$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144183.roa File: AS144183.roa (raw, json) Hash identifier: 9vFfQPACIs0e4PB6OmtafE9LlcRjwEydUc8ykErNxDM= Subject key identifier: EF:99:23:1D:9D:3F:9F:6B:1F:B9:CA:DD:01:9C:26:89:92:9F:46:13 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 74C72D943DE77B96231E2136D1576833AD2AF5E2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144183.roa Signing time: Wed 04 Mar 2026 06:14:50 +0000 ROA not before: Wed 04 Mar 2026 06:09:50 +0000 ROA not after: Wed 03 Mar 2027 06:14:50 +0000 asID: 144183 IP address blocks: 240a:a5fd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c7:2d:94:3d:e7:7b:96:23:1e:21:36:d1:57:68:33:ad:2a:f5:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:50 2026 GMT Not After : Mar 3 06:14:50 2027 GMT Subject: CN=EF99231D9D3F9F6B1FB9CADD019C2689929F4613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c4:c3:af:75:8d:09:ad:de:9c:5f:37:bf:d5: d4:49:aa:11:36:b8:64:94:94:32:dd:90:43:4a:1d: 99:54:27:83:b2:4f:00:56:73:c4:8b:6e:e7:fb:28: 9c:82:b4:48:82:56:50:6f:fb:96:55:6f:56:54:b0: 9b:e5:88:14:10:dd:a7:5b:0e:f2:e1:25:73:6c:08: d8:ef:e1:66:11:c6:47:70:82:81:87:ab:68:b9:ea: 00:79:be:8c:bc:ae:79:3c:34:05:f3:10:b3:e1:f6: af:5f:f7:cd:40:06:e0:c7:8e:77:85:1d:89:e1:36: ce:b3:9f:90:de:27:7f:54:70:64:d6:c8:62:09:0c: ca:a9:49:d4:ff:3c:57:c7:16:f7:fc:75:0f:eb:b4: 26:8a:bc:7e:38:82:5e:34:7e:0d:72:3e:40:b1:21: 97:c5:f3:ac:39:f8:55:88:b7:3e:c5:33:a6:c2:87: cf:64:aa:11:15:8d:20:89:de:f0:d6:02:1f:51:dd: cd:2c:23:f8:59:82:fd:c1:3b:06:38:9a:60:73:40: ae:c1:d4:c4:19:ad:b6:db:06:f2:75:04:e5:2b:91: 92:96:71:34:51:9f:89:84:e8:40:c0:c6:4f:30:42: cd:cf:12:a5:f6:2f:dc:29:09:c8:2c:ea:a6:46:9a: ea:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:99:23:1D:9D:3F:9F:6B:1F:B9:CA:DD:01:9C:26:89:92:9F:46:13 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144183.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a5fd::/32 Signature Algorithm: sha256WithRSAEncryption a8:30:01:83:e6:fc:e2:90:3b:10:37:6b:73:5a:fe:c8:ad:2f: 7b:9d:b5:74:9a:51:22:45:eb:23:d6:59:64:33:85:33:a4:82: 3a:9f:80:1c:10:67:4c:2d:6e:15:a5:17:83:56:7b:a0:8a:05: aa:73:e0:43:49:cb:23:16:4e:b8:37:2a:c2:f7:9d:bc:9b:1c: c8:ba:ea:fd:fe:89:d8:79:8f:00:ec:ec:fd:25:d8:07:41:0b: 52:e4:83:2f:e4:82:8b:50:2f:a1:ce:87:0c:4d:cc:88:dd:b3: a5:6a:5f:b5:b5:eb:c9:65:97:c2:b8:2f:b4:12:7a:43:78:01: 7e:29:ac:93:93:6f:73:f9:ee:20:9e:55:6d:c8:1f:db:52:da: 49:25:e3:9e:4f:47:88:b8:65:0c:9d:91:1f:44:c6:dc:d6:98: 52:33:ec:0d:5a:39:46:0d:59:d5:e6:5f:f1:a7:bc:61:14:77: d4:bb:e7:27:e1:6c:0d:63:41:37:bd:f7:a4:bc:e5:24:3a:32: cf:0a:b2:67:00:91:4e:59:a5:c0:b0:3f:90:eb:06:6f:36:56: 8d:23:da:e4:6e:62:3f:21:0a:6c:36:47:ed:2f:9d:93:86:51: bc:1f:2d:9e:00:62:ab:c4:da:84:61:38:d5:82:6a:ab:3d:4f: d4:b2:52:c2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdMctlD3ne5YjHiE20VdoM60q9eIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk1MFoX DTI3MDMwMzA2MTQ1MFowMzExMC8GA1UEAxMoRUY5OTIzMUQ5RDNGOUY2QjFGQjlD QUREMDE5QzI2ODk5MjlGNDYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKjEw691jQmt3pxfN7/V1EmqETa4ZJSUMt2QQ0odmVQng7JPAFZzxItu5/so nIK0SIJWUG/7llVvVlSwm+WIFBDdp1sO8uElc2wI2O/hZhHGR3CCgYeraLnqAHm+ jLyueTw0BfMQs+H2r1/3zUAG4MeOd4UdieE2zrOfkN4nf1RwZNbIYgkMyqlJ1P88 V8cW9/x1D+u0Joq8fjiCXjR+DXI+QLEhl8XzrDn4VYi3PsUzpsKHz2SqERWNIIne 8NYCH1HdzSwj+FmC/cE7BjiaYHNArsHUxBmtttsG8nUE5SuRkpZxNFGfiYToQMDG TzBCzc8SpfYv3CkJyCzqpkaa6iECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTvmSMd nT+fax+5yt0BnCaJkp9GEzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE4My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pf0wDQYJKoZIhvcNAQELBQADggEBAKgwAYPm/OKQOxA3a3Na/sitL3udtXSaUSJF 6yPWWWQzhTOkgjqfgBwQZ0wtbhWlF4NWe6CKBapz4ENJyyMWTrg3KsL3nbybHMi6 6v3+idh5jwDs7P0l2AdBC1Lkgy/kgotQL6HOhwxNzIjds6VqX7W168lll8K4L7QS ekN4AX4prJOTb3P57iCeVW3IH9tS2kkl455PR4i4ZQydkR9ExtzWmFIz7A1aOUYN WdXmX/GnvGEUd9S75yfhbA1jQTe996S85SQ6Ms8KsmcAkU5ZpcCwP5DrBm82Vo0j 2uRuYj8hCmw2R+0vnZOGUbwfLZ4AYqvE2oRhONWCaqs9T9SyUsI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:53 2026 by rpki-client