$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144136.roa File: AS144136.roa (raw, json) Hash identifier: zvQmHFVbtGxs4sVURPiOTxd3sONOqaT1II8v/GQT1hw= Subject key identifier: B7:BF:83:46:0C:1E:43:88:18:9D:35:03:37:60:9F:8A:1F:1B:75:96 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 716DEF628345C682F698AB01DB98BFB773176AA1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144136.roa Signing time: Wed 04 Mar 2026 06:15:24 +0000 ROA not before: Wed 04 Mar 2026 06:10:24 +0000 ROA not after: Wed 03 Mar 2027 06:15:24 +0000 asID: 144136 IP address blocks: 240a:a5ce::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:6d:ef:62:83:45:c6:82:f6:98:ab:01:db:98:bf:b7:73:17:6a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:24 2026 GMT Not After : Mar 3 06:15:24 2027 GMT Subject: CN=B7BF83460C1E4388189D350337609F8A1F1B7596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:93:3b:df:9d:35:3a:13:fe:d1:d0:90:09:06: 4b:49:1a:6f:f8:24:8d:88:cf:17:42:3e:57:dc:89: ec:5e:80:b4:e9:48:18:24:ca:78:8e:ab:2c:18:14: 0d:c7:c4:b5:ca:f0:dc:ba:54:25:d3:cc:2b:0b:6a: 7d:12:2e:4b:ca:b2:0a:8e:cf:f9:4b:75:60:3f:32: b2:2f:9c:ab:49:0b:47:aa:35:c4:44:10:9f:36:e7: 8d:0a:f1:8e:d5:7f:97:d9:06:af:bd:e0:04:62:54: a1:8e:53:fa:67:96:ca:10:7b:54:66:8a:ef:40:49: 02:be:cd:9c:c6:f4:5e:38:60:b7:10:9e:a2:28:6c: 09:3f:8b:b4:10:9a:31:ce:f6:62:b8:f5:81:01:5e: 48:77:1f:03:9f:ea:2a:3f:92:0b:cb:70:fb:7e:fe: 66:43:c2:4d:c2:47:2f:ab:ed:47:1a:5c:74:d5:3e: 8c:69:8c:aa:7b:2c:a9:96:f4:1e:9a:0d:d3:39:ae: f7:1f:e6:a3:99:93:82:dc:ae:39:ed:f4:ca:40:09: ee:8b:35:9a:34:33:41:ae:7f:43:50:3b:68:af:79: 0b:45:52:38:0b:c9:46:f9:ee:47:0b:eb:ae:cc:fe: 2c:95:63:4c:b5:a1:93:e0:ea:55:9b:88:7b:9e:f6: 2c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:BF:83:46:0C:1E:43:88:18:9D:35:03:37:60:9F:8A:1F:1B:75:96 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5ce::/32 Signature Algorithm: sha256WithRSAEncryption cf:60:a8:1b:9a:38:ed:08:41:45:fa:fe:7b:86:4a:6f:2b:76: cd:8c:56:4e:f4:ea:4a:3f:60:56:f6:09:f4:8f:4d:ac:ed:ac: af:e6:6e:52:ce:94:13:67:cb:7d:55:e0:a7:36:59:87:bd:0e: 67:c9:7b:b8:4b:83:23:6a:32:b9:e1:4b:0b:8a:5d:d2:9d:bb: ec:a6:25:b7:a5:eb:0b:38:ed:81:e6:44:a6:10:d9:2b:c5:4f: b0:73:e9:d3:6f:61:4f:d6:83:3a:1d:b8:42:2a:2c:07:5c:4a: b2:7a:c1:97:36:2b:4b:a9:07:5b:cc:04:f1:c2:04:dc:17:d9: b0:1e:2d:92:21:a9:82:a1:44:36:c4:2f:ed:9f:af:a3:90:8a: c3:24:3f:fa:50:79:8a:84:1d:08:98:f6:6e:85:4f:a6:23:f3: 18:b6:23:63:eb:aa:23:ca:51:97:e8:f2:7a:ec:57:bb:5e:56: a5:f6:14:bd:b4:12:14:ae:fa:9d:15:66:e0:f6:d0:63:37:ff: 36:21:62:07:65:9d:65:c2:c9:94:bc:37:aa:b8:d3:bd:03:c7: 85:f0:fb:b0:c1:94:2e:2a:4d:24:a6:69:6d:99:e1:3b:7e:7a: 3d:c3:0f:42:8b:15:42:11:fa:8a:9a:d8:6d:90:77:11:1b:a5: f7:9f:f6:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUcW3vYoNFxoL2mKsB25i/t3MXaqEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAyNFoX DTI3MDMwMzA2MTUyNFowMzExMC8GA1UEAxMoQjdCRjgzNDYwQzFFNDM4ODE4OUQz NTAzMzc2MDlGOEExRjFCNzU5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOTO9+dNToT/tHQkAkGS0kab/gkjYjPF0I+V9yJ7F6AtOlIGCTKeI6rLBgU DcfEtcrw3LpUJdPMKwtqfRIuS8qyCo7P+Ut1YD8ysi+cq0kLR6o1xEQQnzbnjQrx jtV/l9kGr73gBGJUoY5T+meWyhB7VGaK70BJAr7NnMb0XjhgtxCeoihsCT+LtBCa Mc72Yrj1gQFeSHcfA5/qKj+SC8tw+37+ZkPCTcJHL6vtRxpcdNU+jGmMqnssqZb0 HpoN0zmu9x/mo5mTgtyuOe30ykAJ7os1mjQzQa5/Q1A7aK95C0VSOAvJRvnuRwvr rsz+LJVjTLWhk+DqVZuIe572LFkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS3v4NG DB5DiBidNQM3YJ+KHxt1ljAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDEzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pc4wDQYJKoZIhvcNAQELBQADggEBAM9gqBuaOO0IQUX6/nuGSm8rds2MVk706ko/ YFb2CfSPTaztrK/mblLOlBNny31V4Kc2WYe9DmfJe7hLgyNqMrnhSwuKXdKdu+ym Jbel6ws47YHmRKYQ2SvFT7Bz6dNvYU/WgzoduEIqLAdcSrJ6wZc2K0upB1vMBPHC BNwX2bAeLZIhqYKhRDbEL+2fr6OQisMkP/pQeYqEHQiY9m6FT6Yj8xi2I2PrqiPK UZfo8nrsV7teVqX2FL20EhSu+p0VZuD20GM3/zYhYgdlnWXCyZS8N6q4070Dx4Xw +7DBlC4qTSSmaW2Z4Tt+ej3DD0KLFUIR+oqa2G2QdxEbpfef9vg= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:26 2026 by rpki-client