$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144112.roa File: AS144112.roa (raw, json) Hash identifier: 6SZy7kgvDEo1ae8MIYBhreUh4BKNi1kUecjm7+TAPbo= Subject key identifier: 94:5B:71:F9:05:1F:9D:58:BB:44:98:7F:77:C2:A3:0D:5C:D0:4E:E8 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 24F265418B14FE145B8E4399D6CD81F067AA9577 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144112.roa Signing time: Wed 04 Mar 2026 06:14:37 +0000 ROA not before: Wed 04 Mar 2026 06:09:37 +0000 ROA not after: Wed 03 Mar 2027 06:14:37 +0000 asID: 144112 IP address blocks: 240a:a5b6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f2:65:41:8b:14:fe:14:5b:8e:43:99:d6:cd:81:f0:67:aa:95:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:37 2026 GMT Not After : Mar 3 06:14:37 2027 GMT Subject: CN=945B71F9051F9D58BB44987F77C2A30D5CD04EE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c4:2c:8e:cc:39:4b:d6:47:c1:98:7f:56:9e: cf:c7:30:94:24:53:28:5d:7e:5c:81:b8:76:3f:9a: 4e:ab:03:7b:7d:93:29:cd:28:65:96:05:72:fb:a2: 8c:22:8c:4a:58:77:32:e5:9c:70:2d:de:4a:cf:90: 81:55:70:ca:14:65:97:77:9c:34:ef:a1:81:6d:bc: 17:23:74:3d:8e:49:7e:82:70:86:81:5f:6f:f2:7b: 00:74:38:2f:81:4d:1b:77:98:42:ec:51:99:4d:82: 1a:b1:f8:b0:9a:74:fa:f6:95:9a:48:37:79:51:5a: a3:2e:92:cf:d7:de:f8:4d:05:4e:aa:1a:97:b5:76: 05:34:50:e7:9f:54:44:f3:f2:a9:b7:e5:b1:89:09: 1e:a6:8f:49:3c:75:72:52:7c:dc:7e:b6:90:e3:41: 8f:ca:17:4a:31:be:26:b9:51:be:b8:ae:29:b1:09: 2b:56:34:e6:7d:2a:ff:41:3f:0e:cd:2e:e6:b3:24: 2c:f0:26:35:6b:38:c4:42:21:96:98:d2:e7:42:e6: 1a:af:af:f9:c8:99:e1:cd:13:a9:5e:53:03:68:39: 88:41:71:eb:86:15:3d:47:77:82:84:a8:85:df:78: fc:cf:a6:11:6f:61:44:c5:6b:40:2e:aa:d9:dc:cd: e9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:5B:71:F9:05:1F:9D:58:BB:44:98:7F:77:C2:A3:0D:5C:D0:4E:E8 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144112.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5b6::/32 Signature Algorithm: sha256WithRSAEncryption 70:7e:eb:92:21:35:bc:21:7c:58:d0:c8:bb:08:e7:3f:b2:65: 84:4a:25:f1:37:45:ac:36:90:e1:d2:85:5c:c8:84:bd:66:47: bf:92:38:7b:04:aa:b4:5e:ba:00:58:8d:48:1c:28:fa:35:87: 8b:c1:0e:e5:32:fd:1b:3d:39:cc:d1:ed:05:6d:dc:e1:ae:bf: b1:d9:cc:3d:53:b4:cf:97:6c:25:99:3b:dd:1c:9c:42:68:21: 8a:ef:f1:6a:83:47:fe:79:d8:09:9e:d4:be:8c:a5:45:8a:91: 9e:a1:f1:bd:6b:fb:55:0a:f6:07:67:c1:dc:0c:3a:24:c5:08: da:41:93:a6:21:40:c1:09:b9:de:6e:4d:83:d9:0f:b2:6e:9d: fb:c1:af:ee:da:7b:fa:39:b7:97:a1:b9:11:43:a1:4b:8c:11: b4:5d:d9:2a:48:9c:7a:84:e2:ec:da:5d:ed:fd:64:a6:d5:84: b1:84:a5:4d:7e:31:46:46:05:c0:da:35:63:31:f3:6e:f5:ce: ed:b6:43:21:c4:30:48:38:15:ab:1e:81:e7:7f:bb:72:04:3b: b7:19:ba:94:b3:8d:01:f6:17:df:7e:1c:c8:d4:44:e3:86:36: 2b:ff:87:01:1e:78:0c:71:b6:60:50:64:98:81:e6:0b:60:fe: 60:3f:96:3a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJPJlQYsU/hRbjkOZ1s2B8GeqlXcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkzN1oX DTI3MDMwMzA2MTQzN1owMzExMC8GA1UEAxMoOTQ1QjcxRjkwNTFGOUQ1OEJCNDQ5 ODdGNzdDMkEzMEQ1Q0QwNEVFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKvELI7MOUvWR8GYf1aez8cwlCRTKF1+XIG4dj+aTqsDe32TKc0oZZYFcvui jCKMSlh3MuWccC3eSs+QgVVwyhRll3ecNO+hgW28FyN0PY5JfoJwhoFfb/J7AHQ4 L4FNG3eYQuxRmU2CGrH4sJp0+vaVmkg3eVFaoy6Sz9fe+E0FTqoal7V2BTRQ559U RPPyqbflsYkJHqaPSTx1clJ83H62kONBj8oXSjG+JrlRvriuKbEJK1Y05n0q/0E/ Ds0u5rMkLPAmNWs4xEIhlpjS50LmGq+v+ciZ4c0TqV5TA2g5iEFx64YVPUd3goSo hd94/M+mEW9hRMVrQC6q2dzN6TECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSUW3H5 BR+dWLtEmH93wqMNXNBO6DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDExMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pbYwDQYJKoZIhvcNAQELBQADggEBAHB+65IhNbwhfFjQyLsI5z+yZYRKJfE3Raw2 kOHShVzIhL1mR7+SOHsEqrReugBYjUgcKPo1h4vBDuUy/Rs9OczR7QVt3OGuv7HZ zD1TtM+XbCWZO90cnEJoIYrv8WqDR/552Ame1L6MpUWKkZ6h8b1r+1UK9gdnwdwM OiTFCNpBk6YhQMEJud5uTYPZD7JunfvBr+7ae/o5t5ehuRFDoUuMEbRd2SpInHqE 4uzaXe39ZKbVhLGEpU1+MUZGBcDaNWMx8271zu22QyHEMEg4Faseged/u3IEO7cZ upSzjQH2F99+HMjUROOGNiv/hwEeeAxxtmBQZJiB5gtg/mA/ljo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:58 2026 by rpki-client