$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144062.roa File: AS144062.roa (raw, json) Hash identifier: /i/wLbiMikJKBeNUVIWbrQ1M05z2y7QzV09BOiZCjEE= Subject key identifier: 46:36:2D:FF:B3:EE:0F:AB:92:85:E6:7B:EE:53:A7:A0:2C:0B:4B:9A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7F0C4C74DA7BF8820D86280A6D54381650F4A8AF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144062.roa Signing time: Wed 04 Mar 2026 06:14:43 +0000 ROA not before: Wed 04 Mar 2026 06:09:43 +0000 ROA not after: Wed 03 Mar 2027 06:14:43 +0000 asID: 144062 IP address blocks: 240a:a584::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:0c:4c:74:da:7b:f8:82:0d:86:28:0a:6d:54:38:16:50:f4:a8:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:43 2026 GMT Not After : Mar 3 06:14:43 2027 GMT Subject: CN=46362DFFB3EE0FAB9285E67BEE53A7A02C0B4B9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:f8:51:04:3f:70:75:c9:46:b0:ff:e6:3c: 18:20:bf:9e:ca:17:60:89:b5:2f:58:5d:b3:fd:b8: d8:f6:ea:81:7a:aa:8d:ee:c1:d2:57:76:61:b9:d4: d1:14:f5:bd:41:3d:f2:05:6c:cd:47:0a:fc:1d:10: d7:3f:1e:96:55:50:76:00:70:3d:82:15:c6:89:8a: 2a:3e:c9:05:35:78:f5:ff:db:f2:6a:d5:3e:97:44: 49:76:ce:8d:22:72:39:23:48:cc:e8:0b:1f:d7:14: 36:c7:88:60:c2:1b:92:f7:a5:8c:ff:89:44:9e:2c: 6b:47:87:19:cf:63:21:93:b5:87:0e:8a:62:48:63: 7c:e4:6b:53:89:58:df:12:c9:d0:55:79:09:da:cc: 48:e3:eb:94:b5:10:dd:ff:06:64:dd:95:64:07:28: 7f:43:4a:85:29:0e:88:d6:6d:32:ec:f4:62:da:4e: c0:f0:cc:ac:c0:70:99:be:8b:93:1e:08:85:57:f8: 03:25:d7:92:8a:ee:fe:6f:e1:f1:59:88:76:f1:fa: 2f:3d:5e:f8:fb:fc:0d:a3:07:6a:f7:23:80:09:b9: 7b:4e:9f:21:21:c4:9e:8b:58:31:fe:7b:60:64:da: cb:f1:67:e7:4e:4b:15:23:1f:7c:ce:e7:b2:d7:e6: f2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:36:2D:FF:B3:EE:0F:AB:92:85:E6:7B:EE:53:A7:A0:2C:0B:4B:9A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144062.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a584::/32 Signature Algorithm: sha256WithRSAEncryption 96:27:41:11:19:09:39:80:4e:96:f0:ba:f4:6d:10:0d:13:76: ea:55:1a:d7:ef:8c:6f:e7:47:88:9d:cd:b4:7b:8a:f9:30:cb: 4a:46:57:0c:65:20:8e:c2:82:69:67:f1:2b:54:4c:87:8b:dd: 79:74:6e:d2:13:cd:eb:9e:24:ec:20:b6:a3:e7:98:bd:eb:ee: 61:14:59:03:af:e2:63:c6:1c:f9:12:46:69:b9:2e:1f:dc:c2: cd:18:0e:b5:82:fe:28:24:7c:f1:1f:99:2f:da:d5:8c:46:8b: 2e:6b:f3:1f:61:e8:67:fd:42:78:33:38:73:da:47:ba:41:0c: 25:87:9b:32:8a:06:9b:2d:81:4b:89:6b:6b:db:dd:14:d8:be: 06:26:e7:9a:16:65:e7:a5:e5:f6:a1:7f:d4:eb:fd:f1:e5:3b: fe:6c:e8:01:22:4f:63:06:81:d1:12:03:9b:db:7c:47:f5:e7: 89:56:60:52:ee:0b:fb:4a:13:ec:b4:ae:18:93:1c:ed:d8:f0: d6:fa:28:bf:1c:71:3a:20:bb:12:b3:57:91:3e:d2:bf:f0:d8: 4b:ca:99:c0:85:79:70:aa:74:a2:3b:89:40:8f:c1:b9:43:98: 47:b6:d3:4b:d2:a4:05:17:c3:10:6b:0c:00:ea:74:28:73:1e: db:17:a1:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUfwxMdNp7+IINhigKbVQ4FlD0qK8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk0M1oX DTI3MDMwMzA2MTQ0M1owMzExMC8GA1UEAxMoNDYzNjJERkZCM0VFMEZBQjkyODVF NjdCRUU1M0E3QTAyQzBCNEI5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2k+FEEP3B1yUaw/+Y8GCC/nsoXYIm1L1hds/242PbqgXqqje7B0ld2YbnU 0RT1vUE98gVszUcK/B0Q1z8ellVQdgBwPYIVxomKKj7JBTV49f/b8mrVPpdESXbO jSJyOSNIzOgLH9cUNseIYMIbkveljP+JRJ4sa0eHGc9jIZO1hw6KYkhjfORrU4lY 3xLJ0FV5CdrMSOPrlLUQ3f8GZN2VZAcof0NKhSkOiNZtMuz0YtpOwPDMrMBwmb6L kx4IhVf4AyXXkoru/m/h8VmIdvH6Lz1e+Pv8DaMHavcjgAm5e06fISHEnotYMf57 YGTay/Fn505LFSMffM7nstfm8p8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRGNi3/ s+4Pq5KF5nvuU6egLAtLmjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA2Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pYQwDQYJKoZIhvcNAQELBQADggEBAJYnQREZCTmATpbwuvRtEA0TdupVGtfvjG/n R4idzbR7ivkwy0pGVwxlII7Cgmln8StUTIeL3Xl0btITzeueJOwgtqPnmL3r7mEU WQOv4mPGHPkSRmm5Lh/cws0YDrWC/igkfPEfmS/a1YxGiy5r8x9h6Gf9QngzOHPa R7pBDCWHmzKKBpstgUuJa2vb3RTYvgYm55oWZeel5fahf9Tr/fHlO/5s6AEiT2MG gdESA5vbfEf154lWYFLuC/tKE+y0rhiTHO3Y8Nb6KL8ccToguxKzV5E+0r/w2EvK mcCFeXCqdKI7iUCPwblDmEe200vSpAUXwxBrDADqdChzHtsXoSI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:30 2026 by rpki-client