$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144094.roa File: AS144094.roa (raw, json) Hash identifier: QSnmhi3Tm5LPMgf7cGWgy8ciIsnGRDp4oyT9LgPizsY= Subject key identifier: 2E:E9:24:B6:5A:C7:1E:86:B3:28:9A:98:D5:FE:F4:9F:83:63:09:75 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1286411A5A0B736A7FE4AA4784FC9FBAF5755DC4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144094.roa Signing time: Wed 04 Mar 2026 06:13:31 +0000 ROA not before: Wed 04 Mar 2026 06:08:31 +0000 ROA not after: Wed 03 Mar 2027 06:13:31 +0000 asID: 144094 IP address blocks: 240a:a5a4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:86:41:1a:5a:0b:73:6a:7f:e4:aa:47:84:fc:9f:ba:f5:75:5d:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:31 2026 GMT Not After : Mar 3 06:13:31 2027 GMT Subject: CN=2EE924B65AC71E86B3289A98D5FEF49F83630975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:98:44:0e:83:d0:73:62:a4:9a:08:70:27:79: 38:f2:53:ea:0f:09:46:56:41:b4:0a:24:7d:e2:1d: 69:c8:4f:0d:48:45:f3:11:7c:ab:e4:9c:e6:6a:d8: 23:94:2b:67:5d:93:01:ca:99:60:25:c0:69:91:39: 9f:d7:80:c6:e9:11:2a:41:a4:50:99:db:83:42:f8: 6b:b8:72:ce:3c:63:3b:86:1b:03:71:0f:cf:ae:ae: 88:80:5f:df:1f:3d:68:06:1d:b3:5c:77:b3:37:45: 9a:8d:11:bb:85:ae:69:a4:a7:06:70:ef:11:79:7f: f2:1b:9e:0d:01:bd:d0:7f:9a:7f:bb:3f:46:e1:41: 9f:15:14:4f:73:ae:fe:ec:e7:ba:2d:25:28:1b:fa: b8:8b:e3:e3:ae:3d:9f:22:46:d5:50:8c:1f:4d:6d: f9:71:a3:51:80:c0:f1:49:2c:92:b5:46:fa:6a:7c: 68:80:27:44:76:64:c0:a8:72:5a:75:07:45:44:1f: 61:ae:a3:70:69:df:63:b3:0c:fd:28:1f:6a:2e:10: 58:16:d3:52:de:93:33:64:16:ac:ee:46:b5:52:4f: 97:eb:f1:e1:11:fb:9a:33:a1:f7:15:c1:e5:32:c4: fb:bf:1b:8f:79:71:b7:aa:31:f6:3b:33:65:1c:7d: 58:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E9:24:B6:5A:C7:1E:86:B3:28:9A:98:D5:FE:F4:9F:83:63:09:75 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144094.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5a4::/32 Signature Algorithm: sha256WithRSAEncryption 73:c4:18:06:86:53:d1:c8:5c:a5:95:d6:76:bd:c8:cb:53:a6: fe:4e:ba:b9:6b:81:57:99:cf:cd:f6:bb:1c:91:cc:97:43:27: 36:b0:03:83:20:65:5e:30:0b:7e:a0:5e:03:e6:cb:1f:bf:94: 55:2a:ab:bb:59:74:15:47:fe:53:96:47:8d:95:e6:12:62:4d: d2:c7:af:5b:d8:1a:1f:5e:d3:d2:b3:bf:6e:4e:38:42:55:29: 4c:ad:34:f4:b4:1e:e8:cf:ba:cb:5c:14:e8:62:4d:f0:42:57: 78:66:22:e8:15:1e:7f:fa:6f:5f:5d:35:99:de:ff:45:00:c5: c9:87:42:b7:06:4d:72:c5:68:21:a7:de:7a:28:49:78:a7:6b: ee:45:b2:c2:ec:bb:b6:7c:82:de:45:32:1b:a3:e4:86:99:9e: da:4c:6b:36:b6:af:27:4b:7d:d6:c4:b7:c3:e0:e9:66:de:5b: c2:8e:15:76:f3:ca:d0:87:43:67:3b:44:e8:96:97:09:44:46: d2:73:13:37:80:98:71:c8:fb:5f:57:61:8d:ba:76:0d:ca:8e: fe:55:30:96:da:69:a8:67:c1:91:82:8d:29:fa:cd:35:60:bd: 8b:90:96:6e:10:08:85:a4:1e:5d:d0:e6:16:e8:52:5a:34:82: 15:74:06:97 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUEoZBGloLc2p/5KpHhPyfuvV1XcQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgzMVoX DTI3MDMwMzA2MTMzMVowMzExMC8GA1UEAxMoMkVFOTI0QjY1QUM3MUU4NkIzMjg5 QTk4RDVGRUY0OUY4MzYzMDk3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2YRA6D0HNipJoIcCd5OPJT6g8JRlZBtAokfeIdachPDUhF8xF8q+Sc5mrY I5QrZ12TAcqZYCXAaZE5n9eAxukRKkGkUJnbg0L4a7hyzjxjO4YbA3EPz66uiIBf 3x89aAYds1x3szdFmo0Ru4WuaaSnBnDvEXl/8hueDQG90H+af7s/RuFBnxUUT3Ou /uznui0lKBv6uIvj4649nyJG1VCMH01t+XGjUYDA8UkskrVG+mp8aIAnRHZkwKhy WnUHRUQfYa6jcGnfY7MM/Sgfai4QWBbTUt6TM2QWrO5GtVJPl+vx4RH7mjOh9xXB 5TLE+78bj3lxt6ox9jszZRx9WEUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQu6SS2 WscehrMompjV/vSfg2MJdTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDA5NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK paQwDQYJKoZIhvcNAQELBQADggEBAHPEGAaGU9HIXKWV1na9yMtTpv5OurlrgVeZ z832uxyRzJdDJzawA4MgZV4wC36gXgPmyx+/lFUqq7tZdBVH/lOWR42V5hJiTdLH r1vYGh9e09Kzv25OOEJVKUytNPS0HujPustcFOhiTfBCV3hmIugVHn/6b19dNZne /0UAxcmHQrcGTXLFaCGn3nooSXina+5FssLsu7Z8gt5FMhuj5IaZntpMaza2rydL fdbEt8Pg6WbeW8KOFXbzytCHQ2c7ROiWlwlERtJzEzeAmHHI+19XYY26dg3Kjv5V MJbaaahnwZGCjSn6zTVgvYuQlm4QCIWkHl3Q5hboUlo0ghV0Bpc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:05 2026 by rpki-client