$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144225.roa File: AS144225.roa (raw, json) Hash identifier: NzbxKYB6XnmOkkqBv5itXgIJ5j6KjzYBdIAnjELBRVk= Subject key identifier: 6B:17:DD:D6:EB:87:7E:E2:EB:5A:A4:F2:DE:01:1D:D8:17:61:55:9C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 093AD4030CB7B82FD05CC658AA129E148BEA069E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144225.roa Signing time: Wed 04 Mar 2026 06:12:52 +0000 ROA not before: Wed 04 Mar 2026 06:07:52 +0000 ROA not after: Wed 03 Mar 2027 06:12:52 +0000 asID: 144225 IP address blocks: 240a:a627::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:3a:d4:03:0c:b7:b8:2f:d0:5c:c6:58:aa:12:9e:14:8b:ea:06:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:52 2026 GMT Not After : Mar 3 06:12:52 2027 GMT Subject: CN=6B17DDD6EB877EE2EB5AA4F2DE011DD81761559C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:01:2d:4f:4e:46:73:1b:f1:48:be:10:95:09: e5:dd:fe:f0:b3:e5:42:6d:f9:08:5c:7c:d1:17:26: d8:19:02:e0:b0:a4:1e:e0:fe:6a:5f:a0:08:5c:45: 0a:8d:18:e1:52:29:5f:38:d1:16:cb:7c:86:e8:83: 80:01:56:62:3a:75:e1:a1:d5:97:62:cb:97:75:8f: fa:68:ab:00:3c:46:b4:ea:75:69:56:2d:77:87:ab: e9:2c:a5:62:61:e9:ac:59:57:c4:c9:71:d2:57:fa: 79:64:28:35:6b:92:69:bc:00:77:43:47:50:27:70: 61:80:38:dd:8c:84:36:b0:91:91:48:f3:47:bc:bb: 49:35:26:0d:5d:35:02:b8:4a:f3:09:17:8d:ef:cc: 82:c2:5f:e7:77:25:a3:45:3f:76:ac:08:a2:b8:dc: 65:ab:42:5a:c8:10:48:01:d5:5a:ed:f4:60:6f:54: a7:a5:d2:3a:1d:b2:a1:80:6d:ec:c6:1b:b9:b0:f6: ba:4e:6b:3a:4f:66:f8:b8:f5:24:c6:4d:c8:73:9b: a8:13:76:45:61:6c:8e:8e:e6:fd:66:49:86:2c:85: 62:2e:b3:76:ee:cf:4b:a8:30:88:87:f2:9b:9b:26: c8:6e:ee:a1:4c:36:84:88:b7:7e:85:05:f6:ca:57: 84:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:17:DD:D6:EB:87:7E:E2:EB:5A:A4:F2:DE:01:1D:D8:17:61:55:9C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144225.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a627::/32 Signature Algorithm: sha256WithRSAEncryption 2b:56:3c:e9:62:53:f6:33:6a:46:ab:c2:aa:ca:63:a3:ee:45: 3f:11:c5:1a:c2:63:be:9c:e1:7a:e0:cc:98:19:8f:5e:74:4d: e6:cd:ad:bf:ff:be:ed:90:82:37:a7:d3:bb:fb:83:e2:22:f7: d9:f3:14:06:7d:b1:eb:4b:36:6d:8c:28:ca:f6:6c:ea:e6:88: 20:b1:1d:a2:f3:56:9f:93:f3:62:51:4b:3f:f7:14:67:17:5c: b6:53:1e:54:c4:dd:e3:20:c8:a5:18:5c:ad:0c:38:a9:e6:1f: ca:1c:57:c5:2b:6c:22:2c:00:cd:ee:41:f9:c5:2e:92:18:56: ec:ca:2a:57:cd:27:1f:e2:28:d3:48:cd:bb:d9:f3:d6:89:ce: 71:3b:21:a7:65:fd:2e:57:08:15:f8:e2:36:13:cc:b7:8a:a7: 86:51:e4:1b:3c:f5:23:9d:ca:c6:62:2b:5e:be:8f:68:a1:c0: fc:a8:91:5b:03:ae:bc:18:7b:5a:b6:ad:44:7a:36:53:d9:c2: 48:dd:ca:21:05:fd:da:af:27:42:7a:c9:c4:00:9c:4a:ce:89: 2d:0d:7c:3e:db:55:9c:dd:56:6f:1d:45:d6:9c:bd:df:e0:6b: 71:2b:d9:4f:1e:b9:1a:54:7f:7c:02:2a:b1:52:ab:26:aa:7e: 9f:83:26:5a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCTrUAwy3uC/QXMZYqhKeFIvqBp4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc1MloX DTI3MDMwMzA2MTI1MlowMzExMC8GA1UEAxMoNkIxN0RERDZFQjg3N0VFMkVCNUFB NEYyREUwMTFERDgxNzYxNTU5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0BLU9ORnMb8Ui+EJUJ5d3+8LPlQm35CFx80Rcm2BkC4LCkHuD+al+gCFxF Co0Y4VIpXzjRFst8huiDgAFWYjp14aHVl2LLl3WP+mirADxGtOp1aVYtd4er6Syl YmHprFlXxMlx0lf6eWQoNWuSabwAd0NHUCdwYYA43YyENrCRkUjzR7y7STUmDV01 ArhK8wkXje/MgsJf53clo0U/dqwIorjcZatCWsgQSAHVWu30YG9Up6XSOh2yoYBt 7MYbubD2uk5rOk9m+Lj1JMZNyHObqBN2RWFsjo7m/WZJhiyFYi6zdu7PS6gwiIfy m5smyG7uoUw2hIi3foUF9spXhBkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRrF93W 64d+4utapPLeAR3YF2FVnDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDIyNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK picwDQYJKoZIhvcNAQELBQADggEBACtWPOliU/YzakarwqrKY6PuRT8RxRrCY76c 4XrgzJgZj150TebNrb//vu2Qgjen07v7g+Ii99nzFAZ9setLNm2MKMr2bOrmiCCx HaLzVp+T82JRSz/3FGcXXLZTHlTE3eMgyKUYXK0MOKnmH8ocV8UrbCIsAM3uQfnF LpIYVuzKKlfNJx/iKNNIzbvZ89aJznE7Iadl/S5XCBX44jYTzLeKp4ZR5Bs89SOd ysZiK16+j2ihwPyokVsDrrwYe1q2rUR6NlPZwkjdyiEF/dqvJ0J6ycQAnErOiS0N fD7bVZzdVm8dRdacvd/ga3Er2U8euRpUf3wCKrFSqyaqfp+DJlo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:36 2026 by rpki-client