$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144154.roa File: AS144154.roa (raw, json) Hash identifier: nqp5WicxPFQjUa3Tggosc3uZtWjDP9tSow04BC8TMeg= Subject key identifier: BE:A9:8C:DC:46:BA:05:FD:24:42:15:01:BF:2C:EB:D8:3D:36:92:14 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 55A31463AEA4B2C8B07E73CEDE6962ADE182D2F8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144154.roa Signing time: Wed 04 Mar 2026 06:14:48 +0000 ROA not before: Wed 04 Mar 2026 06:09:48 +0000 ROA not after: Wed 03 Mar 2027 06:14:48 +0000 asID: 144154 IP address blocks: 240a:a5e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a3:14:63:ae:a4:b2:c8:b0:7e:73:ce:de:69:62:ad:e1:82:d2:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:48 2026 GMT Not After : Mar 3 06:14:48 2027 GMT Subject: CN=BEA98CDC46BA05FD24421501BF2CEBD83D369214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:ed:0a:50:aa:8b:13:21:20:2f:c4:c8:09: 02:59:79:d8:76:a1:a0:84:9a:28:2a:b2:b7:5c:a0: 8e:df:2c:74:90:ca:1c:dc:54:d8:18:03:c5:a7:d3: 5e:56:e6:88:30:c5:0b:58:47:1f:8a:8f:3a:63:10: b9:c4:d4:93:66:da:a9:41:f8:a3:a0:ed:b9:22:f3: 49:ff:45:97:ff:78:6f:22:c2:92:8a:c0:ca:22:94: 8a:b8:dc:db:37:5a:35:3b:bb:ad:23:ef:d7:86:fc: 23:8f:1e:45:a1:ad:38:8d:15:51:17:3d:5c:04:fd: 60:cd:42:27:9b:4a:9e:d1:48:ea:af:35:ca:83:55: dd:22:66:01:6a:f0:8b:fa:70:fd:f3:a6:40:fc:dc: ca:92:08:c3:cb:7c:76:5a:00:c4:9f:a1:2e:27:40: 50:30:d5:29:12:13:98:7a:11:7e:e1:fa:68:43:28: 3b:23:ff:6b:a0:15:27:4c:17:85:15:a9:50:4d:59: f4:35:43:96:b2:09:a1:a2:61:c9:08:7d:17:51:3e: 3b:d0:f0:5c:f6:ae:93:64:7c:51:49:0d:3b:2e:9a: 50:8b:6d:4d:0b:10:49:3a:47:a4:8a:b6:38:72:9d: de:29:52:1b:2b:ef:32:91:2c:18:a1:cc:87:82:5b: b5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A9:8C:DC:46:BA:05:FD:24:42:15:01:BF:2C:EB:D8:3D:36:92:14 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144154.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5e0::/32 Signature Algorithm: sha256WithRSAEncryption d6:c1:2f:0a:48:00:7a:4b:cb:cf:b9:f6:05:71:3a:75:6f:02: 7c:a7:cf:63:aa:c4:f0:d7:da:1a:c6:44:08:e4:3b:0e:4d:b0: 75:b6:c9:92:25:af:09:cb:88:2a:17:e7:e6:70:50:8e:30:d8: a7:26:f2:87:75:d3:38:64:56:21:da:fb:ca:82:5a:d8:28:47: 7e:7d:e2:e9:42:e0:d9:14:48:f6:ca:91:b1:ff:41:3d:c1:6f: dd:82:44:9e:96:2f:34:41:14:05:11:da:b3:3a:52:67:aa:74: 6b:dd:22:d5:bb:ef:c1:60:b1:3f:2e:c0:45:4f:e3:8c:dc:94: 80:ab:21:ef:63:94:74:77:7a:ae:21:76:b1:5d:7f:d8:32:73: 15:16:1e:4c:1d:fa:b2:59:5c:76:c3:e9:96:1f:32:ac:17:90: c3:1c:40:f6:dc:0c:88:6a:2b:d3:04:0d:0e:84:85:5e:2a:0a: e7:9d:f3:95:6b:51:1f:8b:e0:78:bb:17:6e:f5:1f:56:94:0c: 50:4d:86:f5:39:61:17:47:52:66:cf:7e:e8:38:e3:af:e9:cb: db:d9:3e:41:4b:d6:46:fd:bb:c1:ae:62:6c:07:01:d1:33:a7: 83:e4:44:81:40:c1:ae:41:f1:16:fa:2e:89:1a:e5:c8:02:6e: d6:43:12:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVaMUY66kssiwfnPO3mlireGC0vgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk0OFoX DTI3MDMwMzA2MTQ0OFowMzExMC8GA1UEAxMoQkVBOThDREM0NkJBMDVGRDI0NDIx NTAxQkYyQ0VCRDgzRDM2OTIxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqt7QpQqosTISAvxMgJAll52HahoISaKCqyt1ygjt8sdJDKHNxU2BgDxafT XlbmiDDFC1hHH4qPOmMQucTUk2baqUH4o6DtuSLzSf9Fl/94byLCkorAyiKUirjc 2zdaNTu7rSPv14b8I48eRaGtOI0VURc9XAT9YM1CJ5tKntFI6q81yoNV3SJmAWrw i/pw/fOmQPzcypIIw8t8dloAxJ+hLidAUDDVKRITmHoRfuH6aEMoOyP/a6AVJ0wX hRWpUE1Z9DVDlrIJoaJhyQh9F1E+O9DwXPauk2R8UUkNOy6aUIttTQsQSTpHpIq2 OHKd3ilSGyvvMpEsGKHMh4JbtX0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS+qYzc RroF/SRCFQG/LOvYPTaSFDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE1NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK peAwDQYJKoZIhvcNAQELBQADggEBANbBLwpIAHpLy8+59gVxOnVvAnynz2OqxPDX 2hrGRAjkOw5NsHW2yZIlrwnLiCoX5+ZwUI4w2Kcm8od10zhkViHa+8qCWtgoR359 4ulC4NkUSPbKkbH/QT3Bb92CRJ6WLzRBFAUR2rM6UmeqdGvdItW778FgsT8uwEVP 44zclICrIe9jlHR3eq4hdrFdf9gycxUWHkwd+rJZXHbD6ZYfMqwXkMMcQPbcDIhq K9MEDQ6EhV4qCued85VrUR+L4Hi7F271H1aUDFBNhvU5YRdHUmbPfug446/py9vZ PkFL1kb9u8GuYmwHAdEzp4PkRIFAwa5B8Rb6Loka5cgCbtZDEjc= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:40 2026 by rpki-client