$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144339.roa File: AS144339.roa (raw, json) Hash identifier: iRmUhRCcJpVEi0SwFHAfM79ShV25R3s/gviAOWB1BT4= Subject key identifier: 39:C5:EC:3A:0B:BE:F9:E7:83:F5:9F:58:C6:02:57:22:4C:9E:7E:6C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4BBAAF3B25AC156B895752D3606D95BFEE0F1F7D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144339.roa Signing time: Wed 04 Mar 2026 06:14:01 +0000 ROA not before: Wed 04 Mar 2026 06:09:01 +0000 ROA not after: Wed 03 Mar 2027 06:14:01 +0000 asID: 144339 IP address blocks: 240a:a699::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ba:af:3b:25:ac:15:6b:89:57:52:d3:60:6d:95:bf:ee:0f:1f:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:01 2026 GMT Not After : Mar 3 06:14:01 2027 GMT Subject: CN=39C5EC3A0BBEF9E783F59F58C60257224C9E7E6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5d:48:0d:d9:0e:fa:02:74:e8:5c:0a:2e:e9: 6c:d3:62:0d:10:87:cb:37:04:59:69:cb:b9:e2:b4: 49:7f:5e:c4:db:90:a1:e3:ce:5f:d3:09:87:5f:10: c0:ec:70:0c:53:9c:a0:6b:80:71:8d:22:86:5b:de: 6f:b9:47:7d:ee:0b:f1:26:15:e3:a2:9c:2d:7f:a9: 68:de:d5:2d:9b:88:58:0a:a1:f9:d1:ed:50:18:d5: 78:eb:c3:df:14:f2:92:5d:37:cb:d4:b3:3d:fa:7e: bd:a3:5b:4e:ba:80:44:dc:b9:13:83:85:2e:e7:ed: dd:a5:a1:84:61:bf:13:b7:d5:74:c1:23:c7:a1:0c: 26:42:34:65:31:66:e0:c4:86:b5:9e:b0:ec:c5:4f: 82:72:9d:ba:49:07:6b:db:79:76:36:38:d5:14:5c: 92:ca:fc:cf:e3:80:bc:d3:f8:79:8e:77:a8:bc:15: 63:5b:95:5b:0b:dd:6e:b6:bc:43:63:d5:75:81:e4: 3f:c4:56:47:e3:bd:11:92:7c:c2:8e:94:d3:02:10: 23:97:01:9c:95:a7:ef:cf:13:49:be:8e:52:99:37: 1a:c5:7d:d5:a9:09:fd:2a:73:4d:88:e1:50:71:17: 18:ed:86:3b:4f:0a:1f:fa:d2:f8:28:b3:93:4a:47: 1b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C5:EC:3A:0B:BE:F9:E7:83:F5:9F:58:C6:02:57:22:4C:9E:7E:6C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a699::/32 Signature Algorithm: sha256WithRSAEncryption 89:9a:72:66:fb:cc:32:25:f3:f7:01:90:28:2c:43:23:32:4e: b1:b2:d1:e7:b2:24:c0:7d:a5:05:48:9b:55:28:d1:8c:c3:cc: db:2b:53:7a:65:e8:ec:a9:1e:51:8d:0d:0b:73:f4:ee:5e:d4: ef:77:d9:e9:09:94:84:b3:35:34:21:06:88:f3:1d:7c:10:c2: 52:5a:36:71:68:56:da:4f:91:da:4c:89:ca:2c:2c:5a:90:8e: 2b:86:a8:bc:6b:00:b2:70:ef:b2:0b:84:c0:68:60:94:73:04: a8:17:1a:11:d2:75:0c:2b:9e:eb:59:98:8f:4e:54:bb:72:28: a9:cb:87:b3:d6:ec:d2:d2:46:bd:c2:75:4a:e8:09:d8:73:61: 72:d0:5f:87:e4:8e:64:36:2b:13:a6:dd:65:7d:6f:74:ed:11: a8:3f:d2:82:e2:ba:6e:c2:9a:6a:9e:20:b1:6c:76:e5:22:e6: 2d:46:ad:5c:6d:fd:2b:b6:1a:d7:fc:54:01:18:3b:4c:27:79: bb:b8:3f:4a:39:bd:1a:61:89:37:2c:e9:84:f5:24:30:0b:48: 6f:f1:56:39:ae:61:fb:5d:22:79:8e:3e:9f:a6:d5:bf:73:61: 90:95:c6:97:ff:5d:da:cb:44:7b:15:18:14:63:90:69:87:43: 1a:56:7a:6e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUS7qvOyWsFWuJV1LTYG2Vv+4PH30wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkwMVoX DTI3MDMwMzA2MTQwMVowMzExMC8GA1UEAxMoMzlDNUVDM0EwQkJFRjlFNzgzRjU5 RjU4QzYwMjU3MjI0QzlFN0U2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN1dSA3ZDvoCdOhcCi7pbNNiDRCHyzcEWWnLueK0SX9exNuQoePOX9MJh18Q wOxwDFOcoGuAcY0ihlveb7lHfe4L8SYV46KcLX+paN7VLZuIWAqh+dHtUBjVeOvD 3xTykl03y9SzPfp+vaNbTrqARNy5E4OFLuft3aWhhGG/E7fVdMEjx6EMJkI0ZTFm 4MSGtZ6w7MVPgnKdukkHa9t5djY41RRcksr8z+OAvNP4eY53qLwVY1uVWwvdbra8 Q2PVdYHkP8RWR+O9EZJ8wo6U0wIQI5cBnJWn788TSb6OUpk3GsV91akJ/SpzTYjh UHEXGO2GO08KH/rS+Cizk0pHGxECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ5xew6 C77554P1n1jGAlciTJ5+bDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDMzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ppkwDQYJKoZIhvcNAQELBQADggEBAImacmb7zDIl8/cBkCgsQyMyTrGy0eeyJMB9 pQVIm1Uo0YzDzNsrU3pl6OypHlGNDQtz9O5e1O932ekJlISzNTQhBojzHXwQwlJa NnFoVtpPkdpMicosLFqQjiuGqLxrALJw77ILhMBoYJRzBKgXGhHSdQwrnutZmI9O VLtyKKnLh7PW7NLSRr3CdUroCdhzYXLQX4fkjmQ2KxOm3WV9b3TtEag/0oLium7C mmqeILFsduUi5i1GrVxt/Su2Gtf8VAEYO0wnebu4P0o5vRphiTcs6YT1JDALSG/x VjmuYftdInmOPp+m1b9zYZCVxpf/XdrLRHsVGBRjkGmHQxpWem4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:37 2026 by rpki-client