$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144206.roa File: AS144206.roa (raw, json) Hash identifier: ExGIV2ctPgb9T6RTo6PNM7zNNZ0S/HJWAjlpn3Yj/5E= Subject key identifier: B6:02:87:D3:67:FE:AE:B7:C1:B9:46:3C:90:28:69:76:8A:B6:2B:EF Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5A2FE5F71758DE43BCCC07F5B1414F8AF4860C13 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144206.roa Signing time: Wed 04 Mar 2026 06:15:02 +0000 ROA not before: Wed 04 Mar 2026 06:10:02 +0000 ROA not after: Wed 03 Mar 2027 06:15:02 +0000 asID: 144206 IP address blocks: 240a:a614::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:2f:e5:f7:17:58:de:43:bc:cc:07:f5:b1:41:4f:8a:f4:86:0c:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:02 2026 GMT Not After : Mar 3 06:15:02 2027 GMT Subject: CN=B60287D367FEAEB7C1B9463C902869768AB62BEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c3:b8:16:7e:4e:21:e3:c0:88:6f:f9:b1:e8: 10:84:ad:7e:37:29:c6:0e:83:33:75:be:dd:f3:ac: a8:27:60:4f:42:96:a5:56:7a:c5:17:ba:41:5e:68: 33:62:b5:6a:ff:e1:5b:d3:00:9f:7c:f1:05:68:07: e4:7e:17:56:d1:27:c4:4f:7f:7d:1e:41:e2:21:08: d7:d6:d2:3b:65:eb:e3:82:3c:19:8e:49:18:b0:ae: 32:d3:1c:cd:97:19:6a:36:14:b5:de:9a:09:0a:b0: a2:63:f6:a6:f2:0d:ef:54:09:7f:b0:c3:74:41:f5: be:26:3a:68:16:b5:bc:5e:06:1c:a6:57:d0:c9:f9: a2:31:b6:ce:15:5b:c6:a9:3f:e0:c1:2a:70:72:08: 23:c8:6a:46:d8:26:e1:d0:d4:4f:47:58:c1:7f:c8: 6a:0d:a9:20:9c:9f:72:09:2a:75:87:c3:7b:61:52: 9a:57:36:db:05:4e:7d:fc:96:de:8b:dd:c8:f6:b7: e7:54:96:f3:e2:2b:67:bc:ee:68:96:c3:b3:46:b3: 79:bb:ef:c5:b6:47:60:5d:f3:86:5d:ab:51:91:b6: f2:3f:c4:71:8c:5d:e7:23:1d:5e:58:07:e6:6f:c9: 01:a2:d6:a7:a3:71:e0:25:db:b7:22:38:78:7c:4f: f1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:02:87:D3:67:FE:AE:B7:C1:B9:46:3C:90:28:69:76:8A:B6:2B:EF X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144206.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a614::/32 Signature Algorithm: sha256WithRSAEncryption 3c:2e:ee:1e:44:1c:80:73:dc:39:d0:c4:0d:dd:13:70:59:47: 45:bf:76:cc:9f:d3:64:84:a4:32:8e:b9:fd:82:9d:41:d5:25: 7f:01:37:5d:88:3b:aa:2b:1c:91:9c:df:a6:e6:39:c0:e2:a4: 69:a6:6a:3d:06:29:87:1b:df:f6:3a:8c:ad:40:0d:63:fe:5a: f8:b8:cf:35:34:3f:62:56:ca:48:61:f3:11:4a:5f:cc:38:36: 1e:64:c9:eb:d8:a1:aa:0d:97:8c:89:c2:5b:b3:1e:18:d0:6d: d8:7d:5e:45:61:ac:bd:b8:e1:c3:da:0b:cf:aa:78:8d:15:3a: 0b:2b:94:55:e5:db:43:13:4c:16:ea:8c:c2:3e:3d:99:4f:af: bb:9d:d7:df:da:c7:0e:92:ce:b5:1b:6d:3c:49:87:32:01:f4: ca:be:31:9d:c8:9c:55:06:67:59:cf:fe:a1:fd:4e:48:88:41: a0:eb:b9:4d:56:07:a1:99:66:f7:16:cc:36:4b:69:65:d4:7e: 57:b1:f9:85:76:e0:e6:bf:06:36:d0:5e:e0:95:7e:ad:ab:3e: 09:08:17:6a:b8:ca:c0:d0:a6:db:92:93:4b:3b:d8:a8:3e:ac: de:87:30:33:a2:75:4e:a9:b6:88:ea:88:2d:3b:2b:1b:a7:b7: 07:59:4f:9a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUWi/l9xdY3kO8zAf1sUFPivSGDBMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAwMloX DTI3MDMwMzA2MTUwMlowMzExMC8GA1UEAxMoQjYwMjg3RDM2N0ZFQUVCN0MxQjk0 NjNDOTAyODY5NzY4QUI2MkJFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANzDuBZ+TiHjwIhv+bHoEIStfjcpxg6DM3W+3fOsqCdgT0KWpVZ6xRe6QV5o M2K1av/hW9MAn3zxBWgH5H4XVtEnxE9/fR5B4iEI19bSO2Xr44I8GY5JGLCuMtMc zZcZajYUtd6aCQqwomP2pvIN71QJf7DDdEH1viY6aBa1vF4GHKZX0Mn5ojG2zhVb xqk/4MEqcHIII8hqRtgm4dDUT0dYwX/Iag2pIJyfcgkqdYfDe2FSmlc22wVOffyW 3ovdyPa351SW8+IrZ7zuaJbDs0azebvvxbZHYF3zhl2rUZG28j/EcYxd5yMdXlgH 5m/JAaLWp6Nx4CXbtyI4eHxP8TsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS2AofT Z/6ut8G5RjyQKGl2irYr7zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDIwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK phQwDQYJKoZIhvcNAQELBQADggEBADwu7h5EHIBz3DnQxA3dE3BZR0W/dsyf02SE pDKOuf2CnUHVJX8BN12IO6orHJGc36bmOcDipGmmaj0GKYcb3/Y6jK1ADWP+Wvi4 zzU0P2JWykhh8xFKX8w4Nh5kyevYoaoNl4yJwluzHhjQbdh9XkVhrL244cPaC8+q eI0VOgsrlFXl20MTTBbqjMI+PZlPr7ud19/axw6SzrUbbTxJhzIB9Mq+MZ3InFUG Z1nP/qH9TkiIQaDruU1WB6GZZvcWzDZLaWXUflex+YV24Oa/BjbQXuCVfq2rPgkI F2q4ysDQptuSk0s72Kg+rN6HMDOidU6ptojqiC07KxuntwdZT5o= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:02 2026 by rpki-client