$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144264.roa File: AS144264.roa (raw, json) Hash identifier: 5TenwsgW6MmOnz2Ww5u+D5z3t27QHT9PunMsClXmi28= Subject key identifier: 6F:8F:A1:12:4A:CF:52:52:1C:D1:6A:4E:21:83:74:9F:96:F8:17:E8 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 30EC01131D56218A2D4B536503E2559EC0121F58 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144264.roa Signing time: Wed 04 Mar 2026 06:14:32 +0000 ROA not before: Wed 04 Mar 2026 06:09:32 +0000 ROA not after: Wed 03 Mar 2027 06:14:32 +0000 asID: 144264 IP address blocks: 240a:a64e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ec:01:13:1d:56:21:8a:2d:4b:53:65:03:e2:55:9e:c0:12:1f:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:32 2026 GMT Not After : Mar 3 06:14:32 2027 GMT Subject: CN=6F8FA1124ACF52521CD16A4E2183749F96F817E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e8:1d:88:ab:18:7d:b4:22:78:54:df:ce:5e: ee:a2:a1:57:ca:86:16:4b:5c:e0:2d:53:07:0a:72: 3e:b0:5c:15:8a:b8:e2:0f:7c:af:34:e8:63:19:85: 5a:27:c3:e6:4d:f0:54:cf:a9:c8:bc:3b:08:54:82: 89:92:e0:4f:bc:a3:af:26:eb:50:3a:0b:2f:ac:81: c7:0f:c6:ac:d3:6b:1f:bb:b7:20:97:cf:c0:9f:18: cc:b5:06:a2:de:32:3f:21:e3:27:2f:18:28:16:9c: 42:de:25:86:13:43:89:57:00:c5:f4:5a:e0:0e:98: 0c:ab:9e:10:4e:41:1d:61:4b:eb:8b:5b:c9:ee:30: 34:f0:0f:b5:4b:c4:0b:aa:96:65:30:ea:93:37:e8: 24:c2:7e:15:1c:9c:47:c6:52:8a:6f:f5:db:af:59: b8:42:08:3b:6e:c7:1f:97:1e:d5:f3:c6:90:fa:78: db:ca:05:de:d7:04:15:a2:e8:49:65:2a:73:be:c4: ad:07:f5:f0:3b:79:31:5a:85:3f:4a:0b:f2:4c:f8: ff:c0:86:e3:e7:93:ea:1d:ac:41:7e:77:16:ef:f0: ce:7a:f7:6a:78:a2:43:00:e2:63:35:29:92:85:54: 00:d5:ae:20:c5:63:b9:ab:f3:62:03:11:f6:4a:60: 9e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8F:A1:12:4A:CF:52:52:1C:D1:6A:4E:21:83:74:9F:96:F8:17:E8 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144264.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a64e::/32 Signature Algorithm: sha256WithRSAEncryption 33:ac:2b:c0:3a:22:b3:11:8c:7e:ff:89:ee:db:da:61:e5:18: 50:00:dd:99:66:64:c7:60:86:39:46:a9:1b:14:96:fe:44:d3: 7c:13:24:44:b7:8f:40:f1:9f:48:4f:ad:fb:41:ae:33:05:dd: 42:ba:31:0f:48:48:a0:a5:99:3b:9e:0b:6d:e1:e4:b9:66:bc: 2d:02:b4:c0:f9:c8:0c:7e:7c:dc:0d:00:ff:b0:8a:1b:63:5b: f9:1c:5a:19:0d:47:14:7d:4f:c8:27:25:c9:e4:17:f4:d5:b8: ce:c6:bb:5e:d9:5b:f0:9a:de:9f:aa:cb:4a:28:41:ff:6f:7a: 77:2a:15:73:20:41:d0:86:58:36:fd:1f:61:2f:49:79:91:67: de:86:d0:cd:93:49:27:95:9f:20:e7:6a:96:16:c8:84:9e:a1: ba:91:9d:52:f5:2b:31:81:c4:6d:7e:61:59:c7:f8:0e:e7:25: 8b:80:57:8d:66:7c:62:e8:6d:ff:dd:33:fe:f9:77:14:7e:76: 35:ef:03:d4:8d:5e:6b:f9:e4:53:1a:25:c0:c7:cb:dc:6c:b0: 08:c2:aa:3f:40:d8:3d:7c:c4:17:56:99:41:54:58:0c:48:5e: 86:cd:f5:15:dd:4e:9d:38:7f:43:80:75:e9:2d:9e:17:7c:7a: ee:b6:b0:df -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMOwBEx1WIYotS1NlA+JVnsASH1gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkzMloX DTI3MDMwMzA2MTQzMlowMzExMC8GA1UEAxMoNkY4RkExMTI0QUNGNTI1MjFDRDE2 QTRFMjE4Mzc0OUY5NkY4MTdFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjoHYirGH20InhU385e7qKhV8qGFktc4C1TBwpyPrBcFYq44g98rzToYxmF WifD5k3wVM+pyLw7CFSCiZLgT7yjrybrUDoLL6yBxw/GrNNrH7u3IJfPwJ8YzLUG ot4yPyHjJy8YKBacQt4lhhNDiVcAxfRa4A6YDKueEE5BHWFL64tbye4wNPAPtUvE C6qWZTDqkzfoJMJ+FRycR8ZSim/1269ZuEIIO27HH5ce1fPGkPp428oF3tcEFaLo SWUqc77ErQf18Dt5MVqFP0oL8kz4/8CG4+eT6h2sQX53Fu/wznr3aniiQwDiYzUp koVUANWuIMVjuavzYgMR9kpgnisCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRvj6ES Ss9SUhzRak4hg3SflvgX6DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pk4wDQYJKoZIhvcNAQELBQADggEBADOsK8A6IrMRjH7/ie7b2mHlGFAA3ZlmZMdg hjlGqRsUlv5E03wTJES3j0Dxn0hPrftBrjMF3UK6MQ9ISKClmTueC23h5LlmvC0C tMD5yAx+fNwNAP+wihtjW/kcWhkNRxR9T8gnJcnkF/TVuM7Gu17ZW/Ca3p+qy0oo Qf9vencqFXMgQdCGWDb9H2EvSXmRZ96G0M2TSSeVnyDnapYWyISeobqRnVL1KzGB xG1+YVnH+A7nJYuAV41mfGLobf/dM/75dxR+djXvA9SNXmv55FMaJcDHy9xssAjC qj9A2D18xBdWmUFUWAxIXobN9RXdTp04f0OAdektnhd8eu62sN8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:05 2026 by rpki-client