$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144217.roa File: AS144217.roa (raw, json) Hash identifier: cN+UB5jWtN6iZJlZerAjA66llbhw361fiOkG7UsMunA= Subject key identifier: 75:65:87:54:6D:EF:D2:35:88:03:CF:C5:93:0B:05:1F:FB:ED:AC:20 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2F38146DECAAC34B2CF88BD62618F876B230C5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144217.roa Signing time: Wed 04 Mar 2026 06:14:50 +0000 ROA not before: Wed 04 Mar 2026 06:09:50 +0000 ROA not after: Wed 03 Mar 2027 06:14:50 +0000 asID: 144217 IP address blocks: 240a:a61f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:38:14:6d:ec:aa:c3:4b:2c:f8:8b:d6:26:18:f8:76:b2:30:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:50 2026 GMT Not After : Mar 3 06:14:50 2027 GMT Subject: CN=756587546DEFD2358803CFC5930B051FFBEDAC20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:4b:35:64:68:58:e9:84:6d:f3:29:00:b8:ba: 4f:26:07:d9:ff:4c:2f:dc:b3:ac:02:72:a3:ab:71: e9:d1:29:31:66:b8:21:69:c3:eb:4c:1e:81:c5:c9: d8:65:8e:22:40:e4:7b:d2:00:cf:d1:45:ef:3c:c7: a6:e1:dd:b7:35:7a:8f:28:58:f0:69:20:c3:a8:11: d1:d6:65:cb:fe:3a:6d:38:a6:f5:d3:4f:e7:70:0b: 21:89:37:da:82:b6:01:62:2a:d6:3d:9f:e4:cd:f9: 1d:78:43:31:45:f5:72:29:57:96:1f:cc:86:df:9a: ce:af:e8:90:2d:78:ea:3c:05:1a:db:ce:85:e7:6a: a8:eb:11:13:19:30:bd:c6:87:b5:7f:2d:d0:76:ea: 74:67:42:6f:71:5d:be:5f:5d:fb:00:a0:46:16:97: 0c:f5:7b:c9:9d:0c:fb:fc:66:a5:ac:77:c6:05:af: ed:f4:e7:47:80:3c:32:37:e8:87:40:62:05:70:24: 78:be:dc:fa:4a:27:2f:1d:7f:75:2e:cf:09:55:aa: 26:3b:7b:ff:e6:94:a8:0c:a5:d9:bd:ff:02:69:b8: 84:59:e4:bb:db:a5:95:06:0f:1b:c1:d4:b7:5b:c9: e5:f1:33:04:b6:a4:af:f4:73:9d:17:25:de:67:3b: 09:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:65:87:54:6D:EF:D2:35:88:03:CF:C5:93:0B:05:1F:FB:ED:AC:20 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144217.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a61f::/32 Signature Algorithm: sha256WithRSAEncryption 20:20:d8:0c:b4:32:89:e6:07:75:d7:97:31:6f:98:92:ed:41: d2:1e:9a:42:16:b6:d2:10:4d:77:25:0c:1e:7f:4d:62:08:bb: 5a:b6:52:96:a5:ea:db:f4:86:83:e1:bd:3c:4a:f8:ea:80:c2: a2:c8:a4:21:b0:7e:86:73:14:cc:71:d0:e0:3d:05:9c:a8:a5: 5b:c0:34:9a:e0:b6:d1:e0:bc:0a:32:16:0f:ec:b2:ca:6f:e7: 