$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144318.roa File: AS144318.roa (raw, json) Hash identifier: nK3sQaPu/KYVBbgdp6Qq2XtesolPSwgznL0jS9fOOEU= Subject key identifier: 99:26:22:69:78:3A:41:92:3C:F8:FA:BA:0A:69:5F:C5:53:9C:26:C9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 09EB6E1BC7A772C2D297CA79026F2EF43645D971 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144318.roa Signing time: Wed 04 Mar 2026 06:13:06 +0000 ROA not before: Wed 04 Mar 2026 06:08:06 +0000 ROA not after: Wed 03 Mar 2027 06:13:06 +0000 asID: 144318 IP address blocks: 240a:a684::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:eb:6e:1b:c7:a7:72:c2:d2:97:ca:79:02:6f:2e:f4:36:45:d9:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:06 2026 GMT Not After : Mar 3 06:13:06 2027 GMT Subject: CN=99262269783A41923CF8FABA0A695FC5539C26C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:f2:ba:6f:99:08:bb:e6:db:42:ab:c0:e2:1e: ed:71:04:23:82:86:8f:33:26:6d:af:3c:62:80:4e: bb:64:fb:81:9a:ed:09:14:12:16:32:1b:a0:5a:ac: 47:17:38:5e:ca:35:8a:89:43:f0:c1:fc:19:11:62: 82:11:09:9b:bf:55:c3:35:1f:65:9f:9b:6d:ef:d3: 3d:98:da:97:6a:2a:fd:d7:30:4e:5f:4b:31:98:b4: 3e:d7:1f:c2:34:0b:f8:60:d2:8f:5d:aa:2b:41:bb: f5:0a:aa:b4:b4:66:04:2c:70:eb:48:52:fe:9a:2a: b0:84:10:e9:df:43:3b:db:6c:ca:fc:bb:71:c3:27: bb:6a:da:89:61:12:bb:78:a0:20:f4:08:ea:f2:e8: 01:1f:2c:90:86:a9:c4:a7:1e:de:e4:d2:01:10:c6: e8:eb:e2:94:fe:69:0c:b3:7e:6b:ec:65:28:a0:29: 7a:01:c3:b1:6f:a5:2f:4a:ed:d2:6f:df:bf:cd:2d: d5:70:65:3c:48:95:0f:88:8f:24:01:d0:b5:52:45: eb:5b:ae:2e:11:ed:65:fd:c3:48:8e:07:84:25:f9: 4c:ab:8d:ba:16:88:b0:36:d0:16:8b:6a:3d:76:82: a5:d7:45:9e:ef:43:9a:e9:50:37:69:0f:98:c3:c6: fc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:26:22:69:78:3A:41:92:3C:F8:FA:BA:0A:69:5F:C5:53:9C:26:C9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144318.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a684::/32 Signature Algorithm: sha256WithRSAEncryption b8:a1:48:1e:ac:e5:82:f3:2f:7b:2e:43:f4:c0:7b:f2:ae:63: 58:a1:40:68:a0:e5:2e:ce:7b:f3:cb:bc:58:2a:81:f7:cc:84: 2d:db:92:14:be:72:0f:7c:e9:86:ba:62:ae:ce:d3:33:a6:d5: 9a:40:e1:6b:75:d6:1d:a3:63:8f:af:85:92:a0:ba:ef:80:04: ed:a8:bd:3e:28:37:d6:b8:a9:15:a7:61:30:37:94:bc:c1:6e: 3e:33:5d:f4:82:c7:e6:65:c3:68:fd:c4:c5:e2:47:aa:e1:9f: 52:d7:dc:5b:8b:a9:c6:91:b9:e5:a4:cb:88:f2:14:3e:c2:0c: 28:d1:51:c2:49:80:15:d3:e2:d7:cf:ec:3d:5e:7d:01:af:ea: 6f:bf:3a:e6:3c:c4:33:ed:af:4a:fc:86:7d:12:11:47:db:65: ce:58:22:13:7b:3a:b8:ca:d4:a0:30:a5:73:f1:9d:ba:4a:e1: 1d:f2:2f:3e:68:d0:68:f7:22:7e:52:dc:36:e8:3a:14:ee:e4: ab:d2:8a:d7:dc:89:76:9b:36:59:3b:c5:87:66:01:9e:05:cf: 05:77:8d:4c:e8:00:ca:7b:ae:85:1f:57:b4:d4:65:3c:d4:60: fc:01:f2:8b:48:ce:de:16:a9:6f:d0:8a:0d:25:07:92:64:24: a3:41:72:1f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCetuG8encsLSl8p5Am8u9DZF2XEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgwNloX DTI3MDMwMzA2MTMwNlowMzExMC8GA1UEAxMoOTkyNjIyNjk3ODNBNDE5MjNDRjhG QUJBMEE2OTVGQzU1MzlDMjZDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAILyum+ZCLvm20KrwOIe7XEEI4KGjzMmba88YoBOu2T7gZrtCRQSFjIboFqs Rxc4Xso1iolD8MH8GRFighEJm79VwzUfZZ+bbe/TPZjal2oq/dcwTl9LMZi0Ptcf wjQL+GDSj12qK0G79QqqtLRmBCxw60hS/poqsIQQ6d9DO9tsyvy7ccMnu2raiWES u3igIPQI6vLoAR8skIapxKce3uTSARDG6OvilP5pDLN+a+xlKKApegHDsW+lL0rt 0m/fv80t1XBlPEiVD4iPJAHQtVJF61uuLhHtZf3DSI4HhCX5TKuNuhaIsDbQFotq PXaCpddFnu9DmulQN2kPmMPG/HkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSZJiJp eDpBkjz4+roKaV/FU5wmyTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDMxOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK poQwDQYJKoZIhvcNAQELBQADggEBALihSB6s5YLzL3suQ/TAe/KuY1ihQGig5S7O e/PLvFgqgffMhC3bkhS+cg986Ya6Yq7O0zOm1ZpA4Wt11h2jY4+vhZKguu+ABO2o vT4oN9a4qRWnYTA3lLzBbj4zXfSCx+Zlw2j9xMXiR6rhn1LX3FuLqcaRueWky4jy FD7CDCjRUcJJgBXT4tfP7D1efQGv6m+/OuY8xDPtr0r8hn0SEUfbZc5YIhN7OrjK 1KAwpXPxnbpK4R3yLz5o0Gj3In5S3DboOhTu5KvSitfciXabNlk7xYdmAZ4FzwV3 jUzoAMp7roUfV7TUZTzUYPwB8otIzt4WqW/Qig0lB5JkJKNBch8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:10 2026 by rpki-client