$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144360.roa File: AS144360.roa (raw, json) Hash identifier: fyIsbv0UcMAJnl1pisRNsbnzH9M1JLHGduotFr/gIik= Subject key identifier: 17:38:EF:83:6D:8C:32:E7:D9:7A:08:D7:74:46:1A:B9:26:5B:64:55 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6E9A70C41F455D5660DB5AB69A6C633C607E1E82 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144360.roa Signing time: Wed 04 Mar 2026 06:13:56 +0000 ROA not before: Wed 04 Mar 2026 06:08:56 +0000 ROA not after: Wed 03 Mar 2027 06:13:56 +0000 asID: 144360 IP address blocks: 240a:a6ae::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:9a:70:c4:1f:45:5d:56:60:db:5a:b6:9a:6c:63:3c:60:7e:1e:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:56 2026 GMT Not After : Mar 3 06:13:56 2027 GMT Subject: CN=1738EF836D8C32E7D97A08D774461AB9265B6455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c7:26:af:7c:b4:9f:5f:c1:53:76:f1:07:6a: 21:2f:7e:32:90:56:8c:48:44:9b:b9:18:fc:d4:6a: 32:af:3f:ba:2a:6b:b2:9d:de:1a:88:f0:a0:2c:1f: 1b:28:b1:14:ed:3a:6c:29:9f:ff:10:f6:e5:4d:7d: bb:56:81:4c:e4:11:48:63:e6:0e:9c:5d:5a:8a:87: 8a:f3:79:f3:9a:0f:af:e7:31:91:fb:59:20:c8:2d: 12:d2:80:79:21:ad:3a:ea:6d:3f:a2:7e:1a:6c:ab: 2e:0f:be:5f:8c:af:2b:07:9c:54:22:78:30:9e:f5: 07:dc:2a:e1:a9:9f:e3:5d:02:e4:ce:b5:b0:dc:ca: 30:13:e3:b6:f9:af:3b:65:d4:ef:43:45:67:e7:36: 15:91:79:30:18:0e:e2:a0:71:f3:98:6b:0c:71:60: 3a:ff:79:0c:01:41:e1:f1:b8:22:04:e1:78:ab:1a: 42:f0:39:b3:f4:bc:67:6d:e4:48:9e:1b:09:af:c2: 6e:13:46:58:d6:67:0d:b8:5e:62:53:6e:c5:6c:e1: b1:bb:cc:4a:10:47:ab:d4:23:ef:f1:9f:ce:3c:fe: ee:dc:95:88:1b:d9:6d:7e:74:52:37:05:08:70:2c: f2:45:51:b7:47:10:be:f9:ea:a9:9d:59:28:18:ed: 7d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:38:EF:83:6D:8C:32:E7:D9:7A:08:D7:74:46:1A:B9:26:5B:64:55 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144360.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6ae::/32 Signature Algorithm: sha256WithRSAEncryption 93:4a:fb:56:0e:c3:0f:0a:52:73:3f:bd:b4:f1:7c:0f:8a:1b: b2:96:14:00:9b:55:e0:17:4d:9b:62:40:12:b7:b4:8d:77:7b: 43:7a:c6:41:cb:5a:fc:4e:ce:b1:99:b2:de:51:d5:6c:77:c6: f7:70:32:e8:8a:de:f3:28:61:0b:af:cd:51:ac:6d:0a:68:ab: 3a:4f:b8:36:9c:72:2d:db:47:a9:07:c1:c3:cf:d5:77:91:54: 34:5c:7c:7b:54:23:90:dd:17:bf:23:a9:08:a0:ed:86:62:69: 54:73:ad:14:32:50:11:2a:01:a7:d5:fd:b2:e4:e5:c7:1d:eb: 1b:2b:1b:fa:b6:29:0b:9e:a5:7e:ee:c1:de:d2:4c:c6:77:77: ba:cd:00:a8:ff:9b:06:4d:07:c5:bb:da:3f:11:54:47:b6:9c: 94:92:40:08:3d:b8:ee:94:5c:46:42:5e:e4:97:25:78:61:86: 3a:1c:57:a2:43:63:9b:ef:7d:5f:47:3b:de:2a:50:0a:a1:07: c7:6d:51:aa:98:a0:32:c1:cc:73:0b:12:54:38:e6:9d:03:a7: 6c:43:19:26:2a:12:30:6d:ce:e1:46:6f:4f:bb:77:47:0b:76: 23:b3:a1:a7:61:64:5b:d4:b1:6d:fa:a9:88:c3:ba:5c:ef:ed: c3:f7:84:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbppwxB9FXVZg21q2mmxjPGB+HoIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg1NloX DTI3MDMwMzA2MTM1NlowMzExMC8GA1UEAxMoMTczOEVGODM2RDhDMzJFN0Q5N0Ew OEQ3NzQ0NjFBQjkyNjVCNjQ1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLHJq98tJ9fwVN28QdqIS9+MpBWjEhEm7kY/NRqMq8/uiprsp3eGojwoCwf GyixFO06bCmf/xD25U19u1aBTOQRSGPmDpxdWoqHivN585oPr+cxkftZIMgtEtKA eSGtOuptP6J+GmyrLg++X4yvKwecVCJ4MJ71B9wq4amf410C5M61sNzKMBPjtvmv O2XU70NFZ+c2FZF5MBgO4qBx85hrDHFgOv95DAFB4fG4IgTheKsaQvA5s/S8Z23k SJ4bCa/CbhNGWNZnDbheYlNuxWzhsbvMShBHq9Qj7/Gfzjz+7tyViBvZbX50UjcF CHAs8kVRt0cQvvnqqZ1ZKBjtfdECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQXOO+D bYwy59l6CNd0Rhq5JltkVTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDM2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pq4wDQYJKoZIhvcNAQELBQADggEBAJNK+1YOww8KUnM/vbTxfA+KG7KWFACbVeAX TZtiQBK3tI13e0N6xkHLWvxOzrGZst5R1Wx3xvdwMuiK3vMoYQuvzVGsbQpoqzpP uDacci3bR6kHwcPP1XeRVDRcfHtUI5DdF78jqQig7YZiaVRzrRQyUBEqAafV/bLk 5ccd6xsrG/q2KQuepX7uwd7STMZ3d7rNAKj/mwZNB8W72j8RVEe2nJSSQAg9uO6U XEZCXuSXJXhhhjocV6JDY5vvfV9HO94qUAqhB8dtUaqYoDLBzHMLElQ45p0Dp2xD GSYqEjBtzuFGb0+7d0cLdiOzoadhZFvUsW36qYjDulzv7cP3hGM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:05 2026 by rpki-client