$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144229.roa File: AS144229.roa (raw, json) Hash identifier: tdidJZTLftwNq6ylQwLUbHYfxm/UON9eN5HaazlTx+I= Subject key identifier: 9A:D1:39:F0:89:38:D0:A5:0F:92:45:D4:49:61:9E:3A:7F:7A:9C:8C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 14A48E50E1A60EC58C5A172A88366100107012D9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144229.roa Signing time: Wed 04 Mar 2026 06:12:58 +0000 ROA not before: Wed 04 Mar 2026 06:07:58 +0000 ROA not after: Wed 03 Mar 2027 06:12:58 +0000 asID: 144229 IP address blocks: 240a:a62b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a4:8e:50:e1:a6:0e:c5:8c:5a:17:2a:88:36:61:00:10:70:12:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:58 2026 GMT Not After : Mar 3 06:12:58 2027 GMT Subject: CN=9AD139F08938D0A50F9245D449619E3A7F7A9C8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7c:ff:88:d8:92:4c:ba:48:c6:5d:ab:02:1a: 35:4d:37:2a:bf:c1:67:6d:2d:6c:68:db:c3:5b:ee: 95:11:42:a9:a1:f5:55:c2:8a:5d:7d:09:18:03:a1: eb:36:3d:17:e7:f5:e3:6f:b0:1e:c5:58:4c:30:5f: 11:c5:f0:25:d6:24:28:f2:5b:c7:be:6d:bc:0d:65: b1:61:33:a6:0a:5e:1e:f7:b8:45:04:aa:83:06:98: 44:c8:cf:11:74:74:d4:6e:bf:2c:a0:8b:fb:e7:17: 51:6a:bc:58:db:2f:a7:34:04:05:67:25:ce:af:10: 8f:f7:e6:d4:59:cf:52:f2:bc:9c:ed:30:14:d4:5e: bd:67:49:c3:14:76:ce:74:12:ef:47:1e:ba:2b:8f: 56:fc:2a:f8:a3:87:d3:fb:4d:98:6e:0f:ed:f3:c6: a9:ba:4d:8a:f8:65:4a:ff:ff:f3:c5:bc:b0:0e:45: e5:59:c7:60:a2:9e:b4:82:77:36:21:da:99:fb:e7: eb:fd:a9:3e:1a:ab:85:d6:98:79:59:3b:9d:92:9a: f3:e3:60:e5:3b:6f:cc:41:d4:e3:74:e4:50:fa:29: fc:84:bf:93:b9:7f:00:30:53:ed:34:4e:05:12:6f: ab:1d:88:47:d8:5a:18:ba:c9:3d:2f:64:32:e2:b6: 9c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D1:39:F0:89:38:D0:A5:0F:92:45:D4:49:61:9E:3A:7F:7A:9C:8C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144229.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a62b::/32 Signature Algorithm: sha256WithRSAEncryption 66:68:cf:6d:58:0f:12:da:b9:81:38:15:19:02:53:cf:86:9d: 7c:ce:b6:95:04:d5:31:5e:68:52:b8:29:9d:73:67:54:a8:15: c8:de:6b:ba:c0:5b:12:24:24:46:bd:8a:30:11:e5:29:43:10: cc:32:5c:e2:fa:cc:67:15:71:dd:4f:80:1b:df:a3:c8:f7:8f: d0:53:13:b3:43:6c:5a:a6:86:78:ee:92:9a:ce:48:00:ca:fe: fe:9a:56:8d:16:1d:2c:a7:f9:d2:f1:f7:f4:57:c9:35:c0:22: 7e:27:7f:ef:9f:39:91:3c:8f:47:15:70:df:88:d5:9c:53:ee: 68:4e:2a:40:56:c7:c4:dc:fd:a9:dc:94:8b:8d:29:8e:4f:2f: 68:6a:e6:54:f0:d2:ad:f6:40:05:eb:3d:ae:88:d0:30:f6:14: ca:63:b2:b1:6a:19:50:10:bb:de:ff:9c:ca:5e:8d:07:ec:07: 09:2d:fe:9b:39:6c:18:5f:56:f8:41:38:13:a3:29:ac:ff:5d: 84:41:cd:48:35:bb:70:43:b2:bf:61:97:9d:30:ea:9b:58:6c: 59:3b:0b:52:36:f1:4a:04:11:46:9f:b5:45:6f:76:f8:01:22: 55:00:21:5e:1b:38:c3:ca:2c:3c:00:73:b6:2c:d6:5f:59:54: e1:30:f9:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFKSOUOGmDsWMWhcqiDZhABBwEtkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc1OFoX DTI3MDMwMzA2MTI1OFowMzExMC8GA1UEAxMoOUFEMTM5RjA4OTM4RDBBNTBGOTI0 NUQ0NDk2MTlFM0E3RjdBOUM4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOd8/4jYkky6SMZdqwIaNU03Kr/BZ20tbGjbw1vulRFCqaH1VcKKXX0JGAOh 6zY9F+f142+wHsVYTDBfEcXwJdYkKPJbx75tvA1lsWEzpgpeHve4RQSqgwaYRMjP EXR01G6/LKCL++cXUWq8WNsvpzQEBWclzq8Qj/fm1FnPUvK8nO0wFNRevWdJwxR2 znQS70ceuiuPVvwq+KOH0/tNmG4P7fPGqbpNivhlSv//88W8sA5F5VnHYKKetIJ3 NiHamfvn6/2pPhqrhdaYeVk7nZKa8+Ng5TtvzEHU43TkUPop/IS/k7l/ADBT7TRO BRJvqx2IR9haGLrJPS9kMuK2nAsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSa0Tnw iTjQpQ+SRdRJYZ46f3qcjDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDIyOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK piswDQYJKoZIhvcNAQELBQADggEBAGZoz21YDxLauYE4FRkCU8+GnXzOtpUE1TFe aFK4KZ1zZ1SoFcjea7rAWxIkJEa9ijAR5SlDEMwyXOL6zGcVcd1PgBvfo8j3j9BT E7NDbFqmhnjukprOSADK/v6aVo0WHSyn+dLx9/RXyTXAIn4nf++fOZE8j0cVcN+I 1ZxT7mhOKkBWx8Tc/anclIuNKY5PL2hq5lTw0q32QAXrPa6I0DD2FMpjsrFqGVAQ u97/nMpejQfsBwkt/ps5bBhfVvhBOBOjKaz/XYRBzUg1u3BDsr9hl50w6ptYbFk7 C1I28UoEEUaftUVvdvgBIlUAIV4bOMPKLDwAc7Ys1l9ZVOEw+Xs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:56 2026 by rpki-client