$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144244.roa File: AS144244.roa (raw, json) Hash identifier: xlEvrILXvqt6EzqD18ezSp5rtYvM0Xc7axykAJ00JAs= Subject key identifier: 2E:04:40:12:4A:1A:F2:87:D2:F1:AB:22:A6:22:31:57:66:AA:36:63 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 76A2C59657D6E0A542AA7F34BD51AF2E75FF07BE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144244.roa Signing time: Wed 04 Mar 2026 06:13:16 +0000 ROA not before: Wed 04 Mar 2026 06:08:16 +0000 ROA not after: Wed 03 Mar 2027 06:13:16 +0000 asID: 144244 IP address blocks: 240a:a63a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a2:c5:96:57:d6:e0:a5:42:aa:7f:34:bd:51:af:2e:75:ff:07:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:16 2026 GMT Not After : Mar 3 06:13:16 2027 GMT Subject: CN=2E0440124A1AF287D2F1AB22A622315766AA3663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:97:e1:33:c3:d1:6f:14:2d:88:80:7e:cb:f2: 06:b6:94:f7:0f:c2:d2:6e:43:45:56:7a:bd:fe:ba: c6:6a:4e:4e:8d:5c:f2:b4:74:1d:8a:b9:0f:0b:96: 88:7c:0e:15:65:5e:30:57:4c:6a:f4:57:25:6b:90: 24:69:56:d7:ad:76:ce:3f:47:8c:66:2c:a8:9a:f9: 24:15:6a:f6:e0:bc:b5:98:11:16:b4:74:63:2f:af: 89:d4:27:84:1c:ca:dd:f8:2f:c7:cb:04:8d:bb:46: d9:58:65:bf:6f:73:cc:78:9b:72:5f:a8:b3:64:43: 30:c0:a5:15:b3:a5:95:7c:a8:4f:91:3f:6e:23:7a: 2c:44:f9:a6:3e:b5:b9:96:b8:b9:58:95:f3:7d:25: 45:3e:5a:3b:c4:f0:41:fa:ce:78:ad:41:91:c6:aa: aa:d7:91:7a:fd:be:c9:5e:a7:25:d0:55:de:9a:b9: 1d:1b:2e:f8:9e:18:09:92:b1:69:24:f6:28:c7:a5: 8e:ba:2f:0d:43:b3:45:36:d6:b8:6e:1f:cb:92:ca: 60:92:4d:6a:ce:48:6f:b9:c0:17:e2:87:67:c0:0b: 21:25:85:63:05:3f:af:90:1d:b6:0f:b9:44:6c:f4: d2:35:71:16:b7:2c:5a:a6:ae:20:2c:8b:d1:c2:73: db:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:04:40:12:4A:1A:F2:87:D2:F1:AB:22:A6:22:31:57:66:AA:36:63 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144244.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a63a::/32 Signature Algorithm: sha256WithRSAEncryption 1a:fd:9d:4c:9c:e6:af:f6:58:28:3d:72:e8:c0:03:ef:2e:56: 29:b8:df:b1:9d:c1:fe:25:bc:89:9d:5f:08:a3:e7:1c:25:1f: 57:4e:a4:54:4e:f6:b3:e5:46:b8:d3:bd:f5:de:cc:2b:1e:ba: 86:73:0e:6d:e6:90:ac:c8:24:2a:43:a7:a0:db:f7:bf:cf:00: ac:ed:fe:67:ec:9f:cb:75:c4:b6:78:08:11:53:0e:02:da:97: 3b:cf:45:ce:62:34:c7:60:11:4b:2d:9b:de:d4:b4:5b:7e:a9: 50:3a:e8:da:a7:97:3b:22:87:46:86:ee:3d:90:52:bb:62:20: bf:f5:37:e0:99:e6:5e:8c:41:fd:cd:7e:6f:e7:df:cc:04:8f: c3:54:50:d9:37:b3:a1:89:9d:ae:ff:5a:dc:8a:c7:c5:0e:02: 3a:68:fb:1d:5a:6a:7d:0b:bd:40:b5:a4:77:5d:d1:d5:d4:fd: f2:c8:14:b5:64:f5:f9:47:8e:c3:79:32:6e:57:61:ce:74:29: cd:a8:42:66:f7:fe:8f:7f:cc:14:ec:6d:ec:12:de:01:a8:39: 0b:9f:9f:72:71:d5:81:2a:1f:81:bf:98:4d:2d:fb:31:65:e4: d5:77:85:55:e4:96:ec:66:11:f7:28:76:76:4b:4d:d4:43:0d: 1d:da:f3:d7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdqLFllfW4KVCqn80vVGvLnX/B74wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgxNloX DTI3MDMwMzA2MTMxNlowMzExMC8GA1UEAxMoMkUwNDQwMTI0QTFBRjI4N0QyRjFB QjIyQTYyMjMxNTc2NkFBMzY2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGX4TPD0W8ULYiAfsvyBraU9w/C0m5DRVZ6vf66xmpOTo1c8rR0HYq5DwuW iHwOFWVeMFdMavRXJWuQJGlW1612zj9HjGYsqJr5JBVq9uC8tZgRFrR0Yy+vidQn hBzK3fgvx8sEjbtG2Vhlv29zzHibcl+os2RDMMClFbOllXyoT5E/biN6LET5pj61 uZa4uViV830lRT5aO8TwQfrOeK1BkcaqqteRev2+yV6nJdBV3pq5HRsu+J4YCZKx aST2KMeljrovDUOzRTbWuG4fy5LKYJJNas5Ib7nAF+KHZ8ALISWFYwU/r5Adtg+5 RGz00jVxFrcsWqauICyL0cJz27cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQuBEAS Shryh9LxqyKmIjFXZqo2YzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI0NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pjowDQYJKoZIhvcNAQELBQADggEBABr9nUyc5q/2WCg9cujAA+8uVim437Gdwf4l vImdXwij5xwlH1dOpFRO9rPlRrjTvfXezCseuoZzDm3mkKzIJCpDp6Db97/PAKzt /mfsn8t1xLZ4CBFTDgLalzvPRc5iNMdgEUstm97UtFt+qVA66Nqnlzsih0aG7j2Q UrtiIL/1N+CZ5l6MQf3Nfm/n38wEj8NUUNk3s6GJna7/WtyKx8UOAjpo+x1aan0L vUC1pHdd0dXU/fLIFLVk9flHjsN5Mm5XYc50Kc2oQmb3/o9/zBTsbewS3gGoOQuf n3Jx1YEqH4G/mE0t+zFl5NV3hVXkluxmEfcodnZLTdRDDR3a89c= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:38 2026 by rpki-client