$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144198.roa File: AS144198.roa (raw, json) Hash identifier: 01kXciDgtF4tenwO49ZHLRQoCUkcOB46GnbWsLrZPTM= Subject key identifier: 3D:09:42:2F:14:3E:A5:2C:8B:79:02:51:65:BE:46:1F:98:25:A1:B4 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 16312D4794AFCDE7C7E16F256A1CCAF6165793FD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144198.roa Signing time: Wed 04 Mar 2026 06:14:03 +0000 ROA not before: Wed 04 Mar 2026 06:09:03 +0000 ROA not after: Wed 03 Mar 2027 06:14:03 +0000 asID: 144198 IP address blocks: 240a:a60c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:31:2d:47:94:af:cd:e7:c7:e1:6f:25:6a:1c:ca:f6:16:57:93:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:03 2026 GMT Not After : Mar 3 06:14:03 2027 GMT Subject: CN=3D09422F143EA52C8B79025165BE461F9825A1B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:da:04:79:7e:5e:be:cc:23:33:cb:74:e4:c7: b9:b9:51:46:b8:33:f5:5a:3f:e7:08:59:30:f0:7f: db:6f:41:58:3d:37:6d:60:03:7e:e7:61:43:bf:a6: fe:38:45:0d:a8:83:0b:57:6c:10:ae:65:a0:1a:77: f7:fc:c2:7c:d4:bd:54:a1:9b:53:8d:86:6c:8c:98: 4f:d2:a9:47:86:01:3d:7a:80:c9:8a:82:d6:9e:be: 7c:e5:24:77:00:56:bf:f1:9e:28:3d:72:62:60:07: 94:e1:63:5e:5a:57:f9:bc:35:e8:1c:19:6d:d1:d3: 42:60:f8:01:46:42:a9:7c:ef:27:d3:94:ee:e5:a3: 4f:a2:ed:56:13:57:7d:ec:0f:0f:01:a5:0d:56:01: 0f:0d:97:27:df:d8:4f:5d:32:b9:6e:5e:03:8c:f9: 74:fa:93:4f:3d:f3:2a:49:92:bd:31:cb:52:c5:a2: a9:b4:cc:69:80:86:49:0f:02:05:b0:67:86:77:7c: e2:08:8d:62:fd:64:8a:6b:a8:df:a3:c9:7f:e9:84: 45:a5:8a:a5:22:cf:7c:97:9d:03:dd:b6:4f:8e:cd: 96:cc:08:ea:71:8d:65:7e:49:12:00:46:26:b6:8f: d1:4b:e5:65:0a:13:b9:67:53:a8:a1:25:6d:2e:82: d1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:09:42:2F:14:3E:A5:2C:8B:79:02:51:65:BE:46:1F:98:25:A1:B4 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144198.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a60c::/32 Signature Algorithm: sha256WithRSAEncryption 09:96:3d:f7:17:09:c5:b3:61:bc:9a:2d:e1:fc:7d:9d:c0:d6: ff:e8:0d:a5:f3:89:bd:60:1d:5e:22:66:e2:ac:8c:ae:4d:e9: 38:fb:4c:fd:56:ee:5d:6c:cb:5b:b1:67:aa:dc:25:4a:50:c9: c4:77:b0:f7:86:78:71:c2:2b:df:7e:b8:7e:1d:c7:fd:fa:8f: f0:a5:1a:3f:2e:b6:a9:85:41:8f:ba:f5:8e:8d:97:91:85:3f: 6c:93:e5:6c:7f:cc:40:68:40:46:76:4e:d0:0c:4d:d1:0e:19: c6:d4:ce:4f:76:32:71:f1:44:91:56:33:54:71:6e:65:fc:c4: 59:c4:e5:66:43:50:a2:f7:c7:b7:81:15:96:a8:cf:3a:a5:6f: ff:a6:ba:f4:9b:78:ed:c5:17:10:da:99:9f:f3:13:5f:3c:d7: 2e:53:26:a9:70:a2:14:54:dd:f9:56:d8:47:5d:e9:9e:20:af: b4:0c:a0:69:27:8d:66:79:ea:07:fb:da:83:2b:fb:3e:ca:8c: 7e:d1:de:19:31:13:72:11:d8:60:df:90:06:ee:49:25:05:00: 2b:c1:34:0e:6e:18:db:d7:e8:81:47:97:3a:31:81:37:57:61: 29:20:4d:58:c2:5b:56:72:cf:62:a3:9b:71:e8:b9:7b:2e:ba: cf:46:0d:eb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFjEtR5SvzefH4W8lahzK9hZXk/0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkwM1oX DTI3MDMwMzA2MTQwM1owMzExMC8GA1UEAxMoM0QwOTQyMkYxNDNFQTUyQzhCNzkw MjUxNjVCRTQ2MUY5ODI1QTFCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbaBHl+Xr7MIzPLdOTHublRRrgz9Vo/5whZMPB/229BWD03bWADfudhQ7+m /jhFDaiDC1dsEK5loBp39/zCfNS9VKGbU42GbIyYT9KpR4YBPXqAyYqC1p6+fOUk dwBWv/GeKD1yYmAHlOFjXlpX+bw16BwZbdHTQmD4AUZCqXzvJ9OU7uWjT6LtVhNX fewPDwGlDVYBDw2XJ9/YT10yuW5eA4z5dPqTTz3zKkmSvTHLUsWiqbTMaYCGSQ8C BbBnhnd84giNYv1kimuo36PJf+mERaWKpSLPfJedA922T47NlswI6nGNZX5JEgBG JraP0UvlZQoTuWdTqKElbS6C0ccCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ9CUIv FD6lLIt5AlFlvkYfmCWhtDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDE5OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pgwwDQYJKoZIhvcNAQELBQADggEBAAmWPfcXCcWzYbyaLeH8fZ3A1v/oDaXzib1g HV4iZuKsjK5N6Tj7TP1W7l1sy1uxZ6rcJUpQycR3sPeGeHHCK99+uH4dx/36j/Cl Gj8utqmFQY+69Y6Nl5GFP2yT5Wx/zEBoQEZ2TtAMTdEOGcbUzk92MnHxRJFWM1Rx bmX8xFnE5WZDUKL3x7eBFZaozzqlb/+muvSbeO3FFxDamZ/zE1881y5TJqlwohRU 3flW2Edd6Z4gr7QMoGknjWZ56gf72oMr+z7KjH7R3hkxE3IR2GDfkAbuSSUFACvB NA5uGNvX6IFHlzoxgTdXYSkgTVjCW1Zyz2Kjm3HouXsuus9GDes= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:57 2026 by rpki-client