$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144164.roa File: AS144164.roa (raw, json) Hash identifier: q9kxd/TCooUz/gp5jERyFMjvl5bUF7mTUM4rLJZ2DYA= Subject key identifier: 52:09:1B:E5:4B:CF:2C:5C:0E:87:DD:F4:FA:18:98:B5:13:E9:5D:28 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 259FFB64AA483FFD13EE7A5DD7B2CD71D58475F9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144164.roa Signing time: Wed 04 Mar 2026 06:13:03 +0000 ROA not before: Wed 04 Mar 2026 06:08:03 +0000 ROA not after: Wed 03 Mar 2027 06:13:03 +0000 asID: 144164 IP address blocks: 240a:a5ea::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:9f:fb:64:aa:48:3f:fd:13:ee:7a:5d:d7:b2:cd:71:d5:84:75:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:03 2026 GMT Not After : Mar 3 06:13:03 2027 GMT Subject: CN=52091BE54BCF2C5C0E87DDF4FA1898B513E95D28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:36:34:76:ba:7d:d0:25:fc:d9:9d:ab:ac:94: 44:2c:fe:f5:50:57:5e:5d:d6:4c:80:e8:05:3d:80: e3:69:cf:25:28:bd:98:a2:c3:48:5e:74:ed:ea:42: 8a:1e:9a:3d:52:63:54:98:67:a7:ff:10:0d:cb:b8: 23:fe:c2:63:84:2d:a4:bd:4e:b0:e6:56:93:3d:f3: c2:c0:16:f3:81:19:7a:49:dd:23:84:da:89:2e:b3: 7c:bb:fe:c5:2f:f6:11:10:a6:78:11:48:d1:b8:82: b5:75:d8:3e:cb:0c:9d:ea:1c:6c:73:c6:23:b9:ca: e3:fb:e5:d2:47:b3:11:97:7c:a9:ee:13:fa:f0:e4: 8b:6c:d0:d2:2a:57:82:75:2b:ed:f8:e0:41:36:b6: 48:22:c3:7a:6a:73:5d:ed:cc:c6:d3:a0:cd:50:c1: 9f:88:14:7a:44:df:15:96:57:93:60:3b:a4:33:2e: cb:df:85:b5:c0:3b:79:de:35:c4:8c:50:ee:00:63: 95:aa:2b:c0:b9:81:ea:1d:36:30:6c:5f:0b:e1:84: 84:b7:9e:35:c4:e0:a4:22:68:70:0e:22:e6:ac:03: 3d:e5:b8:0d:1a:85:02:2d:80:43:e4:19:92:fa:ee: da:ef:6a:e1:86:9f:47:a9:cd:d5:81:c8:7c:6e:be: bd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:09:1B:E5:4B:CF:2C:5C:0E:87:DD:F4:FA:18:98:B5:13:E9:5D:28 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144164.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5ea::/32 Signature Algorithm: sha256WithRSAEncryption ba:77:5b:2a:c7:a7:83:f8:7e:59:c4:38:2e:9d:7e:7b:4f:67: 22:2f:42:9b:c8:dc:07:55:f3:a5:2f:89:4b:49:69:8c:39:9b: fc:da:d6:c1:24:89:09:d3:a0:35:7a:16:d5:14:7d:51:e1:0b: e6:32:f3:b9:a9:cc:a9:a0:60:e1:51:27:00:2c:74:51:db:29: 25:c6:73:69:26:10:2b:51:60:80:77:81:c1:23:a3:2d:22:e6: 3d:71:3f:34:11:13:db:86:2b:47:b5:25:bd:0c:93:69:bf:fb: 6a:31:cf:f5:89:1c:b5:c9:af:9a:c9:ed:c2:c8:a4:61:3e:b8: 61:f6:07:1a:92:75:90:84:93:86:83:1f:48:aa:43:a2:9c:29: 43:07:52:f9:b7:57:62:6d:68:e6:5f:93:0c:0f:5a:b5:e5:f0: ac:a1:3b:a2:44:50:8c:be:a8:ea:db:e7:0c:63:11:56:00:9a: 00:23:5f:88:a3:8c:5c:3a:6d:94:d6:4d:14:ee:70:c1:ae:ef: 50:99:4d:b6:c5:76:1f:df:92:d5:f1:6a:36:d8:78:84:1f:08: 76:96:d7:9d:80:ee:75:49:dd:06:00:86:f3:ce:0c:66:e5:01: df:01:aa:1b:d9:a8:6d:ae:7b:92:9f:e7:6c:e6:7c:d5:11:63: bb:af:57:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJZ/7ZKpIP/0T7npd17LNcdWEdfkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgwM1oX DTI3MDMwMzA2MTMwM1owMzExMC8GA1UEAxMoNTIwOTFCRTU0QkNGMkM1QzBFODdE REY0RkExODk4QjUxM0U5NUQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANg2NHa6fdAl/Nmdq6yURCz+9VBXXl3WTIDoBT2A42nPJSi9mKLDSF507epC ih6aPVJjVJhnp/8QDcu4I/7CY4QtpL1OsOZWkz3zwsAW84EZekndI4TaiS6zfLv+ xS/2ERCmeBFI0biCtXXYPssMneocbHPGI7nK4/vl0kezEZd8qe4T+vDki2zQ0ipX gnUr7fjgQTa2SCLDempzXe3MxtOgzVDBn4gUekTfFZZXk2A7pDMuy9+FtcA7ed41 xIxQ7gBjlaorwLmB6h02MGxfC+GEhLeeNcTgpCJocA4i5qwDPeW4DRqFAi2AQ+QZ kvru2u9q4YafR6nN1YHIfG6+vacCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRSCRvl S88sXA6H3fT6GJi1E+ldKDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK peowDQYJKoZIhvcNAQELBQADggEBALp3WyrHp4P4flnEOC6dfntPZyIvQpvI3AdV 86UviUtJaYw5m/za1sEkiQnToDV6FtUUfVHhC+Yy87mpzKmgYOFRJwAsdFHbKSXG c2kmECtRYIB3gcEjoy0i5j1xPzQRE9uGK0e1Jb0Mk2m/+2oxz/WJHLXJr5rJ7cLI pGE+uGH2BxqSdZCEk4aDH0iqQ6KcKUMHUvm3V2JtaOZfkwwPWrXl8KyhO6JEUIy+ qOrb5wxjEVYAmgAjX4ijjFw6bZTWTRTucMGu71CZTbbFdh/fktXxajbYeIQfCHaW 152A7nVJ3QYAhvPODGblAd8BqhvZqG2ue5Kf52zmfNURY7uvVyI= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:10 2026 by rpki-client