$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144166.roa File: AS144166.roa (raw, json) Hash identifier: 6D1agJ9bbQY6ufyCQeo2NnZVavtih2+IEqK/SsOOS2Y= Subject key identifier: 51:CD:F2:08:07:A5:BD:72:DA:A0:C4:99:CE:80:DB:33:F5:F4:3D:12 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 371361A405DC948D9B6564E9A766EFF873D2C759 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144166.roa Signing time: Wed 04 Mar 2026 06:14:08 +0000 ROA not before: Wed 04 Mar 2026 06:09:08 +0000 ROA not after: Wed 03 Mar 2027 06:14:08 +0000 asID: 144166 IP address blocks: 240a:a5ec::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:13:61:a4:05:dc:94:8d:9b:65:64:e9:a7:66:ef:f8:73:d2:c7:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:08 2026 GMT Not After : Mar 3 06:14:08 2027 GMT Subject: CN=51CDF20807A5BD72DAA0C499CE80DB33F5F43D12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:dd:f3:4f:aa:12:0b:fc:be:24:a1:9f:59:d4: 29:01:c8:4b:76:8b:fc:64:fd:2b:fb:0a:56:18:3c: 60:3c:8d:fa:13:8d:70:b4:33:9e:e8:9d:11:26:45: d0:44:75:b3:c9:23:30:1b:5f:c6:03:5c:de:c6:bf: 37:21:3b:d3:4f:4c:3a:27:08:b4:47:ed:37:35:82: 8a:9e:c7:7f:74:36:e9:87:8e:64:e0:f7:f7:9c:b9: 9d:79:b3:f1:36:f7:06:e2:45:36:10:14:ca:5a:26: ef:0d:04:71:e6:6c:3f:c4:9d:5c:6d:d9:10:1a:d4: 24:2e:e1:b1:32:ef:63:ce:71:4c:5a:b8:ce:83:ac: 2f:af:12:93:e1:ce:4f:d3:29:b7:e5:d1:be:36:a7: 38:bf:b0:9b:98:e2:21:81:0a:0c:59:d4:e3:df:ce: 47:56:45:6e:25:75:4e:c0:49:3b:4b:97:c9:e6:ae: eb:2b:80:2e:5f:9a:01:78:4e:8d:cd:40:72:c0:ab: 4e:e6:71:42:4e:5e:0f:13:93:1d:28:e5:63:49:d0: 90:02:bd:2c:ff:4a:d4:be:1b:f0:b0:83:de:01:d8: 16:fe:de:41:ce:3d:2d:45:a2:48:b6:da:64:8e:5e: b4:da:c6:f9:23:de:29:43:41:a6:1f:2d:02:08:36: f1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CD:F2:08:07:A5:BD:72:DA:A0:C4:99:CE:80:DB:33:F5:F4:3D:12 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144166.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5ec::/32 Signature Algorithm: sha256WithRSAEncryption 07:22:8a:34:69:18:8b:8a:54:eb:b1:dd:93:5e:55:93:ae:1f: 1c:92:c4:ee:23:44:af:99:7d:77:a8:82:ec:1d:c7:79:af:73: d0:aa:8d:50:57:85:ac:f2:e7:04:76:3a:e6:da:56:17:b8:46: cb:50:05:ae:c7:cf:92:8b:13:cd:2b:17:fb:9d:56:35:09:40: 5f:23:19:8c:55:4d:74:b1:76:b6:f9:85:f6:02:82:81:b1:d6: 3f:64:97:ec:45:f3:c0:8b:4a:db:0d:a1:0e:3b:be:d4:87:ae: 49:89:e5:c9:58:d4:6a:b2:72:ff:c0:75:f3:85:a9:c0:64:2e: ec:50:8c:a4:3b:3d:2e:89:03:43:36:30:e5:b3:36:52:88:d7: f3:4e:e4:b2:e6:08:b2:dd:f3:de:b8:fa:ee:91:93:86:8d:3c: d2:70:ba:17:ae:7e:b1:ae:86:77:1b:f0:5d:ff:20:5e:4b:70: 23:93:4b:03:28:79:b7:36:08:fe:d4:3d:86:32:61:eb:1e:c8: 54:f6:86:f6:20:49:9a:eb:3a:27:97:1b:68:47:22:d4:0e:46: 13:1e:0c:3b:dd:48:57:9d:cd:1c:83:56:20:b5:14:67:e9:c1: 94:5a:23:7d:b3:85:d5:81:e8:8e:2b:fb:3a:4c:b5:d1:66:97: 87:fa:d7:1f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNxNhpAXclI2bZWTpp2bv+HPSx1kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkwOFoX DTI3MDMwMzA2MTQwOFowMzExMC8GA1UEAxMoNTFDREYyMDgwN0E1QkQ3MkRBQTBD NDk5Q0U4MERCMzNGNUY0M0QxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO7d80+qEgv8viShn1nUKQHIS3aL/GT9K/sKVhg8YDyN+hONcLQznuidESZF 0ER1s8kjMBtfxgNc3sa/NyE7009MOicItEftNzWCip7Hf3Q26YeOZOD395y5nXmz 8Tb3BuJFNhAUylom7w0EceZsP8SdXG3ZEBrUJC7hsTLvY85xTFq4zoOsL68Sk+HO T9Mpt+XRvjanOL+wm5jiIYEKDFnU49/OR1ZFbiV1TsBJO0uXyeau6yuALl+aAXhO jc1AcsCrTuZxQk5eDxOTHSjlY0nQkAK9LP9K1L4b8LCD3gHYFv7eQc49LUWiSLba ZI5etNrG+SPeKUNBph8tAgg28ZkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRRzfII B6W9ctqgxJnOgNsz9fQ9EjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE2Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pewwDQYJKoZIhvcNAQELBQADggEBAAciijRpGIuKVOux3ZNeVZOuHxySxO4jRK+Z fXeoguwdx3mvc9CqjVBXhazy5wR2OubaVhe4RstQBa7Hz5KLE80rF/udVjUJQF8j GYxVTXSxdrb5hfYCgoGx1j9kl+xF88CLStsNoQ47vtSHrkmJ5clY1Gqycv/AdfOF qcBkLuxQjKQ7PS6JA0M2MOWzNlKI1/NO5LLmCLLd8964+u6Rk4aNPNJwuheufrGu hncb8F3/IF5LcCOTSwMoebc2CP7UPYYyYeseyFT2hvYgSZrrOieXG2hHItQORhMe DDvdSFedzRyDViC1FGfpwZRaI32zhdWB6I4r+zpMtdFml4f61x8= -----END CERTIFICATE-----Generated at Sat Mar 28 13:15:14 2026 by rpki-client