$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144262.roa File: AS144262.roa (raw, json) Hash identifier: pVYlL5qLxP09h7aaT0Nl24EI9OAPPw1HYKGX8mb19P0= Subject key identifier: C3:76:77:5A:AE:CB:77:F3:10:78:36:25:97:29:C3:48:04:93:AF:5C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5FE82ABE21BF8EC0AB32493BDF00F81BA816080F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144262.roa Signing time: Wed 04 Mar 2026 06:15:02 +0000 ROA not before: Wed 04 Mar 2026 06:10:02 +0000 ROA not after: Wed 03 Mar 2027 06:15:02 +0000 asID: 144262 IP address blocks: 240a:a64c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e8:2a:be:21:bf:8e:c0:ab:32:49:3b:df:00:f8:1b:a8:16:08:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:02 2026 GMT Not After : Mar 3 06:15:02 2027 GMT Subject: CN=C376775AAECB77F3107836259729C3480493AF5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ad:d6:42:94:92:22:41:80:a0:b2:0c:c5:48: 7a:12:61:f8:fe:16:51:ac:33:44:8f:8f:0d:bd:16: 27:a9:82:06:03:0a:c7:ef:10:2f:4d:54:f2:67:1a: 31:d9:ad:6f:1e:25:85:bb:9c:5a:70:41:b1:ca:dc: 09:d4:1d:c8:54:18:e1:6a:66:e4:56:f5:38:1a:61: 57:99:f5:4b:a5:fb:a8:bd:25:1c:92:d5:30:c9:c5: e0:74:6d:51:b9:11:1f:c0:75:a4:e6:46:ec:6d:c2: 3d:12:83:ee:7d:fb:de:73:78:3a:24:34:2a:2b:15: de:db:3d:6e:f3:b4:73:fd:4f:4a:6f:8f:dd:4f:03: 59:d4:a1:42:cd:4c:e0:39:58:02:3a:01:9a:ce:10: d0:c7:c0:45:79:3a:5f:2c:a7:a4:4d:de:07:de:31: 2b:fb:bd:15:2a:30:a1:34:bd:19:a7:4a:ba:08:be: 3b:df:5e:cf:f2:c9:35:2c:25:58:40:19:43:73:86: ae:f8:a2:d9:29:65:83:84:4e:ca:9b:f1:38:44:d5: 18:58:01:6e:3e:45:10:5c:83:d7:0b:e6:09:6e:5e: 6f:08:26:ca:46:a2:02:47:11:4e:d6:aa:e1:f7:bc: 34:9d:50:3c:76:72:f0:8b:f4:84:eb:56:ef:d0:9e: 15:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:76:77:5A:AE:CB:77:F3:10:78:36:25:97:29:C3:48:04:93:AF:5C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144262.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a64c::/32 Signature Algorithm: sha256WithRSAEncryption ce:00:0b:7a:ce:4e:2f:2f:e3:5a:a2:9f:26:87:5d:cf:79:86: 9d:83:c2:4c:c8:5a:5e:1d:b5:fa:e2:f5:a7:85:4c:3e:0d:c7: e9:03:93:46:c7:4e:35:bd:e7:63:43:7a:7c:78:1a:21:c1:31: ab:4f:cd:67:b0:f8:7e:c7:20:15:e1:76:9e:52:91:9c:fd:fb: bb:32:bd:66:62:49:0d:7c:ae:1d:4a:c6:2e:57:db:3a:45:08: 58:ef:ad:02:78:af:9b:8c:b3:0c:da:2e:ed:db:69:82:37:ac: 36:1d:53:36:e0:0e:81:1e:e7:03:11:e2:46:55:9c:19:77:d6: 7f:7f:99:2d:0a:fc:58:1b:e9:84:82:6e:51:dd:06:ab:ba:20: a7:96:b4:51:ac:0b:c1:f3:23:84:f7:27:f9:74:9a:01:c8:4e: 84:ca:2d:89:29:4f:2a:0a:6c:43:91:e8:d5:57:60:42:43:38: 04:36:dd:19:f3:5f:07:1d:55:2a:ee:c0:94:fe:b6:43:b4:22: 82:26:6d:03:cf:48:53:9e:a6:24:61:9f:0f:cb:83:9f:9f:5f: 58:09:82:8f:d0:c7:e0:50:cd:fa:d8:c7:de:67:4b:5b:ce:45: 9e:34:24:5e:3f:08:d8:5f:51:39:60:cc:fc:0f:24:d7:5e:42: 77:ce:5e:e3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUX+gqviG/jsCrMkk73wD4G6gWCA8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAwMloX DTI3MDMwMzA2MTUwMlowMzExMC8GA1UEAxMoQzM3Njc3NUFBRUNCNzdGMzEwNzgz NjI1OTcyOUMzNDgwNDkzQUY1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKit1kKUkiJBgKCyDMVIehJh+P4WUawzRI+PDb0WJ6mCBgMKx+8QL01U8mca Mdmtbx4lhbucWnBBscrcCdQdyFQY4Wpm5Fb1OBphV5n1S6X7qL0lHJLVMMnF4HRt UbkRH8B1pOZG7G3CPRKD7n373nN4OiQ0KisV3ts9bvO0c/1PSm+P3U8DWdShQs1M 4DlYAjoBms4Q0MfARXk6XyynpE3eB94xK/u9FSowoTS9GadKugi+O99ez/LJNSwl WEAZQ3OGrvii2Sllg4ROypvxOETVGFgBbj5FEFyD1wvmCW5ebwgmykaiAkcRTtaq 4fe8NJ1QPHZy8Iv0hOtW79CeFfECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTDdnda rst38xB4NiWXKcNIBJOvXDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI2Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pkwwDQYJKoZIhvcNAQELBQADggEBAM4AC3rOTi8v41qinyaHXc95hp2DwkzIWl4d tfri9aeFTD4Nx+kDk0bHTjW952NDenx4GiHBMatPzWew+H7HIBXhdp5SkZz9+7sy vWZiSQ18rh1Kxi5X2zpFCFjvrQJ4r5uMswzaLu3baYI3rDYdUzbgDoEe5wMR4kZV nBl31n9/mS0K/Fgb6YSCblHdBqu6IKeWtFGsC8HzI4T3J/l0mgHIToTKLYkpTyoK bEOR6NVXYEJDOAQ23RnzXwcdVSruwJT+tkO0IoImbQPPSFOepiRhnw/Lg5+fX1gJ go/Qx+BQzfrYx95nS1vORZ40JF4/CNhfUTlgzPwPJNdeQnfOXuM= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:19 2026 by rpki-client