$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144369.roa File: AS144369.roa (raw, json) Hash identifier: Z78Yuyuok2rlPLC85+ppsdK1bkMRftkLyYaGxDRRfio= Subject key identifier: CF:65:0A:68:24:C4:F8:EF:7D:A7:07:73:C5:B4:76:95:66:33:A6:8A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0BBF5F583FA31C29BAB2B665D35240CF00DF366C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144369.roa Signing time: Wed 04 Mar 2026 06:13:49 +0000 ROA not before: Wed 04 Mar 2026 06:08:49 +0000 ROA not after: Wed 03 Mar 2027 06:13:49 +0000 asID: 144369 IP address blocks: 240a:a6b7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:bf:5f:58:3f:a3:1c:29:ba:b2:b6:65:d3:52:40:cf:00:df:36:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:49 2026 GMT Not After : Mar 3 06:13:49 2027 GMT Subject: CN=CF650A6824C4F8EF7DA70773C5B476956633A68A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:07:3f:84:b7:2b:5d:44:0a:ba:8a:c3:9e:d3: 9f:92:7b:76:db:ec:6d:13:0e:96:12:e5:08:da:c4: d0:90:b7:9d:48:67:ed:45:8f:da:d6:82:c0:f7:53: 5d:85:4f:9b:6c:5f:e5:66:fa:36:47:c2:b7:99:d1: b9:c6:74:4e:d7:ae:e3:69:06:3c:40:82:3c:ff:02: f2:f1:ab:1d:f3:b6:96:d3:1a:c1:13:45:41:0a:0f: 81:73:20:73:da:b6:4a:52:fb:c8:da:0c:39:ae:86: 10:db:07:d7:05:66:0a:b6:51:cd:cd:d5:33:d3:a6: 79:90:52:f7:3c:bc:e6:ad:4d:06:51:d5:b5:8f:01: ce:5c:65:76:d3:33:e3:c6:27:78:38:15:77:cc:38: ba:66:6b:3a:21:f6:c9:38:5f:c5:45:02:ce:7d:49: 7b:ad:d3:6f:4b:16:af:b9:28:92:70:75:95:f8:de: 8c:d4:cd:f6:26:d2:80:a9:0a:31:76:98:69:28:9a: 48:c8:19:da:d2:73:a0:88:ec:21:a2:b9:fb:44:0d: c5:35:dd:be:64:a8:bd:1d:74:f8:b7:f2:e3:1d:05: f3:86:e3:79:4f:43:c8:2f:fe:c8:cb:8a:25:55:ba: 08:ab:e9:ba:52:c1:45:91:84:9b:6a:98:32:11:4b: 51:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:65:0A:68:24:C4:F8:EF:7D:A7:07:73:C5:B4:76:95:66:33:A6:8A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144369.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6b7::/32 Signature Algorithm: sha256WithRSAEncryption b2:e3:ab:51:ff:64:0f:70:7a:25:44:80:a3:fe:35:86:e6:53: 03:c2:f4:b5:29:18:e2:bb:35:4a:99:28:68:35:92:52:0f:31: 5a:1a:3b:97:00:96:0d:ef:34:7c:64:d1:11:8b:b1:ea:30:25: db:ee:d1:65:fb:99:da:20:eb:3a:cd:1b:0c:7a:79:7d:e7:6e: b5:e6:eb:ec:b1:24:06:12:30:8e:2d:c6:11:5e:1c:4a:00:be: 50:3d:c9:1f:ea:31:fb:20:ed:66:9c:16:90:1c:de:a1:3f:58: 56:e6:0a:e5:d0:44:12:61:26:29:4d:ec:7c:4f:76:b0:d7:05: b6:0d:a3:7a:ea:af:d0:a4:2f:2c:b2:26:56:e4:7a:dc:d7:4d: 13:f5:a9:48:06:f4:f3:93:4b:a7:47:6c:b1:0d:17:75:86:f3: 7d:90:19:cc:ec:08:c7:e9:2f:00:bd:29:28:8e:8d:8f:cb:ca: 07:4c:55:5e:f2:0c:75:fb:37:4c:99:8d:92:63:7a:2e:5c:81: 29:32:d7:c9:38:0d:06:6c:ea:c3:87:59:30:7c:a8:28:43:29: cc:c4:1f:ac:8e:36:4e:7b:9c:c4:e7:36:48:05:fb:9b:bf:b5: da:39:46:e6:25:b8:56:11:84:39:ab:99:7e:94:87:aa:8e:e9: d9:8c:fd:4f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUC79fWD+jHCm6srZl01JAzwDfNmwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg0OVoX DTI3MDMwMzA2MTM0OVowMzExMC8GA1UEAxMoQ0Y2NTBBNjgyNEM0RjhFRjdEQTcw NzczQzVCNDc2OTU2NjMzQTY4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwHP4S3K11ECrqKw57Tn5J7dtvsbRMOlhLlCNrE0JC3nUhn7UWP2taCwPdT XYVPm2xf5Wb6NkfCt5nRucZ0Tteu42kGPECCPP8C8vGrHfO2ltMawRNFQQoPgXMg c9q2SlL7yNoMOa6GENsH1wVmCrZRzc3VM9OmeZBS9zy85q1NBlHVtY8BzlxldtMz 48YneDgVd8w4umZrOiH2yThfxUUCzn1Je63Tb0sWr7koknB1lfjejNTN9ibSgKkK MXaYaSiaSMgZ2tJzoIjsIaK5+0QNxTXdvmSovR10+Lfy4x0F84bjeU9DyC/+yMuK JVW6CKvpulLBRZGEm2qYMhFLUZkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTPZQpo JMT4732nB3PFtHaVZjOmijAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDM2OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK prcwDQYJKoZIhvcNAQELBQADggEBALLjq1H/ZA9weiVEgKP+NYbmUwPC9LUpGOK7 NUqZKGg1klIPMVoaO5cAlg3vNHxk0RGLseowJdvu0WX7mdog6zrNGwx6eX3nbrXm 6+yxJAYSMI4txhFeHEoAvlA9yR/qMfsg7WacFpAc3qE/WFbmCuXQRBJhJilN7HxP drDXBbYNo3rqr9CkLyyyJlbketzXTRP1qUgG9POTS6dHbLENF3WG832QGczsCMfp LwC9KSiOjY/LygdMVV7yDHX7N0yZjZJjei5cgSky18k4DQZs6sOHWTB8qChDKczE H6yONk57nMTnNkgF+5u/tdo5RuYluFYRhDmrmX6Uh6qO6dmM/U8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:12 2026 by rpki-client