$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144087.roa File: AS144087.roa (raw, json) Hash identifier: +oCIGu+/qbQu5Dyv6yqIP4YlTmVBU4yAP/1ihHWaM1A= Subject key identifier: C1:9F:AA:85:E0:B7:D6:77:C9:AD:95:93:1F:18:ED:0D:15:E7:9E:9C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 745A0CA4B78E6497669169449D41FBD9308DB441 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144087.roa Signing time: Wed 04 Mar 2026 06:14:23 +0000 ROA not before: Wed 04 Mar 2026 06:09:23 +0000 ROA not after: Wed 03 Mar 2027 06:14:23 +0000 asID: 144087 IP address blocks: 240a:a59d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:5a:0c:a4:b7:8e:64:97:66:91:69:44:9d:41:fb:d9:30:8d:b4:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:23 2026 GMT Not After : Mar 3 06:14:23 2027 GMT Subject: CN=C19FAA85E0B7D677C9AD95931F18ED0D15E79E9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f5:07:44:bf:6f:13:4d:6e:f0:bf:16:f5:7f: 58:17:90:b6:9a:83:5c:ad:f9:69:0a:6e:b4:e4:37: 50:59:74:be:35:e4:d4:e8:38:a5:00:c8:c5:92:03: 91:49:2c:0a:7e:0f:1b:26:1a:ba:2e:23:c2:0c:30: dc:20:2b:15:8d:8c:43:c4:a4:a8:52:8f:3e:cc:db: e9:7a:d3:b8:20:7d:90:73:c1:72:13:62:c8:b4:76: 61:b8:7a:81:12:2c:4f:a2:ab:b9:b7:c4:78:5f:1f: 55:f7:d7:3b:cb:be:cb:bb:23:9a:92:0b:59:0e:ff: 5f:a9:ca:36:f8:c6:38:7b:3f:3e:09:ba:c7:47:c0: 15:b2:39:97:00:7d:10:52:eb:31:fb:4d:c0:9f:b5: 76:09:bb:d5:5d:38:be:0e:01:96:81:49:f1:74:8e: d9:01:f8:d9:4f:0b:53:1e:cd:bf:30:64:b0:a3:50: 2f:fc:11:40:65:ea:9f:54:bb:91:4b:f8:5f:1a:da: c5:29:62:80:ba:e5:9e:5d:7d:c6:15:2d:62:9c:ea: 15:b7:f7:20:19:52:90:3e:0d:25:df:fd:0c:ed:00: 29:53:61:55:d1:7b:bc:cb:50:02:33:5c:12:e0:7e: d4:7c:a7:8d:76:15:fd:2d:ea:ae:26:75:73:21:4a: 2d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9F:AA:85:E0:B7:D6:77:C9:AD:95:93:1F:18:ED:0D:15:E7:9E:9C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144087.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a59d::/32 Signature Algorithm: sha256WithRSAEncryption 1e:79:14:3f:c2:34:c3:e0:c5:0f:40:31:f3:7e:7a:87:2c:d0: f4:58:66:2d:0d:e2:0a:02:4d:69:67:12:90:57:af:55:77:70: 47:89:77:0f:20:c5:b0:e9:cd:68:c9:f5:23:53:31:4f:f2:58: 6b:99:37:52:0f:2e:6c:d8:c0:09:34:b2:5f:ec:c8:af:c3:b0: 64:22:da:37:e5:d4:67:1d:5b:4a:44:59:df:59:d4:ec:bb:6b: fa:b2:e9:c0:f3:47:a4:29:a1:dd:1a:61:40:c6:39:18:dc:70: 0e:f0:b0:1f:e7:55:26:21:5e:ae:c6:c1:ca:58:f3:e4:b5:c7: 58:57:48:ac:e7:5f:8b:94:49:06:61:99:2c:87:0d:af:f6:24: d1:3a:84:0e:40:9e:5a:a1:9c:52:92:e2:7a:bd:bf:b6:63:01: f5:a1:51:d8:4c:2e:01:8c:a5:34:2b:1e:e6:3c:cb:f7:9f:ce: a1:35:c7:47:80:86:af:23:7c:24:ee:49:80:28:6f:f7:08:e8: 13:ff:60:c4:c3:b3:5b:47:50:38:2f:c7:73:a1:32:7d:62:56: fb:13:25:b7:57:f1:a2:f8:6f:02:15:a0:63:e3:2b:9e:0c:6d: 9b:47:09:03:f5:0b:ca:9e:df:60:81:38:80:ee:71:69:9c:18: 94:6b:98:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdFoMpLeOZJdmkWlEnUH72TCNtEEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkyM1oX DTI3MDMwMzA2MTQyM1owMzExMC8GA1UEAxMoQzE5RkFBODVFMEI3RDY3N0M5QUQ5 NTkzMUYxOEVEMEQxNUU3OUU5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL71B0S/bxNNbvC/FvV/WBeQtpqDXK35aQputOQ3UFl0vjXk1Og4pQDIxZID kUksCn4PGyYaui4jwgww3CArFY2MQ8SkqFKPPszb6XrTuCB9kHPBchNiyLR2Ybh6 gRIsT6KrubfEeF8fVffXO8u+y7sjmpILWQ7/X6nKNvjGOHs/Pgm6x0fAFbI5lwB9 EFLrMftNwJ+1dgm71V04vg4BloFJ8XSO2QH42U8LUx7NvzBksKNQL/wRQGXqn1S7 kUv4XxraxSligLrlnl19xhUtYpzqFbf3IBlSkD4NJd/9DO0AKVNhVdF7vMtQAjNc EuB+1HynjXYV/S3qriZ1cyFKLT0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTBn6qF 4LfWd8mtlZMfGO0NFeeenDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA4Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pZ0wDQYJKoZIhvcNAQELBQADggEBAB55FD/CNMPgxQ9AMfN+eocs0PRYZi0N4goC TWlnEpBXr1V3cEeJdw8gxbDpzWjJ9SNTMU/yWGuZN1IPLmzYwAk0sl/syK/DsGQi 2jfl1GcdW0pEWd9Z1Oy7a/qy6cDzR6Qpod0aYUDGORjccA7wsB/nVSYhXq7GwcpY 8+S1x1hXSKznX4uUSQZhmSyHDa/2JNE6hA5AnlqhnFKS4nq9v7ZjAfWhUdhMLgGM pTQrHuY8y/efzqE1x0eAhq8jfCTuSYAob/cI6BP/YMTDs1tHUDgvx3OhMn1iVvsT JbdX8aL4bwIVoGPjK54MbZtHCQP1C8qe32CBOIDucWmcGJRrmII= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:06 2026 by rpki-client