26:36:7f:3b:6a:7b:f6:5f:20:11:f6:2b:45:81:90:1a:39:6f: 46:83:a2:5d:bd:17:c0:1f:9f:61:78:47:7a:2e:f0:e9:c2:dd: 22:00:10:36:32:3a:b1:80:88:61:83:c5:29:b9:6f:f3:aa:d3: b0:ff:9a:0a:17:fe:3f:59:d2:79:74:c2:d3:af:21:44:b7:b3: b9:7b:15:3e:fc:03:9e:85:cc:68:3e:be:54:05:22:12:ef:1a: cf:2e:7c:6f:47:1d:9e:55:c5:08:11:1b:11:59:ae:e1:98:ed: 42:18:e4:a5:f8:1c:eb:7c:60:11:81:7a:38:eb:2e:25:aa:25: 15:90:80:ca:85:74:7e:97:22:5f:f8:e0:c5:b1:ec:97:86:37: 78:1f:48:58:e7:fa:00:b8:88:c5:67:b6:22:49:09:09:af:56: b9:5d:41:12 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgITLzgUbeyqw0ss+IvWJhj4drIwxTANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDDAxBOTFFNUQ2MTAwMDExMTAvBgNVBAUTKDA1RkM5QzVCODg1 MDZGN0MwRDNGODYyQzg4OTVCRUQ2N0U5RjhFQkEwHhcNMjYwMzA0MDYwOTUwWhcN MjcwMzAzMDYxNDUwWjAzMTEwLwYDVQQDEyg3NTY1ODc1NDZERUZEMjM1ODgwM0NG QzU5MzBCMDUxRkZCRURBQzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0s1ZGhY6YRt8ykAuLpPJgfZ/0wv3LOsAnKjq3Hp0SkxZrghacPrTB6BxcnY ZY4iQOR70gDP0UXvPMem4d23NXqPKFjwaSDDqBHR1mXL/jptOKb100/ncAshiTfa grYBYirWPZ/kzfkdeEMxRfVyKVeWH8yG35rOr+iQLXjqPAUa286F52qo6xETGTC9 xoe1fy3Qdup0Z0JvcV2+X137AKBGFpcM9XvJnQz7/GalrHfGBa/t9OdHgDwyN+iH QGIFcCR4vtz6SicvHX91Ls8JVaomO3v/5pSoDKXZvf8CabiEWeS726WVBg8bwdS3 W8nl8TMEtqSv9HOdFyXeZzsJWwIDAQABo4IBxTCCAcEwHQYDVR0OBBYEFHVlh1Rt 79I1iAPPxZMLBR/77awgMB8GA1UdIwQYMBaAFAX8nFuIUG98DT+GLIiVvtZ+n466 MA4GA1UdDwEB/wQEAwIHgDBjBgNVHR8EXDBaMFigVqBUhlJyc3luYzovL3Jwa2ku Y2VybmV0Lm5ldC9yZXBvL2Nlcm5ldC8wLzA1RkM5QzVCODg1MDZGN0MwRDNGODYy Qzg4OTVCRUQ2N0U5RjhFQkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcw AoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0JmeWNXNGhRYjN3TlA0WXNpSlctMW42Zmpy by5jZXIwTgYIKwYBBQUHAQsEQjBAMD4GCCsGAQUFBzALhjJyc3luYzovL3Jwa2ku Y2VybmV0Lm5ldC9yZXBvL2Nlcm5ldC8wL0FTMTQ0MjE3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAqm HzANBgkqhkiG9w0BAQsFAAOCAQEAICDYDLQyieYHddeXMW+Yku1B0h6aQha20hBN dyUMHn9NYgi7WrZSlqXq2/SGg+G9PEr46oDCosikIbB+hnMUzHHQ4D0FnKilW8A0 muC20eC8CjIWD+yyym/nJjZ/O2p79l8gEfYrRYGQGjlvRoOiXb0XwB+fYXhHei7w 6cLdIgAQNjI6sYCIYYPFKblv86rTsP+aChf+P1nSeXTC068hRLezuXsVPvwDnoXM aD6+VAUiEu8azy58b0cdnlXFCBEbEVmu4ZjtQhjkpfgc63xgEYF6OOsuJaolFZCA yoV0fpciX/jgxbHsl4Y3eB9IWOf6ALiIxWe2IkkJCa9WuV1BEg== -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:33 2026 by rpki-client