$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144230.roa File: AS144230.roa (raw, json) Hash identifier: 4f9a9GyHCHurmcKy9YFzltMQeyUiYBN3DW7JRNsD3C0= Subject key identifier: 61:52:50:8B:E3:F5:8B:36:3E:C6:7E:8A:F1:F9:F3:1D:71:E3:1B:1D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5EE1557ACA2729B771D4155C62A749B3BFDAAFDA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144230.roa Signing time: Wed 04 Mar 2026 06:14:15 +0000 ROA not before: Wed 04 Mar 2026 06:09:15 +0000 ROA not after: Wed 03 Mar 2027 06:14:15 +0000 asID: 144230 IP address blocks: 240a:a62c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:e1:55:7a:ca:27:29:b7:71:d4:15:5c:62:a7:49:b3:bf:da:af:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:15 2026 GMT Not After : Mar 3 06:14:15 2027 GMT Subject: CN=6152508BE3F58B363EC67E8AF1F9F31D71E31B1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2c:5f:40:ae:e7:36:59:1a:f6:10:50:43:93: bc:81:cc:21:66:bf:6a:5d:8c:05:ad:23:2e:1b:1c: 06:fc:f6:3f:ad:55:3c:be:58:2f:1e:fc:a0:15:3f: a2:c6:f1:d5:ef:da:e1:de:18:4e:c0:fe:3e:72:64: 99:1f:d8:64:8e:5d:3a:57:75:ec:5f:59:e0:93:ac: fe:f4:3b:c6:97:20:b0:86:21:ae:fa:ef:6f:07:50: 45:02:7e:05:8a:f6:07:bf:05:3f:25:46:62:e9:5c: 01:77:3c:ef:b0:71:ec:08:64:15:b7:e5:49:43:9e: 09:2a:2c:ad:bf:02:ce:1d:08:ed:dc:7d:e9:69:03: 5b:37:10:5a:c2:cf:e5:12:bb:67:c7:78:45:71:f8: e9:b7:32:9a:8e:43:6b:68:78:d9:08:5d:46:80:bd: ea:31:a4:c1:93:67:1b:d0:e6:dd:65:a6:3e:1e:79: 38:e9:55:04:dd:74:c1:4e:db:33:09:1a:2e:a5:26: ea:5d:1f:8e:5f:fd:a0:8f:cc:20:e1:f4:df:a0:77: fc:9c:d0:ca:90:9a:a2:89:eb:e6:b2:82:eb:08:9b: 9a:d6:17:70:13:96:66:81:47:a8:78:8e:9b:34:fb: 28:e9:6a:0b:71:c2:d5:ef:76:71:14:fd:64:ce:73: 66:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:52:50:8B:E3:F5:8B:36:3E:C6:7E:8A:F1:F9:F3:1D:71:E3:1B:1D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a62c::/32 Signature Algorithm: sha256WithRSAEncryption 36:11:25:29:ba:55:eb:fe:3d:96:3a:2c:d2:a1:06:e5:6d:22: 8c:82:c2:90:e0:64:25:d6:db:e3:26:28:d5:fe:22:8d:fa:41: a6:3a:4a:61:9f:15:53:8f:f5:52:d8:7c:a8:c2:c7:00:32:55: 50:6b:24:5b:60:e7:5f:ad:fa:5a:31:06:c7:a6:ce:33:3e:76: 05:0f:87:94:af:7d:5b:dd:c8:6a:87:98:82:3e:54:11:46:58: 30:a4:e2:ec:4f:e7:13:cd:f2:98:d3:73:cd:39:a8:a5:54:1c: 42:23:6b:31:db:ea:f1:a3:75:92:0c:7d:c7:46:eb:21:5f:4e: 52:ed:87:a1:8b:2d:29:1e:e2:7a:6a:7c:c5:f0:2c:57:40:c6: f8:9a:6d:38:6b:8d:e8:f0:6f:64:81:69:9a:75:82:4c:a9:a9: 99:58:f6:42:69:04:c9:e8:10:22:67:7b:b3:09:36:c8:a7:97: 43:71:62:46:06:45:49:07:73:bd:6b:b0:b8:47:0f:3f:18:2c: 18:fa:4a:f8:23:4c:d0:91:c6:9e:70:61:03:e2:0d:e9:27:e6: cf:ed:b5:5b:dc:de:3f:5d:d1:38:33:db:e9:72:44:12:62:25: be:48:ed:b9:e2:c7:b9:49:c5:80:56:90:f1:98:c9:d1:be:96: 2c:64:83:c4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXuFVesonKbdx1BVcYqdJs7/ar9owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkxNVoX DTI3MDMwMzA2MTQxNVowMzExMC8GA1UEAxMoNjE1MjUwOEJFM0Y1OEIzNjNFQzY3 RThBRjFGOUYzMUQ3MUUzMUIxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwsX0Cu5zZZGvYQUEOTvIHMIWa/al2MBa0jLhscBvz2P61VPL5YLx78oBU/ osbx1e/a4d4YTsD+PnJkmR/YZI5dOld17F9Z4JOs/vQ7xpcgsIYhrvrvbwdQRQJ+ BYr2B78FPyVGYulcAXc877Bx7AhkFbflSUOeCSosrb8Czh0I7dx96WkDWzcQWsLP 5RK7Z8d4RXH46bcymo5Da2h42QhdRoC96jGkwZNnG9Dm3WWmPh55OOlVBN10wU7b MwkaLqUm6l0fjl/9oI/MIOH036B3/JzQypCaoonr5rKC6wibmtYXcBOWZoFHqHiO mzT7KOlqC3HC1e92cRT9ZM5zZhcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRhUlCL 4/WLNj7Gforx+fMdceMbHTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDIzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK piwwDQYJKoZIhvcNAQELBQADggEBADYRJSm6Vev+PZY6LNKhBuVtIoyCwpDgZCXW 2+MmKNX+Io36QaY6SmGfFVOP9VLYfKjCxwAyVVBrJFtg51+t+loxBsemzjM+dgUP h5SvfVvdyGqHmII+VBFGWDCk4uxP5xPN8pjTc805qKVUHEIjazHb6vGjdZIMfcdG 6yFfTlLth6GLLSke4npqfMXwLFdAxviabThrjejwb2SBaZp1gkypqZlY9kJpBMno ECJne7MJNsinl0NxYkYGRUkHc71rsLhHDz8YLBj6SvgjTNCRxp5wYQPiDekn5s/t tVvc3j9d0Tgz2+lyRBJiJb5I7bnix7lJxYBWkPGYydG+lixkg8Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:59 2026 by rpki-client