$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144175.roa File: AS144175.roa (raw, json) Hash identifier: urg6EGdF4sKSChC5BA73PZ4mQNKYuudLHUpD5q+zWhY= Subject key identifier: 43:77:89:08:30:48:BA:C0:38:F8:EC:05:30:84:C5:39:2E:7C:18:1E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 616840E801589A0786F9E3860EE2CFD416830E33 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144175.roa Signing time: Wed 04 Mar 2026 06:13:54 +0000 ROA not before: Wed 04 Mar 2026 06:08:54 +0000 ROA not after: Wed 03 Mar 2027 06:13:54 +0000 asID: 144175 IP address blocks: 240a:a5f5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:68:40:e8:01:58:9a:07:86:f9:e3:86:0e:e2:cf:d4:16:83:0e:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:54 2026 GMT Not After : Mar 3 06:13:54 2027 GMT Subject: CN=437789083048BAC038F8EC053084C5392E7C181E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:ad:32:ae:90:da:78:8e:55:be:37:ad:c1: 49:61:72:09:6c:b7:35:bd:53:43:de:29:e5:ea:ec: 5d:83:e9:17:e6:54:6d:2f:93:ae:75:43:2c:33:79: f8:43:10:c1:fb:8e:bc:ba:f1:e5:92:8d:a6:85:2f: a8:64:0b:63:7f:5e:65:25:73:46:ce:f7:95:ab:20: 05:d2:af:da:c8:6d:e3:bf:f0:37:27:0f:6e:b6:1a: d1:12:7d:e0:e7:49:5d:0b:dd:0f:04:8d:84:ac:ed: 80:12:46:ae:48:ad:a5:10:84:05:4b:3a:86:01:eb: 9d:6d:9e:d5:0c:86:ad:09:45:6d:20:ea:fb:f9:68: 1e:fe:a5:78:42:f9:b4:aa:88:86:55:ec:f2:e8:d0: f5:c7:03:51:ed:90:da:52:0e:cb:f2:87:5e:d8:6b: 0f:92:07:f8:cd:dd:17:be:33:06:28:56:eb:42:ee: c0:5b:08:58:52:cf:c0:f5:7b:34:63:93:6e:8e:fb: bb:db:3f:7f:1f:a1:85:2e:ea:fe:01:10:af:f5:96: 2f:e9:cb:70:fb:02:5e:08:36:70:68:e4:57:c5:a2: 53:5f:9b:18:6c:06:5b:94:d5:2b:72:83:30:67:ad: e3:64:39:a2:5f:b8:e6:57:17:ca:79:42:09:93:80: 43:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:77:89:08:30:48:BA:C0:38:F8:EC:05:30:84:C5:39:2E:7C:18:1E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144175.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5f5::/32 Signature Algorithm: sha256WithRSAEncryption a4:06:b6:de:1d:5f:64:fb:1f:ee:0c:9f:54:56:0e:ba:59:e5: 8c:ed:47:91:57:d5:e4:8b:ce:29:29:88:c8:d4:d0:3b:71:08: 90:b7:ff:38:6e:5f:ac:1b:78:cf:62:41:71:34:76:b5:c5:38: 2a:a4:af:34:a1:24:bb:48:fa:74:96:e0:14:b1:e8:c0:05:b4: dc:1a:2d:31:2c:cf:c7:86:12:d4:e9:c3:6f:f2:71:bf:40:19: f9:9e:bf:48:26:af:97:22:26:40:08:ea:de:38:14:46:ae:43: 08:80:8a:59:9a:9a:66:82:7e:8b:22:39:9e:35:d8:9b:ce:d2: 74:02:4e:f1:f6:97:03:2e:dd:94:e4:1e:ab:ad:1a:2a:0d:4f: bc:97:47:e4:73:08:5e:8a:05:1c:30:ea:4a:1d:38:06:8b:ca: bc:5a:5b:b5:de:84:9d:fd:69:a3:d8:9f:0d:8f:dd:dd:55:be: 63:bb:96:0c:92:90:75:dd:8e:31:88:13:1d:34:21:8d:8e:ea: 2c:b1:48:23:89:28:df:aa:01:56:c7:c2:fa:ce:bc:e1:69:b9: 44:c5:b3:91:76:e7:29:65:3e:df:e2:74:8d:c1:1e:68:f4:0a: 4c:70:7b:0e:d8:11:7d:1f:45:26:dc:da:ec:f7:cb:0f:a3:6d: 6d:9d:13:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYWhA6AFYmgeG+eOGDuLP1BaDDjMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg1NFoX DTI3MDMwMzA2MTM1NFowMzExMC8GA1UEAxMoNDM3Nzg5MDgzMDQ4QkFDMDM4RjhF QzA1MzA4NEM1MzkyRTdDMTgxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYQrTKukNp4jlW+N63BSWFyCWy3Nb1TQ94p5ersXYPpF+ZUbS+TrnVDLDN5 +EMQwfuOvLrx5ZKNpoUvqGQLY39eZSVzRs73lasgBdKv2sht47/wNycPbrYa0RJ9 4OdJXQvdDwSNhKztgBJGrkitpRCEBUs6hgHrnW2e1QyGrQlFbSDq+/loHv6leEL5 tKqIhlXs8ujQ9ccDUe2Q2lIOy/KHXthrD5IH+M3dF74zBihW60LuwFsIWFLPwPV7 NGOTbo77u9s/fx+hhS7q/gEQr/WWL+nLcPsCXgg2cGjkV8WiU1+bGGwGW5TVK3KD MGet42Q5ol+45lcXynlCCZOAQ4UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRDd4kI MEi6wDj47AUwhMU5LnwYHjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE3NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pfUwDQYJKoZIhvcNAQELBQADggEBAKQGtt4dX2T7H+4Mn1RWDrpZ5YztR5FX1eSL zikpiMjU0DtxCJC3/zhuX6wbeM9iQXE0drXFOCqkrzShJLtI+nSW4BSx6MAFtNwa LTEsz8eGEtTpw2/ycb9AGfmev0gmr5ciJkAI6t44FEauQwiAilmammaCfosiOZ41 2JvO0nQCTvH2lwMu3ZTkHqutGioNT7yXR+RzCF6KBRww6kodOAaLyrxaW7XehJ39 aaPYnw2P3d1VvmO7lgySkHXdjjGIEx00IY2O6iyxSCOJKN+qAVbHwvrOvOFpuUTF s5F25yllPt/idI3BHmj0Ckxwew7YEX0fRSbc2uz3yw+jbW2dE1w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:39 2026 by rpki-client