$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144162.roa File: AS144162.roa (raw, json) Hash identifier: W6ivNwmDKtNZG6jBx6sKcXL3LsUpugBE/xJUNB+5x/8= Subject key identifier: FA:D6:50:20:30:9A:CB:79:BB:04:9F:26:28:3F:72:0C:91:AD:E3:0D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2421887FFAD5F02E4D6AC97EB306814163964990 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144162.roa Signing time: Wed 04 Mar 2026 06:12:39 +0000 ROA not before: Wed 04 Mar 2026 06:07:39 +0000 ROA not after: Wed 03 Mar 2027 06:12:39 +0000 asID: 144162 IP address blocks: 240a:a5e8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:21:88:7f:fa:d5:f0:2e:4d:6a:c9:7e:b3:06:81:41:63:96:49:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:39 2026 GMT Not After : Mar 3 06:12:39 2027 GMT Subject: CN=FAD65020309ACB79BB049F26283F720C91ADE30D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:48:55:bc:d8:0f:a4:6b:30:a5:f7:62:74: 83:7a:99:f2:1e:1b:f5:61:1e:70:c4:8b:49:c9:e2: 5d:f5:e8:7e:ac:02:dd:af:a3:25:46:40:b0:66:27: d4:b9:e6:60:bc:f7:db:13:eb:be:5b:3d:ca:09:80: 65:ce:18:61:da:f1:0a:b1:39:9e:8c:bb:4b:9f:a4: f2:e5:ad:fc:be:49:47:76:89:d4:6e:47:51:37:79: fd:b1:a9:d4:c2:53:08:f6:c2:c6:cb:45:e3:80:14: e3:95:c1:9c:c4:68:5b:fb:b9:95:eb:54:55:89:57: 15:71:2a:b6:34:5e:82:84:23:d5:9d:c1:8a:3b:0e: b5:93:da:35:b3:dd:61:3d:a1:df:f8:83:52:85:31: 8e:01:2a:10:78:65:49:3c:ad:b7:41:fb:61:f1:45: 81:e9:ed:39:de:3e:ef:62:ef:43:62:f1:f5:8d:3c: bc:bf:a2:54:86:eb:b0:d6:74:66:8c:bb:52:c7:1f: 50:a8:9c:ea:4e:4b:7d:3e:a2:f5:8d:dd:c5:3f:a7: 04:9d:03:7d:20:f7:97:a1:91:b5:23:2e:f6:54:ad: 8f:39:cc:a9:58:54:6c:7f:09:1f:f9:ec:5d:0b:9f: 11:c5:d5:45:5a:bf:cd:bb:75:7b:f7:4f:38:25:ff: ce:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D6:50:20:30:9A:CB:79:BB:04:9F:26:28:3F:72:0C:91:AD:E3:0D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144162.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5e8::/32 Signature Algorithm: sha256WithRSAEncryption 56:00:c2:2f:fb:bd:f2:4f:f3:ba:ec:08:e9:62:89:e9:25:ef: 69:b5:36:df:8d:56:20:91:20:23:b5:df:84:fc:3f:41:60:e3: aa:14:08:2d:b5:ce:93:b8:e9:71:1e:99:24:7d:05:21:65:6e: 62:1e:23:56:0a:40:84:ec:38:4d:32:0e:f8:57:bb:b9:c7:c5: dc:b3:ca:cd:93:e0:21:d9:0e:61:97:5d:07:dc:15:ff:25:a6: c5:0e:45:28:db:60:4d:20:e6:2c:47:e8:1e:4b:4b:34:a7:2c: d0:3c:9a:23:b6:31:a2:70:dc:39:43:bb:7a:b4:9c:75:d1:3b: d1:eb:7f:44:57:eb:78:a2:e0:7a:97:50:a9:7f:7b:09:10:d5: c5:36:c0:7c:41:26:fa:1b:fc:ac:cf:34:e0:78:ea:12:c4:5c: ed:4d:2e:bb:7d:4c:f7:d0:62:d2:c3:27:42:ec:cc:bb:36:eb: 59:d7:75:50:dc:45:87:ba:0e:7f:ac:ad:5c:9e:15:9e:f0:f4: 61:37:ea:ae:c4:60:22:36:35:53:a4:48:56:d0:64:98:59:d5: ef:03:83:f1:63:84:1e:8c:93:a1:8b:3a:dc:41:a5:a0:1d:78: b0:45:74:d0:2f:da:58:7a:17:bc:fc:6d:98:bf:da:f2:b5:c7: 79:f4:9d:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJCGIf/rV8C5Nasl+swaBQWOWSZAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDczOVoX DTI3MDMwMzA2MTIzOVowMzExMC8GA1UEAxMoRkFENjUwMjAzMDlBQ0I3OUJCMDQ5 RjI2MjgzRjcyMEM5MUFERTMwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFOSFW82A+kazCl92J0g3qZ8h4b9WEecMSLScniXfXofqwC3a+jJUZAsGYn 1LnmYLz32xPrvls9ygmAZc4YYdrxCrE5noy7S5+k8uWt/L5JR3aJ1G5HUTd5/bGp 1MJTCPbCxstF44AU45XBnMRoW/u5letUVYlXFXEqtjRegoQj1Z3BijsOtZPaNbPd YT2h3/iDUoUxjgEqEHhlSTytt0H7YfFFgentOd4+72LvQ2Lx9Y08vL+iVIbrsNZ0 Zoy7UscfUKic6k5LfT6i9Y3dxT+nBJ0DfSD3l6GRtSMu9lStjznMqVhUbH8JH/ns XQufEcXVRVq/zbt1e/dPOCX/znMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT61lAg MJrLebsEnyYoP3IMka3jDTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE2Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pegwDQYJKoZIhvcNAQELBQADggEBAFYAwi/7vfJP87rsCOliiekl72m1Nt+NViCR ICO134T8P0Fg46oUCC21zpO46XEemSR9BSFlbmIeI1YKQITsOE0yDvhXu7nHxdyz ys2T4CHZDmGXXQfcFf8lpsUORSjbYE0g5ixH6B5LSzSnLNA8miO2MaJw3DlDu3q0 nHXRO9Hrf0RX63ii4HqXUKl/ewkQ1cU2wHxBJvob/KzPNOB46hLEXO1NLrt9TPfQ YtLDJ0LszLs261nXdVDcRYe6Dn+srVyeFZ7w9GE36q7EYCI2NVOkSFbQZJhZ1e8D g/FjhB6Mk6GLOtxBpaAdeLBFdNAv2lh6F7z8bZi/2vK1x3n0nSw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:48 2026 by rpki-client