$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144417.roa File: AS144417.roa (raw, json) Hash identifier: 3NIkpjivCxPcG1M93h9xEe3NXASXPWVxlLHKgUaDmss= Subject key identifier: 41:A3:61:94:C5:77:D7:DD:FB:5B:C1:D0:FA:AB:30:7B:FA:EF:84:4B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7510930CA080F4A2B1CEC26F9239E5A511A32397 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144417.roa Signing time: Wed 04 Mar 2026 06:14:11 +0000 ROA not before: Wed 04 Mar 2026 06:09:11 +0000 ROA not after: Wed 03 Mar 2027 06:14:11 +0000 asID: 144417 IP address blocks: 240a:a6e7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:10:93:0c:a0:80:f4:a2:b1:ce:c2:6f:92:39:e5:a5:11:a3:23:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:11 2026 GMT Not After : Mar 3 06:14:11 2027 GMT Subject: CN=41A36194C577D7DDFB5BC1D0FAAB307BFAEF844B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:01:30:bd:31:11:45:5f:8c:f2:b6:03:dc: ba:57:12:03:12:5e:fe:fc:3a:07:a0:03:ca:0e:13: cf:55:8b:66:32:0c:9d:ad:e6:05:70:0a:dc:f1:d2: 87:13:99:ce:50:ae:d5:50:3f:24:35:31:51:0d:4e: 35:df:0b:7f:a4:2c:41:fd:38:9b:0d:2c:27:7f:4d: 80:5e:2c:36:f0:44:be:f2:fa:3c:5e:5c:95:39:c6: 96:d1:29:f4:bf:e2:77:dd:0e:d5:c1:ca:be:15:ec: b8:1c:d3:72:01:f9:8e:a0:ce:ef:ff:01:66:e9:a9: 5b:7f:c1:f0:28:46:35:87:61:18:e1:b3:b2:a1:13: d8:60:13:a7:9e:74:55:fb:eb:9d:d0:bd:8b:3d:56: 14:e0:7e:4a:6b:23:a6:4f:ce:63:5a:56:79:ae:74: 56:6c:d0:50:4d:82:08:7e:90:33:62:36:57:6c:4e: 6c:e5:f8:37:04:b8:76:21:11:98:f2:c3:70:d1:fa: 66:25:2f:61:1a:1c:bf:ca:70:dc:a4:94:f4:88:1d: eb:47:98:ff:ef:d6:f7:ed:76:b3:d4:1a:7c:03:db: bd:84:f3:69:2b:df:81:bb:ea:b3:b3:fe:64:7c:ba: 9a:bd:3f:25:ca:00:72:08:2d:65:12:81:3c:02:85: d6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A3:61:94:C5:77:D7:DD:FB:5B:C1:D0:FA:AB:30:7B:FA:EF:84:4B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144417.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6e7::/32 Signature Algorithm: sha256WithRSAEncryption 70:25:f5:c1:2a:85:a0:6f:18:80:27:e9:51:91:62:1a:d5:4d: 47:de:a5:3a:16:a7:1d:96:98:12:ed:70:b2:7c:80:47:59:50: ad:40:04:dc:aa:73:a2:44:2e:a2:25:69:b9:92:30:8e:11:76: 60:11:d8:39:bc:04:c5:0d:78:2c:ec:0f:04:12:c0:c3:3f:ab: cb:69:4b:28:56:fc:e6:53:cb:09:e5:15:5b:a2:bd:f4:a3:7c: 13:50:ad:c3:b5:79:b9:b9:1d:db:67:e4:c2:45:1c:ad:d9:26: a8:64:86:87:f8:14:81:a3:b1:00:41:30:9f:93:59:34:3e:01: 59:85:1b:3f:a8:fa:31:79:01:9e:70:45:ed:45:b3:f7:d6:3a: e1:f0:83:97:a8:ae:70:eb:bb:98:dd:80:89:0f:45:74:a5:a0: 91:42:28:b0:42:5c:53:1a:b2:17:f9:76:d7:43:f9:fb:6c:45: 3e:6f:5e:d6:77:ed:f9:03:41:4e:db:ab:aa:1c:71:40:74:04: 9f:c0:ac:98:b0:71:d2:82:d8:ba:60:5d:fd:0d:5c:9f:23:73: 9c:57:d7:f5:35:03:16:4c:ba:19:47:48:88:1a:88:1a:ef:1f: 2d:c6:d4:c3:b1:70:73:af:83:12:18:eb:c7:04:35:71:94:6f: 73:10:60:5d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdRCTDKCA9KKxzsJvkjnlpRGjI5cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkxMVoX DTI3MDMwMzA2MTQxMVowMzExMC8GA1UEAxMoNDFBMzYxOTRDNTc3RDdEREZCNUJD MUQwRkFBQjMwN0JGQUVGODQ0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALd/ATC9MRFFX4zytgPculcSAxJe/vw6B6ADyg4Tz1WLZjIMna3mBXAK3PHS hxOZzlCu1VA/JDUxUQ1ONd8Lf6QsQf04mw0sJ39NgF4sNvBEvvL6PF5clTnGltEp 9L/id90O1cHKvhXsuBzTcgH5jqDO7/8BZumpW3/B8ChGNYdhGOGzsqET2GATp550 VfvrndC9iz1WFOB+Smsjpk/OY1pWea50VmzQUE2CCH6QM2I2V2xObOX4NwS4diER mPLDcNH6ZiUvYRocv8pw3KSU9Igd60eY/+/W9+12s9QafAPbvYTzaSvfgbvqs7P+ ZHy6mr0/JcoAcggtZRKBPAKF1sMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRBo2GU xXfX3ftbwdD6qzB7+u+ESzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQxNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pucwDQYJKoZIhvcNAQELBQADggEBAHAl9cEqhaBvGIAn6VGRYhrVTUfepToWpx2W mBLtcLJ8gEdZUK1ABNyqc6JELqIlabmSMI4RdmAR2Dm8BMUNeCzsDwQSwMM/q8tp SyhW/OZTywnlFVuivfSjfBNQrcO1ebm5Hdtn5MJFHK3ZJqhkhof4FIGjsQBBMJ+T WTQ+AVmFGz+o+jF5AZ5wRe1Fs/fWOuHwg5eornDru5jdgIkPRXSloJFCKLBCXFMa shf5dtdD+ftsRT5vXtZ37fkDQU7bq6occUB0BJ/ArJiwcdKC2LpgXf0NXJ8jc5xX 1/U1AxZMuhlHSIgaiBrvHy3G1MOxcHOvgxIY68cENXGUb3MQYF0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:37 2026 by rpki-client