$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144374.roa File: AS144374.roa (raw, json) Hash identifier: eMkkIzvZM9J6BR7jbtvE4bVfcQrrey88mtCMgLwp04U= Subject key identifier: 2E:B1:4D:F1:F1:16:B5:E0:5D:BB:EC:F2:15:E3:4B:69:04:91:20:D5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4A5DED9F5FE29312059DE93418D2E08D917B0960 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144374.roa Signing time: Wed 04 Mar 2026 06:13:55 +0000 ROA not before: Wed 04 Mar 2026 06:08:55 +0000 ROA not after: Wed 03 Mar 2027 06:13:55 +0000 asID: 144374 IP address blocks: 240a:a6bc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:5d:ed:9f:5f:e2:93:12:05:9d:e9:34:18:d2:e0:8d:91:7b:09:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:55 2026 GMT Not After : Mar 3 06:13:55 2027 GMT Subject: CN=2EB14DF1F116B5E05DBBECF215E34B69049120D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:40:64:4b:87:9d:7b:6a:b3:26:3d:e3:fa:81: 85:01:85:e6:2a:4b:45:8b:5a:98:2c:8b:6b:8e:cc: d8:7a:ae:a2:48:23:0c:33:46:4c:7d:78:de:fb:89: e6:92:68:db:a4:aa:e4:15:5f:87:b6:0b:50:9c:aa: 1c:a6:1b:c4:c0:3b:38:7a:f7:b4:a1:75:2d:ce:ce: 0c:7c:e2:90:1e:4e:82:3f:4b:da:54:84:c6:22:82: fc:79:50:26:17:26:33:62:5b:1b:2e:89:cb:9d:02: e5:24:aa:7e:46:69:b9:fb:ab:62:22:2d:44:f3:34: d7:08:00:62:27:24:e3:52:2e:a1:45:90:09:d4:ca: 3c:68:00:75:2a:6e:07:89:f6:2c:8c:cc:90:a6:96: 72:8e:29:d6:04:a9:1b:5f:05:39:eb:dd:51:2e:5d: cc:7e:cd:09:e5:1f:21:37:02:de:6c:d7:10:51:f6: 0c:f9:7f:69:19:71:86:fe:76:35:b1:64:47:0f:c3: 7a:f5:4f:df:db:48:8f:11:44:ae:15:06:8a:30:dd: f6:b5:cb:7e:ba:e6:00:d4:50:23:37:ab:da:e8:23: f1:d2:d9:20:28:e1:7b:5f:56:b5:0d:4c:58:4a:19: fe:38:0f:e0:fc:e7:c4:a8:d7:1b:59:49:07:75:b2: 35:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B1:4D:F1:F1:16:B5:E0:5D:BB:EC:F2:15:E3:4B:69:04:91:20:D5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6bc::/32 Signature Algorithm: sha256WithRSAEncryption 68:c0:ed:55:f4:80:40:e1:55:ae:94:ab:84:6a:87:07:d5:c5: d4:32:18:31:ea:0d:6a:69:16:e1:51:a3:9e:9d:2e:e2:c7:f9: fd:04:7f:01:2f:61:42:e5:e6:1d:95:56:f0:90:bc:46:75:59: 07:85:38:90:e5:08:96:a7:ff:72:9f:35:9d:e1:67:33:18:4c: c5:b0:e5:02:dd:60:2c:fd:6b:ab:5b:8b:a8:4e:da:b6:30:04: ce:d0:65:69:57:46:75:5d:20:28:80:71:7e:62:15:91:6b:e9: 1c:63:09:17:09:d9:31:85:83:c9:d9:79:6a:35:54:31:7e:7e: 60:21:2f:d4:6f:46:47:b1:f5:8a:14:ec:6f:85:12:88:a7:7b: 2d:63:40:3e:59:46:ef:f2:39:87:b9:7d:99:c8:cf:31:cf:41: da:11:64:26:48:13:e5:e7:71:c1:bf:f7:08:25:05:3d:42:55: a6:5b:ee:5b:0a:73:dc:3f:a6:7c:cb:7c:ac:b8:d4:5c:da:1c: 53:37:b4:98:3c:af:f5:f4:39:0b:ea:d0:ce:8c:01:b8:24:9e: 04:b9:84:44:ca:74:ca:e4:5b:16:2f:93:5b:1f:1c:1d:be:1f: 28:c1:7e:14:8e:79:86:83:90:cf:45:b6:f6:3c:a9:ad:7d:f2: 4e:39:28:a4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSl3tn1/ikxIFnek0GNLgjZF7CWAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg1NVoX DTI3MDMwMzA2MTM1NVowMzExMC8GA1UEAxMoMkVCMTRERjFGMTE2QjVFMDVEQkJF Q0YyMTVFMzRCNjkwNDkxMjBENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOZAZEuHnXtqsyY94/qBhQGF5ipLRYtamCyLa47M2HquokgjDDNGTH143vuJ 5pJo26Sq5BVfh7YLUJyqHKYbxMA7OHr3tKF1Lc7ODHzikB5Ogj9L2lSExiKC/HlQ JhcmM2JbGy6Jy50C5SSqfkZpufurYiItRPM01wgAYick41IuoUWQCdTKPGgAdSpu B4n2LIzMkKaWco4p1gSpG18FOevdUS5dzH7NCeUfITcC3mzXEFH2DPl/aRlxhv52 NbFkRw/DevVP39tIjxFErhUGijDd9rXLfrrmANRQIzer2ugj8dLZICjhe19WtQ1M WEoZ/jgP4PznxKjXG1lJB3WyNR8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQusU3x 8Ra14F277PIV40tpBJEg1TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDM3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK prwwDQYJKoZIhvcNAQELBQADggEBAGjA7VX0gEDhVa6Uq4RqhwfVxdQyGDHqDWpp FuFRo56dLuLH+f0EfwEvYULl5h2VVvCQvEZ1WQeFOJDlCJan/3KfNZ3hZzMYTMWw 5QLdYCz9a6tbi6hO2rYwBM7QZWlXRnVdICiAcX5iFZFr6RxjCRcJ2TGFg8nZeWo1 VDF+fmAhL9RvRkex9YoU7G+FEoiney1jQD5ZRu/yOYe5fZnIzzHPQdoRZCZIE+Xn ccG/9wglBT1CVaZb7lsKc9w/pnzLfKy41FzaHFM3tJg8r/X0OQvq0M6MAbgkngS5 hETKdMrkWxYvk1sfHB2+HyjBfhSOeYaDkM9FtvY8qa198k45KKQ= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:22 2026 by rpki-client