$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144065.roa File: AS144065.roa (raw, json) Hash identifier: AfJksA4AJGixqsdRDKEm7rZ86fX/pIHGW2Km72aSlT0= Subject key identifier: D5:FB:78:0A:51:01:FA:59:F0:C0:38:D2:C9:DD:D9:93:C7:9B:5A:9B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 145A2B82DE514B6434AB3F3639135657CD9BE625 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144065.roa Signing time: Wed 04 Mar 2026 06:12:51 +0000 ROA not before: Wed 04 Mar 2026 06:07:51 +0000 ROA not after: Wed 03 Mar 2027 06:12:51 +0000 asID: 144065 IP address blocks: 240a:a587::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:5a:2b:82:de:51:4b:64:34:ab:3f:36:39:13:56:57:cd:9b:e6:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:51 2026 GMT Not After : Mar 3 06:12:51 2027 GMT Subject: CN=D5FB780A5101FA59F0C038D2C9DDD993C79B5A9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9c:17:17:58:e4:00:d9:4c:fe:e8:04:2f:89: af:7b:89:1c:ab:1d:62:24:95:3d:ce:9d:c2:46:48: af:d4:cf:91:50:bf:4b:f7:57:04:bf:71:70:8c:0f: af:49:d7:de:99:5b:d6:be:b9:97:9c:2d:d4:ea:65: 4c:39:22:19:8c:c7:ba:f6:e4:00:46:08:66:97:18: 58:9d:21:9c:c8:4c:b8:e7:74:fd:a7:be:0e:d0:99: 28:69:3d:5e:ae:68:7c:57:28:f8:45:46:b8:cd:c5: 3e:4a:20:0c:7e:b6:c9:ae:58:19:8e:50:da:c6:b3: 9a:d7:54:75:88:4b:53:d7:fa:6b:0e:8e:7a:b3:84: a4:94:f8:03:b2:6c:cd:ba:7c:d9:8f:7a:ea:2c:fd: 37:45:b2:91:1f:07:46:ef:86:14:29:18:25:7a:21: 67:0a:b7:30:47:29:42:bb:2c:9d:c5:62:be:64:b1: da:44:de:ce:dc:5b:d4:ac:aa:4b:8f:b7:d3:c7:63: 74:ef:a3:4a:ec:60:ee:3a:44:9e:43:68:6e:7d:94: 45:18:4c:fc:b3:51:56:5c:03:01:16:e8:65:68:c1: 31:d2:0a:f3:cc:93:d3:67:ce:0b:c8:b0:da:d7:80: 70:e5:c3:59:a6:9e:94:0e:3a:e9:a4:cc:3d:58:3f: cc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:FB:78:0A:51:01:FA:59:F0:C0:38:D2:C9:DD:D9:93:C7:9B:5A:9B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a587::/32 Signature Algorithm: sha256WithRSAEncryption 27:fc:bf:08:34:da:6d:80:c5:2f:68:7c:74:7b:2a:95:f5:24: 3b:18:71:ef:9b:6f:da:15:17:43:99:c7:0e:e4:0e:a7:ea:72: ba:4c:5c:37:84:8e:99:bb:b1:f8:62:f8:63:a9:da:c4:fa:d3: 6d:08:23:0c:97:99:39:9b:e4:f2:e9:57:f3:bf:09:b4:88:12: f2:cf:cd:d3:47:2a:2a:86:2e:35:eb:ae:b2:70:49:96:79:8f: b5:ee:39:6e:73:18:3c:a6:4a:34:51:9e:99:d0:01:97:93:9a: e7:06:25:f0:be:9d:2d:e9:20:d8:5b:44:3e:6e:f4:b7:6d:af: 89:0e:ed:12:91:0f:94:b1:7d:79:a4:97:9d:e2:fc:8c:04:79: 31:eb:3b:55:9c:32:dc:19:a6:6c:66:46:67:0e:d5:63:46:49: f4:9a:eb:51:c9:d0:3f:07:60:fb:e4:4d:90:84:4c:3c:ef:a5: 71:b9:57:30:12:f3:85:0b:16:3a:49:bd:b6:90:b3:9a:13:46: 34:54:e4:51:47:18:84:9a:2b:b2:6d:f2:72:65:ae:e9:38:f5: e0:99:11:a5:dc:0b:3c:41:38:46:0e:38:1b:3c:0d:ad:a6:ff: c6:db:dc:f4:25:06:23:aa:14:d7:04:06:34:85:2a:3b:4d:a8: ce:56:03:50 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFForgt5RS2Q0qz82ORNWV82b5iUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc1MVoX DTI3MDMwMzA2MTI1MVowMzExMC8GA1UEAxMoRDVGQjc4MEE1MTAxRkE1OUYwQzAz OEQyQzlEREQ5OTNDNzlCNUE5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMicFxdY5ADZTP7oBC+Jr3uJHKsdYiSVPc6dwkZIr9TPkVC/S/dXBL9xcIwP r0nX3plb1r65l5wt1OplTDkiGYzHuvbkAEYIZpcYWJ0hnMhMuOd0/ae+DtCZKGk9 Xq5ofFco+EVGuM3FPkogDH62ya5YGY5Q2sazmtdUdYhLU9f6aw6OerOEpJT4A7Js zbp82Y966iz9N0WykR8HRu+GFCkYJXohZwq3MEcpQrssncVivmSx2kTeztxb1Kyq S4+308djdO+jSuxg7jpEnkNobn2URRhM/LNRVlwDARboZWjBMdIK88yT02fOC8iw 2teAcOXDWaaelA466aTMPVg/zOMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTV+3gK UQH6WfDAONLJ3dmTx5tamzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA2NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pYcwDQYJKoZIhvcNAQELBQADggEBACf8vwg02m2AxS9ofHR7KpX1JDsYce+bb9oV F0OZxw7kDqfqcrpMXDeEjpm7sfhi+GOp2sT6020IIwyXmTmb5PLpV/O/CbSIEvLP zdNHKiqGLjXrrrJwSZZ5j7XuOW5zGDymSjRRnpnQAZeTmucGJfC+nS3pINhbRD5u 9Ldtr4kO7RKRD5SxfXmkl53i/IwEeTHrO1WcMtwZpmxmRmcO1WNGSfSa61HJ0D8H YPvkTZCETDzvpXG5VzAS84ULFjpJvbaQs5oTRjRU5FFHGISaK7Jt8nJlruk49eCZ EaXcCzxBOEYOOBs8Da2m/8bb3PQlBiOqFNcEBjSFKjtNqM5WA1A= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:13 2026 by rpki-client