$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144080.roa File: AS144080.roa (raw, json) Hash identifier: wf3avSv+aTQz81+Fy7FU7H1kph6/HCYepKKz7+EBhUg= Subject key identifier: 71:AF:85:84:02:A2:E3:33:6C:5C:20:1A:27:46:38:3D:5F:F4:6D:D6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 694353ABC13EE5DE16D3451AE708539BAA0CD8CD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144080.roa Signing time: Wed 04 Mar 2026 06:13:24 +0000 ROA not before: Wed 04 Mar 2026 06:08:24 +0000 ROA not after: Wed 03 Mar 2027 06:13:24 +0000 asID: 144080 IP address blocks: 240a:a596::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:43:53:ab:c1:3e:e5:de:16:d3:45:1a:e7:08:53:9b:aa:0c:d8:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:24 2026 GMT Not After : Mar 3 06:13:24 2027 GMT Subject: CN=71AF858402A2E3336C5C201A2746383D5FF46DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:50:a0:03:22:72:a7:c6:af:ab:47:56:63:fe: 21:d9:73:7f:cb:ce:9a:27:ab:8d:c1:22:84:3c:ac: df:32:b7:fd:9f:68:8c:97:69:08:ce:0e:57:44:55: 13:31:cd:33:b6:c7:c6:37:93:b9:0a:50:5f:17:3d: 2c:30:24:dd:73:d0:df:43:ed:1c:2a:73:3f:83:f0: e0:71:2a:1e:54:b0:45:1a:14:c2:14:40:39:e4:dc: 73:5b:b6:16:f9:f7:0f:94:53:89:49:83:59:d5:c1: 9a:31:76:c4:37:fe:73:2c:71:9e:cd:47:e4:24:28: 77:f3:cc:22:ee:9d:3e:2f:85:65:33:11:eb:7d:e1: 9d:58:97:f9:9d:5d:06:29:83:6b:a9:2a:37:d6:de: 71:5e:8a:91:05:36:15:9d:4d:60:06:56:4d:72:19: 0d:8c:b3:c6:0b:ec:4c:74:8d:b1:3c:fb:61:33:e1: 86:85:14:e2:9d:27:d4:e0:f2:ce:a0:d7:14:6d:6f: bb:35:af:c6:c7:76:8d:f4:83:6d:f5:01:c0:d5:82: c2:0d:73:65:bc:b2:40:52:3d:59:17:24:56:bf:4c: 9b:bc:61:94:d6:c6:1e:f3:09:04:91:7c:70:7a:5e: de:7f:e8:e3:71:bc:fe:6e:2a:45:23:e7:1f:8d:d1: 3a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AF:85:84:02:A2:E3:33:6C:5C:20:1A:27:46:38:3D:5F:F4:6D:D6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144080.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a596::/32 Signature Algorithm: sha256WithRSAEncryption 45:93:c1:84:72:ef:62:c4:8e:6a:ce:3c:c5:96:e9:5c:b0:9d: a3:ee:b9:cc:cf:bf:4e:30:f3:83:b8:ca:d2:e7:9a:b2:b3:d0: b1:1c:84:e3:bf:9f:62:4e:d6:51:c3:d6:ef:10:e7:62:bd:3e: 69:8c:99:15:17:c4:2c:6f:89:f8:79:47:f3:b1:bf:11:c1:4b: 16:d4:fa:bb:b9:5e:da:53:45:6b:c0:aa:0e:6b:57:f8:73:23: b7:c1:d3:63:64:53:f2:b9:db:0f:24:d0:7f:17:af:f0:29:a7: 16:04:6a:a7:3c:3f:5c:83:69:2a:1f:0d:33:ed:47:ee:dc:bf: d2:84:57:f9:bc:00:b3:82:67:82:5e:e4:82:7f:da:1c:17:57: e0:98:f1:7c:db:77:f5:0f:07:12:18:e7:14:02:f8:bf:4b:78: 9c:b9:3c:76:e5:b3:11:57:9e:66:19:d9:dd:e8:73:50:a7:5c: f2:23:ea:5e:32:67:ec:e9:81:a6:6b:43:e0:39:37:6e:99:99: ee:e7:20:5c:ff:e1:83:4b:2f:00:ba:21:a3:58:8b:21:4e:e3: 79:b4:42:24:ad:3b:5b:bf:da:93:d7:b7:ec:3d:a2:4e:52:86: 34:35:bf:00:dc:92:d6:57:fa:48:11:40:52:25:2c:7e:31:8a: ad:79:26:fb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUaUNTq8E+5d4W00Ua5whTm6oM2M0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgyNFoX DTI3MDMwMzA2MTMyNFowMzExMC8GA1UEAxMoNzFBRjg1ODQwMkEyRTMzMzZDNUMy MDFBMjc0NjM4M0Q1RkY0NkRENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIpQoAMicqfGr6tHVmP+Idlzf8vOmierjcEihDys3zK3/Z9ojJdpCM4OV0RV EzHNM7bHxjeTuQpQXxc9LDAk3XPQ30PtHCpzP4Pw4HEqHlSwRRoUwhRAOeTcc1u2 Fvn3D5RTiUmDWdXBmjF2xDf+cyxxns1H5CQod/PMIu6dPi+FZTMR633hnViX+Z1d BimDa6kqN9becV6KkQU2FZ1NYAZWTXIZDYyzxgvsTHSNsTz7YTPhhoUU4p0n1ODy zqDXFG1vuzWvxsd2jfSDbfUBwNWCwg1zZbyyQFI9WRckVr9Mm7xhlNbGHvMJBJF8 cHpe3n/o43G8/m4qRSPnH43ROrECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRxr4WE AqLjM2xcIBonRjg9X/Rt1jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA4MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pZYwDQYJKoZIhvcNAQELBQADggEBAEWTwYRy72LEjmrOPMWW6VywnaPuuczPv04w 84O4ytLnmrKz0LEchOO/n2JO1lHD1u8Q52K9PmmMmRUXxCxvifh5R/OxvxHBSxbU +ru5XtpTRWvAqg5rV/hzI7fB02NkU/K52w8k0H8Xr/AppxYEaqc8P1yDaSofDTPt R+7cv9KEV/m8ALOCZ4Je5IJ/2hwXV+CY8Xzbd/UPBxIY5xQC+L9LeJy5PHblsxFX nmYZ2d3oc1CnXPIj6l4yZ+zpgaZrQ+A5N26Zme7nIFz/4YNLLwC6IaNYiyFO43m0 QiStO1u/2pPXt+w9ok5ShjQ1vwDcktZX+kgRQFIlLH4xiq15Jvs= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:34 2026 by rpki-client