$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144075.roa File: AS144075.roa (raw, json) Hash identifier: 7+zL6bzMd47f4HhQ0btULMPNxk5tr2Ije4bmOKb8ir0= Subject key identifier: 83:18:B4:89:3B:26:58:EE:E1:B0:64:FE:69:6E:DD:FB:60:52:D9:C0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 156D9A989C68668FCA2F811D1244B512CA1E34FE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144075.roa Signing time: Wed 04 Mar 2026 06:15:23 +0000 ROA not before: Wed 04 Mar 2026 06:10:23 +0000 ROA not after: Wed 03 Mar 2027 06:15:23 +0000 asID: 144075 IP address blocks: 240a:a591::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:6d:9a:98:9c:68:66:8f:ca:2f:81:1d:12:44:b5:12:ca:1e:34:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:23 2026 GMT Not After : Mar 3 06:15:23 2027 GMT Subject: CN=8318B4893B2658EEE1B064FE696EDDFB6052D9C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f3:85:a9:02:4f:1c:4c:90:c1:46:e9:8b:de: 91:d5:06:59:b8:73:4a:25:43:6f:58:bb:e9:fa:56: 1e:b3:92:04:4a:40:2e:d6:d1:24:b3:e2:81:49:15: d8:b2:91:05:6e:34:df:02:6a:7a:b1:88:a8:a3:8d: 5a:0e:50:a9:1c:b3:d4:f9:08:b0:c0:3c:86:37:dc: 3e:c8:13:7a:36:58:6a:c4:74:71:b9:2b:8d:e4:08: a0:70:2b:f2:4d:71:1e:84:86:c2:0e:ef:65:74:08: 32:29:6f:1f:20:7d:79:0b:15:68:f1:63:33:a6:4e: 3b:cd:13:40:f1:bf:aa:ce:d7:44:0c:99:b4:02:a4: c4:57:0d:29:44:18:ff:e1:ca:6c:40:8b:da:43:f3: 23:a3:00:89:41:3c:f5:08:8c:68:39:53:fe:c0:17: 81:47:c0:6e:b2:69:1a:28:a7:37:78:c6:eb:1d:c0: 19:57:04:2b:7e:64:06:2b:ee:53:ea:42:1b:3b:b2: e2:22:84:fd:e5:f1:05:70:b6:59:2a:8b:6f:83:b2: 4b:ef:c0:19:b8:c8:16:92:70:c0:65:60:92:90:96: 0c:30:b2:f9:79:8a:5f:05:13:f6:f7:82:74:35:71: 4e:6f:32:4c:ea:c7:f7:c7:fc:3b:7b:ff:4e:92:4a: 1e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:18:B4:89:3B:26:58:EE:E1:B0:64:FE:69:6E:DD:FB:60:52:D9:C0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144075.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a591::/32 Signature Algorithm: sha256WithRSAEncryption 9e:05:f3:49:f2:8d:ba:ae:a0:80:94:0d:b6:e0:80:de:df:ef: d0:2c:fd:18:80:f6:d0:c0:e6:fa:72:ac:bd:d1:a1:7e:c5:3a: ec:9a:2e:32:e0:48:fc:82:44:d8:ce:81:23:3d:ab:de:c1:84: 77:1c:b7:c1:0a:06:90:4e:ec:86:b5:d2:cc:7e:08:ac:a2:33: 9e:32:c5:c2:8b:76:05:89:62:cd:39:83:70:d8:00:99:c9:20: ea:fe:c1:1a:df:6e:fc:2b:c6:60:6e:77:2b:7b:fb:9c:a1:d0: 33:79:7b:4e:33:a2:b6:f9:9a:bc:bb:8a:b5:aa:6b:8e:d8:06: c3:19:fa:e7:ca:a0:a0:85:67:59:9f:a2:a5:b8:47:22:df:20: 24:ad:ee:72:39:0a:5f:84:2e:ee:c4:8d:01:b1:15:3c:d4:56: 84:94:4b:a5:49:9b:1f:b2:96:08:94:a6:af:b0:d4:d5:38:5f: 0e:c9:a4:5f:15:cf:58:ad:77:f7:1d:d9:e4:63:8f:16:cc:e6: 8d:d5:10:2d:f8:84:e5:36:75:0f:3d:59:74:1a:34:33:76:5b: 0d:15:ad:77:c6:d9:52:99:f5:cb:a9:2b:b4:41:a3:3a:8c:88: ea:35:06:8d:ff:18:8b:1c:3d:ac:2d:3f:08:ac:bd:93:96:d7: 5f:cf:49:84 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFW2amJxoZo/KL4EdEkS1EsoeNP4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAyM1oX DTI3MDMwMzA2MTUyM1owMzExMC8GA1UEAxMoODMxOEI0ODkzQjI2NThFRUUxQjA2 NEZFNjk2RURERkI2MDUyRDlDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfzhakCTxxMkMFG6YvekdUGWbhzSiVDb1i76fpWHrOSBEpALtbRJLPigUkV 2LKRBW403wJqerGIqKONWg5QqRyz1PkIsMA8hjfcPsgTejZYasR0cbkrjeQIoHAr 8k1xHoSGwg7vZXQIMilvHyB9eQsVaPFjM6ZOO80TQPG/qs7XRAyZtAKkxFcNKUQY /+HKbECL2kPzI6MAiUE89QiMaDlT/sAXgUfAbrJpGiinN3jG6x3AGVcEK35kBivu U+pCGzuy4iKE/eXxBXC2WSqLb4OyS+/AGbjIFpJwwGVgkpCWDDCy+XmKXwUT9veC dDVxTm8yTOrH98f8O3v/TpJKHhECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSDGLSJ OyZY7uGwZP5pbt37YFLZwDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA3NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pZEwDQYJKoZIhvcNAQELBQADggEBAJ4F80nyjbquoICUDbbggN7f79As/RiA9tDA 5vpyrL3RoX7FOuyaLjLgSPyCRNjOgSM9q97BhHcct8EKBpBO7Ia10sx+CKyiM54y xcKLdgWJYs05g3DYAJnJIOr+wRrfbvwrxmBudyt7+5yh0DN5e04zorb5mry7irWq a47YBsMZ+ufKoKCFZ1mfoqW4RyLfICSt7nI5Cl+ELu7EjQGxFTzUVoSUS6VJmx+y lgiUpq+w1NU4Xw7JpF8Vz1itd/cd2eRjjxbM5o3VEC34hOU2dQ89WXQaNDN2Ww0V rXfG2VKZ9cupK7RBozqMiOo1Bo3/GIscPawtPwisvZOW11/PSYQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:07 2026 by rpki-client