$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144274.roa File: AS144274.roa (raw, json) Hash identifier: u1RaQXwbQgMtBCN4kuO0w4xW/zgz9oMjPLFDKT+8oSo= Subject key identifier: C2:55:C9:4D:54:CF:2F:B6:C7:68:54:B3:3D:D8:39:10:45:9F:81:1C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 636C85F5678BFBB01E202ECB1F3C7B302DAB437B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144274.roa Signing time: Wed 04 Mar 2026 06:12:45 +0000 ROA not before: Wed 04 Mar 2026 06:07:45 +0000 ROA not after: Wed 03 Mar 2027 06:12:45 +0000 asID: 144274 IP address blocks: 240a:a658::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:6c:85:f5:67:8b:fb:b0:1e:20:2e:cb:1f:3c:7b:30:2d:ab:43:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:45 2026 GMT Not After : Mar 3 06:12:45 2027 GMT Subject: CN=C255C94D54CF2FB6C76854B33DD83910459F811C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:a2:98:c7:3b:35:51:92:ff:5d:b4:fd:20:8b: 27:2a:28:f2:9f:dc:6b:0e:26:44:e2:d4:ce:f0:7e: 90:8f:1c:50:77:c9:bb:4f:99:ed:81:66:89:e5:86: 0a:fe:f5:b6:7a:5e:b3:3f:6b:cb:66:e1:9b:e2:57: 8b:57:cd:92:ff:f1:04:29:41:47:7b:da:35:fc:6c: c7:0b:91:0a:5f:88:a6:81:f7:b2:17:f2:3a:98:37: 65:1f:0b:57:fb:e6:8f:9e:53:17:a7:6e:bf:ac:58: 51:99:92:ce:35:e0:53:20:5a:08:9b:e8:e8:f3:51: ef:c7:1b:68:d7:db:95:18:71:9b:cd:f7:a7:31:93: d8:94:0c:72:36:e2:2d:c1:d3:f4:5e:84:6a:5b:7b: 68:68:4d:5d:d9:43:0f:69:76:b1:35:b3:6a:8b:e6: fb:e0:1b:b8:ea:1a:bc:26:93:01:be:c0:e3:50:d7: d4:31:38:a5:bf:91:77:6f:99:65:8e:5a:a3:ae:c8: fa:e0:ae:f4:b0:74:4f:dc:ba:c2:17:51:36:2b:e1: 34:b3:4d:a6:97:da:47:bd:19:4c:22:d6:e0:65:43: 05:dc:25:e2:ee:82:ec:90:fa:3e:14:f1:55:00:68: b5:69:77:ea:78:25:ca:68:70:1e:ed:b6:1b:cb:37: aa:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:55:C9:4D:54:CF:2F:B6:C7:68:54:B3:3D:D8:39:10:45:9F:81:1C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144274.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a658::/32 Signature Algorithm: sha256WithRSAEncryption 5c:7b:42:8a:8b:3c:25:87:de:6a:51:5a:78:fe:49:60:78:58: a5:c2:af:64:82:45:5d:4a:2a:f3:6e:9d:05:13:b2:c2:d7:a5: 24:21:1e:59:45:78:fa:0a:b3:49:b1:85:e0:96:7f:1a:5d:47: ff:72:21:dc:3c:e1:6c:8a:b0:7b:31:41:11:30:45:bc:30:79: a1:c3:96:c4:a1:70:8f:f7:d4:75:ab:d7:5b:89:02:2c:36:f0: 16:c0:18:2c:bf:34:c6:ad:58:42:8a:f0:6a:49:c0:46:22:5c: 02:3d:94:4c:45:a6:69:e4:86:86:77:89:a1:78:6d:67:04:b8: db:36:44:be:08:a1:c9:ca:99:59:cb:1c:26:9f:f7:62:23:9d: 76:67:21:b2:53:b0:d3:39:07:0f:36:6b:21:23:b7:18:31:70: d5:e4:43:f5:c6:2a:af:c4:81:62:0c:e0:3d:bc:96:0d:93:70: 4b:a7:d1:e5:54:13:55:aa:7a:4e:25:e5:9f:f0:ff:2c:5e:12: 88:b5:c4:0c:cd:b3:8e:6b:5c:78:e1:91:89:c9:8b:fc:a4:89: 10:0b:1d:2e:ff:79:4a:c5:f5:5d:c2:1f:26:a5:d2:34:e5:31: d2:c5:1c:00:6b:e6:a4:8f:f8:dc:eb:37:80:26:32:b0:0e:89: c3:52:4b:a4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUY2yF9WeL+7AeIC7LHzx7MC2rQ3swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc0NVoX DTI3MDMwMzA2MTI0NVowMzExMC8GA1UEAxMoQzI1NUM5NEQ1NENGMkZCNkM3Njg1 NEIzM0REODM5MTA0NTlGODExQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIWimMc7NVGS/120/SCLJyoo8p/caw4mROLUzvB+kI8cUHfJu0+Z7YFmieWG Cv71tnpesz9ry2bhm+JXi1fNkv/xBClBR3vaNfxsxwuRCl+IpoH3shfyOpg3ZR8L V/vmj55TF6duv6xYUZmSzjXgUyBaCJvo6PNR78cbaNfblRhxm833pzGT2JQMcjbi LcHT9F6Ealt7aGhNXdlDD2l2sTWzaovm++AbuOoavCaTAb7A41DX1DE4pb+Rd2+Z ZY5ao67I+uCu9LB0T9y6whdRNivhNLNNppfaR70ZTCLW4GVDBdwl4u6C7JD6PhTx VQBotWl36nglymhwHu22G8s3qnMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTCVclN VM8vtsdoVLM92DkQRZ+BHDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK plgwDQYJKoZIhvcNAQELBQADggEBAFx7QoqLPCWH3mpRWnj+SWB4WKXCr2SCRV1K KvNunQUTssLXpSQhHllFePoKs0mxheCWfxpdR/9yIdw84WyKsHsxQREwRbwweaHD lsShcI/31HWr11uJAiw28BbAGCy/NMatWEKK8GpJwEYiXAI9lExFpmnkhoZ3iaF4 bWcEuNs2RL4IocnKmVnLHCaf92IjnXZnIbJTsNM5Bw82ayEjtxgxcNXkQ/XGKq/E gWIM4D28lg2TcEun0eVUE1Wqek4l5Z/w/yxeEoi1xAzNs45rXHjhkYnJi/ykiRAL HS7/eUrF9V3CHyal0jTlMdLFHABr5qSP+NzrN4AmMrAOicNSS6Q= -----END CERTIFICATE-----Generated at Sat Mar 28 13:15:17 2026 by rpki-client