$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144046.roa File: AS144046.roa (raw, json) Hash identifier: bVz27fvDGjvKX9Ikq41J8FQW8ZMAQ2+YgPBTAnAaTfY= Subject key identifier: 69:9B:D0:6D:58:99:B6:22:E3:4D:15:4D:12:44:B3:D6:90:9B:B8:DC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 74042689CEA98BD73AEE63C8C17BB666BA942F4E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144046.roa Signing time: Wed 04 Mar 2026 06:13:56 +0000 ROA not before: Wed 04 Mar 2026 06:08:56 +0000 ROA not after: Wed 03 Mar 2027 06:13:56 +0000 asID: 144046 IP address blocks: 240a:a574::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:04:26:89:ce:a9:8b:d7:3a:ee:63:c8:c1:7b:b6:66:ba:94:2f:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:56 2026 GMT Not After : Mar 3 06:13:56 2027 GMT Subject: CN=699BD06D5899B622E34D154D1244B3D6909BB8DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:83:74:d7:6b:38:50:55:8d:86:3b:a6:be: b4:b1:a2:9f:79:78:e7:ed:85:02:50:39:5a:a6:55: d8:6d:e8:ba:d0:59:95:e8:4a:d8:60:c0:72:f4:e6: b1:47:aa:e6:20:9e:c4:d1:3b:e3:73:34:cd:33:6d: 38:96:b9:03:0c:74:85:c9:08:08:84:d6:f1:ec:21: 80:d0:7f:d6:90:a9:7a:d2:da:1c:0e:c9:60:49:f8: da:6f:10:53:8e:a5:9b:c5:21:51:78:4c:18:6a:5a: e9:4c:91:9a:d1:65:de:46:da:92:16:76:02:97:09: 92:8c:1b:7e:09:e8:2a:b3:41:b7:74:66:4b:8d:4f: d5:c1:93:2f:f4:97:8a:69:77:25:7e:cb:08:80:9e: cd:d3:e3:b4:80:59:5c:c7:e5:0b:a0:e6:1a:a8:93: f0:89:81:63:3e:bf:24:57:e6:c8:a0:5b:69:20:55: 90:f2:14:6d:b8:fa:29:2c:40:44:33:57:ec:ff:26: b1:b0:0f:03:63:79:93:bc:b8:d7:05:b1:02:5b:d3: a1:9e:ba:dd:48:3f:97:44:ff:0d:7e:0b:90:49:3d: 05:37:aa:01:1a:e9:c7:1c:38:c0:cd:e2:5b:42:a9: d1:4a:bf:0e:66:e8:f0:67:34:ff:fe:ba:82:23:30: 8a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9B:D0:6D:58:99:B6:22:E3:4D:15:4D:12:44:B3:D6:90:9B:B8:DC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144046.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a574::/32 Signature Algorithm: sha256WithRSAEncryption 8b:74:08:5d:5c:2f:2e:e9:80:30:7b:b8:2b:fe:b3:af:8a:be: 60:ec:63:b8:9e:32:ce:9f:b5:29:9c:53:58:83:35:5d:5b:c4: b5:06:e1:d0:d3:00:fe:84:96:80:40:ea:05:44:fd:91:04:68: f8:9e:3c:6a:12:c2:c2:ec:69:70:18:af:b7:46:f5:c8:48:c8: 14:29:50:6c:34:e4:e7:b9:af:5d:7f:04:a2:50:f7:f5:3d:dd: 34:8b:d2:fc:da:28:77:43:93:ea:58:40:d5:fa:4f:81:b9:6f: ca:4c:29:3a:81:04:7e:65:71:89:4b:d6:d1:d6:97:6a:a1:b9: fd:65:16:d1:02:fa:a3:ed:04:d7:7a:da:c8:bf:f5:3e:15:0e: 4a:5a:8b:c8:bc:24:07:87:93:98:fc:9d:d4:d1:aa:47:4e:b2: 03:40:94:4c:0b:9f:86:34:63:48:4f:54:4a:cb:0b:50:a9:52: c5:8e:61:87:27:d8:c0:a5:4d:89:ba:46:25:fb:09:97:cf:ef: f2:f3:b2:80:4b:57:08:e6:44:3b:85:b6:ff:9f:45:a6:7b:c7: fa:d0:f9:ee:a5:e2:b9:44:54:34:27:f5:a3:f8:4b:0d:54:5c: 2f:cf:42:c1:1c:b9:62:97:e0:97:a6:9c:ad:62:7c:67:5e:0f: 22:91:7d:33 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdAQmic6pi9c67mPIwXu2ZrqUL04wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg1NloX DTI3MDMwMzA2MTM1NlowMzExMC8GA1UEAxMoNjk5QkQwNkQ1ODk5QjYyMkUzNEQx NTREMTI0NEIzRDY5MDlCQjhEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrrg3TXazhQVY2GO6a+tLGin3l45+2FAlA5WqZV2G3outBZlehK2GDAcvTm sUeq5iCexNE743M0zTNtOJa5Awx0hckICITW8ewhgNB/1pCpetLaHA7JYEn42m8Q U46lm8UhUXhMGGpa6UyRmtFl3kbakhZ2ApcJkowbfgnoKrNBt3RmS41P1cGTL/SX iml3JX7LCICezdPjtIBZXMflC6DmGqiT8ImBYz6/JFfmyKBbaSBVkPIUbbj6KSxA RDNX7P8msbAPA2N5k7y41wWxAlvToZ663Ug/l0T/DX4LkEk9BTeqARrpxxw4wM3i W0Kp0Uq/Dmbo8Gc0//66giMwigECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRpm9Bt WJm2IuNNFU0SRLPWkJu43DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA0Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pXQwDQYJKoZIhvcNAQELBQADggEBAIt0CF1cLy7pgDB7uCv+s6+KvmDsY7ieMs6f tSmcU1iDNV1bxLUG4dDTAP6EloBA6gVE/ZEEaPiePGoSwsLsaXAYr7dG9chIyBQp UGw05Oe5r11/BKJQ9/U93TSL0vzaKHdDk+pYQNX6T4G5b8pMKTqBBH5lcYlL1tHW l2qhuf1lFtEC+qPtBNd62si/9T4VDkpai8i8JAeHk5j8ndTRqkdOsgNAlEwLn4Y0 Y0hPVErLC1CpUsWOYYcn2MClTYm6RiX7CZfP7/LzsoBLVwjmRDuFtv+fRaZ7x/rQ +e6l4rlEVDQn9aP4Sw1UXC/PQsEcuWKX4JemnK1ifGdeDyKRfTM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:08 2026 by rpki-client