$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144418.roa File: AS144418.roa (raw, json) Hash identifier: 2N1cSxWCYtnJukFRgM2gPwr8h+K2bpwmhZMPflgxvSM= Subject key identifier: 28:AB:D5:55:06:91:34:88:8A:C6:B1:30:7C:49:56:D9:1C:B7:49:F7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 04EC400CA219E5437181FE8BC91119B23B121DAC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144418.roa Signing time: Wed 04 Mar 2026 06:15:23 +0000 ROA not before: Wed 04 Mar 2026 06:10:23 +0000 ROA not after: Wed 03 Mar 2027 06:15:23 +0000 asID: 144418 IP address blocks: 240a:a6e8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:ec:40:0c:a2:19:e5:43:71:81:fe:8b:c9:11:19:b2:3b:12:1d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:23 2026 GMT Not After : Mar 3 06:15:23 2027 GMT Subject: CN=28ABD555069134888AC6B1307C4956D91CB749F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:13:3e:7e:30:e8:43:a3:2f:91:c9:a6:b5:0c: 9c:b1:81:f4:87:46:b7:d1:8a:15:5c:c0:ae:64:70: 32:39:bf:75:82:c8:46:7f:0c:86:f4:ad:1d:7f:4e: 29:b7:0d:63:8d:a9:fc:55:66:84:9d:46:5e:7a:e0: ca:6e:03:6b:a3:8f:35:15:0b:59:91:0d:4b:c9:79: fc:1b:3e:40:58:e9:18:fe:a2:3f:26:7c:94:79:ba: 6a:5c:c7:8c:d9:b5:cc:c3:92:83:be:20:c9:4f:64: 08:85:97:44:30:b7:22:1e:77:5d:da:55:a7:e6:e7: 8e:1e:35:6a:cc:b5:f8:0d:e8:0d:05:6f:43:2b:ed: c7:1b:83:99:6a:ed:df:9c:6e:17:29:03:b4:50:1d: e6:45:46:d7:b6:6d:5c:08:ac:6d:32:43:9d:f6:e7: 3d:35:0d:aa:a8:54:e1:b3:bd:c9:e2:48:b2:b0:ab: 39:9a:f0:7c:7d:4d:6a:7f:ec:d3:6a:25:e2:88:db: 7b:46:33:1c:c9:6b:8d:87:e6:37:4e:af:7c:cc:63: f6:83:eb:3c:a2:c8:b7:63:76:e9:2d:86:10:9c:a0: 4d:7b:83:b1:86:41:70:3f:15:46:da:99:4f:ef:08: 4a:c3:c2:10:62:68:64:08:10:0f:9f:d8:fc:9f:89: 50:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AB:D5:55:06:91:34:88:8A:C6:B1:30:7C:49:56:D9:1C:B7:49:F7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144418.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6e8::/32 Signature Algorithm: sha256WithRSAEncryption ae:73:de:7e:03:a0:06:c8:8e:ee:2a:bd:1f:be:c5:84:15:98: 85:99:b1:c4:5f:2d:be:7c:f4:98:44:0a:ef:20:7d:c3:2e:41: c2:5e:0a:83:05:cf:cf:e5:12:d4:a7:20:2b:31:32:d4:e4:2b: f5:91:4d:7f:8a:36:14:ac:04:26:06:d8:22:87:6a:91:24:99: 0e:92:52:e9:f4:34:3b:c3:1e:23:01:39:22:88:c7:fb:cc:c4: 93:7a:e9:e4:17:97:f8:de:59:f8:ed:4f:4c:5a:3d:f2:8b:72: a9:69:74:d9:32:b0:ea:17:b5:05:78:d9:a9:e5:cb:95:25:15: e4:97:f9:fd:6e:27:25:f9:0f:d0:4a:af:fe:45:4a:cf:60:3f: e1:3b:98:81:45:24:4f:d4:fb:17:88:36:10:a8:b0:0b:16:1c: 75:15:31:19:10:0c:ec:e9:74:fe:33:56:32:c0:a1:38:52:44: 43:8e:86:a0:33:48:29:5b:dd:35:91:c6:49:6c:b4:cb:cc:30: 5c:fc:8f:5b:5b:06:3b:44:9e:ff:0c:40:0a:00:97:d2:46:7a: 88:45:3d:70:fc:9d:24:65:5b:b5:46:4d:e7:5e:c4:f0:f8:99: c8:ee:95:f8:f6:75:14:62:d4:6b:2e:29:71:83:f4:b2:e2:19: 16:f7:79:02 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBOxADKIZ5UNxgf6LyREZsjsSHawwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAyM1oX DTI3MDMwMzA2MTUyM1owMzExMC8GA1UEAxMoMjhBQkQ1NTUwNjkxMzQ4ODhBQzZC MTMwN0M0OTU2RDkxQ0I3NDlGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoTPn4w6EOjL5HJprUMnLGB9IdGt9GKFVzArmRwMjm/dYLIRn8MhvStHX9O KbcNY42p/FVmhJ1GXnrgym4Da6OPNRULWZENS8l5/Bs+QFjpGP6iPyZ8lHm6alzH jNm1zMOSg74gyU9kCIWXRDC3Ih53XdpVp+bnjh41asy1+A3oDQVvQyvtxxuDmWrt 35xuFykDtFAd5kVG17ZtXAisbTJDnfbnPTUNqqhU4bO9yeJIsrCrOZrwfH1Nan/s 02ol4ojbe0YzHMlrjYfmN06vfMxj9oPrPKLIt2N26S2GEJygTXuDsYZBcD8VRtqZ T+8ISsPCEGJoZAgQD5/Y/J+JUJkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQoq9VV BpE0iIrGsTB8SVbZHLdJ9zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQxOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pugwDQYJKoZIhvcNAQELBQADggEBAK5z3n4DoAbIju4qvR++xYQVmIWZscRfLb58 9JhECu8gfcMuQcJeCoMFz8/lEtSnICsxMtTkK/WRTX+KNhSsBCYG2CKHapEkmQ6S Uun0NDvDHiMBOSKIx/vMxJN66eQXl/jeWfjtT0xaPfKLcqlpdNkysOoXtQV42anl y5UlFeSX+f1uJyX5D9BKr/5FSs9gP+E7mIFFJE/U+xeINhCosAsWHHUVMRkQDOzp dP4zVjLAoThSREOOhqAzSClb3TWRxklstMvMMFz8j1tbBjtEnv8MQAoAl9JGeohF PXD8nSRlW7VGTedexPD4mcjulfj2dRRi1GsuKXGD9LLiGRb3eQI= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:21 2026 by rpki-client