$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144333.roa File: AS144333.roa (raw, json) Hash identifier: vujDu6DP8RhdJaQF/lTHUFgxXwdR+Bpx6wssJER9agM= Subject key identifier: A9:BA:93:89:E6:3F:AE:D8:41:5B:B7:A0:6D:1A:38:B1:23:CE:14:CC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 064A19FE2C991A58880754187FC77077861DF150 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144333.roa Signing time: Wed 04 Mar 2026 06:13:34 +0000 ROA not before: Wed 04 Mar 2026 06:08:34 +0000 ROA not after: Wed 03 Mar 2027 06:13:34 +0000 asID: 144333 IP address blocks: 240a:a693::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:4a:19:fe:2c:99:1a:58:88:07:54:18:7f:c7:70:77:86:1d:f1:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:34 2026 GMT Not After : Mar 3 06:13:34 2027 GMT Subject: CN=A9BA9389E63FAED8415BB7A06D1A38B123CE14CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e0:c5:7e:76:35:bc:ce:d6:9b:92:03:d3:8d: c5:f0:93:8d:da:a0:24:c3:72:ec:2c:74:2a:c2:d0: 2f:48:71:c2:23:f1:a3:7a:86:bf:dc:dc:6c:64:c5: dc:fa:6a:68:92:2c:e0:86:13:2a:ec:93:7d:56:55: 3a:fb:63:45:3d:f4:b0:e0:24:4b:99:ee:cf:d2:fc: db:98:56:c1:5c:a9:25:8d:af:99:3e:3d:e9:49:67: 26:63:22:47:b0:96:6b:98:c6:2e:e6:7c:a3:41:c5: 05:dd:ac:b2:08:e7:c1:b3:c6:4a:84:78:01:a4:20: 07:15:90:ec:33:00:42:d3:a6:5c:87:55:16:b3:d9: fb:d2:6f:18:1f:b1:ce:85:23:d9:05:96:28:2d:e2: 0d:d3:ef:15:7d:87:2e:ca:73:13:b2:d5:e6:57:6e: f2:59:e5:6c:4d:ff:31:00:91:1d:fc:b2:25:be:25: cd:7f:e3:8e:50:bc:c2:1b:ea:15:05:a6:9b:c6:0e: 07:8b:3b:19:ce:bc:46:be:70:95:fa:ef:05:72:ff: d5:03:43:77:b4:9a:82:2d:77:fa:27:d7:27:c6:96: 39:f3:67:51:d0:19:ce:64:1a:ac:b1:e4:49:d9:c4: 20:19:30:4d:6c:0f:b0:b0:84:5e:a5:e9:c5:5a:4d: e0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:BA:93:89:E6:3F:AE:D8:41:5B:B7:A0:6D:1A:38:B1:23:CE:14:CC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a693::/32 Signature Algorithm: sha256WithRSAEncryption 05:ad:f7:a8:a8:80:ae:d0:fa:b2:88:ca:99:39:b1:c8:2b:1d: 64:9e:b7:73:7f:b1:08:99:24:c4:8a:e8:51:02:20:0f:39:40: 45:1e:9d:07:e7:06:78:b2:35:0a:bf:bd:3e:0e:3f:a3:74:37: 82:e1:50:cc:1e:c9:4d:d9:89:a8:04:0b:d2:77:7d:0d:22:89: 42:7d:e8:57:bf:47:54:58:0b:1a:8d:93:50:48:eb:7c:43:6d: 9f:61:5a:f4:ce:1a:81:c8:bb:f6:49:ab:5d:dc:96:ef:48:13: ac:4d:8b:8e:90:2c:74:4c:fc:ec:0a:14:50:94:51:5b:6d:bb: c1:2a:f8:b1:50:a8:86:47:95:26:5c:0d:02:58:42:58:af:f3: bf:8c:45:3b:b3:b9:a0:d9:63:e6:6f:2f:ac:49:a5:f0:f9:7b: 97:d9:04:35:86:9b:ec:2b:f7:79:05:4e:fc:dc:ac:a5:53:6c: 94:a1:15:7f:f9:ed:fb:2f:29:08:54:53:f2:1a:19:81:58:00: 9a:cf:64:07:03:b5:cc:53:64:56:0f:b1:ec:3c:e2:0a:8a:2a: 2b:52:71:8a:69:1d:2f:76:7c:5e:4a:bd:5e:7b:ec:e6:6e:23: 1e:df:64:c1:eb:4c:55:9e:1c:c1:cc:f7:c6:40:95:81:22:a2: 4f:a1:84:f0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBkoZ/iyZGliIB1QYf8dwd4Yd8VAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgzNFoX DTI3MDMwMzA2MTMzNFowMzExMC8GA1UEAxMoQTlCQTkzODlFNjNGQUVEODQxNUJC N0EwNkQxQTM4QjEyM0NFMTRDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLgxX52NbzO1puSA9ONxfCTjdqgJMNy7Cx0KsLQL0hxwiPxo3qGv9zcbGTF 3PpqaJIs4IYTKuyTfVZVOvtjRT30sOAkS5nuz9L825hWwVypJY2vmT496UlnJmMi R7CWa5jGLuZ8o0HFBd2ssgjnwbPGSoR4AaQgBxWQ7DMAQtOmXIdVFrPZ+9JvGB+x zoUj2QWWKC3iDdPvFX2HLspzE7LV5ldu8lnlbE3/MQCRHfyyJb4lzX/jjlC8whvq FQWmm8YOB4s7Gc68Rr5wlfrvBXL/1QNDd7Sagi13+ifXJ8aWOfNnUdAZzmQarLHk SdnEIBkwTWwPsLCEXqXpxVpN4GUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSpupOJ 5j+u2EFbt6BtGjixI84UzDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDMzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ppMwDQYJKoZIhvcNAQELBQADggEBAAWt96iogK7Q+rKIypk5scgrHWSet3N/sQiZ JMSK6FECIA85QEUenQfnBniyNQq/vT4OP6N0N4LhUMweyU3ZiagEC9J3fQ0iiUJ9 6Fe/R1RYCxqNk1BI63xDbZ9hWvTOGoHIu/ZJq13clu9IE6xNi46QLHRM/OwKFFCU UVttu8Eq+LFQqIZHlSZcDQJYQliv87+MRTuzuaDZY+ZvL6xJpfD5e5fZBDWGm+wr 93kFTvzcrKVTbJShFX/57fsvKQhUU/IaGYFYAJrPZAcDtcxTZFYPsew84gqKKitS cYppHS92fF5KvV577OZuIx7fZMHrTFWeHMHM98ZAlYEiok+hhPA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:07 2026 by rpki-client