$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144383.roa File: AS144383.roa (raw, json) Hash identifier: JS37REXHj6yQP0LFhDBTLak+Cm5U3MZzJuX+UBANFN0= Subject key identifier: CD:32:5D:0C:7D:95:10:C3:E0:B6:4A:71:F0:60:F5:54:80:68:98:F5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3A153D13E4806932B49B1E169D7566CE90ECD132 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144383.roa Signing time: Wed 04 Mar 2026 06:15:07 +0000 ROA not before: Wed 04 Mar 2026 06:10:07 +0000 ROA not after: Wed 03 Mar 2027 06:15:07 +0000 asID: 144383 IP address blocks: 240a:a6c5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:15:3d:13:e4:80:69:32:b4:9b:1e:16:9d:75:66:ce:90:ec:d1:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:07 2026 GMT Not After : Mar 3 06:15:07 2027 GMT Subject: CN=CD325D0C7D9510C3E0B64A71F060F554806898F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fb:13:ea:d0:93:c3:ec:d2:d8:d9:f2:95:d7: 4a:24:b3:ad:82:0c:99:0e:01:d6:e7:df:de:07:37: c0:57:c7:b0:6a:39:e5:02:dd:4f:73:b0:ca:86:44: fa:6c:48:f1:a0:67:4b:02:0b:35:d5:76:c9:90:0f: 85:ab:9d:14:1a:37:85:bf:b3:48:f8:a7:db:de:69: 09:25:a7:33:43:0d:21:80:97:ba:8e:7a:be:0c:26: bf:2f:e0:ec:4c:7a:c1:e1:c6:0e:ba:3e:89:30:ad: d6:a8:75:79:a4:f3:22:da:6e:89:2a:f4:e2:ea:ea: 46:93:f9:dd:b1:2d:3c:67:43:59:19:fa:ec:a0:c4: 8d:07:38:59:e7:02:79:14:a6:ae:03:eb:20:1c:cf: ee:f2:9c:64:93:f1:c7:49:ef:6b:05:47:4d:20:14: cc:a9:f9:40:8b:b0:22:68:33:ed:a2:76:52:f8:29: fb:cf:71:f2:9f:74:81:e3:a2:b1:0c:03:a5:6c:c3: 1b:e3:8e:31:88:ac:81:62:9c:a8:d2:78:3c:5c:ff: 1b:cf:e3:a0:97:3a:d4:78:ca:08:62:08:30:d9:3f: cc:a9:98:ec:95:37:18:16:01:3e:d1:b9:06:ad:2b: ea:2a:fd:78:ca:39:29:1b:b2:d0:c3:e0:c3:6c:86: f9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:32:5D:0C:7D:95:10:C3:E0:B6:4A:71:F0:60:F5:54:80:68:98:F5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6c5::/32 Signature Algorithm: sha256WithRSAEncryption 86:0b:71:cc:40:99:15:95:16:04:e4:b1:68:bb:2e:2b:3b:df: 51:14:fd:39:fa:9c:2a:a3:09:75:ef:04:8b:33:9d:f1:4b:04: b7:50:4e:c6:df:5b:17:70:d9:ea:c9:f7:e2:a8:44:74:70:e9: 70:ad:82:0d:e9:8b:b8:b7:58:67:ee:cb:6f:e8:21:c6:d2:2a: 0c:67:03:b3:9e:e7:a1:a6:70:40:b1:a2:dd:f4:19:9e:cf:50: d8:3b:f4:e4:02:2b:3d:8c:42:59:07:5a:6a:10:0c:f0:b9:e1: 9e:c0:12:ba:0f:b3:38:17:a8:e2:bc:f1:76:27:49:9a:2a:00: 82:95:49:09:12:68:da:54:1c:42:23:62:67:31:b0:40:34:3f: 85:2b:0d:bf:d1:c6:de:49:f7:7c:5e:3d:3c:a1:02:fc:eb:ba: 29:83:b8:f1:bd:e8:5c:4b:68:37:86:60:48:61:f4:03:3b:d6: ed:21:98:1f:45:b5:05:9e:c4:58:fb:99:a5:15:13:e4:dc:c2: fe:e3:87:90:09:af:8b:09:71:14:f6:85:d3:71:5c:cd:7d:2d: 4f:fc:97:e9:7a:4d:8c:c9:fe:88:c3:03:e5:24:3f:6b:1f:c3: b4:2f:21:d9:cd:c0:62:f5:32:e0:9b:81:1f:f8:9e:7b:4b:7d: 28:b5:fc:ec -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOhU9E+SAaTK0mx4WnXVmzpDs0TIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAwN1oX DTI3MDMwMzA2MTUwN1owMzExMC8GA1UEAxMoQ0QzMjVEMEM3RDk1MTBDM0UwQjY0 QTcxRjA2MEY1NTQ4MDY4OThGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALH7E+rQk8Ps0tjZ8pXXSiSzrYIMmQ4B1uff3gc3wFfHsGo55QLdT3OwyoZE +mxI8aBnSwILNdV2yZAPhaudFBo3hb+zSPin295pCSWnM0MNIYCXuo56vgwmvy/g 7Ex6weHGDro+iTCt1qh1eaTzItpuiSr04urqRpP53bEtPGdDWRn67KDEjQc4WecC eRSmrgPrIBzP7vKcZJPxx0nvawVHTSAUzKn5QIuwImgz7aJ2Uvgp+89x8p90geOi sQwDpWzDG+OOMYisgWKcqNJ4PFz/G8/joJc61HjKCGIIMNk/zKmY7JU3GBYBPtG5 Bq0r6ir9eMo5KRuy0MPgw2yG+WcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTNMl0M fZUQw+C2SnHwYPVUgGiY9TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDM4My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK psUwDQYJKoZIhvcNAQELBQADggEBAIYLccxAmRWVFgTksWi7Lis731EU/Tn6nCqj CXXvBIsznfFLBLdQTsbfWxdw2erJ9+KoRHRw6XCtgg3pi7i3WGfuy2/oIcbSKgxn A7Oe56GmcECxot30GZ7PUNg79OQCKz2MQlkHWmoQDPC54Z7AEroPszgXqOK88XYn SZoqAIKVSQkSaNpUHEIjYmcxsEA0P4UrDb/Rxt5J93xePTyhAvzruimDuPG96FxL aDeGYEhh9AM71u0hmB9FtQWexFj7maUVE+Tcwv7jh5AJr4sJcRT2hdNxXM19LU/8 l+l6TYzJ/ojDA+UkP2sfw7QvIdnNwGL1MuCbgR/4nntLfSi1/Ow= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:34 2026 by rpki-client