:a2:21:49:49:48:82:ce:ed: 77:bd:9d:fa:25:5e:01:27:28:59:b9:80:80:23:27: 4e:a8:94:88:6d:66:61:b5:48:e0:0d:c3:cb:c8:db: 40:46:22:4c:cd:ca:01:f9:a0:5c:57:46:d0:b1:bb: 4f:81:55:f5:38:c2:d9:a6:36:cb:1a:af:bf:dc:76: 75:13:bc:4a:d5:e2:b0:93:d0:7e:21:6e:fe:7d:12: cd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C9:AF:23:7C:FA:B8:7C:F7:EB:0A:D6:64:5A:20:42:F3:36:BD:94 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a569::/32 Signature Algorithm: sha256WithRSAEncryption 2a:5c:55:0a:99:e8:08:54:06:b1:03:69:b1:99:43:99:4b:84: c8:38:55:27:c7:cf:1f:e7:e5:5f:37:f5:0e:3b:64:3d:05:21: f5:a6:3f:c1:f2:27:41:c0:f2:f4:6b:96:8b:6c:6b:2c:1b:32: c5:37:8c:d5:f9:ca:ef:a8:1b:6f:8c:b8:8e:69:12:83:01:06: fc:79:f0:da:5d:52:33:f2:a1:f0:c0:b6:5e:51:83:ec:72:55: c8:96:4b:ca:f3:58:9a:7b:cb:a5:77:59:e8:c0:12:50:e4:91: 9e:b8:34:9e:58:e0:a6:e6:6a:8f:87:b4:a2:48:24:3e:f8:90: 91:09:17:cb:05:40:3f:a7:04:e6:43:73:9d:4b:fb:e6:64:96: 0b:44:0a:fa:aa:27:2d:6a:1b:ea:17:47:28:a7:a1:c1:51:4b: 61:99:94:35:7e:eb:66:05:0d:f1:dc:5d:81:64:ca:ce:a1:3c: 6c:e1:c2:78:74:64:e3:85:50:9a:71:f6:52:ff:8d:22:b6:e4: 9c:9f:bf:fa:f9:6c:8e:44:97:cf:a2:3f:bf:90:5b:94:b1:a7: 94:01:1c:58:3a:56:22:58:19:a9:e4:7d:41:f2:a7:44:fa:a3: 23:b0:e8:82:98:dc:fc:8d:5b:1c:b6:28:78:f3:39:b7:77:14: 1a:b9:3b:ef -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUcvBd+NdeCb/HELI0rYYWICUUQ80wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk0N1oX DTI3MDMwMzA2MTQ0N1owMzExMC8GA1UEAxMoOTdDOUFGMjM3Q0ZBQjg3Q0Y3RUIw QUQ2NjQ1QTIwNDJGMzM2QkQ5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSXbI3tS5yEd9eZGTpfzbRd9P61bvqvwb8gUUO/uDLQSQL5GgMgyBAODGHF LXZ2ARhl/zwuVdDYlL16UGcyUP4eK164KKrqinI869kClJ6ORQsXPNRzvZk5w1Pc wtAi8WN0rBE2+XdAFPtCnSebQUCoOHS0ymY5gdhT003QAfNr7Rtebf9a+oa6rQln HyOuIfalRUCOG8dxJwrjwUpd5SEi3TomsahMPNb53aIhSUlIgs7td72d+iVeASco WbmAgCMnTqiUiG1mYbVI4A3Dy8jbQEYiTM3KAfmgXFdG0LG7T4FV9TjC2aY2yxqv v9x2dRO8StXisJPQfiFu/n0SzVMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSXya8j fPq4fPfrCtZkWiBC8za9lDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDAzNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pWkwDQYJKoZIhvcNAQELBQADggEBACpcVQqZ6AhUBrEDabGZQ5lLhMg4VSfHzx/n 5V839Q47ZD0FIfWmP8HyJ0HA8vRrlotsaywbMsU3jNX5yu+oG2+MuI5pEoMBBvx5 8NpdUjPyofDAtl5Rg+xyVciWS8rzWJp7y6V3WejAElDkkZ64NJ5Y4Kbmao+HtKJI JD74kJEJF8sFQD+nBOZDc51L++ZklgtECvqqJy1qG+oXRyinocFRS2GZlDV+62YF DfHcXYFkys6hPGzhwnh0ZOOFUJpx9lL/jSK25Jyfv/r5bI5El8+iP7+QW5Sxp5QB HFg6ViJYGankfUHyp0T6oyOw6IKY3PyNWxy2KHjzObd3FBq5O+8= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:36 2026 by rpki-client