$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144137.roa File: AS144137.roa (raw, json) Hash identifier: ZVcmvhuKdZZCv66U2WtnlQC024FSMtW15QkC/4NvfnM= Subject key identifier: 01:0E:60:6C:8D:6C:A5:B6:B0:79:1E:D1:86:E9:0D:AD:B8:E6:F1:84 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41DDEA99E410EABF4207CAA805A1CF3C4C1F8BB7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144137.roa Signing time: Wed 04 Mar 2026 06:13:48 +0000 ROA not before: Wed 04 Mar 2026 06:08:48 +0000 ROA not after: Wed 03 Mar 2027 06:13:48 +0000 asID: 144137 IP address blocks: 240a:a5cf::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:dd:ea:99:e4:10:ea:bf:42:07:ca:a8:05:a1:cf:3c:4c:1f:8b:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:48 2026 GMT Not After : Mar 3 06:13:48 2027 GMT Subject: CN=010E606C8D6CA5B6B0791ED186E90DADB8E6F184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:28:e5:82:e3:b2:8d:c7:6d:2b:75:12:02: 39:f7:5e:3b:ba:a0:ae:e2:0a:96:31:82:8a:0f:6d: cd:31:fc:60:58:44:43:70:24:ac:10:c4:bc:59:d4: b8:15:a4:ce:62:67:f1:46:9c:6b:15:17:f6:dd:17: 3d:ce:b3:15:17:69:c1:e6:8a:50:2c:b9:c6:88:ce: 9a:80:48:9c:c3:1e:aa:35:6a:75:fa:3d:75:8f:1c: 25:2f:0c:35:9c:7c:45:26:24:be:d6:68:bd:e2:30: 9b:56:c2:a4:4c:d2:46:25:8f:1d:14:ca:9a:97:46: a0:6b:9d:f7:05:a5:7f:92:af:a8:2d:0e:e2:e4:ee: 5a:16:81:74:c1:8d:b3:5d:4c:ce:6e:c2:e9:41:6d: e6:6c:a4:f2:c7:59:ce:99:59:2e:7a:24:bf:62:22: ac:ff:b9:15:a2:83:fe:dd:eb:f7:46:c1:57:c8:8a: 27:9e:ef:f6:c3:34:d9:01:62:93:e5:76:99:14:e1: e8:93:d0:88:07:30:1d:8b:29:ba:01:bf:1e:6d:39: 3b:ca:95:ae:25:71:8e:25:61:4a:44:f1:d0:1a:e8: 67:db:c5:02:41:01:97:bd:da:e6:14:b4:2d:83:a4: 81:8c:0d:63:19:16:49:11:a3:ba:80:de:16:d5:e3: 5c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:0E:60:6C:8D:6C:A5:B6:B0:79:1E:D1:86:E9:0D:AD:B8:E6:F1:84 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5cf::/32 Signature Algorithm: sha256WithRSAEncryption cb:95:70:e7:5d:b3:3e:be:db:8c:e6:e6:3c:f8:20:70:66:45: 49:c6:31:ce:6b:c8:5f:c1:c7:76:5e:07:b1:11:8d:8a:7e:07: 2c:a9:e8:70:ec:63:7b:8b:24:06:b9:e5:3b:ef:f9:d2:9e:d4: 33:09:35:1d:7d:46:0a:2f:f8:da:99:9e:2c:4a:0d:d1:91:69: cf:7b:e4:88:69:5a:76:bf:f7:c7:11:cd:73:85:ec:5a:c9:cc: b2:54:96:11:1b:46:b4:8f:98:12:de:c0:62:6e:dd:14:a6:b3: f4:f2:af:08:c6:31:8f:95:d4:f6:19:b2:31:4a:7d:6f:05:60: 22:87:d4:1a:20:a4:a4:27:9d:b2:8e:e7:6f:6c:4e:1b:e4:51: d7:9c:46:e1:fb:2d:3b:82:71:be:b2:35:c1:9d:4e:c4:81:36: 82:9b:95:cd:96:9c:0d:dd:c0:e4:f9:49:60:90:55:c7:e1:4f: b1:cd:cf:59:3b:af:9a:e8:12:80:21:87:73:c1:63:a6:27:23: d7:94:6f:74:17:01:22:cf:26:33:2c:cb:67:5f:f9:85:3c:45: 70:98:81:f5:90:94:93:63:41:27:46:e5:b8:39:a1:a6:4b:49: 5d:94:fa:f4:05:55:ff:c2:42:61:99:62:24:16:bb:e7:fd:ba: bc:e0:ae:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQd3qmeQQ6r9CB8qoBaHPPEwfi7cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg0OFoX DTI3MDMwMzA2MTM0OFowMzExMC8GA1UEAxMoMDEwRTYwNkM4RDZDQTVCNkIwNzkx RUQxODZFOTBEQURCOEU2RjE4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbgKOWC47KNx20rdRICOfdeO7qgruIKljGCig9tzTH8YFhEQ3AkrBDEvFnU uBWkzmJn8UacaxUX9t0XPc6zFRdpweaKUCy5xojOmoBInMMeqjVqdfo9dY8cJS8M NZx8RSYkvtZoveIwm1bCpEzSRiWPHRTKmpdGoGud9wWlf5KvqC0O4uTuWhaBdMGN s11Mzm7C6UFt5myk8sdZzplZLnokv2IirP+5FaKD/t3r90bBV8iKJ57v9sM02QFi k+V2mRTh6JPQiAcwHYspugG/Hm05O8qVriVxjiVhSkTx0BroZ9vFAkEBl73a5hS0 LYOkgYwNYxkWSRGjuoDeFtXjXIkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQBDmBs jWyltrB5HtGG6Q2tuObxhDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDEzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pc8wDQYJKoZIhvcNAQELBQADggEBAMuVcOddsz6+24zm5jz4IHBmRUnGMc5ryF/B x3ZeB7ERjYp+Byyp6HDsY3uLJAa55Tvv+dKe1DMJNR19Rgov+NqZnixKDdGRac97 5IhpWna/98cRzXOF7FrJzLJUlhEbRrSPmBLewGJu3RSms/TyrwjGMY+V1PYZsjFK fW8FYCKH1BogpKQnnbKO529sThvkUdecRuH7LTuCcb6yNcGdTsSBNoKblc2WnA3d wOT5SWCQVcfhT7HNz1k7r5roEoAhh3PBY6YnI9eUb3QXASLPJjMsy2df+YU8RXCY gfWQlJNjQSdG5bg5oaZLSV2U+vQFVf/CQmGZYiQWu+f9urzgrks= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:54 2026 by rpki-client