$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144272.roa File: AS144272.roa (raw, json) Hash identifier: l5in/EHmH13iGFSpfm54zSjm0NmQ739VWP9FYXqCc8E= Subject key identifier: 51:C1:AF:4E:31:1A:B8:28:FC:74:FD:DD:93:FE:A8:94:40:B0:B3:45 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 64E0154B32972ECFDFDD869F2734C7992A34690C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144272.roa Signing time: Wed 04 Mar 2026 06:13:12 +0000 ROA not before: Wed 04 Mar 2026 06:08:12 +0000 ROA not after: Wed 03 Mar 2027 06:13:12 +0000 asID: 144272 IP address blocks: 240a:a656::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e0:15:4b:32:97:2e:cf:df:dd:86:9f:27:34:c7:99:2a:34:69:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:12 2026 GMT Not After : Mar 3 06:13:12 2027 GMT Subject: CN=51C1AF4E311AB828FC74FDDD93FEA89440B0B345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e9:17:94:3a:d0:07:a7:64:ff:2b:02:15:a5: ac:8f:9c:15:22:f5:17:eb:9a:9c:82:1d:0d:22:20: 37:b6:79:6d:66:8a:0e:9d:0b:44:2a:05:29:80:34: aa:dc:d6:62:1a:ad:9e:93:1d:b2:ed:a0:10:fd:fc: 8e:fa:e2:be:d1:eb:a1:91:6b:35:14:27:41:ef:1a: 80:36:87:25:0b:1e:17:ca:a8:86:b0:39:e5:97:53: f5:54:46:a7:09:74:c5:17:fe:f6:a0:35:a6:45:d7: 1a:42:7c:83:79:90:0c:8f:33:a1:8b:91:40:88:0c: 36:8c:6f:94:e3:d0:7f:47:22:b4:7c:b7:8f:12:15: 5b:35:46:43:bd:49:64:a4:22:b3:7b:1c:71:97:ff: 9f:2d:44:b5:b6:06:69:c8:4f:dd:56:98:bf:ac:5f: 76:ba:31:f7:e3:39:84:83:2a:71:35:2c:b7:77:01: 6f:8e:86:cc:d7:51:64:df:d5:7d:3c:28:37:9e:86: b3:cb:66:f5:1f:dc:6b:9b:88:64:83:3c:18:59:31: 18:08:3d:67:00:b4:92:ae:ec:98:fc:9c:6a:0f:ce: dd:7e:1a:a8:2d:e8:63:0a:ce:c7:df:ff:2a:ed:d1: 77:f9:15:9f:3b:56:7b:66:c8:13:df:d1:02:26:94: 30:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C1:AF:4E:31:1A:B8:28:FC:74:FD:DD:93:FE:A8:94:40:B0:B3:45 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a656::/32 Signature Algorithm: sha256WithRSAEncryption 79:9e:c9:ed:7c:d1:42:58:75:9c:a7:2a:0a:c1:40:3d:c0:b4: 3e:55:cb:ee:d6:98:fd:20:01:89:04:1d:77:0d:18:4b:a5:6b: 21:66:cc:3d:ce:07:10:a0:ee:ad:f9:fe:32:90:43:19:ca:eb: 9b:ba:fd:15:e5:81:21:d4:cb:67:f2:08:0a:a6:05:9c:4c:6a: b6:a7:75:0e:c2:91:2f:ae:01:94:61:f1:f4:d2:5f:70:8f:65: 46:6d:05:67:22:06:0d:e8:ea:f4:42:77:5f:b9:42:39:c8:a9: ab:c5:89:c8:19:89:67:d3:76:c2:df:36:38:31:85:4f:f9:58: 38:00:40:7f:2c:d1:b6:1b:7c:1f:69:af:58:b9:32:fb:d6:e2: 31:4a:d9:e1:f6:16:38:70:7d:82:af:1a:89:c4:7a:73:25:4e: 93:08:1f:bc:86:92:d7:c1:d1:16:7e:cf:b1:46:fe:de:a3:2d: cf:3d:b6:fe:42:ef:d8:24:1d:f3:2c:09:c3:0d:2f:af:9f:ba: 03:5b:32:46:64:9e:f0:47:2c:cf:44:d1:be:ac:45:c4:d5:fc: 9a:c6:5c:e7:7a:c5:7f:d6:94:8d:12:35:8d:0a:44:74:bd:82: 5b:12:21:d7:42:11:9f:51:06:6b:dc:01:37:46:e9:eb:65:47: e3:61:ec:05 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUZOAVSzKXLs/f3YafJzTHmSo0aQwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgxMloX DTI3MDMwMzA2MTMxMlowMzExMC8GA1UEAxMoNTFDMUFGNEUzMTFBQjgyOEZDNzRG REREOTNGRUE4OTQ0MEIwQjM0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO7pF5Q60AenZP8rAhWlrI+cFSL1F+uanIIdDSIgN7Z5bWaKDp0LRCoFKYA0 qtzWYhqtnpMdsu2gEP38jvrivtHroZFrNRQnQe8agDaHJQseF8qohrA55ZdT9VRG pwl0xRf+9qA1pkXXGkJ8g3mQDI8zoYuRQIgMNoxvlOPQf0citHy3jxIVWzVGQ71J ZKQis3sccZf/ny1EtbYGachP3VaYv6xfdrox9+M5hIMqcTUst3cBb46GzNdRZN/V fTwoN56Gs8tm9R/ca5uIZIM8GFkxGAg9ZwC0kq7smPycag/O3X4aqC3oYwrOx9// Ku3Rd/kVnztWe2bIE9/RAiaUMNkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRRwa9O MRq4KPx0/d2T/qiUQLCzRTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI3Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK plYwDQYJKoZIhvcNAQELBQADggEBAHmeye180UJYdZynKgrBQD3AtD5Vy+7WmP0g AYkEHXcNGEulayFmzD3OBxCg7q35/jKQQxnK65u6/RXlgSHUy2fyCAqmBZxMaran dQ7CkS+uAZRh8fTSX3CPZUZtBWciBg3o6vRCd1+5QjnIqavFicgZiWfTdsLfNjgx hU/5WDgAQH8s0bYbfB9pr1i5MvvW4jFK2eH2FjhwfYKvGonEenMlTpMIH7yGktfB 0RZ+z7FG/t6jLc89tv5C79gkHfMsCcMNL6+fugNbMkZknvBHLM9E0b6sRcTV/JrG XOd6xX/WlI0SNY0KRHS9glsSIddCEZ9RBmvcATdG6etlR+Nh7AU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:09 2026 by rpki-client