$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144144.roa File: AS144144.roa (raw, json) Hash identifier: AZCko0P4IAV476+zGqt5JJDwEOsoChqwst4AZI75mvA= Subject key identifier: 2A:25:42:5F:9D:3B:72:62:76:2D:3D:35:19:D7:84:EA:E3:C2:95:6B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 56B9E4D6FE8E156D93038B9DD3CDED6E5422AD6A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144144.roa Signing time: Wed 04 Mar 2026 06:13:50 +0000 ROA not before: Wed 04 Mar 2026 06:08:50 +0000 ROA not after: Wed 03 Mar 2027 06:13:50 +0000 asID: 144144 IP address blocks: 240a:a5d6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b9:e4:d6:fe:8e:15:6d:93:03:8b:9d:d3:cd:ed:6e:54:22:ad:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:50 2026 GMT Not After : Mar 3 06:13:50 2027 GMT Subject: CN=2A25425F9D3B7262762D3D3519D784EAE3C2956B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:be:bd:98:ea:35:23:d9:a4:f7:b3:1e:bd:f8: dd:6c:81:67:50:bc:51:b8:e1:bd:43:c3:51:3f:92: 04:76:fb:7d:df:ff:7b:0a:66:ef:24:d2:17:ce:94: 67:84:13:53:8b:95:79:60:6b:25:64:a3:24:da:37: 63:e7:36:9c:f3:70:f8:7a:01:1c:70:0f:d5:76:8a: d9:56:73:77:67:3b:91:c4:36:53:1f:82:dd:f1:9b: 19:3d:66:25:7b:ac:93:7d:80:74:73:83:5c:31:86: a3:0f:3b:02:22:5b:8f:47:00:75:2e:48:bf:6d:b7: 15:1f:3c:25:32:b4:fd:0d:4f:9c:e8:c6:e8:a4:86: 9e:37:7d:3d:98:df:78:07:1f:8f:20:88:0c:a7:99: 0f:47:ab:2a:bb:a8:60:d1:ca:03:0e:46:bf:03:fc: 12:d0:92:13:6a:1b:e4:ed:72:b1:7d:25:ba:f3:90: 1b:89:c6:58:81:59:d5:bc:f2:db:60:20:42:67:18: 5d:27:c4:32:61:0a:90:a5:15:98:dc:4e:0c:84:70: 67:72:9b:7a:34:11:5d:aa:42:b6:9d:13:72:b6:5c: ce:ad:d4:1c:29:2a:9b:41:27:30:f4:f4:ca:65:3e: d6:49:89:35:7c:64:b2:29:42:e2:40:96:6b:72:b3: b8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:25:42:5F:9D:3B:72:62:76:2D:3D:35:19:D7:84:EA:E3:C2:95:6B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144144.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5d6::/32 Signature Algorithm: sha256WithRSAEncryption cc:ca:92:04:76:a4:78:57:54:54:db:3d:ed:9a:07:0e:43:69: 4b:eb:3a:71:49:49:46:25:4c:b7:f8:d5:d5:14:43:b5:97:8f: 70:65:a8:9f:b0:15:2f:3d:21:f3:d3:98:bb:8c:ff:50:f0:fe: b5:17:f7:72:39:c9:9c:d5:ff:71:74:31:7e:5d:37:14:ed:a1: d4:1c:88:10:6b:17:83:a0:54:76:1d:1f:4c:ad:c5:7f:47:cd: 37:b9:70:13:89:4e:67:3e:cd:61:b6:ec:1c:1b:0f:07:0e:74: 9f:89:b1:fa:06:6a:25:6f:d3:7a:ac:e0:d0:a3:56:90:b5:c1: e6:f3:3f:93:e4:3b:a5:a2:16:a4:75:85:0a:5c:fc:76:b1:e2: 24:bc:74:72:7c:1b:d2:fb:87:c8:62:13:05:5f:27:cf:6d:45: 41:88:b3:61:6d:20:6b:21:b8:3b:9f:42:63:08:5a:58:c5:6d: 82:e7:b4:59:57:90:d4:7c:ec:95:63:7a:d7:7a:09:8f:55:d2: 2b:66:4c:c8:c6:ef:5b:e0:96:b4:d5:9c:e3:a8:ca:dc:b4:9f: 06:db:61:21:b3:5a:75:4d:5e:89:35:96:3b:de:f8:d6:06:ac: 44:09:68:ee:3b:d2:52:c1:3d:ce:3c:01:d8:8c:7f:d5:ef:b6: 65:14:d3:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVrnk1v6OFW2TA4ud083tblQirWowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg1MFoX DTI3MDMwMzA2MTM1MFowMzExMC8GA1UEAxMoMkEyNTQyNUY5RDNCNzI2Mjc2MkQz RDM1MTlENzg0RUFFM0MyOTU2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANu+vZjqNSPZpPezHr343WyBZ1C8UbjhvUPDUT+SBHb7fd//ewpm7yTSF86U Z4QTU4uVeWBrJWSjJNo3Y+c2nPNw+HoBHHAP1XaK2VZzd2c7kcQ2Ux+C3fGbGT1m JXusk32AdHODXDGGow87AiJbj0cAdS5Iv223FR88JTK0/Q1PnOjG6KSGnjd9PZjf eAcfjyCIDKeZD0erKruoYNHKAw5GvwP8EtCSE2ob5O1ysX0luvOQG4nGWIFZ1bzy 22AgQmcYXSfEMmEKkKUVmNxODIRwZ3KbejQRXapCtp0TcrZczq3UHCkqm0EnMPT0 ymU+1kmJNXxksilC4kCWa3KzuH0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQqJUJf nTtyYnYtPTUZ14Tq48KVazAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE0NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pdYwDQYJKoZIhvcNAQELBQADggEBAMzKkgR2pHhXVFTbPe2aBw5DaUvrOnFJSUYl TLf41dUUQ7WXj3BlqJ+wFS89IfPTmLuM/1Dw/rUX93I5yZzV/3F0MX5dNxTtodQc iBBrF4OgVHYdH0ytxX9HzTe5cBOJTmc+zWG27BwbDwcOdJ+JsfoGaiVv03qs4NCj VpC1webzP5PkO6WiFqR1hQpc/Hax4iS8dHJ8G9L7h8hiEwVfJ89tRUGIs2FtIGsh uDufQmMIWljFbYLntFlXkNR87JVjetd6CY9V0itmTMjG71vglrTVnOOoyty0nwbb YSGzWnVNXok1ljve+NYGrEQJaO470lLBPc48AdiMf9XvtmUU0wQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:47 2026 by rpki-client