$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144182.roa File: AS144182.roa (raw, json) Hash identifier: d4tLkAcDybqUxM2MTTdD8uaq/yWV3FJC4oYETKSMGMA= Subject key identifier: FC:5B:32:98:2B:A1:66:94:2C:56:7A:5C:CC:18:08:66:D6:A1:13:A5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 76D42FF00620D5A4F3A80EC06AFCC100C264B886 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144182.roa Signing time: Wed 04 Mar 2026 06:14:06 +0000 ROA not before: Wed 04 Mar 2026 06:09:06 +0000 ROA not after: Wed 03 Mar 2027 06:14:06 +0000 asID: 144182 IP address blocks: 240a:a5fc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:d4:2f:f0:06:20:d5:a4:f3:a8:0e:c0:6a:fc:c1:00:c2:64:b8:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:06 2026 GMT Not After : Mar 3 06:14:06 2027 GMT Subject: CN=FC5B32982BA166942C567A5CCC180866D6A113A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:06:13:a4:60:3f:1b:0a:bc:ac:66:46:03:47: 23:b9:db:67:fd:b0:88:f1:1f:b3:53:c9:ca:ef:52: 10:6b:7a:16:9f:68:1f:35:40:78:f8:f5:51:29:ee: 14:c6:0f:f2:69:68:56:eb:50:a8:c0:e2:7d:ab:3e: f9:6f:61:2d:86:ce:59:e7:6b:6d:1f:e8:9e:ce:3a: bc:5b:36:99:3c:de:b5:93:bd:6e:68:f2:ba:08:9c: 3b:88:7e:d5:58:72:64:e6:6a:06:2b:a1:fe:50:74: 51:1b:ca:cf:ea:72:d2:6f:fb:ed:ea:73:90:68:c6: f5:47:b9:e1:98:3b:e9:cb:9a:a8:33:78:00:c5:43: 77:e5:4a:4b:a9:b1:7b:16:a4:61:90:d6:e6:7f:bd: 29:d1:84:bf:b8:51:6a:8a:d7:e5:2a:b0:23:3f:5a: b4:c9:44:55:81:f6:42:b2:e0:5b:4c:a3:7c:07:2b: 17:c5:04:17:92:63:22:2a:19:6a:72:b1:68:34:34: ed:4f:43:a3:27:c6:b6:37:20:77:a7:4e:bd:9b:22: 4c:72:cd:8d:75:7a:88:ec:30:43:3f:95:cb:e1:1b: e4:db:5f:76:fd:5c:4b:ab:d6:90:9d:9a:71:bf:d3: de:a7:37:30:04:10:a7:52:18:80:df:cb:5f:32:ae: a0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:5B:32:98:2B:A1:66:94:2C:56:7A:5C:CC:18:08:66:D6:A1:13:A5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144182.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5fc::/32 Signature Algorithm: sha256WithRSAEncryption 5b:fe:22:e3:d8:72:d6:1f:e0:cf:85:b4:eb:2b:e9:86:f0:9e: cf:b2:f4:6d:9e:d4:cf:d6:20:28:50:7d:e6:c9:66:ba:8d:49: ff:d9:de:8a:94:79:14:9e:85:aa:e4:31:77:60:9b:76:a0:99: 43:bf:f5:55:9a:1b:b0:19:3c:eb:27:48:7f:f4:88:06:59:9e: c8:46:6b:aa:b2:b4:4e:3b:e6:a0:dd:4b:bb:8d:e8:14:28:77: 4d:16:9c:d9:6f:8c:f7:83:45:5e:d7:75:c5:cb:c9:11:0b:42: 91:6f:95:dc:11:95:08:1e:36:a1:26:78:4f:a1:ad:ca:a8:d1: 8a:c7:33:f5:96:b2:1f:17:30:94:ef:28:8c:83:6e:11:f5:ac: 55:31:55:ef:dd:c5:bb:dc:60:f0:25:c4:01:86:42:37:04:ae: 0f:69:3b:52:ec:34:3e:1f:56:d8:37:c2:73:19:2c:53:7a:bc: 77:c5:4a:47:b0:e2:87:eb:79:2e:ff:96:0c:ab:1c:6e:01:5e: 5f:41:f5:05:4a:31:7b:db:1a:e1:f3:31:28:b5:c5:82:44:84: 32:95:36:20:b5:72:72:24:ce:96:4c:d0:5b:a9:52:65:93:7e: d8:73:a4:8f:21:9a:30:46:63:94:4d:37:3e:4f:7e:52:01:a5: 4a:86:c4:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdtQv8AYg1aTzqA7AavzBAMJkuIYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkwNloX DTI3MDMwMzA2MTQwNlowMzExMC8GA1UEAxMoRkM1QjMyOTgyQkExNjY5NDJDNTY3 QTVDQ0MxODA4NjZENkExMTNBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMwGE6RgPxsKvKxmRgNHI7nbZ/2wiPEfs1PJyu9SEGt6Fp9oHzVAePj1USnu FMYP8mloVutQqMDifas++W9hLYbOWedrbR/ons46vFs2mTzetZO9bmjyugicO4h+ 1VhyZOZqBiuh/lB0URvKz+py0m/77epzkGjG9Ue54Zg76cuaqDN4AMVDd+VKS6mx exakYZDW5n+9KdGEv7hRaorX5SqwIz9atMlEVYH2QrLgW0yjfAcrF8UEF5JjIioZ anKxaDQ07U9DoyfGtjcgd6dOvZsiTHLNjXV6iOwwQz+Vy+Eb5Ntfdv1cS6vWkJ2a cb/T3qc3MAQQp1IYgN/LXzKuoMkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT8WzKY K6FmlCxWelzMGAhm1qETpTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE4Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pfwwDQYJKoZIhvcNAQELBQADggEBAFv+IuPYctYf4M+FtOsr6Ybwns+y9G2e1M/W IChQfebJZrqNSf/Z3oqUeRSeharkMXdgm3agmUO/9VWaG7AZPOsnSH/0iAZZnshG a6qytE475qDdS7uN6BQod00WnNlvjPeDRV7XdcXLyRELQpFvldwRlQgeNqEmeE+h rcqo0YrHM/WWsh8XMJTvKIyDbhH1rFUxVe/dxbvcYPAlxAGGQjcErg9pO1LsND4f Vtg3wnMZLFN6vHfFSkew4ofreS7/lgyrHG4BXl9B9QVKMXvbGuHzMSi1xYJEhDKV NiC1cnIkzpZM0FupUmWTfthzpI8hmjBGY5RNNz5PflIBpUqGxGM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:12 2026 by rpki-client