$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144247.roa File: AS144247.roa (raw, json) Hash identifier: mh4BLXaoNYNMG+9BTJgG8nHL1+oUnPIQpnKIgy8XGN0= Subject key identifier: 1E:50:ED:86:2A:AD:47:10:FF:18:F7:74:5B:F4:51:8D:7A:42:A2:A7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2335E1963270C62FB2AB4ED408348A0266D13860 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144247.roa Signing time: Wed 04 Mar 2026 06:13:50 +0000 ROA not before: Wed 04 Mar 2026 06:08:50 +0000 ROA not after: Wed 03 Mar 2027 06:13:50 +0000 asID: 144247 IP address blocks: 240a:a63d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:35:e1:96:32:70:c6:2f:b2:ab:4e:d4:08:34:8a:02:66:d1:38:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:50 2026 GMT Not After : Mar 3 06:13:50 2027 GMT Subject: CN=1E50ED862AAD4710FF18F7745BF4518D7A42A2A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f0:72:7e:b6:f8:6d:c1:45:a9:02:3d:3e:ea: ac:29:90:5c:c2:f8:24:af:84:14:14:66:8d:d6:6a: 69:b2:ba:2b:9a:5b:e6:38:03:97:ae:b2:0c:76:bd: 6c:2d:25:6c:8b:24:1c:31:03:08:a9:0e:f6:fe:b3: f0:46:2c:71:14:f0:72:ec:d4:71:18:0e:8d:a7:d6: 43:4b:e5:e7:69:bf:ac:b9:22:dc:11:5f:f2:db:66: 4b:9a:48:44:24:99:f2:8b:31:35:4e:43:50:9a:15: 68:14:e6:b2:b1:fb:ca:10:b0:3a:47:15:e9:f4:af: 1f:80:14:ff:d9:59:67:03:a1:a2:31:58:e9:eb:01: 45:e8:40:aa:c1:88:3c:3a:d7:7a:53:5d:3f:16:10: c6:09:73:c3:8f:2c:eb:0d:33:27:19:01:df:78:26: c2:c3:6e:13:13:e5:c8:a0:c7:d7:6f:b9:df:43:cb: 64:f3:80:c9:b5:eb:de:93:6f:e7:e0:82:4f:a3:b7: d1:de:c3:0b:95:f8:72:38:65:ca:5d:65:a1:6a:43: 03:57:e0:e0:74:28:89:9c:4e:60:e1:8b:ac:d9:c7: db:9d:2a:aa:67:e9:d6:69:d3:70:d1:cb:e6:50:1d: 37:06:f2:c2:2c:82:08:5b:d3:3f:fe:10:5a:0c:f9: a0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:50:ED:86:2A:AD:47:10:FF:18:F7:74:5B:F4:51:8D:7A:42:A2:A7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144247.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a63d::/32 Signature Algorithm: sha256WithRSAEncryption 45:fb:51:a1:c6:f9:5b:7d:60:f1:36:19:43:b1:ea:54:7c:b7: ed:e8:b6:13:0e:97:5b:0b:2d:0a:36:82:9d:11:50:ee:08:dc: 83:46:4f:e6:a8:89:84:e6:b3:33:a7:ca:48:d3:9b:d5:20:41: b9:79:6d:9a:f7:32:4f:62:7a:9a:37:bd:f2:49:34:40:c4:7f: ea:2d:57:f9:f0:05:17:1a:f2:a4:45:15:ae:ae:86:b4:47:12: 76:3e:1b:95:b6:e7:a1:1d:f7:6c:4e:02:8a:e1:6f:c0:7a:ef: 81:f3:b2:45:0f:35:cd:3e:dd:91:e3:b4:1b:81:89:f1:eb:7f: b9:3d:ab:9b:e0:16:9e:08:f1:3f:a2:4f:00:64:25:32:0f:cf: fa:40:92:dd:5e:de:3c:1e:fb:a8:e6:59:61:b6:c6:f4:80:e4: cb:f7:0b:88:5f:07:2b:91:d5:c9:b3:f0:16:99:20:07:a4:e3: 14:18:95:8a:cb:2c:d0:2e:b3:24:54:b9:9d:4f:17:ad:89:c5: 6f:49:be:72:f9:bd:2b:9b:5d:5b:ed:cd:68:89:da:03:72:fc: cb:e3:7f:49:98:23:ea:9e:b3:9c:62:91:04:68:ba:f8:6b:45: e9:2b:09:51:42:16:b4:55:09:5e:8e:75:25:b9:1f:6d:57:37: fb:31:45:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIzXhljJwxi+yq07UCDSKAmbROGAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg1MFoX DTI3MDMwMzA2MTM1MFowMzExMC8GA1UEAxMoMUU1MEVEODYyQUFENDcxMEZGMThG Nzc0NUJGNDUxOEQ3QTQyQTJBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLwcn62+G3BRakCPT7qrCmQXML4JK+EFBRmjdZqabK6K5pb5jgDl66yDHa9 bC0lbIskHDEDCKkO9v6z8EYscRTwcuzUcRgOjafWQ0vl52m/rLki3BFf8ttmS5pI RCSZ8osxNU5DUJoVaBTmsrH7yhCwOkcV6fSvH4AU/9lZZwOhojFY6esBRehAqsGI PDrXelNdPxYQxglzw48s6w0zJxkB33gmwsNuExPlyKDH12+530PLZPOAybXr3pNv 5+CCT6O30d7DC5X4cjhlyl1loWpDA1fg4HQoiZxOYOGLrNnH250qqmfp1mnTcNHL 5lAdNwbywiyCCFvTP/4QWgz5oHkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQeUO2G Kq1HEP8Y93Rb9FGNekKipzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI0Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pj0wDQYJKoZIhvcNAQELBQADggEBAEX7UaHG+Vt9YPE2GUOx6lR8t+3othMOl1sL LQo2gp0RUO4I3INGT+aoiYTmszOnykjTm9UgQbl5bZr3Mk9iepo3vfJJNEDEf+ot V/nwBRca8qRFFa6uhrRHEnY+G5W256Ed92xOAorhb8B674HzskUPNc0+3ZHjtBuB ifHrf7k9q5vgFp4I8T+iTwBkJTIPz/pAkt1e3jwe+6jmWWG2xvSA5Mv3C4hfByuR 1cmz8BaZIAek4xQYlYrLLNAusyRUuZ1PF62JxW9JvnL5vSubXVvtzWiJ2gNy/Mvj f0mYI+qes5xikQRouvhrRekrCVFCFrRVCV6OdSW5H21XN/sxRUs= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:15 2026 by rpki-client