$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144105.roa File: AS144105.roa (raw, json) Hash identifier: tW0xE5wr4Yc5VLHLe9M2D8WTwCsTkJXOK52y8s2X6W0= Subject key identifier: FA:CB:79:32:EE:B0:DC:19:2E:85:27:D4:64:C3:90:60:16:F9:7B:24 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 77F1157BA6941489645B0BE17C3573F186DC51ED Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144105.roa Signing time: Wed 04 Mar 2026 06:15:48 +0000 ROA not before: Wed 04 Mar 2026 06:10:48 +0000 ROA not after: Wed 03 Mar 2027 06:15:48 +0000 asID: 144105 IP address blocks: 240a:a5af::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f1:15:7b:a6:94:14:89:64:5b:0b:e1:7c:35:73:f1:86:dc:51:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:48 2026 GMT Not After : Mar 3 06:15:48 2027 GMT Subject: CN=FACB7932EEB0DC192E8527D464C3906016F97B24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:50:1b:75:89:d3:42:77:cd:dd:2f:66:42:1d: d8:46:68:45:fb:aa:5f:ac:2d:d5:11:c0:d9:9e:45: ac:5e:c3:c6:52:2f:8c:e4:b6:75:b1:3f:6d:67:10: ac:2f:1d:f3:05:d3:ab:2b:59:46:4d:18:47:51:d6: 49:ca:73:fc:a7:12:6e:df:b4:35:35:60:2d:f9:bb: 63:47:f0:e6:97:40:18:cf:b6:5b:2c:7e:7e:45:90: bb:ac:84:17:69:e6:21:43:3e:3c:2f:b4:43:18:72: d7:2b:64:98:17:99:1a:b8:4e:20:02:6f:7b:ce:53: 7e:cf:8e:e7:40:17:d0:19:d4:ec:9e:b0:d6:d9:a8: 5f:4b:57:8b:38:71:bb:29:a8:0f:ba:16:ca:b2:f9: 47:51:78:3f:ea:5c:84:96:a5:69:1d:0d:fe:5f:57: cf:17:b7:b7:79:11:2e:44:f2:31:81:64:45:d5:36: 96:5b:11:18:82:b1:b2:7a:a7:e1:1a:1c:56:f4:be: a2:1e:20:88:8d:81:a6:6b:69:14:35:3e:af:85:b0: 20:4d:a7:20:08:9e:22:48:be:37:99:a3:49:e9:29: 63:b4:bb:48:41:bf:a8:b8:47:67:7f:5a:06:44:86: 2d:51:ad:8e:d4:b5:8f:a9:ea:dc:10:53:f2:cf:1f: 88:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CB:79:32:EE:B0:DC:19:2E:85:27:D4:64:C3:90:60:16:F9:7B:24 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144105.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5af::/32 Signature Algorithm: sha256WithRSAEncryption 2c:92:77:60:cb:83:4d:5e:64:62:92:2c:4b:82:b2:a6:98:9a: f8:2b:5c:37:20:75:dd:17:c5:c0:b7:1e:ae:95:cb:21:0b:87: 32:37:b2:7b:55:5c:16:91:2e:11:7b:00:a9:1b:f0:cd:66:44: 09:bd:9c:fb:54:36:85:3a:64:1d:c6:9f:ef:b0:3e:d8:31:3c: 9e:c3:68:ff:ff:3a:09:47:65:a5:c7:ed:ac:10:c3:c2:56:b1: 59:4a:f6:0c:b6:64:22:b1:0a:32:41:cf:02:14:b4:06:cd:ae: 05:fb:f4:8d:81:ac:81:b1:fb:cb:d6:64:61:b5:59:bb:38:1b: c7:9f:62:76:10:de:aa:a8:df:18:8a:8d:a2:4b:a5:a5:41:ba: 48:77:73:46:2d:5d:75:0f:0c:74:39:32:35:24:ac:7d:65:f5: 48:62:62:4b:44:12:97:2f:74:8d:51:ef:77:06:5e:f8:9d:6b: 15:9b:b2:a5:89:74:8f:79:61:3f:27:f3:05:dc:14:91:0d:37: b1:85:cf:05:52:66:a0:d2:e9:45:a2:ea:35:59:9c:87:f7:de: 69:34:63:d1:ff:cf:39:50:b3:d2:75:c2:f9:ef:00:d3:44:b3: 24:55:e1:93:fb:20:51:b9:aa:6d:f8:42:20:33:bc:a3:ab:64: 2b:fd:5a:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUd/EVe6aUFIlkWwvhfDVz8YbcUe0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTA0OFoX DTI3MDMwMzA2MTU0OFowMzExMC8GA1UEAxMoRkFDQjc5MzJFRUIwREMxOTJFODUy N0Q0NjRDMzkwNjAxNkY5N0IyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpQG3WJ00J3zd0vZkId2EZoRfuqX6wt1RHA2Z5FrF7DxlIvjOS2dbE/bWcQ rC8d8wXTqytZRk0YR1HWScpz/KcSbt+0NTVgLfm7Y0fw5pdAGM+2Wyx+fkWQu6yE F2nmIUM+PC+0Qxhy1ytkmBeZGrhOIAJve85Tfs+O50AX0BnU7J6w1tmoX0tXizhx uymoD7oWyrL5R1F4P+pchJalaR0N/l9Xzxe3t3kRLkTyMYFkRdU2llsRGIKxsnqn 4RocVvS+oh4giI2BpmtpFDU+r4WwIE2nIAieIki+N5mjSekpY7S7SEG/qLhHZ39a BkSGLVGtjtS1j6nq3BBT8s8fiGkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT6y3ky 7rDcGS6FJ9Rkw5BgFvl7JDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDEwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pa8wDQYJKoZIhvcNAQELBQADggEBACySd2DLg01eZGKSLEuCsqaYmvgrXDcgdd0X xcC3Hq6VyyELhzI3sntVXBaRLhF7AKkb8M1mRAm9nPtUNoU6ZB3Gn++wPtgxPJ7D aP//OglHZaXH7awQw8JWsVlK9gy2ZCKxCjJBzwIUtAbNrgX79I2BrIGx+8vWZGG1 Wbs4G8efYnYQ3qqo3xiKjaJLpaVBukh3c0YtXXUPDHQ5MjUkrH1l9UhiYktEEpcv dI1R73cGXvidaxWbsqWJdI95YT8n8wXcFJENN7GFzwVSZqDS6UWi6jVZnIf33mk0 Y9H/zzlQs9J1wvnvANNEsyRV4ZP7IFG5qm34QiAzvKOrZCv9WpY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:48 2026 by rpki-client