$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144201.roa File: AS144201.roa (raw, json) Hash identifier: /JPGsgc3GAE352o+2+DDts5/c6VRcbk8oeJBjlxpggw= Subject key identifier: C1:09:1B:E3:64:AD:07:53:D5:D6:37:76:30:F7:87:AA:E1:3F:84:12 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7E43E4B3D8B918BEABA5E7BF616388B54668E984 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144201.roa Signing time: Wed 04 Mar 2026 06:14:41 +0000 ROA not before: Wed 04 Mar 2026 06:09:41 +0000 ROA not after: Wed 03 Mar 2027 06:14:41 +0000 asID: 144201 IP address blocks: 240a:a60f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:43:e4:b3:d8:b9:18:be:ab:a5:e7:bf:61:63:88:b5:46:68:e9:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:41 2026 GMT Not After : Mar 3 06:14:41 2027 GMT Subject: CN=C1091BE364AD0753D5D6377630F787AAE13F8412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7a:00:59:dd:e9:cb:43:ac:f7:cc:2e:a3:08: 83:88:83:c3:0c:ac:07:ba:1b:a7:90:f0:91:7c:2b: 1b:aa:cc:4b:ef:1b:4e:d0:56:a5:f3:df:c8:f1:67: dc:10:2a:79:ca:ee:fa:61:b1:18:2a:d1:dd:a0:1f: 20:b6:57:7b:38:7d:ef:7c:dd:3a:14:45:98:e7:29: a5:9f:54:73:57:dc:18:cf:c8:41:85:d9:8c:5e:b8: eb:d4:cc:47:23:98:85:87:51:08:05:f8:8f:91:11: 03:0f:cf:e3:b1:b1:5e:19:5c:15:a3:ab:3f:62:3d: c5:de:20:7c:c6:29:2f:63:a3:50:57:5d:28:3c:5b: 1d:90:0e:22:f4:bc:8e:9b:bd:3f:67:7a:45:0f:8d: be:7c:2e:2b:ed:7f:56:09:e1:f3:99:b1:b6:c5:2b: 85:30:3b:75:b5:77:7e:04:08:e7:1d:4a:a5:ad:f4: 5b:af:58:c7:68:91:11:06:24:75:33:7d:e1:c8:2b: 3c:0e:16:43:1c:84:59:74:81:79:0b:96:66:d1:0d: f9:8b:63:a2:1b:a5:9e:be:d3:21:b0:53:b3:34:4c: 74:a1:51:81:6c:f6:01:35:2b:12:33:52:2e:88:6d: 00:69:d0:6a:2a:d6:65:32:23:04:f1:18:c7:af:7f: 4a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:09:1B:E3:64:AD:07:53:D5:D6:37:76:30:F7:87:AA:E1:3F:84:12 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a60f::/32 Signature Algorithm: sha256WithRSAEncryption 92:ad:c1:c1:28:a5:a0:eb:1c:24:18:5d:94:3c:ba:dd:69:9f: 6c:4c:10:70:91:cf:19:7a:4a:a5:fd:90:21:c0:6f:30:cb:4f: be:cf:cb:2b:ce:10:47:1a:c5:0b:e0:6e:e7:88:b6:8f:6b:26: 71:35:c7:00:9e:c1:7e:54:5e:1e:e1:57:53:1a:e7:de:fe:91: b9:ca:59:61:8b:97:5d:8e:6c:89:bc:f9:ec:94:1d:8f:f7:ce: 0a:82:57:6b:9b:ab:28:8d:ab:fb:8f:55:ed:9b:04:51:53:3d: f0:d4:74:0f:13:e1:ea:ff:d3:00:3c:4f:8e:81:92:18:5c:80: cb:9b:50:f3:b7:58:48:80:7d:92:13:0f:1d:6d:64:97:59:01: b6:b6:d8:e6:29:16:ff:20:e0:0f:10:6b:b0:1e:8b:42:5f:be: ba:ed:8f:f5:4e:63:5b:b3:c5:b2:e6:70:b5:72:3e:f7:8e:7e: 27:f5:05:37:c1:6e:04:12:54:b1:2e:84:42:46:f5:4f:d3:11: fb:29:31:20:1a:ee:89:98:5a:42:27:59:69:60:48:b3:b9:93: a4:04:64:bf:e6:fb:56:dd:cb:cc:92:9a:a3:e0:c4:d6:cf:e6: 69:19:12:ba:7b:bc:66:22:b2:32:be:61:d6:53:1b:2c:84:47: 20:ba:48:0a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUfkPks9i5GL6rpee/YWOItUZo6YQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk0MVoX DTI3MDMwMzA2MTQ0MVowMzExMC8GA1UEAxMoQzEwOTFCRTM2NEFEMDc1M0Q1RDYz Nzc2MzBGNzg3QUFFMTNGODQxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ16AFnd6ctDrPfMLqMIg4iDwwysB7obp5DwkXwrG6rMS+8bTtBWpfPfyPFn 3BAqecru+mGxGCrR3aAfILZXezh973zdOhRFmOcppZ9Uc1fcGM/IQYXZjF6469TM RyOYhYdRCAX4j5ERAw/P47GxXhlcFaOrP2I9xd4gfMYpL2OjUFddKDxbHZAOIvS8 jpu9P2d6RQ+NvnwuK+1/Vgnh85mxtsUrhTA7dbV3fgQI5x1Kpa30W69Yx2iREQYk dTN94cgrPA4WQxyEWXSBeQuWZtEN+Ytjohulnr7TIbBTszRMdKFRgWz2ATUrEjNS LohtAGnQairWZTIjBPEYx69/SrcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTBCRvj ZK0HU9XWN3Yw94eq4T+EEjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDIwMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pg8wDQYJKoZIhvcNAQELBQADggEBAJKtwcEopaDrHCQYXZQ8ut1pn2xMEHCRzxl6 SqX9kCHAbzDLT77PyyvOEEcaxQvgbueIto9rJnE1xwCewX5UXh7hV1Ma597+kbnK WWGLl12ObIm8+eyUHY/3zgqCV2ubqyiNq/uPVe2bBFFTPfDUdA8T4er/0wA8T46B khhcgMubUPO3WEiAfZITDx1tZJdZAba22OYpFv8g4A8Qa7Aei0Jfvrrtj/VOY1uz xbLmcLVyPveOfif1BTfBbgQSVLEuhEJG9U/TEfspMSAa7omYWkInWWlgSLO5k6QE ZL/m+1bdy8ySmqPgxNbP5mkZErp7vGYisjK+YdZTGyyERyC6SAo= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:31 2026 by rpki-client