$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144365.roa File: AS144365.roa (raw, json) Hash identifier: 2COvBMgzzKAcqm18Oydbj2Ko0YtC+ZHmO1RG0zsL2y4= Subject key identifier: 01:1F:D7:C8:F7:FF:93:B2:45:70:08:7F:77:56:83:A0:B0:A2:25:3A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 48F8BF0487E4C66E004858212C2175C4E7DF1D4C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144365.roa Signing time: Wed 04 Mar 2026 06:14:31 +0000 ROA not before: Wed 04 Mar 2026 06:09:31 +0000 ROA not after: Wed 03 Mar 2027 06:14:31 +0000 asID: 144365 IP address blocks: 240a:a6b3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:f8:bf:04:87:e4:c6:6e:00:48:58:21:2c:21:75:c4:e7:df:1d:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:31 2026 GMT Not After : Mar 3 06:14:31 2027 GMT Subject: CN=011FD7C8F7FF93B24570087F775683A0B0A2253A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:32:54:c7:82:3d:ef:91:e4:cb:ab:9c:cc:51: 98:1b:55:79:37:d0:4c:fa:e5:28:a9:53:e7:65:37: b7:fb:2d:34:72:b0:5f:b1:46:4a:e1:fb:63:06:c0: 8f:f9:86:3e:17:ad:58:13:37:4f:dd:3d:72:a4:ff: 41:be:84:77:9e:07:46:50:e8:c0:ed:8a:13:f5:23: 25:18:1b:16:71:56:2d:02:8f:4e:3d:6d:f5:0e:75: 0f:2e:7b:de:14:19:37:5a:c4:19:6d:db:9d:ae:75: 09:13:c3:a4:5f:04:65:06:04:6d:5c:e2:26:f9:11: a7:9a:cb:68:4a:3c:c2:3b:7a:70:f0:e6:a8:3a:08: a8:87:b5:e3:3c:e6:b0:26:1c:1a:5d:d3:20:17:b9: 2b:51:86:e9:e9:4c:1b:d3:03:1d:94:a2:a3:0d:43: ff:11:cf:41:c2:ae:c2:9c:86:30:83:e0:00:4a:95: 49:6a:82:14:dd:ec:d2:e7:b5:f1:4a:1c:6d:65:99: 40:b9:53:80:7f:8e:fa:5d:0c:83:ba:1c:06:94:b9: 3e:af:a2:15:2f:30:a2:fd:e7:a3:6e:cb:95:00:80: d9:9d:1d:2c:2d:45:ff:d8:1e:35:67:00:4a:17:d7: 81:f7:00:3c:1f:7b:ac:18:c5:36:67:ee:0a:51:7f: b7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1F:D7:C8:F7:FF:93:B2:45:70:08:7F:77:56:83:A0:B0:A2:25:3A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144365.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6b3::/32 Signature Algorithm: sha256WithRSAEncryption 59:58:d9:b5:ce:10:e8:c1:53:a8:4f:2b:17:2e:a6:a0:3f:3c: ad:b2:b0:13:3a:f3:98:ce:8e:a4:e4:73:1a:62:bc:84:8b:78: 75:eb:42:71:e4:c6:57:d6:07:19:bd:59:fc:b2:c3:b4:aa:16: e8:61:d6:42:9e:95:52:d7:52:e1:48:b1:c0:be:29:a9:81:70: 28:0c:30:83:0a:ef:9f:72:30:2e:ed:04:d1:3d:f1:5a:23:24: de:f5:a1:bf:1a:14:ff:5e:4c:dc:fd:3f:7f:b0:c1:71:dd:f1: 37:b3:eb:ca:e4:3f:5c:2c:ff:48:9b:65:a3:43:00:93:22:15: 35:e2:d5:cc:44:8f:dc:25:42:1a:3b:90:1d:0d:67:91:56:54: a4:4e:e8:22:dd:7a:29:5d:06:df:33:35:b3:f7:48:67:c6:b2: 1b:20:02:ed:47:db:da:0c:6d:8b:37:70:8a:a9:a0:01:6c:a7: d9:f9:47:bf:32:a9:d7:c3:0f:ac:c0:e4:23:20:ab:52:fb:83: 72:f0:fb:bb:6c:02:44:b5:9a:e7:50:1d:bd:98:b7:20:ee:be: 23:e2:90:9c:bd:18:a4:1d:ed:e0:f9:de:b2:15:d2:b5:00:a4: 19:f6:54:f7:6e:27:de:2f:58:13:a7:83:f5:59:de:19:be:37: 6f:72:58:28 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSPi/BIfkxm4ASFghLCF1xOffHUwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkzMVoX DTI3MDMwMzA2MTQzMVowMzExMC8GA1UEAxMoMDExRkQ3QzhGN0ZGOTNCMjQ1NzAw ODdGNzc1NjgzQTBCMEEyMjUzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAyVMeCPe+R5MurnMxRmBtVeTfQTPrlKKlT52U3t/stNHKwX7FGSuH7YwbA j/mGPhetWBM3T909cqT/Qb6Ed54HRlDowO2KE/UjJRgbFnFWLQKPTj1t9Q51Dy57 3hQZN1rEGW3bna51CRPDpF8EZQYEbVziJvkRp5rLaEo8wjt6cPDmqDoIqIe14zzm sCYcGl3TIBe5K1GG6elMG9MDHZSiow1D/xHPQcKuwpyGMIPgAEqVSWqCFN3s0ue1 8UocbWWZQLlTgH+O+l0Mg7ocBpS5Pq+iFS8wov3no27LlQCA2Z0dLC1F/9geNWcA ShfXgfcAPB97rBjFNmfuClF/t0kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQBH9fI 9/+TskVwCH93VoOgsKIlOjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDM2NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK prMwDQYJKoZIhvcNAQELBQADggEBAFlY2bXOEOjBU6hPKxcupqA/PK2ysBM685jO jqTkcxpivISLeHXrQnHkxlfWBxm9Wfyyw7SqFuhh1kKelVLXUuFIscC+KamBcCgM MIMK759yMC7tBNE98VojJN71ob8aFP9eTNz9P3+wwXHd8Tez68rkP1ws/0ibZaND AJMiFTXi1cxEj9wlQho7kB0NZ5FWVKRO6CLdeildBt8zNbP3SGfGshsgAu1H29oM bYs3cIqpoAFsp9n5R78yqdfDD6zA5CMgq1L7g3Lw+7tsAkS1mudQHb2YtyDuviPi kJy9GKQd7eD53rIV0rUApBn2VPduJ94vWBOng/VZ3hm+N29yWCg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:42 2026 by rpki-client