$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144434.roa File: AS144434.roa (raw, json) Hash identifier: nkkpVnmrlrEyCuQPvndA0Szz5u0PIz7Wmc2AI/z33aY= Subject key identifier: 5E:D1:AD:DA:D0:4C:81:79:4F:0D:67:A4:D6:EE:0D:92:18:23:BC:2D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1274127A673FB301A400D60CE37D0226D5ED9511 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144434.roa Signing time: Wed 04 Mar 2026 06:12:40 +0000 ROA not before: Wed 04 Mar 2026 06:07:40 +0000 ROA not after: Wed 03 Mar 2027 06:12:40 +0000 asID: 144434 IP address blocks: 240a:a6f8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:74:12:7a:67:3f:b3:01:a4:00:d6:0c:e3:7d:02:26:d5:ed:95:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:40 2026 GMT Not After : Mar 3 06:12:40 2027 GMT Subject: CN=5ED1ADDAD04C81794F0D67A4D6EE0D921823BC2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:92:7b:07:76:4c:ee:a5:03:71:9e:7d:d9:c7: 84:b8:d8:c2:0f:37:1e:fa:18:04:7d:f1:de:63:0e: 20:04:74:31:fc:41:2c:7d:07:27:89:46:4d:51:57: 3e:94:a6:e1:a9:74:26:b5:6a:6c:ed:2b:d4:62:6c: b9:81:6f:8a:74:bc:27:b5:cf:d0:4d:69:79:fc:94: bb:55:15:18:f6:fa:9d:d0:69:58:e2:ad:df:20:5c: b6:a7:d7:ab:1c:83:e7:5d:0d:0b:14:e2:e2:5f:ac: 1a:2d:96:b1:2c:b9:bd:84:2b:dc:34:51:f1:36:b0: 25:e4:d1:70:c6:9f:c3:a5:4c:21:dc:d8:e9:1a:a8: 6e:ab:0e:ef:5f:1f:19:6a:b8:3f:5f:4b:77:2e:54: f9:bc:d2:84:64:39:68:fa:d5:0b:63:e6:0c:ff:d8: 1b:28:7a:66:9c:52:18:69:d3:df:b7:ad:79:57:38: 4b:e1:63:2c:ef:ef:52:db:ed:fb:a4:89:a7:03:34: ed:ab:45:12:69:c3:ec:86:f4:07:6a:5c:78:f6:cf: 62:3f:27:c9:f4:5b:3d:5e:11:38:79:d4:74:6c:15: e6:29:cb:51:e8:5a:c5:b0:1e:0f:22:fd:09:d2:c9: 20:b1:2c:36:b8:d7:1c:de:4d:99:22:c3:53:f7:73: 1b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D1:AD:DA:D0:4C:81:79:4F:0D:67:A4:D6:EE:0D:92:18:23:BC:2D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6f8::/32 Signature Algorithm: sha256WithRSAEncryption 00:23:f6:34:cb:03:cf:32:85:f7:bc:ab:27:7a:70:63:2e:10: e5:ae:f3:0f:8b:53:35:0e:0e:61:65:bc:8c:90:b2:42:c9:f8: 66:10:79:ab:2f:26:ab:19:fa:4b:85:3a:33:ce:02:f1:9c:75: 08:4f:91:e8:7a:51:3c:fa:12:b0:5a:ca:57:8d:83:b3:16:11: d6:44:d3:b4:b2:a1:31:24:b6:cf:1a:e4:8d:71:fd:77:9c:55: 5b:91:09:11:22:6a:79:bf:2c:07:3a:e2:ef:47:e0:d7:e3:15: 2b:25:a6:2f:45:9f:4d:da:ba:4d:8c:ea:92:64:f2:ab:a3:ee: 63:0e:4d:4e:7f:2e:e1:9b:71:b7:e3:2f:25:90:2e:10:d3:1e: 63:81:77:5f:20:6a:32:fd:20:53:f9:c8:66:6a:80:17:b0:5f: 84:21:5a:e0:37:4d:16:1b:91:56:61:83:c6:79:80:89:fb:9e: fb:aa:41:87:5a:e8:48:d4:d2:85:85:05:c0:b9:ec:7f:6f:c3: 04:0f:6c:98:08:61:5d:d7:63:9e:47:11:71:a6:ac:c2:3b:11: ba:34:2c:d7:09:dd:92:d9:ee:3d:14:52:b6:e2:aa:2f:98:b6: f8:70:d0:97:1a:34:01:69:a2:ad:63:8b:8a:b8:93:3a:9c:cd: ac:3a:c7:e3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUEnQSemc/swGkANYM430CJtXtlREwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc0MFoX DTI3MDMwMzA2MTI0MFowMzExMC8GA1UEAxMoNUVEMUFEREFEMDRDODE3OTRGMEQ2 N0E0RDZFRTBEOTIxODIzQkMyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOSewd2TO6lA3GefdnHhLjYwg83HvoYBH3x3mMOIAR0MfxBLH0HJ4lGTVFX PpSm4al0JrVqbO0r1GJsuYFvinS8J7XP0E1pefyUu1UVGPb6ndBpWOKt3yBctqfX qxyD510NCxTi4l+sGi2WsSy5vYQr3DRR8TawJeTRcMafw6VMIdzY6RqobqsO718f GWq4P19Ldy5U+bzShGQ5aPrVC2PmDP/YGyh6ZpxSGGnT37eteVc4S+FjLO/vUtvt +6SJpwM07atFEmnD7Ib0B2pcePbPYj8nyfRbPV4ROHnUdGwV5inLUehaxbAeDyL9 CdLJILEsNrjXHN5NmSLDU/dzG7cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRe0a3a 0EyBeU8NZ6TW7g2SGCO8LTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pvgwDQYJKoZIhvcNAQELBQADggEBAAAj9jTLA88yhfe8qyd6cGMuEOWu8w+LUzUO DmFlvIyQskLJ+GYQeasvJqsZ+kuFOjPOAvGcdQhPkeh6UTz6ErBayleNg7MWEdZE 07SyoTEkts8a5I1x/XecVVuRCREianm/LAc64u9H4NfjFSslpi9Fn03auk2M6pJk 8quj7mMOTU5/LuGbcbfjLyWQLhDTHmOBd18gajL9IFP5yGZqgBewX4QhWuA3TRYb kVZhg8Z5gIn7nvuqQYda6EjU0oWFBcC57H9vwwQPbJgIYV3XY55HEXGmrMI7Ebo0 LNcJ3ZLZ7j0UUrbiqi+Ytvhw0JcaNAFpoq1ji4q4kzqczaw6x+M= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:54 2026 by rpki-client