$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144416.roa File: AS144416.roa (raw, json) Hash identifier: nlZDyAgWkujLmAUxNDJRWSsVs7+9b4r4V8kmyWbAiGY= Subject key identifier: F5:A8:56:0B:49:52:38:D9:32:DC:C4:E9:39:91:ED:BC:E7:11:89:04 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5D04F14C7A8CF594536DF061FCA80F8562CFBCE9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144416.roa Signing time: Wed 04 Mar 2026 06:15:25 +0000 ROA not before: Wed 04 Mar 2026 06:10:25 +0000 ROA not after: Wed 03 Mar 2027 06:15:25 +0000 asID: 144416 IP address blocks: 240a:a6e6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:04:f1:4c:7a:8c:f5:94:53:6d:f0:61:fc:a8:0f:85:62:cf:bc:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:25 2026 GMT Not After : Mar 3 06:15:25 2027 GMT Subject: CN=F5A8560B495238D932DCC4E93991EDBCE7118904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:98:7e:62:a0:b8:4f:fb:c2:b2:7c:3e:60:da: 27:d3:6e:34:57:53:02:ed:f7:af:25:43:60:5d:b0: be:25:fc:4f:33:de:8b:da:13:36:e9:f3:c7:d2:df: 87:92:1d:ca:0a:f4:46:0e:c6:fb:f9:b0:bc:33:0b: 23:70:18:86:1b:b0:16:e7:81:f9:7a:3c:73:57:0b: 9c:bd:13:74:29:ca:3c:8d:0a:a3:de:f3:5f:fb:92: b3:d3:8c:9e:74:d9:11:1a:63:7c:8d:73:fe:14:30: 95:28:38:35:7a:13:6a:44:8e:e0:9a:72:6c:1a:83: 51:3f:9d:48:f8:df:59:da:b5:be:fd:aa:e2:86:6a: 15:a0:51:96:0d:db:3b:8e:c3:17:38:b6:7a:30:5f: b8:4c:38:05:18:9c:5e:25:ad:48:b7:ef:b2:18:98: df:8e:08:9b:61:9e:0f:81:84:4f:1b:86:ed:6e:e4: 5f:f1:67:f6:a6:e5:cb:8d:25:88:fe:83:6d:82:32: de:61:c4:dd:39:11:33:25:47:10:cb:de:d1:b8:c7: 21:6c:97:ff:fa:04:e2:d6:92:c8:a6:b3:b2:64:de: 4c:12:a8:c2:e6:d7:ab:25:58:4e:82:10:e5:08:be: ff:f1:a1:be:5d:19:a8:76:43:04:bb:d2:9f:4e:01: cd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A8:56:0B:49:52:38:D9:32:DC:C4:E9:39:91:ED:BC:E7:11:89:04 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144416.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6e6::/32 Signature Algorithm: sha256WithRSAEncryption 16:f0:57:c5:0b:75:73:38:5e:42:5b:31:87:ba:62:5d:97:18: 8a:43:73:30:13:c2:74:7c:ac:c0:37:fc:a0:82:7c:7f:8e:7f: 56:19:3a:84:88:c4:14:dc:3c:a7:b3:75:b0:58:86:10:82:07: 8f:cf:69:8b:47:8a:0d:43:0c:17:f4:10:a4:1b:fb:29:88:c1: 83:ea:f4:63:f3:10:4a:1c:56:8b:78:63:7b:78:57:51:bb:24: d6:dd:d7:a9:35:49:45:2a:db:7a:34:47:89:2a:fa:a7:18:1c: b7:80:13:11:77:02:9e:59:b6:5d:5b:6b:36:85:9e:7c:75:b4: 52:96:61:93:00:eb:0b:86:84:35:82:4a:b5:14:69:13:34:1f: 9f:27:5e:0e:52:03:77:5e:ea:2f:7f:dd:af:6f:0d:1f:5b:49: 3b:b9:bd:2a:52:d6:a7:67:34:a7:e9:7b:03:b3:ea:32:4b:f6: a9:69:72:3e:9e:fb:3d:d7:1b:26:74:68:b7:da:e4:3a:9a:a6: 0c:dd:a3:2b:49:74:a8:06:57:78:e9:fd:16:91:b0:b1:28:16: 1f:3e:49:d8:6c:e7:13:17:28:15:2a:93:97:19:d6:68:e1:68: 64:f4:d5:f1:fa:fc:a7:c8:79:4b:27:77:33:69:35:83:0d:49: 4a:bc:4f:75 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXQTxTHqM9ZRTbfBh/KgPhWLPvOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAyNVoX DTI3MDMwMzA2MTUyNVowMzExMC8GA1UEAxMoRjVBODU2MEI0OTUyMzhEOTMyREND NEU5Mzk5MUVEQkNFNzExODkwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPqYfmKguE/7wrJ8PmDaJ9NuNFdTAu33ryVDYF2wviX8TzPei9oTNunzx9Lf h5Idygr0Rg7G+/mwvDMLI3AYhhuwFueB+Xo8c1cLnL0TdCnKPI0Ko97zX/uSs9OM nnTZERpjfI1z/hQwlSg4NXoTakSO4JpybBqDUT+dSPjfWdq1vv2q4oZqFaBRlg3b O47DFzi2ejBfuEw4BRicXiWtSLfvshiY344Im2GeD4GETxuG7W7kX/Fn9qbly40l iP6DbYIy3mHE3TkRMyVHEMve0bjHIWyX//oE4taSyKazsmTeTBKowubXqyVYToIQ 5Qi+//Ghvl0ZqHZDBLvSn04BzbkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT1qFYL SVI42TLcxOk5ke285xGJBDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK puYwDQYJKoZIhvcNAQELBQADggEBABbwV8ULdXM4XkJbMYe6Yl2XGIpDczATwnR8 rMA3/KCCfH+Of1YZOoSIxBTcPKezdbBYhhCCB4/PaYtHig1DDBf0EKQb+ymIwYPq 9GPzEEocVot4Y3t4V1G7JNbd16k1SUUq23o0R4kq+qcYHLeAExF3Ap5Ztl1bazaF nnx1tFKWYZMA6wuGhDWCSrUUaRM0H58nXg5SA3de6i9/3a9vDR9bSTu5vSpS1qdn NKfpewOz6jJL9qlpcj6e+z3XGyZ0aLfa5DqapgzdoytJdKgGV3jp/RaRsLEoFh8+ Sdhs5xMXKBUqk5cZ1mjhaGT01fH6/KfIeUsndzNpNYMNSUq8T3U= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:05 2026 by rpki-client