$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144300.roa File: AS144300.roa (raw, json) Hash identifier: oOD5oopEZL7HtDsuUJPb3RuzruVBU2CMTo6azS3N5VE= Subject key identifier: 22:8C:5C:37:E4:2A:9F:FB:66:53:4D:0B:97:16:B4:4A:4E:8C:C4:2C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 55DBC278C1AE74581E0D855F07BB56E373897B80 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144300.roa Signing time: Wed 04 Mar 2026 06:12:31 +0000 ROA not before: Wed 04 Mar 2026 06:07:31 +0000 ROA not after: Wed 03 Mar 2027 06:12:31 +0000 asID: 144300 IP address blocks: 240a:a672::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:db:c2:78:c1:ae:74:58:1e:0d:85:5f:07:bb:56:e3:73:89:7b:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:31 2026 GMT Not After : Mar 3 06:12:31 2027 GMT Subject: CN=228C5C37E42A9FFB66534D0B9716B44A4E8CC42C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:97:97:98:e3:ed:8e:2d:d3:48:7d:5c:68:f8: 52:27:7f:27:96:c8:dd:f4:53:b8:2d:fc:3e:0f:6e: 39:e6:23:21:73:8a:a0:88:05:89:1c:62:5d:3f:63: 00:a4:7e:a8:ee:5a:8b:1b:18:25:1a:60:1a:8f:a7: 8c:e8:c7:86:8c:32:10:29:64:c9:21:f8:08:73:5c: 66:37:28:64:b2:fc:bc:ef:fa:c9:44:75:69:fa:a5: f3:1b:e6:2a:51:07:5b:9c:3b:c1:34:33:f3:b3:5a: 81:b1:dc:32:c3:38:86:8c:55:d0:59:24:bb:b7:c9: 05:21:29:31:03:58:10:69:d5:08:7f:d4:a9:ed:f7: 80:7c:84:02:63:30:dd:31:c8:ad:d6:1c:bf:d9:8b: 8c:49:e3:9e:6e:ad:3d:25:00:af:bf:65:d1:c5:9b: 4a:4c:d4:67:6b:86:e7:de:bb:aa:7f:a5:b5:59:a3: 5e:d7:10:ec:17:66:2c:0b:ca:24:ea:00:72:83:b7: b3:8a:b3:2b:be:b6:a4:ad:f5:2c:d0:02:e1:f2:55: e4:14:d6:87:cb:14:b2:b4:8c:c2:2f:5e:fd:da:ab: b8:1a:29:06:14:c3:d7:d5:6d:66:66:f4:3a:4f:9e: c8:7d:db:61:71:60:eb:87:9b:f2:70:6b:70:a1:1f: 94:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8C:5C:37:E4:2A:9F:FB:66:53:4D:0B:97:16:B4:4A:4E:8C:C4:2C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144300.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a672::/32 Signature Algorithm: sha256WithRSAEncryption 8c:d7:ac:02:1e:74:7b:b9:23:97:4c:be:87:72:67:1f:2c:c0: 66:f0:94:b8:a0:67:f2:e9:e8:10:0c:8c:cf:14:9f:87:31:de: 51:f0:3b:08:08:04:6f:4b:3d:d9:75:e0:6f:9e:fa:db:75:1f: 9d:70:18:d3:37:27:9c:23:fe:8e:9d:86:39:62:4e:9f:7d:f1: d2:30:a1:be:b4:fd:51:ef:f7:ee:18:c9:b5:c5:ec:ab:86:a5: 92:a6:12:e4:91:7c:1f:11:f6:1e:96:e6:98:ed:8d:f9:73:ab: c6:61:d9:2c:e9:29:be:72:a4:57:5f:e3:e2:a0:c1:16:29:77: 51:49:67:17:55:cc:d8:1b:ad:16:0b:d3:c7:d0:bf:ed:05:87: df:aa:f4:bd:e7:e8:06:43:e4:7f:e8:c1:50:da:4a:09:df:0f: e3:10:c9:14:b9:cc:50:01:66:3b:d6:0e:da:42:7d:35:47:d7: 67:c7:5b:b1:09:9f:34:e6:51:97:81:d6:5c:75:c9:9b:ad:52: 83:39:d1:b7:3b:22:14:bd:b9:d7:50:73:2b:9a:3f:4c:66:67: 13:07:b3:df:a6:ac:5c:26:1b:ec:86:63:ee:b3:eb:de:a0:4c: 03:fd:32:00:ef:81:5b:9c:a2:9c:eb:de:1d:5a:99:bd:b5:15: 00:a9:11:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVdvCeMGudFgeDYVfB7tW43OJe4AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDczMVoX DTI3MDMwMzA2MTIzMVowMzExMC8GA1UEAxMoMjI4QzVDMzdFNDJBOUZGQjY2NTM0 RDBCOTcxNkI0NEE0RThDQzQyQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuXl5jj7Y4t00h9XGj4Uid/J5bI3fRTuC38Pg9uOeYjIXOKoIgFiRxiXT9j AKR+qO5aixsYJRpgGo+njOjHhowyEClkySH4CHNcZjcoZLL8vO/6yUR1afql8xvm KlEHW5w7wTQz87NagbHcMsM4hoxV0Fkku7fJBSEpMQNYEGnVCH/Uqe33gHyEAmMw 3THIrdYcv9mLjEnjnm6tPSUAr79l0cWbSkzUZ2uG5967qn+ltVmjXtcQ7BdmLAvK JOoAcoO3s4qzK762pK31LNAC4fJV5BTWh8sUsrSMwi9e/dqruBopBhTD19VtZmb0 Ok+eyH3bYXFg64eb8nBrcKEflEkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQijFw3 5Cqf+2ZTTQuXFrRKTozELDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDMwMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pnIwDQYJKoZIhvcNAQELBQADggEBAIzXrAIedHu5I5dMvodyZx8swGbwlLigZ/Lp 6BAMjM8Un4cx3lHwOwgIBG9LPdl14G+e+tt1H51wGNM3J5wj/o6dhjliTp998dIw ob60/VHv9+4YybXF7KuGpZKmEuSRfB8R9h6W5pjtjflzq8Zh2SzpKb5ypFdf4+Kg wRYpd1FJZxdVzNgbrRYL08fQv+0Fh9+q9L3n6AZD5H/owVDaSgnfD+MQyRS5zFAB ZjvWDtpCfTVH12fHW7EJnzTmUZeB1lx1yZutUoM50bc7IhS9uddQcyuaP0xmZxMH s9+mrFwmG+yGY+6z696gTAP9MgDvgVucopzr3h1amb21FQCpEdo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:33 2026 by rpki-client