$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144261.roa File: AS144261.roa (raw, json) Hash identifier: mR9FsdfbMbomiAzv2a9b1qJpq2F7kYsVItvxEwFGaxY= Subject key identifier: F0:26:8C:C7:1F:0D:1D:71:DC:F9:0B:16:2F:B5:39:06:FC:7D:DC:E9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 140B73E28BE1C8A3FA5222ED01675133ACD05BB8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144261.roa Signing time: Wed 04 Mar 2026 06:14:09 +0000 ROA not before: Wed 04 Mar 2026 06:09:09 +0000 ROA not after: Wed 03 Mar 2027 06:14:09 +0000 asID: 144261 IP address blocks: 240a:a64b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:0b:73:e2:8b:e1:c8:a3:fa:52:22:ed:01:67:51:33:ac:d0:5b:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:09 2026 GMT Not After : Mar 3 06:14:09 2027 GMT Subject: CN=F0268CC71F0D1D71DCF90B162FB53906FC7DDCE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:89:27:30:9d:26:40:c3:43:71:03:2c:71:17: 04:a0:f9:81:6d:d3:4b:7f:90:39:24:a5:ee:1d:9f: 4b:7e:91:bf:2f:ec:94:c8:97:4c:9e:24:94:eb:7b: de:77:bf:98:32:09:a1:98:8a:f1:ff:6a:be:e2:93: ee:ab:04:6c:60:fc:03:d8:9f:e2:2f:45:db:ea:df: 12:0e:0f:69:49:e4:e9:54:30:50:a1:7a:e2:9c:47: e2:37:52:54:6b:2c:ef:c0:7f:da:98:8d:7a:6c:92: 6f:27:a7:85:6a:e2:a6:4f:52:4d:64:00:39:9b:0c: c7:83:0e:4c:e2:3b:ce:1c:88:00:3b:1c:84:26:c5: a0:6b:75:67:e6:62:c9:63:71:a6:c7:67:8c:ee:dc: 62:b4:07:62:b9:82:f0:c4:35:d0:ca:f4:b3:cd:ca: 18:e6:41:e7:82:c0:5d:ec:03:71:f1:05:b0:d9:51: 6d:b0:5d:f9:8c:03:cb:0b:be:c3:0c:13:04:7a:c1: 31:f9:7f:66:29:d7:21:d8:f7:ee:b1:68:f5:da:59: 2c:d9:9f:5b:5a:32:00:cd:ad:80:c4:f6:03:1c:b8: b5:6e:d7:f0:65:e4:89:16:e1:8d:96:22:a6:11:f5: 7b:78:45:25:3c:e2:76:07:c6:bb:09:d1:5f:44:3a: 70:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:26:8C:C7:1F:0D:1D:71:DC:F9:0B:16:2F:B5:39:06:FC:7D:DC:E9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144261.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a64b::/32 Signature Algorithm: sha256WithRSAEncryption 58:0b:d2:f9:c4:da:77:bd:89:35:54:d0:6f:f4:87:5a:5c:f9: 89:21:a7:5b:c0:3e:83:28:a5:36:68:ce:83:d0:89:a4:9c:ab: ac:57:49:cc:f8:63:aa:a1:da:3c:4c:c4:98:60:e3:32:c0:c4: e4:e8:54:9a:b6:cc:ad:ea:a3:a0:9e:57:f3:5d:1a:78:a8:4c: c7:5d:8b:33:dd:3a:4d:ca:86:ed:ef:7b:07:20:3d:80:08:b3: d1:b0:09:62:10:e6:1b:82:69:87:7f:4b:e2:4c:16:d8:05:d6: 98:87:37:d9:93:80:83:db:ff:3d:bb:4e:ac:e2:db:a1:f3:cd: 92:e2:40:4f:4f:0d:b4:94:3e:57:75:4a:8b:b7:d3:f9:d8:d0: 4b:82:07:ec:f6:53:1d:b9:c1:78:ae:77:fc:7c:84:a7:56:77: 7a:70:5d:b3:5a:e9:b1:38:65:39:bd:96:6a:48:3b:bf:aa:81: df:de:2b:0f:fd:9d:20:03:91:2c:2c:ad:0f:7d:ed:a9:b2:03: 3d:f8:25:8c:4c:cb:35:ba:2c:16:cd:b4:09:fd:c6:dc:61:0f: 95:55:14:61:62:f0:44:fa:0c:2e:47:bc:22:ec:c7:bc:74:07: 6e:c7:53:98:bc:e5:6b:45:d9:f7:e3:b3:07:b0:d3:a4:6e:96: 9e:40:14:eb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFAtz4ovhyKP6UiLtAWdRM6zQW7gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkwOVoX DTI3MDMwMzA2MTQwOVowMzExMC8GA1UEAxMoRjAyNjhDQzcxRjBEMUQ3MURDRjkw QjE2MkZCNTM5MDZGQzdERENFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOuJJzCdJkDDQ3EDLHEXBKD5gW3TS3+QOSSl7h2fS36Rvy/slMiXTJ4klOt7 3ne/mDIJoZiK8f9qvuKT7qsEbGD8A9if4i9F2+rfEg4PaUnk6VQwUKF64pxH4jdS VGss78B/2piNemySbyenhWripk9STWQAOZsMx4MOTOI7zhyIADschCbFoGt1Z+Zi yWNxpsdnjO7cYrQHYrmC8MQ10Mr0s83KGOZB54LAXewDcfEFsNlRbbBd+YwDywu+ wwwTBHrBMfl/ZinXIdj37rFo9dpZLNmfW1oyAM2tgMT2Axy4tW7X8GXkiRbhjZYi phH1e3hFJTzidgfGuwnRX0Q6cNECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTwJozH Hw0dcdz5CxYvtTkG/H3c6TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI2MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pkswDQYJKoZIhvcNAQELBQADggEBAFgL0vnE2ne9iTVU0G/0h1pc+Ykhp1vAPoMo pTZozoPQiaScq6xXScz4Y6qh2jxMxJhg4zLAxOToVJq2zK3qo6CeV/NdGnioTMdd izPdOk3Khu3vewcgPYAIs9GwCWIQ5huCaYd/S+JMFtgF1piHN9mTgIPb/z27Tqzi 26HzzZLiQE9PDbSUPld1Sou30/nY0EuCB+z2Ux25wXiud/x8hKdWd3pwXbNa6bE4 ZTm9lmpIO7+qgd/eKw/9nSADkSwsrQ997amyAz34JYxMyzW6LBbNtAn9xtxhD5VV FGFi8ET6DC5HvCLsx7x0B27HU5i85WtF2ffjswew06Rulp5AFOs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:28 2026 by rpki-client