$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144249.roa File: AS144249.roa (raw, json) Hash identifier: RO9DD73zb459T8k9R8AFrd8qJx+c31ILk4XQNkGNKIw= Subject key identifier: 5E:D8:04:11:0C:61:4A:56:46:9D:0A:B7:89:58:96:11:FA:4B:C8:5B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4C3A21F7D633EE958E1375175C6E7C93C0E78DDA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144249.roa Signing time: Wed 04 Mar 2026 06:13:14 +0000 ROA not before: Wed 04 Mar 2026 06:08:14 +0000 ROA not after: Wed 03 Mar 2027 06:13:14 +0000 asID: 144249 IP address blocks: 240a:a63f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3a:21:f7:d6:33:ee:95:8e:13:75:17:5c:6e:7c:93:c0:e7:8d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:14 2026 GMT Not After : Mar 3 06:13:14 2027 GMT Subject: CN=5ED804110C614A56469D0AB789589611FA4BC85B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:47:7b:d2:55:7a:62:46:1e:2e:c2:45:d5:f0: 2a:20:38:66:5b:15:99:1e:d5:de:a4:37:98:d4:0d: e6:32:d1:e7:51:17:d6:c6:bd:b4:a4:86:76:37:0d: 18:94:ce:c9:69:33:26:e9:82:36:3d:8d:1d:f5:0c: 5c:b4:60:c8:ef:0c:43:15:c3:ca:03:6a:89:8a:2a: f4:1c:7b:43:fa:8f:7c:39:89:35:d7:9d:0d:62:0f: c8:a3:ff:3c:3f:63:b9:3b:7e:61:45:41:48:cb:c2: 96:12:f3:47:50:da:3f:13:be:3d:e7:13:6f:55:5b: c6:34:0a:39:61:0f:e9:d1:59:76:d8:75:c2:c9:61: 79:28:4a:17:e9:58:d1:c6:68:38:ea:12:a0:57:58: 86:8e:7b:43:f2:dd:e7:2c:fa:72:78:cf:28:04:1e: d1:ee:1f:1c:89:29:b9:a5:67:bf:22:5a:88:58:b1: bd:6c:4d:d9:c1:af:a3:12:ff:12:f0:93:bb:b6:9c: d9:5b:b4:71:89:c7:e8:91:29:22:f2:e7:bd:35:58: 34:18:30:23:7e:d9:5f:cb:a3:3b:d6:b1:4f:5c:6d: 63:44:07:73:4a:32:46:0e:6c:71:25:90:22:1e:0f: 6d:fb:f8:00:a0:f3:35:52:fd:74:c7:9b:7a:f9:ca: 71:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D8:04:11:0C:61:4A:56:46:9D:0A:B7:89:58:96:11:FA:4B:C8:5B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144249.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a63f::/32 Signature Algorithm: sha256WithRSAEncryption 37:f6:fc:e7:26:91:fe:67:46:9b:e4:68:93:57:4e:85:30:75: a1:1a:46:e8:13:4e:61:92:25:08:d2:f9:ff:04:53:64:8d:6d: 94:d8:47:09:40:fb:a0:05:a4:a8:57:c1:e8:a8:68:8f:67:50: 52:7d:79:8b:01:4e:3e:0f:43:53:bc:64:08:95:96:3d:88:64: 00:e2:97:7f:9a:5a:df:e3:10:84:41:57:12:0e:bf:30:b4:ab: dc:85:b6:6a:49:6e:40:d9:5a:1a:d0:1b:6d:20:57:62:30:da: 61:fd:1f:cd:a8:88:a9:57:2a:48:4b:3c:cf:15:ce:02:cf:58: bf:ea:7e:94:c9:1b:9e:84:fd:84:ba:5a:f6:14:a8:64:94:4f: 3a:56:29:cd:ae:8d:5f:fb:af:d3:10:8b:8d:1b:8d:9f:e4:4b: af:d7:b9:71:54:07:f0:47:b5:21:25:03:c5:31:33:7a:89:13: 63:f4:1f:bf:9f:8b:3c:0c:df:67:81:83:75:a8:8c:2f:c1:2c: 09:77:ad:00:ed:0a:c0:8f:41:2c:72:d3:88:28:2c:e2:f4:54: 23:c0:b6:a3:a4:43:72:bb:57:c6:a7:f0:6d:30:a5:2d:3c:59: 87:72:5f:b7:5e:b9:12:3a:13:f1:5d:ac:e3:e3:1b:1b:ff:76: f1:c6:3d:e0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTDoh99Yz7pWOE3UXXG58k8DnjdowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgxNFoX DTI3MDMwMzA2MTMxNFowMzExMC8GA1UEAxMoNUVEODA0MTEwQzYxNEE1NjQ2OUQw QUI3ODk1ODk2MTFGQTRCQzg1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpHe9JVemJGHi7CRdXwKiA4ZlsVmR7V3qQ3mNQN5jLR51EX1sa9tKSGdjcN GJTOyWkzJumCNj2NHfUMXLRgyO8MQxXDygNqiYoq9Bx7Q/qPfDmJNdedDWIPyKP/ PD9juTt+YUVBSMvClhLzR1DaPxO+PecTb1VbxjQKOWEP6dFZdth1wslheShKF+lY 0cZoOOoSoFdYho57Q/Ld5yz6cnjPKAQe0e4fHIkpuaVnvyJaiFixvWxN2cGvoxL/ EvCTu7ac2Vu0cYnH6JEpIvLnvTVYNBgwI37ZX8ujO9axT1xtY0QHc0oyRg5scSWQ Ih4Pbfv4AKDzNVL9dMebevnKcaUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRe2AQR DGFKVkadCreJWJYR+kvIWzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI0OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pj8wDQYJKoZIhvcNAQELBQADggEBADf2/Ocmkf5nRpvkaJNXToUwdaEaRugTTmGS JQjS+f8EU2SNbZTYRwlA+6AFpKhXweioaI9nUFJ9eYsBTj4PQ1O8ZAiVlj2IZADi l3+aWt/jEIRBVxIOvzC0q9yFtmpJbkDZWhrQG20gV2Iw2mH9H82oiKlXKkhLPM8V zgLPWL/qfpTJG56E/YS6WvYUqGSUTzpWKc2ujV/7r9MQi40bjZ/kS6/XuXFUB/BH tSElA8UxM3qJE2P0H7+fizwM32eBg3WojC/BLAl3rQDtCsCPQSxy04goLOL0VCPA tqOkQ3K7V8an8G0wpS08WYdyX7deuRI6E/FdrOPjGxv/dvHGPeA= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:36 2026 by rpki-client