$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144253.roa File: AS144253.roa (raw, json) Hash identifier: Ac/F/FbSm2KGud/Xsslfuv0ErOQJ6kRC1d+KZ2K+2kA= Subject key identifier: 6A:31:2A:3E:4F:41:44:E4:22:26:EE:C6:48:F7:68:C7:32:11:F7:E3 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0FAF0FF33975F29F3ED5FC9F31121B2353EB2A68 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144253.roa Signing time: Wed 04 Mar 2026 06:13:21 +0000 ROA not before: Wed 04 Mar 2026 06:08:21 +0000 ROA not after: Wed 03 Mar 2027 06:13:21 +0000 asID: 144253 IP address blocks: 240a:a643::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:af:0f:f3:39:75:f2:9f:3e:d5:fc:9f:31:12:1b:23:53:eb:2a:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:21 2026 GMT Not After : Mar 3 06:13:21 2027 GMT Subject: CN=6A312A3E4F4144E42226EEC648F768C73211F7E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2b:62:31:5f:aa:10:d1:2a:84:44:a7:79:a2: 31:ce:f1:2b:4a:39:cc:fe:68:a2:f5:66:cf:4e:bc: 6b:24:02:4b:dc:9e:8b:12:91:bc:ea:69:1e:09:6d: 74:e2:82:42:94:02:ba:6b:a2:59:53:ae:af:c5:9f: 15:0d:01:67:43:2c:66:57:8c:a9:3e:96:2e:33:9e: 68:88:a4:05:29:83:d8:eb:d7:a8:b0:b1:d7:9d:eb: 93:ef:8f:72:1b:54:b4:51:c7:40:9c:37:f3:e3:ec: 1a:ef:d4:fd:7f:33:2f:6b:09:bb:d4:d0:8c:07:9c: 52:9b:ea:3d:c7:12:27:92:a9:90:b7:7c:24:bc:fa: 49:f4:36:44:10:bf:60:8f:d8:10:e6:63:60:b3:55: 94:fa:07:71:b4:9b:e2:68:87:34:85:46:77:16:3a: 14:b3:25:ce:8d:42:20:10:32:0f:38:72:35:5c:44: 7b:e3:a4:0b:12:a6:fe:9e:85:65:1a:4e:b9:16:13: 41:22:0b:27:b8:81:ed:00:67:11:53:71:8b:c8:56: 17:61:92:0e:f1:19:6e:e2:f3:31:b0:05:b7:86:e6: 5b:4e:fb:b1:a1:45:5b:e2:24:04:19:52:6b:b4:12: 79:0e:1d:6a:de:fb:94:34:47:ef:2a:df:03:50:c9: 4c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:31:2A:3E:4F:41:44:E4:22:26:EE:C6:48:F7:68:C7:32:11:F7:E3 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144253.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a643::/32 Signature Algorithm: sha256WithRSAEncryption 68:2c:2a:e0:49:33:36:88:04:39:d9:53:7c:4c:d6:8f:66:10: b2:bf:db:89:bb:54:70:99:70:35:8f:7e:9a:f2:37:f8:ae:24: 4b:09:d9:4d:c8:29:b8:13:5c:02:bb:8c:15:7c:55:2a:cc:e3: 41:44:53:05:d1:93:c5:22:a0:8b:ce:36:51:57:a5:a7:fa:0c: e9:ea:7b:b3:f0:26:5f:16:66:53:90:94:62:f3:4c:08:cb:af: 18:d1:ed:91:5b:1b:82:14:1b:b0:ee:cd:21:a2:7d:76:ea:c1: e4:75:28:76:ad:9e:0e:a5:fe:35:28:6f:97:1b:d3:c7:2b:01: 9c:e6:83:ea:2b:75:25:5a:96:34:a8:c8:a0:38:95:4d:c1:2e: c8:8f:84:9d:d2:69:9e:80:06:44:27:08:37:0b:8d:6f:95:45: 1a:fe:a6:73:7f:47:6e:22:1a:de:8e:90:1a:1f:dd:9b:76:1d: 6e:fc:b5:22:3b:f9:45:e3:31:f4:0a:45:ae:6b:9c:a9:ef:b7: 1c:a0:5c:7d:ad:6d:19:8b:9d:53:c4:f2:a5:1d:a8:2c:a4:9a: 01:2a:53:de:30:f5:03:cd:e5:07:58:c0:ab:f9:d0:4f:f4:a3: 2e:9f:a3:05:2f:07:7c:35:4f:32:97:48:0c:7b:af:5c:b1:f3: 00:8a:c3:1e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUD68P8zl18p8+1fyfMRIbI1PrKmgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgyMVoX DTI3MDMwMzA2MTMyMVowMzExMC8GA1UEAxMoNkEzMTJBM0U0RjQxNDRFNDIyMjZF RUM2NDhGNzY4QzczMjExRjdFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYrYjFfqhDRKoREp3miMc7xK0o5zP5oovVmz068ayQCS9yeixKRvOppHglt dOKCQpQCumuiWVOur8WfFQ0BZ0MsZleMqT6WLjOeaIikBSmD2OvXqLCx153rk++P chtUtFHHQJw38+PsGu/U/X8zL2sJu9TQjAecUpvqPccSJ5KpkLd8JLz6SfQ2RBC/ YI/YEOZjYLNVlPoHcbSb4miHNIVGdxY6FLMlzo1CIBAyDzhyNVxEe+OkCxKm/p6F ZRpOuRYTQSILJ7iB7QBnEVNxi8hWF2GSDvEZbuLzMbAFt4bmW077saFFW+IkBBlS a7QSeQ4dat77lDRH7yrfA1DJTLcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRqMSo+ T0FE5CIm7sZI92jHMhH34zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI1My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pkMwDQYJKoZIhvcNAQELBQADggEBAGgsKuBJMzaIBDnZU3xM1o9mELK/24m7VHCZ cDWPfpryN/iuJEsJ2U3IKbgTXAK7jBV8VSrM40FEUwXRk8UioIvONlFXpaf6DOnq e7PwJl8WZlOQlGLzTAjLrxjR7ZFbG4IUG7DuzSGifXbqweR1KHatng6l/jUob5cb 08crAZzmg+ordSValjSoyKA4lU3BLsiPhJ3SaZ6ABkQnCDcLjW+VRRr+pnN/R24i Gt6OkBof3Zt2HW78tSI7+UXjMfQKRa5rnKnvtxygXH2tbRmLnVPE8qUdqCykmgEq U94w9QPN5QdYwKv50E/0oy6fowUvB3w1TzKXSAx7r1yx8wCKwx4= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:06 2026 by rpki-client