$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144074.roa File: AS144074.roa (raw, json) Hash identifier: SSWfDst/ZGITer+jd5Zt0o6K9baqfr651l8MxZDTIo4= Subject key identifier: CC:14:10:0B:B5:9D:D2:00:9E:B3:6B:B4:48:D1:6D:C2:E7:00:D7:4B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2214FAE1ECDF02A6EEC11E26807B1842BF0B7FC4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144074.roa Signing time: Wed 04 Mar 2026 06:13:08 +0000 ROA not before: Wed 04 Mar 2026 06:08:08 +0000 ROA not after: Wed 03 Mar 2027 06:13:08 +0000 asID: 144074 IP address blocks: 240a:a590::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:14:fa:e1:ec:df:02:a6:ee:c1:1e:26:80:7b:18:42:bf:0b:7f:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:08 2026 GMT Not After : Mar 3 06:13:08 2027 GMT Subject: CN=CC14100BB59DD2009EB36BB448D16DC2E700D74B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:06:99:78:5e:2a:78:a7:96:c4:65:52:04:ab: df:93:a2:d9:08:26:ca:f7:ab:94:b3:60:56:20:37: fb:af:60:79:d5:bd:96:0c:9d:4a:e8:12:06:c6:c0: c4:ec:0d:36:e0:1c:d9:77:90:ac:91:56:2a:24:35: 55:82:81:c2:35:e9:da:be:e1:b7:89:cc:52:ac:21: 25:7d:ee:ef:b3:09:46:2c:91:c8:88:d6:5c:da:88: 1b:6f:18:23:ad:e9:d4:37:e5:76:75:02:c3:af:e8: 8e:6d:b1:6b:81:0a:a0:e7:cc:7f:b0:e3:9e:70:81: d6:bf:4a:5a:ae:bf:07:05:22:7c:58:aa:ef:d9:d5: a6:b5:e4:55:ee:01:84:6e:88:12:c5:3d:f7:8e:41: 85:bd:81:0c:f8:d4:c8:e6:af:df:69:7f:af:5d:2d: 3b:d4:2b:9a:e0:77:84:48:8c:26:fb:8d:da:72:6e: 4f:72:12:bf:d3:55:2f:f0:c5:6d:2b:db:7b:b9:40: 23:b3:c1:a4:a0:85:b9:22:da:2b:b3:6e:94:46:51: df:09:0f:71:10:3f:f6:4e:64:74:2c:64:7c:0b:e9: cd:b7:ed:74:97:aa:22:89:44:41:e1:39:83:1f:45: ac:e8:2d:a5:69:37:12:b0:82:14:75:48:c8:2c:01: 6c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:14:10:0B:B5:9D:D2:00:9E:B3:6B:B4:48:D1:6D:C2:E7:00:D7:4B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144074.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a590::/32 Signature Algorithm: sha256WithRSAEncryption d2:47:b0:9c:97:2f:1e:ae:ae:77:41:fc:77:59:f1:f5:a1:c3: 97:8b:24:56:dc:22:61:b6:4d:ab:cd:f9:a4:3a:f9:7a:93:f5: 9b:ec:d6:9c:62:a8:c1:6c:4c:1c:07:96:a2:26:42:50:52:c6: 21:16:d8:a8:7d:0b:6f:44:64:5c:c5:72:d3:d8:7d:a6:57:5f: 0b:28:e4:dd:04:30:37:40:f3:a6:4f:9d:60:4b:d7:30:5f:02: dc:7e:5a:cc:6f:d2:96:25:e9:89:cc:61:99:82:df:8b:bf:2f: b7:9a:fd:51:8a:e0:be:a2:9e:90:93:86:88:b6:ba:27:f0:a2: 10:aa:73:c8:be:c3:b4:ab:ef:64:e1:67:d0:88:27:05:c3:f8: dc:02:c2:6a:a3:65:52:d3:67:c2:21:ee:4e:19:ed:a8:82:17: 14:66:64:31:26:b2:28:c4:69:7d:c5:2a:46:c4:15:0b:7e:18: 5f:75:8f:26:cd:c3:26:47:a6:c1:79:44:60:ca:ba:2a:ff:c3: 23:53:69:7f:47:e3:ab:ee:f4:f0:c1:c5:76:e0:32:aa:91:d4: 85:6b:34:3a:84:ae:f8:c8:b4:d5:c3:fd:db:38:51:b1:00:16: 93:d1:76:50:cc:2d:6f:f4:ec:d7:7c:76:ed:de:40:e8:56:a4: 69:ce:d4:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIhT64ezfAqbuwR4mgHsYQr8Lf8QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgwOFoX DTI3MDMwMzA2MTMwOFowMzExMC8GA1UEAxMoQ0MxNDEwMEJCNTlERDIwMDlFQjM2 QkI0NDhEMTZEQzJFNzAwRDc0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKAGmXheKninlsRlUgSr35Oi2QgmyverlLNgViA3+69gedW9lgydSugSBsbA xOwNNuAc2XeQrJFWKiQ1VYKBwjXp2r7ht4nMUqwhJX3u77MJRiyRyIjWXNqIG28Y I63p1DfldnUCw6/ojm2xa4EKoOfMf7DjnnCB1r9KWq6/BwUifFiq79nVprXkVe4B hG6IEsU9945Bhb2BDPjUyOav32l/r10tO9QrmuB3hEiMJvuN2nJuT3ISv9NVL/DF bSvbe7lAI7PBpKCFuSLaK7NulEZR3wkPcRA/9k5kdCxkfAvpzbftdJeqIolEQeE5 gx9FrOgtpWk3ErCCFHVIyCwBbBMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTMFBAL tZ3SAJ6za7RI0W3C5wDXSzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pZAwDQYJKoZIhvcNAQELBQADggEBANJHsJyXLx6urndB/HdZ8fWhw5eLJFbcImG2 TavN+aQ6+XqT9Zvs1pxiqMFsTBwHlqImQlBSxiEW2Kh9C29EZFzFctPYfaZXXwso 5N0EMDdA86ZPnWBL1zBfAtx+Wsxv0pYl6YnMYZmC34u/L7ea/VGK4L6inpCThoi2 uifwohCqc8i+w7Sr72ThZ9CIJwXD+NwCwmqjZVLTZ8Ih7k4Z7aiCFxRmZDEmsijE aX3FKkbEFQt+GF91jybNwyZHpsF5RGDKuir/wyNTaX9H46vu9PDBxXbgMqqR1IVr NDqErvjItNXD/ds4UbEAFpPRdlDMLW/07Nd8du3eQOhWpGnO1Cs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:06 2026 by rpki-client