$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144173.roa File: AS144173.roa (raw, json) Hash identifier: 1tryxyUkFWECwX/eRw9EayE3QxcvG5xy8vir/qcNKS8= Subject key identifier: 26:3F:C0:BB:20:B2:BD:29:25:17:CE:4B:36:76:FA:46:0B:5F:41:DC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 740B272B0EC2A74CEDBEFD08350ECBC301FC91D1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144173.roa Signing time: Wed 04 Mar 2026 06:13:20 +0000 ROA not before: Wed 04 Mar 2026 06:08:20 +0000 ROA not after: Wed 03 Mar 2027 06:13:20 +0000 asID: 144173 IP address blocks: 240a:a5f3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:0b:27:2b:0e:c2:a7:4c:ed:be:fd:08:35:0e:cb:c3:01:fc:91:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:20 2026 GMT Not After : Mar 3 06:13:20 2027 GMT Subject: CN=263FC0BB20B2BD292517CE4B3676FA460B5F41DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b4:18:f2:e8:d9:f2:f3:d0:ce:43:81:d8:09: 3b:a8:71:5a:c6:ee:44:79:2e:2f:77:c5:ad:2b:91: 00:64:51:6d:55:94:21:e9:94:93:58:ba:53:b9:44: 27:b9:df:01:79:c4:87:9f:d8:ef:38:e2:2e:3f:d6: 40:46:41:3a:9a:6c:0d:55:18:35:39:d5:e0:04:03: 53:49:a0:aa:64:bb:59:75:0f:13:db:f8:16:ef:48: 41:63:f3:5f:97:6f:ff:dc:5c:d4:69:1e:32:53:7b: af:e2:96:81:fd:fe:c2:03:39:07:2a:66:28:6c:84: 48:a9:dc:e0:e9:91:06:0a:af:c5:d8:e4:7f:e2:c4: c9:fc:71:95:92:14:b5:3e:22:6f:70:33:68:b2:04: 66:73:d2:83:60:8e:f1:4f:15:0f:d8:74:19:bb:de: 16:e3:9f:7f:49:7f:9f:ef:c7:a4:57:f0:e0:ba:2c: b1:09:e3:6e:2e:03:67:f0:ef:ab:2c:f3:d1:13:ee: b9:da:30:1a:6f:d0:3b:d8:e8:26:e1:80:06:4b:79: a8:40:86:4b:e0:fe:6a:aa:65:bd:b2:14:2f:b2:01: b3:af:24:b4:a4:d4:6a:b3:f0:e0:9b:1a:fd:fc:9a: c0:0a:9a:c6:90:3e:73:20:f2:33:29:fe:e8:07:09: be:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3F:C0:BB:20:B2:BD:29:25:17:CE:4B:36:76:FA:46:0B:5F:41:DC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144173.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5f3::/32 Signature Algorithm: sha256WithRSAEncryption a1:e4:7d:74:5d:2f:15:b2:47:05:2d:ed:22:72:13:1d:8d:60: 50:c4:a5:6e:a4:20:0c:c5:ef:2d:ba:8d:d8:b8:42:c2:0e:f4: 8a:23:49:b9:3a:a8:4c:1a:4e:53:d9:a1:fc:ae:bd:1d:a6:e9: ef:e6:97:fb:b1:52:97:32:0a:99:e9:7f:1f:f4:99:59:2d:79: 5a:80:97:de:99:fb:c8:9e:1b:96:27:4e:d0:a8:ef:4b:07:67: fa:82:5d:56:ff:08:fd:d9:1a:fb:ec:e0:23:c2:1e:28:35:7f: 92:53:ac:de:98:c9:40:d5:dc:25:bf:05:7e:69:49:a7:74:74: 4d:44:11:a8:59:d1:d6:2e:26:58:6a:35:73:b1:cd:40:a7:cd: ed:a2:1b:a0:f6:fc:04:bf:8d:28:a2:7c:ea:5d:f2:84:e2:c8: 7e:ea:e6:2c:f3:48:44:38:a8:7f:a4:53:33:f7:a5:c8:23:bc: 17:36:e6:07:08:a3:29:a2:55:1a:f9:2b:3e:6a:fa:2f:5f:21: 52:5e:8c:dc:07:00:e7:b4:20:e4:22:11:0d:11:15:bb:57:dc: 34:6b:19:13:5b:b3:30:35:20:60:4f:63:80:bd:ba:35:a8:71: 83:1d:e3:95:bf:d9:06:7a:41:63:86:30:d9:29:2c:6b:a4:9e: 03:8a:fa:c9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdAsnKw7Cp0ztvv0INQ7LwwH8kdEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgyMFoX DTI3MDMwMzA2MTMyMFowMzExMC8GA1UEAxMoMjYzRkMwQkIyMEIyQkQyOTI1MTdD RTRCMzY3NkZBNDYwQjVGNDFEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL60GPLo2fLz0M5DgdgJO6hxWsbuRHkuL3fFrSuRAGRRbVWUIemUk1i6U7lE J7nfAXnEh5/Y7zjiLj/WQEZBOppsDVUYNTnV4AQDU0mgqmS7WXUPE9v4Fu9IQWPz X5dv/9xc1GkeMlN7r+KWgf3+wgM5BypmKGyESKnc4OmRBgqvxdjkf+LEyfxxlZIU tT4ib3AzaLIEZnPSg2CO8U8VD9h0GbveFuOff0l/n+/HpFfw4LossQnjbi4DZ/Dv qyzz0RPuudowGm/QO9joJuGABkt5qECGS+D+aqplvbIUL7IBs68ktKTUarPw4Jsa /fyawAqaxpA+cyDyMyn+6AcJvrECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQmP8C7 ILK9KSUXzks2dvpGC19B3DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE3My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pfMwDQYJKoZIhvcNAQELBQADggEBAKHkfXRdLxWyRwUt7SJyEx2NYFDEpW6kIAzF 7y26jdi4QsIO9IojSbk6qEwaTlPZofyuvR2m6e/ml/uxUpcyCpnpfx/0mVkteVqA l96Z+8ieG5YnTtCo70sHZ/qCXVb/CP3ZGvvs4CPCHig1f5JTrN6YyUDV3CW/BX5p Sad0dE1EEahZ0dYuJlhqNXOxzUCnze2iG6D2/AS/jSiifOpd8oTiyH7q5izzSEQ4 qH+kUzP3pcgjvBc25gcIoymiVRr5Kz5q+i9fIVJejNwHAOe0IOQiEQ0RFbtX3DRr GRNbszA1IGBPY4C9ujWocYMd45W/2QZ6QWOGMNkpLGukngOK+sk= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:08 2026 by rpki-client