$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144364.roa File: AS144364.roa (raw, json) Hash identifier: 008E2Ljx9VF21BKlPF+ZuEqr3/3MVoeMQ69vy189SBE= Subject key identifier: BB:B8:78:D9:A3:AC:FA:A5:22:C6:6E:CD:A7:43:4B:CC:8E:C4:86:0C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0135A7E005350B3EF63EFCD339C41778688DBF9F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144364.roa Signing time: Wed 04 Mar 2026 06:15:29 +0000 ROA not before: Wed 04 Mar 2026 06:10:29 +0000 ROA not after: Wed 03 Mar 2027 06:15:29 +0000 asID: 144364 IP address blocks: 240a:a6b2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:35:a7:e0:05:35:0b:3e:f6:3e:fc:d3:39:c4:17:78:68:8d:bf:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:29 2026 GMT Not After : Mar 3 06:15:29 2027 GMT Subject: CN=BBB878D9A3ACFAA522C66ECDA7434BCC8EC4860C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:c5:4f:b9:53:ec:be:aa:bd:35:04:50:a2: b6:b6:ef:ef:38:71:ae:bd:0b:9e:5a:38:01:8d:ae: 6b:86:f3:df:7d:ab:a2:4d:9b:0b:94:34:31:77:78: d2:40:1d:fa:6c:2b:67:d4:93:74:e7:30:c6:41:69: 12:79:8a:b2:9d:31:6f:cc:36:ee:4b:fc:85:97:7a: 91:85:b0:2e:8d:75:1c:c5:b7:97:40:af:22:d8:2f: 37:4a:cf:15:ac:52:b9:45:8a:72:76:7e:ba:8e:db: 39:ec:1c:e6:c6:d5:07:e7:34:6a:c7:32:aa:6f:ff: f7:34:3b:e7:33:de:be:17:4b:50:fb:44:be:d2:ba: 62:38:b1:79:01:9c:cc:1e:1a:20:6d:3c:27:3e:eb: c4:81:61:a5:78:f5:d1:cf:98:2d:86:1e:2a:d7:ab: 18:7a:2d:19:27:b1:f7:d5:80:6e:5f:a1:01:d0:e4: 33:6e:b1:1f:4c:c8:60:02:44:5d:5e:e9:55:68:a2: dd:b5:07:8c:c0:88:70:30:e4:cc:25:43:d2:fe:87: 3b:cc:86:7f:aa:1e:f8:6e:af:d9:05:3d:34:85:79: bb:20:f5:f6:bc:e5:0a:0b:e6:8f:99:68:bb:cf:37: 91:ee:cd:79:0f:ef:63:60:66:bd:06:ed:f8:58:2d: b7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B8:78:D9:A3:AC:FA:A5:22:C6:6E:CD:A7:43:4B:CC:8E:C4:86:0C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6b2::/32 Signature Algorithm: sha256WithRSAEncryption 79:20:f1:ae:0e:86:bd:13:a2:fd:8a:79:d3:e4:45:51:8a:db: a6:10:c1:9f:20:b0:ef:1c:8b:84:c2:46:30:db:7b:3a:e9:27: 4a:6b:64:b4:d5:40:d2:56:c4:e5:65:42:a2:65:47:01:6c:2e: 52:f5:8f:50:45:50:bf:af:20:58:e0:78:63:1e:d4:74:13:98: 87:7a:89:e0:e0:31:93:b5:33:ae:44:59:a9:72:ff:c2:4c:eb: 72:8c:a4:aa:b0:e4:a7:fe:fa:8c:90:f0:3f:1d:e6:86:12:b0: ef:73:2d:11:97:66:1b:68:53:63:90:f1:3f:fe:7b:d1:0f:46: 4e:db:11:d4:0f:1b:d3:ee:69:b2:9a:c3:93:a1:73:21:68:9d: b9:10:0b:5d:c9:f3:81:7d:33:46:f7:08:bb:80:7c:05:b6:f3: b3:6e:00:9c:45:f9:c0:5d:f9:b7:ae:21:50:22:47:8f:c2:b9: 55:ee:9b:de:32:09:7e:55:b1:c1:7c:3f:ba:18:1b:cf:92:2a: 1c:71:1c:85:7f:d2:14:ac:38:11:1e:16:32:3f:b8:f4:36:09: ff:37:66:d4:b4:3d:91:8f:26:f2:2c:e1:cc:bb:70:63:af:93: 54:54:78:6d:07:22:ff:3e:7d:d9:f4:bd:8a:ab:2e:9f:84:98: c7:09:4c:c7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUATWn4AU1Cz72PvzTOcQXeGiNv58wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAyOVoX DTI3MDMwMzA2MTUyOVowMzExMC8GA1UEAxMoQkJCODc4RDlBM0FDRkFBNTIyQzY2 RUNEQTc0MzRCQ0M4RUM0ODYwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhnxU+5U+y+qr01BFCitrbv7zhxrr0Lnlo4AY2ua4bz332rok2bC5Q0MXd4 0kAd+mwrZ9STdOcwxkFpEnmKsp0xb8w27kv8hZd6kYWwLo11HMW3l0CvItgvN0rP FaxSuUWKcnZ+uo7bOewc5sbVB+c0ascyqm//9zQ75zPevhdLUPtEvtK6YjixeQGc zB4aIG08Jz7rxIFhpXj10c+YLYYeKterGHotGSex99WAbl+hAdDkM26xH0zIYAJE XV7pVWii3bUHjMCIcDDkzCVD0v6HO8yGf6oe+G6v2QU9NIV5uyD19rzlCgvmj5lo u883ke7NeQ/vY2BmvQbt+Fgtt3kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS7uHjZ o6z6pSLGbs2nQ0vMjsSGDDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDM2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK prIwDQYJKoZIhvcNAQELBQADggEBAHkg8a4Ohr0Tov2KedPkRVGK26YQwZ8gsO8c i4TCRjDbezrpJ0prZLTVQNJWxOVlQqJlRwFsLlL1j1BFUL+vIFjgeGMe1HQTmId6 ieDgMZO1M65EWaly/8JM63KMpKqw5Kf++oyQ8D8d5oYSsO9zLRGXZhtoU2OQ8T/+ e9EPRk7bEdQPG9PuabKaw5OhcyFonbkQC13J84F9M0b3CLuAfAW287NuAJxF+cBd +beuIVAiR4/CuVXum94yCX5VscF8P7oYG8+SKhxxHIV/0hSsOBEeFjI/uPQ2Cf83 ZtS0PZGPJvIs4cy7cGOvk1RUeG0HIv8+fdn0vYqrLp+EmMcJTMc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:49 2026 by rpki-client