$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144294.roa File: AS144294.roa (raw, json) Hash identifier: ZDPAogURw0tPo8AvLjNT0WmKG1wK8CrTY9RrWomCaRU= Subject key identifier: 11:A7:75:60:91:F4:CD:D6:02:D8:FB:08:BD:34:B5:3F:B3:11:08:31 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5ECA9FC7CBE5F44F1DCBBBF223BCC21D797D3BA0 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144294.roa Signing time: Wed 04 Mar 2026 06:13:05 +0000 ROA not before: Wed 04 Mar 2026 06:08:05 +0000 ROA not after: Wed 03 Mar 2027 06:13:05 +0000 asID: 144294 IP address blocks: 240a:a66c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ca:9f:c7:cb:e5:f4:4f:1d:cb:bb:f2:23:bc:c2:1d:79:7d:3b:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:05 2026 GMT Not After : Mar 3 06:13:05 2027 GMT Subject: CN=11A7756091F4CDD602D8FB08BD34B53FB3110831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ab:ec:b0:9e:8e:48:5e:69:2c:ee:3c:70:6a: 9f:07:32:cd:9d:4c:1f:2d:05:18:3f:e4:08:ed:09: 43:2e:69:84:9e:37:76:14:48:a9:c6:73:07:59:d6: 13:42:89:01:88:73:bd:fb:f8:f7:58:c9:59:29:11: ee:ea:dd:4f:68:64:ae:f1:09:7f:19:99:4a:ae:8a: c8:d5:28:12:3f:0c:07:f1:3c:ff:67:c8:a0:37:03: 03:d8:32:03:06:3d:bc:92:a4:af:78:29:98:22:ce: 58:c6:27:65:45:54:d2:1e:c5:b0:50:43:53:d5:ee: a9:56:48:12:6a:32:86:a0:55:92:8f:91:cc:c5:56: ac:17:9a:71:5b:56:29:2b:7f:09:ba:e1:98:49:32: 0b:51:03:b5:22:91:d8:4e:b8:62:60:3e:f3:26:b0: 9b:e0:82:88:5f:62:0a:cb:da:5b:8a:0a:d6:5c:94: fc:b6:8e:ae:61:0b:dc:bd:96:f4:55:2c:e1:13:df: 9a:0f:da:25:ba:e0:35:4c:b1:c7:aa:09:0b:c4:ee: e9:f8:eb:83:37:8b:80:3b:e9:89:3e:03:84:28:38: 74:2c:9f:bc:7f:2e:b2:4d:3a:ca:1a:b2:64:88:1f: 6e:a6:70:68:5e:6d:5f:dd:c3:3c:f2:d9:b0:1e:32: db:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A7:75:60:91:F4:CD:D6:02:D8:FB:08:BD:34:B5:3F:B3:11:08:31 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144294.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a66c::/32 Signature Algorithm: sha256WithRSAEncryption a7:1c:7b:fe:66:3e:98:d4:fb:10:22:68:e1:52:3a:ba:c3:a1: 6f:8f:1d:74:f7:d8:d2:75:bc:3a:7b:9b:9d:35:29:9a:53:36: 83:73:af:b0:f4:69:2b:9f:f9:01:57:67:82:a1:1e:ef:37:b6: 71:03:e5:9e:df:ec:93:11:c1:81:e1:c5:55:e9:e8:ac:53:f6: 2d:ef:cc:20:8e:97:89:d1:20:11:71:3f:68:e2:45:ce:2e:ea: e5:60:ce:11:53:a8:5c:bd:a9:dd:60:29:00:e3:11:fe:4f:19: 49:60:b1:b6:f9:a5:9b:ac:56:a0:7e:1e:3a:00:db:4b:32:54: bf:8e:30:e1:10:bb:0b:52:28:84:23:a2:e7:f5:ee:ce:79:5a: c7:08:2b:a3:3c:57:14:18:1c:59:16:20:eb:86:93:35:02:f7: 2e:2a:f9:bf:c9:58:ca:0c:66:d4:0d:80:7a:ba:fd:d9:af:e9: 96:7d:bc:c7:0c:c6:b6:75:e4:f1:bb:9b:f2:25:38:f4:20:4b: 56:17:2f:78:d3:d7:23:81:90:03:a7:37:e5:94:05:a8:25:40: 36:96:7f:06:a4:d4:4d:83:9a:16:24:c4:61:6d:42:27:87:e0: f9:95:72:66:ad:df:51:c4:39:a0:47:cc:d2:e2:62:86:3b:b6: fc:ae:3c:6a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXsqfx8vl9E8dy7vyI7zCHXl9O6AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgwNVoX DTI3MDMwMzA2MTMwNVowMzExMC8GA1UEAxMoMTFBNzc1NjA5MUY0Q0RENjAyRDhG QjA4QkQzNEI1M0ZCMzExMDgzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMur7LCejkheaSzuPHBqnwcyzZ1MHy0FGD/kCO0JQy5phJ43dhRIqcZzB1nW E0KJAYhzvfv491jJWSkR7urdT2hkrvEJfxmZSq6KyNUoEj8MB/E8/2fIoDcDA9gy AwY9vJKkr3gpmCLOWMYnZUVU0h7FsFBDU9XuqVZIEmoyhqBVko+RzMVWrBeacVtW KSt/CbrhmEkyC1EDtSKR2E64YmA+8yawm+CCiF9iCsvaW4oK1lyU/LaOrmEL3L2W 9FUs4RPfmg/aJbrgNUyxx6oJC8Tu6fjrgzeLgDvpiT4DhCg4dCyfvH8usk06yhqy ZIgfbqZwaF5tX93DPPLZsB4y25ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQRp3Vg kfTN1gLY+wi9NLU/sxEIMTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDI5NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pmwwDQYJKoZIhvcNAQELBQADggEBAKcce/5mPpjU+xAiaOFSOrrDoW+PHXT32NJ1 vDp7m501KZpTNoNzr7D0aSuf+QFXZ4KhHu83tnED5Z7f7JMRwYHhxVXp6KxT9i3v zCCOl4nRIBFxP2jiRc4u6uVgzhFTqFy9qd1gKQDjEf5PGUlgsbb5pZusVqB+HjoA 20syVL+OMOEQuwtSKIQjouf17s55WscIK6M8VxQYHFkWIOuGkzUC9y4q+b/JWMoM ZtQNgHq6/dmv6ZZ9vMcMxrZ15PG7m/IlOPQgS1YXL3jT1yOBkAOnN+WUBaglQDaW fwak1E2DmhYkxGFtQieH4PmVcmat31HEOaBHzNLiYoY7tvyuPGo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:46 2026 by rpki-client