$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144337.roa File: AS144337.roa (raw, json) Hash identifier: ivtZRWv0g6Nv1MLvHRAUhPkdbth12AW/xQ30Z/SGYuQ= Subject key identifier: 57:14:0D:18:00:05:9F:17:09:E1:37:6F:C9:58:6A:30:44:60:B2:A6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 77D1EE53E1F93414B9C2FF409AADCDAE94BE2700 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144337.roa Signing time: Wed 04 Mar 2026 06:12:44 +0000 ROA not before: Wed 04 Mar 2026 06:07:44 +0000 ROA not after: Wed 03 Mar 2027 06:12:44 +0000 asID: 144337 IP address blocks: 240a:a697::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d1:ee:53:e1:f9:34:14:b9:c2:ff:40:9a:ad:cd:ae:94:be:27:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:44 2026 GMT Not After : Mar 3 06:12:44 2027 GMT Subject: CN=57140D1800059F1709E1376FC9586A304460B2A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ff:7d:d2:f6:3c:39:3f:cb:c4:ff:5d:ef:ec: 91:17:9c:19:53:13:31:b3:6a:ea:81:14:2f:7c:77: 62:c8:25:28:45:09:67:fb:2c:a2:db:6e:41:74:75: cf:18:f8:30:cb:5f:96:fb:fe:86:c7:cb:7a:f1:15: 8d:1c:7a:af:a3:aa:57:74:54:78:3f:b8:75:bb:7f: 27:96:6b:85:79:ea:0a:2e:09:ac:22:6e:1d:10:b5: ce:64:7c:f7:9b:2d:7c:f6:fc:5c:df:1e:88:e7:a8: 7b:3a:6c:e0:4b:55:c0:79:de:03:2c:24:97:df:5f: 08:07:f5:7a:a7:c6:ca:70:f9:3b:cb:12:e8:99:fb: 34:89:46:c0:5d:cf:c5:45:6e:fb:f7:d1:5c:dd:34: a3:86:47:5b:7c:d7:02:1d:66:80:29:25:5f:4a:41: e5:50:f2:84:6b:a0:a6:41:85:f6:bf:65:94:ff:d6: 7d:38:da:80:5e:47:df:53:59:62:77:3d:86:cd:9d: a4:ca:4f:df:05:a9:ea:b8:fa:d5:13:51:85:02:52: 0e:8a:ae:db:7e:5e:40:0f:5a:95:1c:29:da:04:bf: 99:74:1b:21:69:be:fe:f8:c5:4f:8a:29:fb:80:df: 66:15:48:b7:d8:a1:9a:f7:21:7e:26:07:0c:da:67: 22:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:14:0D:18:00:05:9F:17:09:E1:37:6F:C9:58:6A:30:44:60:B2:A6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a697::/32 Signature Algorithm: sha256WithRSAEncryption 1f:e6:15:b1:2a:31:0b:e0:69:e5:8f:ff:6c:1d:fd:5d:6a:6f: 11:40:9c:9c:a0:c7:4a:cd:07:b3:b7:26:3a:45:e3:d5:2d:44: e9:62:4d:f4:18:0f:6b:d8:24:1e:5a:86:a9:49:74:25:0b:60: 6f:4f:49:6a:58:6d:a2:7c:70:62:56:f2:9f:f5:4d:d1:54:26: a6:70:c3:08:28:76:24:be:ff:38:3d:47:7e:b6:64:87:b2:39: 31:c0:7f:91:66:02:1f:dc:06:ef:68:a4:e2:3d:3d:72:0d:89: e1:78:c6:32:db:1c:bc:52:ab:dc:e0:67:0a:a4:ef:5d:6a:44: de:b2:2f:0f:c5:e6:a8:cf:07:c1:1e:74:51:e5:92:87:ca:db: 31:3a:85:cf:d6:a7:7a:4c:8d:0f:c6:5b:88:16:3c:ee:bb:79: f5:d4:79:bb:6b:09:bc:70:b3:dd:ab:30:b9:f9:5a:b7:90:66: c8:7d:43:91:83:5b:e3:5b:90:4c:aa:2c:85:0a:63:51:ea:4a: 09:7e:87:68:a7:22:7b:60:90:b6:d2:5f:5a:ce:3e:3a:a7:c6: 02:e0:61:19:fc:69:e2:16:10:59:c8:24:e3:8a:9a:29:f9:2d: 3c:c7:82:10:cd:26:89:2c:80:78:ff:b7:22:de:54:25:23:35: 10:23:3c:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUd9HuU+H5NBS5wv9Amq3NrpS+JwAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc0NFoX DTI3MDMwMzA2MTI0NFowMzExMC8GA1UEAxMoNTcxNDBEMTgwMDA1OUYxNzA5RTEz NzZGQzk1ODZBMzA0NDYwQjJBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKr/fdL2PDk/y8T/Xe/skRecGVMTMbNq6oEUL3x3YsglKEUJZ/ssottuQXR1 zxj4MMtflvv+hsfLevEVjRx6r6OqV3RUeD+4dbt/J5ZrhXnqCi4JrCJuHRC1zmR8 95stfPb8XN8eiOeoezps4EtVwHneAywkl99fCAf1eqfGynD5O8sS6Jn7NIlGwF3P xUVu+/fRXN00o4ZHW3zXAh1mgCklX0pB5VDyhGugpkGF9r9llP/WfTjagF5H31NZ Ync9hs2dpMpP3wWp6rj61RNRhQJSDoqu235eQA9alRwp2gS/mXQbIWm+/vjFT4op +4DfZhVIt9ihmvchfiYHDNpnIkkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRXFA0Y AAWfFwnhN2/JWGowRGCypjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDMzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ppcwDQYJKoZIhvcNAQELBQADggEBAB/mFbEqMQvgaeWP/2wd/V1qbxFAnJygx0rN B7O3JjpF49UtROliTfQYD2vYJB5ahqlJdCULYG9PSWpYbaJ8cGJW8p/1TdFUJqZw wwgodiS+/zg9R362ZIeyOTHAf5FmAh/cBu9opOI9PXINieF4xjLbHLxSq9zgZwqk 711qRN6yLw/F5qjPB8EedFHlkofK2zE6hc/Wp3pMjQ/GW4gWPO67efXUebtrCbxw s92rMLn5WreQZsh9Q5GDW+NbkEyqLIUKY1HqSgl+h2inIntgkLbSX1rOPjqnxgLg YRn8aeIWEFnIJOOKmin5LTzHghDNJoksgHj/tyLeVCUjNRAjPNo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:14 2026 by rpki-client