$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144315.roa File: AS144315.roa (raw, json) Hash identifier: zhgKCa+Dp7obo+hVcAQi+7AfJ/XXeHplDbHycrvjoHM= Subject key identifier: 33:24:83:3B:F5:80:4F:E0:34:FC:94:99:AA:A4:DD:C0:18:9D:73:0D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 25F8D0523D10D5F4E723FEC274E532F41F33F7E2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144315.roa Signing time: Wed 04 Mar 2026 06:14:49 +0000 ROA not before: Wed 04 Mar 2026 06:09:49 +0000 ROA not after: Wed 03 Mar 2027 06:14:49 +0000 asID: 144315 IP address blocks: 240a:a681::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f8:d0:52:3d:10:d5:f4:e7:23:fe:c2:74:e5:32:f4:1f:33:f7:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:49 2026 GMT Not After : Mar 3 06:14:49 2027 GMT Subject: CN=3324833BF5804FE034FC9499AAA4DDC0189D730D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f3:8f:62:f5:e9:d8:6c:7d:27:42:54:c2:c1: 8c:62:75:39:89:91:bd:d3:01:26:71:42:b8:6c:64: 57:35:a1:be:04:c1:af:dd:df:05:43:8e:b2:f1:82: 33:35:5c:51:0d:f9:55:ba:29:dd:4a:d5:35:39:f5: 58:e3:a7:dd:00:0e:0c:5f:b5:2c:cd:97:33:c0:e6: e1:b8:e4:04:29:0c:ad:f5:bc:29:c7:be:36:77:72: f8:28:7e:09:0f:2f:e7:e5:a0:7b:37:0c:15:41:73: da:22:bb:78:20:3e:30:c2:22:17:4c:34:1d:a1:2c: 7d:5e:89:00:d3:14:e6:0b:e5:bc:59:98:4c:54:87: 25:16:2b:82:e3:94:da:b2:51:bf:41:15:31:4b:fa: 82:dd:ef:0c:2f:de:67:a1:49:dc:05:20:77:82:54: 62:0c:d1:f8:0e:a6:08:ec:3b:3c:34:88:89:1c:30: 33:f2:e7:4c:a6:5e:21:82:2d:f1:b4:42:f3:3c:0c: e3:78:40:49:ff:45:67:08:96:1a:37:b3:94:c7:bc: 2f:4d:01:cb:56:a6:fa:03:a2:6a:5a:58:e2:34:e9: ba:d4:72:5c:7e:5a:5a:65:6e:03:8d:ad:ca:61:2f: 96:4d:58:21:e3:dc:fd:81:b5:0d:ba:2e:87:5a:e7: 88:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:24:83:3B:F5:80:4F:E0:34:FC:94:99:AA:A4:DD:C0:18:9D:73:0D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144315.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a681::/32 Signature Algorithm: sha256WithRSAEncryption bd:c2:7e:ea:b9:6a:71:50:e9:b1:cc:fd:10:a9:85:3d:8c:d8: 7f:d4:f9:be:a3:6a:6f:55:d2:80:33:60:48:b3:4d:7c:52:3b: d8:ad:db:af:30:a4:c2:b2:fa:97:1f:08:92:3b:d0:2d:80:27: b9:5b:ae:e9:62:92:a4:25:06:c1:80:8f:0e:1a:69:06:85:f8: ea:6c:1f:8c:9b:8e:f2:2c:3b:00:eb:3a:3c:d1:5e:b2:ed:af: 25:9f:40:f2:c0:b8:16:4a:d2:61:52:84:b9:a3:96:0e:ae:c9: 3c:c8:81:4c:2b:8e:e0:26:95:73:d6:b9:7a:5d:13:f0:1a:fa: 99:b9:c7:0e:02:86:26:bd:35:62:19:6f:e9:f2:be:51:6a:0b: 94:94:f1:af:11:00:c1:fe:d0:6a:d7:c7:99:e5:28:32:55:5e: 0e:15:63:2b:17:59:44:49:3d:ac:f6:86:3e:41:f7:e3:18:f4: bd:26:b8:79:fe:6e:69:41:50:07:fb:30:e8:d3:09:3f:6e:a7: 59:f8:b2:88:2b:89:94:c1:6a:8e:55:dc:bb:ee:27:c8:33:41: 50:e3:70:11:8b:52:b1:14:e1:e4:bb:dd:79:05:df:2d:c5:74: ee:ca:d9:41:b7:34:b1:9e:7e:de:b2:c4:8a:fa:4d:7f:da:21: b8:ec:7e:d8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJfjQUj0Q1fTnI/7CdOUy9B8z9+IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk0OVoX DTI3MDMwMzA2MTQ0OVowMzExMC8GA1UEAxMoMzMyNDgzM0JGNTgwNEZFMDM0RkM5 NDk5QUFBNEREQzAxODlENzMwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN7zj2L16dhsfSdCVMLBjGJ1OYmRvdMBJnFCuGxkVzWhvgTBr93fBUOOsvGC MzVcUQ35Vbop3UrVNTn1WOOn3QAODF+1LM2XM8Dm4bjkBCkMrfW8Kce+Nndy+Ch+ CQ8v5+WgezcMFUFz2iK7eCA+MMIiF0w0HaEsfV6JANMU5gvlvFmYTFSHJRYrguOU 2rJRv0EVMUv6gt3vDC/eZ6FJ3AUgd4JUYgzR+A6mCOw7PDSIiRwwM/LnTKZeIYIt 8bRC8zwM43hASf9FZwiWGjezlMe8L00By1am+gOialpY4jTputRyXH5aWmVuA42t ymEvlk1YIePc/YG1Dbouh1rniGECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQzJIM7 9YBP4DT8lJmqpN3AGJ1zDTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDMxNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK poEwDQYJKoZIhvcNAQELBQADggEBAL3Cfuq5anFQ6bHM/RCphT2M2H/U+b6jam9V 0oAzYEizTXxSO9it268wpMKy+pcfCJI70C2AJ7lbrulikqQlBsGAjw4aaQaF+Ops H4ybjvIsOwDrOjzRXrLtryWfQPLAuBZK0mFShLmjlg6uyTzIgUwrjuAmlXPWuXpd E/Aa+pm5xw4Chia9NWIZb+nyvlFqC5SU8a8RAMH+0GrXx5nlKDJVXg4VYysXWURJ Paz2hj5B9+MY9L0muHn+bmlBUAf7MOjTCT9up1n4sogriZTBao5V3LvuJ8gzQVDj cBGLUrEU4eS73XkF3y3FdO7K2UG3NLGeft6yxIr6TX/aIbjsftg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:45 2026 by rpki-client