$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144233.roa File: AS144233.roa (raw, json) Hash identifier: BhvkZPG61Vyge7oVlzPNkij5+TU33kZb8z+oNqWeSUE= Subject key identifier: 93:E4:9A:EF:62:6A:28:87:7C:51:64:9C:53:FB:C5:7C:F4:9C:43:56 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 44EBC4125DD534299CA20DF6224848A2A773EBBC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144233.roa Signing time: Wed 04 Mar 2026 06:12:37 +0000 ROA not before: Wed 04 Mar 2026 06:07:37 +0000 ROA not after: Wed 03 Mar 2027 06:12:37 +0000 asID: 144233 IP address blocks: 240a:a62f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:eb:c4:12:5d:d5:34:29:9c:a2:0d:f6:22:48:48:a2:a7:73:eb:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:37 2026 GMT Not After : Mar 3 06:12:37 2027 GMT Subject: CN=93E49AEF626A28877C51649C53FBC57CF49C4356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:22:b7:8c:33:f9:8c:95:2a:03:1b:87:f4:d4: 69:ac:a2:f1:ee:87:c0:bd:88:96:41:96:e1:4d:e2: a3:38:b2:fc:e3:60:96:bf:2e:3c:52:1a:ec:ce:f7: 27:3a:93:93:f4:1d:19:f7:46:50:d8:7f:92:9a:0a: af:7b:69:ee:5a:a3:ed:3e:61:0f:b6:47:0e:ad:22: 8d:c8:d6:76:63:d0:e8:cd:08:c0:08:c8:b0:81:5d: bc:6c:08:a6:11:92:5f:ab:d1:40:54:99:16:fd:7d: 9d:0d:86:07:60:31:1a:d9:25:e0:74:90:5c:ae:8c: 9e:06:7b:30:16:09:35:e6:a3:ab:b2:53:cc:a3:88: a0:e8:d7:49:d9:72:10:62:0e:da:02:09:df:83:6c: a6:e1:26:de:f9:3b:7f:11:e8:42:e2:db:9a:c2:85: 71:d1:5a:6e:a5:0c:95:cc:d0:23:42:c2:3c:69:f6: 80:6e:de:9b:00:a7:0b:25:fd:f8:b6:93:44:66:d3: d0:72:05:22:aa:f0:4f:66:90:e2:f9:21:cc:de:5c: 0b:a0:6e:a8:f4:82:d1:33:b9:9d:79:0c:f2:b3:8b: df:53:aa:7d:91:42:da:ea:02:ae:d5:f0:3c:d9:2c: e2:f3:06:83:09:55:12:41:1b:45:00:34:76:a0:83: 70:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E4:9A:EF:62:6A:28:87:7C:51:64:9C:53:FB:C5:7C:F4:9C:43:56 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a62f::/32 Signature Algorithm: sha256WithRSAEncryption 29:85:35:c4:84:27:e3:b6:39:27:95:4b:36:ac:c7:6e:6b:42: 68:3f:d2:1b:a0:14:fa:83:3e:e6:94:c6:c6:fc:1c:bd:05:a5: a8:6c:06:4d:e3:a7:d1:49:0e:23:21:4a:06:eb:b6:14:08:de: 96:ce:79:e7:a0:e7:0f:95:4c:40:65:50:47:d0:b4:3d:d4:b6: 3c:ef:82:d2:b7:09:e7:bb:e5:9d:e7:e0:31:49:d7:7f:ab:e6: c2:97:0a:af:03:ce:7d:54:e4:ba:e2:7b:5c:17:d8:af:77:3a: 25:ca:7c:8e:7c:f7:ea:ed:5e:d8:33:7e:fa:e6:46:8a:ce:3c: 47:1a:1d:bb:0b:92:8e:d6:b8:c0:ad:41:77:0a:bd:7b:72:88: 84:48:23:cd:81:46:65:5a:07:6b:07:58:7e:9a:5a:eb:8a:6d: 12:f8:13:b2:1e:04:cf:90:c7:31:ca:a2:cd:2e:26:f2:e5:3a: 85:bf:b7:8d:ea:33:c0:9e:a7:bf:8c:3f:31:db:e6:5d:e1:a5: 4f:af:3a:6e:bd:5c:bf:4d:e9:c9:36:7c:43:c3:e9:02:ee:46: c6:f7:6c:36:53:21:a8:7b:30:10:23:71:f7:7f:f1:42:38:15: ee:2f:8a:08:fa:a6:75:c4:ff:4d:ab:b7:41:5f:78:09:41:19: 1e:55:f2:94 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUROvEEl3VNCmcog32IkhIoqdz67wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDczN1oX DTI3MDMwMzA2MTIzN1owMzExMC8GA1UEAxMoOTNFNDlBRUY2MjZBMjg4NzdDNTE2 NDlDNTNGQkM1N0NGNDlDNDM1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAit4wz+YyVKgMbh/TUaayi8e6HwL2IlkGW4U3ioziy/ONglr8uPFIa7M73 JzqTk/QdGfdGUNh/kpoKr3tp7lqj7T5hD7ZHDq0ijcjWdmPQ6M0IwAjIsIFdvGwI phGSX6vRQFSZFv19nQ2GB2AxGtkl4HSQXK6MngZ7MBYJNeajq7JTzKOIoOjXSdly EGIO2gIJ34NspuEm3vk7fxHoQuLbmsKFcdFabqUMlczQI0LCPGn2gG7emwCnCyX9 +LaTRGbT0HIFIqrwT2aQ4vkhzN5cC6BuqPSC0TO5nXkM8rOL31OqfZFC2uoCrtXw PNks4vMGgwlVEkEbRQA0dqCDcOkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBST5Jrv Ymooh3xRZJxT+8V89JxDVjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDIzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pi8wDQYJKoZIhvcNAQELBQADggEBACmFNcSEJ+O2OSeVSzasx25rQmg/0hugFPqD PuaUxsb8HL0FpahsBk3jp9FJDiMhSgbrthQI3pbOeeeg5w+VTEBlUEfQtD3Utjzv gtK3Cee75Z3n4DFJ13+r5sKXCq8Dzn1U5Lrie1wX2K93OiXKfI589+rtXtgzfvrm RorOPEcaHbsLko7WuMCtQXcKvXtyiIRII82BRmVaB2sHWH6aWuuKbRL4E7IeBM+Q xzHKos0uJvLlOoW/t43qM8Cep7+MPzHb5l3hpU+vOm69XL9N6ck2fEPD6QLuRsb3 bDZTIah7MBAjcfd/8UI4Fe4vigj6pnXE/02rt0FfeAlBGR5V8pQ= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:40 2026 by rpki-client