$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144054.roa File: AS144054.roa (raw, json) Hash identifier: jTsEu1t/5YDGkUewMmCZMCP8+1ym7B9uAHZtVNyYPgw= Subject key identifier: 97:AF:9D:4C:C0:0F:9F:2A:94:6C:A8:D7:26:2A:9B:6B:4A:C6:88:CB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2CE3BE7D6051A2CE8C089B4482F35C4BA2CFD970 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144054.roa Signing time: Wed 04 Mar 2026 06:12:35 +0000 ROA not before: Wed 04 Mar 2026 06:07:35 +0000 ROA not after: Wed 03 Mar 2027 06:12:35 +0000 asID: 144054 IP address blocks: 240a:a57c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e3:be:7d:60:51:a2:ce:8c:08:9b:44:82:f3:5c:4b:a2:cf:d9:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:35 2026 GMT Not After : Mar 3 06:12:35 2027 GMT Subject: CN=97AF9D4CC00F9F2A946CA8D7262A9B6B4AC688CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c2:ab:f9:f0:48:82:1a:07:41:33:b8:58:70: b7:42:8f:31:3c:05:f4:a1:18:d4:4c:03:ef:15:57: 2e:c1:43:37:63:b7:0f:4c:62:0b:e9:6a:d4:60:ab: a8:7d:f1:3f:9a:72:87:1e:0a:39:54:5f:2b:02:09: d3:15:71:3e:b0:ba:42:67:71:45:eb:e5:7c:3a:1b: 8e:76:bc:ab:07:10:13:4e:2e:27:a1:84:cf:82:71: ef:11:13:1b:52:a8:8a:92:36:14:06:65:fc:cc:fe: 9b:1d:bb:2c:4b:32:eb:de:55:a8:b8:97:dd:fe:7c: 41:15:98:f4:40:6d:46:11:ae:8c:35:d3:98:6d:4f: 31:75:c5:01:f9:d5:d5:b1:44:8a:c4:87:08:a9:d8: 09:4b:b5:df:a3:7b:26:9a:61:95:e9:32:31:1c:29: 56:86:73:4a:7a:27:6e:ad:6a:a3:6b:57:e0:91:c1: e2:e6:5e:3c:5f:96:4b:18:ac:5e:22:85:61:5f:0e: ee:5b:1c:56:e4:7e:20:87:17:7c:09:de:cc:71:9b: 8f:68:76:b3:91:d7:10:a6:3e:ef:4f:fc:97:06:f6: 8b:13:60:c5:6b:95:bc:bc:77:31:a4:e2:2a:00:2b: b3:46:ab:22:f3:89:fb:09:fe:7e:f6:dc:ca:cf:07: 12:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:AF:9D:4C:C0:0F:9F:2A:94:6C:A8:D7:26:2A:9B:6B:4A:C6:88:CB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144054.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a57c::/32 Signature Algorithm: sha256WithRSAEncryption 31:73:af:9f:56:0a:08:b5:fe:3f:02:3d:04:88:87:2c:4f:1d: 60:09:7a:94:11:9d:95:84:89:b1:22:49:6f:72:f1:c2:a2:57: c4:39:61:b1:04:d5:39:a0:7f:f5:63:5f:7c:a3:39:41:4b:ce: 9e:93:b7:02:ac:8a:83:8f:d1:02:89:8b:1c:99:02:7c:1a:ca: 85:6f:47:f3:1b:9a:10:64:46:31:71:16:69:88:ae:08:53:9d: 34:56:7c:cd:0f:76:6d:fc:61:96:51:67:1a:0a:3e:56:ee:fc: 7a:3d:9e:62:a1:ac:f1:b1:ac:39:4f:c2:32:21:72:96:c8:51: 8c:9b:b6:af:f3:77:4e:fb:b5:ee:6d:3f:b5:a0:58:18:c9:c9: 58:6c:f3:df:3e:37:52:29:57:d4:f2:19:90:b3:ea:46:0e:06: ea:2a:8e:e0:74:79:68:e8:64:c4:fb:d1:31:76:e0:7b:11:fe: 37:ea:d6:ef:18:a1:78:81:68:9c:37:e4:b9:21:e1:4c:86:11: a5:ad:ef:1d:45:78:43:5e:27:64:89:db:a0:4e:01:21:04:d3: 6c:a4:06:cf:a9:4c:cb:bf:a1:2a:91:ad:a3:24:58:a3:65:39: 9e:00:e4:94:bd:3e:75:79:94:ee:b4:8b:c2:e9:98:eb:9c:be: 07:95:7e:fb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULOO+fWBRos6MCJtEgvNcS6LP2XAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDczNVoX DTI3MDMwMzA2MTIzNVowMzExMC8GA1UEAxMoOTdBRjlENENDMDBGOUYyQTk0NkNB OEQ3MjYyQTlCNkI0QUM2ODhDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANvCq/nwSIIaB0EzuFhwt0KPMTwF9KEY1EwD7xVXLsFDN2O3D0xiC+lq1GCr qH3xP5pyhx4KOVRfKwIJ0xVxPrC6QmdxRevlfDobjna8qwcQE04uJ6GEz4Jx7xET G1KoipI2FAZl/Mz+mx27LEsy695VqLiX3f58QRWY9EBtRhGujDXTmG1PMXXFAfnV 1bFEisSHCKnYCUu136N7JpphlekyMRwpVoZzSnonbq1qo2tX4JHB4uZePF+WSxis XiKFYV8O7lscVuR+IIcXfAnezHGbj2h2s5HXEKY+70/8lwb2ixNgxWuVvLx3MaTi KgArs0arIvOJ+wn+fvbcys8HEtMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSXr51M wA+fKpRsqNcmKptrSsaIyzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA1NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pXwwDQYJKoZIhvcNAQELBQADggEBADFzr59WCgi1/j8CPQSIhyxPHWAJepQRnZWE ibEiSW9y8cKiV8Q5YbEE1Tmgf/VjX3yjOUFLzp6TtwKsioOP0QKJixyZAnwayoVv R/MbmhBkRjFxFmmIrghTnTRWfM0Pdm38YZZRZxoKPlbu/Ho9nmKhrPGxrDlPwjIh cpbIUYybtq/zd077te5tP7WgWBjJyVhs898+N1IpV9TyGZCz6kYOBuoqjuB0eWjo ZMT70TF24HsR/jfq1u8YoXiBaJw35Lkh4UyGEaWt7x1FeENeJ2SJ26BOASEE02yk Bs+pTMu/oSqRraMkWKNlOZ4A5JS9PnV5lO60i8LpmOucvgeVfvs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:28 2026 by rpki-client