$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144050.roa File: AS144050.roa (raw, json) Hash identifier: +FzPpvg6njGLlb2lFEUtFh1bV11P8ejjHFZCMoeiTmg= Subject key identifier: 2E:46:E3:07:AC:2E:A6:25:96:5E:F1:75:17:13:1A:89:78:8B:03:4D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 74B1E722578DAA44EAE5F945435A2F518ED22978 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144050.roa Signing time: Wed 04 Mar 2026 06:13:32 +0000 ROA not before: Wed 04 Mar 2026 06:08:32 +0000 ROA not after: Wed 03 Mar 2027 06:13:32 +0000 asID: 144050 IP address blocks: 240a:a578::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b1:e7:22:57:8d:aa:44:ea:e5:f9:45:43:5a:2f:51:8e:d2:29:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:32 2026 GMT Not After : Mar 3 06:13:32 2027 GMT Subject: CN=2E46E307AC2EA625965EF17517131A89788B034D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:74:17:64:bd:34:6f:3e:65:4b:22:bf:c2:aa: cd:b2:be:7b:15:16:c2:f9:8a:94:da:90:24:71:b9: 0a:f2:9f:85:11:90:e4:88:33:19:7e:0b:a4:57:8e: 28:80:51:19:59:17:5c:5c:cc:58:4f:d5:f1:a6:48: 9b:c3:8b:12:40:e0:ce:81:bf:22:e3:fc:ef:60:34: 84:ed:c4:a0:6f:a6:d7:21:7d:1d:cd:c2:b7:8d:19: 05:d4:51:6e:9c:74:ee:1c:70:3e:4a:91:2c:dc:39: 1a:5b:b7:bb:88:5e:08:60:2f:48:c3:1e:9f:3d:9d: 79:29:48:13:fa:0f:da:8b:a4:73:d4:dc:25:cd:27: 32:d1:c6:c9:96:93:5e:04:c4:5b:da:6f:c6:75:a3: b4:9a:50:9a:7b:68:32:92:a7:1e:39:81:e8:7c:0e: 2b:47:2c:6b:68:96:ac:c2:96:ac:93:f0:e9:b0:68: 1e:2f:5b:60:ed:79:52:e1:77:cd:85:c5:2d:90:f5: 6b:a9:98:8f:8a:97:73:a7:e0:69:6e:e0:bd:05:90: 7b:e9:96:ec:fa:2e:71:3e:69:54:84:c4:45:82:46: 1d:93:65:83:bc:f6:c5:f6:50:9f:c8:93:f4:d5:95: 59:d7:72:f7:a9:ef:16:27:c6:1d:a1:07:ce:bf:41: eb:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:46:E3:07:AC:2E:A6:25:96:5E:F1:75:17:13:1A:89:78:8B:03:4D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144050.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a578::/32 Signature Algorithm: sha256WithRSAEncryption c1:21:30:3f:ef:91:55:4e:98:32:68:4d:7e:86:bd:a2:78:a6: 25:cb:69:cc:19:79:ae:3c:05:e7:18:84:7c:bd:f3:2e:b3:8b: 20:c1:53:1e:46:10:4d:01:e4:c3:a9:1b:1d:f7:b7:e3:03:bd: 74:40:e5:a0:c0:46:cc:6d:db:cf:83:46:3a:8f:cb:8c:08:98: df:a5:f8:fe:91:7b:f3:f9:9a:7a:79:b1:3c:c3:86:ad:00:cc: bf:26:da:b5:4e:53:41:61:64:1e:57:d0:4a:de:77:41:de:2d: 05:98:d9:06:63:00:d2:03:00:7e:d5:a8:fa:17:10:5d:cb:26: 3c:14:03:23:5d:d6:f6:90:c6:72:c2:a3:88:35:f4:69:ae:52: b4:8a:c4:d2:25:65:66:91:27:59:6c:11:09:20:19:d5:6b:4e: 01:8e:67:12:53:14:de:cb:54:fd:f5:68:3b:d7:83:c6:08:d1: b7:27:a2:3b:1c:43:f0:b0:f1:78:fc:5c:d8:2a:a5:78:90:19: dd:f1:16:e6:be:7c:01:00:c2:d1:40:13:0e:d8:90:99:48:35: 2a:a2:e6:34:6f:79:3b:a6:72:6e:41:1a:e5:0d:1d:3c:f0:91: 9b:1f:24:f5:88:6f:0d:49:a3:8e:80:5d:d6:da:ec:05:e2:4a: 13:3e:9e:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdLHnIleNqkTq5flFQ1ovUY7SKXgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgzMloX DTI3MDMwMzA2MTMzMlowMzExMC8GA1UEAxMoMkU0NkUzMDdBQzJFQTYyNTk2NUVG MTc1MTcxMzFBODk3ODhCMDM0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALB0F2S9NG8+ZUsiv8KqzbK+exUWwvmKlNqQJHG5CvKfhRGQ5IgzGX4LpFeO KIBRGVkXXFzMWE/V8aZIm8OLEkDgzoG/IuP872A0hO3EoG+m1yF9Hc3Ct40ZBdRR bpx07hxwPkqRLNw5Glu3u4heCGAvSMMenz2deSlIE/oP2oukc9TcJc0nMtHGyZaT XgTEW9pvxnWjtJpQmntoMpKnHjmB6HwOK0csa2iWrMKWrJPw6bBoHi9bYO15UuF3 zYXFLZD1a6mYj4qXc6fgaW7gvQWQe+mW7PoucT5pVITERYJGHZNlg7z2xfZQn8iT 9NWVWddy96nvFifGHaEHzr9B648CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQuRuMH rC6mJZZe8XUXExqJeIsDTTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA1MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pXgwDQYJKoZIhvcNAQELBQADggEBAMEhMD/vkVVOmDJoTX6GvaJ4piXLacwZea48 BecYhHy98y6ziyDBUx5GEE0B5MOpGx33t+MDvXRA5aDARsxt28+DRjqPy4wImN+l +P6Re/P5mnp5sTzDhq0AzL8m2rVOU0FhZB5X0Ered0HeLQWY2QZjANIDAH7VqPoX EF3LJjwUAyNd1vaQxnLCo4g19GmuUrSKxNIlZWaRJ1lsEQkgGdVrTgGOZxJTFN7L VP31aDvXg8YI0bcnojscQ/Cw8Xj8XNgqpXiQGd3xFua+fAEAwtFAEw7YkJlINSqi 5jRveTumcm5BGuUNHTzwkZsfJPWIbw1Jo46AXdba7AXiShM+nvw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:58 2026 by rpki-client