$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144436.roa File: AS144436.roa (raw, json) Hash identifier: b8tQYKhUKAx9piP5TiZJJs00aCpAsJQtM0aJzpHAPIw= Subject key identifier: D5:F4:AE:9E:56:96:A8:14:4A:85:D1:8B:E9:C9:4C:A0:69:CE:2F:BE Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 679A0E1C107BF431465A977BB679DF1D46596C97 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144436.roa Signing time: Wed 04 Mar 2026 06:15:13 +0000 ROA not before: Wed 04 Mar 2026 06:10:13 +0000 ROA not after: Wed 03 Mar 2027 06:15:13 +0000 asID: 144436 IP address blocks: 240a:a6fa::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:9a:0e:1c:10:7b:f4:31:46:5a:97:7b:b6:79:df:1d:46:59:6c:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:13 2026 GMT Not After : Mar 3 06:15:13 2027 GMT Subject: CN=D5F4AE9E5696A8144A85D18BE9C94CA069CE2FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:1e:b8:76:f5:8a:3f:4e:ed:34:8e:2a:52: c2:45:f8:c2:d9:32:ae:34:77:9e:32:1e:03:2c:c8: 14:da:3d:9e:7d:37:05:74:6b:5d:3e:b9:75:49:22: 02:ec:ff:f2:67:32:90:c3:3b:14:13:18:7a:ab:bf: 76:ec:4e:61:48:38:24:a4:20:a8:81:56:1a:cd:9d: ef:fb:a5:a5:8f:82:13:ed:37:15:aa:54:07:65:30: 9c:1c:3e:f5:a9:e0:2d:95:b1:b9:f7:3d:68:00:74: bf:50:62:80:00:ad:fc:8f:96:ce:3d:d2:9b:de:ef: 28:47:e7:c0:12:64:2c:73:7e:0d:d3:bd:5c:c3:02: dc:24:22:3b:a6:ec:82:77:01:03:29:f3:bd:b7:7d: d1:30:fe:89:75:d1:8d:9a:e9:3c:ba:6a:90:df:61: 8c:fc:13:fc:7d:f4:8b:10:01:45:00:ad:c7:55:c2: fc:72:4f:08:d5:ac:f0:57:d3:5b:04:00:37:ea:54: 44:6e:71:d4:5f:f5:5f:f8:52:be:a9:e1:06:bd:51: 7f:32:f9:06:12:c6:f5:21:b6:79:4e:92:c5:dd:17: 87:48:ff:01:50:4e:60:44:33:31:b8:a6:ec:31:67: e7:15:c2:54:f2:ab:11:e1:ba:e4:d3:e4:3e:5e:c9: 10:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F4:AE:9E:56:96:A8:14:4A:85:D1:8B:E9:C9:4C:A0:69:CE:2F:BE X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a6fa::/32 Signature Algorithm: sha256WithRSAEncryption 4d:b6:21:6d:68:0d:a2:c2:36:0d:48:09:6a:16:04:52:fb:a4: d5:cc:48:92:e5:fd:1f:d7:44:8a:e3:c2:1d:85:43:1e:7c:2b: 5b:f6:71:c8:97:57:85:88:be:66:18:45:d1:7b:42:21:1f:e7: 26:1d:04:a2:83:39:c8:3b:42:68:87:6a:e2:67:e0:e2:da:8e: e0:8e:6e:33:64:19:f5:ea:ae:6f:42:7e:74:44:6c:4d:d9:12: c6:3e:30:cc:4c:da:53:a3:9b:3a:e4:f8:c4:30:95:06:d8:e4: a3:61:77:23:e9:b2:7d:3b:28:66:40:f4:1e:88:40:8b:53:63: c4:68:e2:2f:98:f3:42:b0:94:11:50:c6:bd:b9:1e:97:46:83: 56:e3:c6:ae:34:91:0e:ba:1d:d3:87:e7:5e:21:cf:6f:39:31: 2b:95:7f:ee:6a:12:34:9f:86:a4:59:54:94:56:0c:7a:60:22: b5:14:9c:10:37:38:5d:c7:c4:f2:cb:b4:b4:78:9b:a4:36:9a: 86:5a:30:dd:cb:33:bc:43:04:53:7d:92:e1:2b:fc:b5:f9:7b: 71:2a:df:09:c9:59:80:85:1f:86:18:aa:d8:f3:9c:e1:37:4a: 0f:98:77:aa:8a:0b:d4:58:16:f8:79:d8:45:cf:a1:16:ab:a9: cd:a8:cb:bf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUZ5oOHBB79DFGWpd7tnnfHUZZbJcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAxM1oX DTI3MDMwMzA2MTUxM1owMzExMC8GA1UEAxMoRDVGNEFFOUU1Njk2QTgxNDRBODVE MThCRTlDOTRDQTA2OUNFMkZCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN4vHrh29Yo/Tu00jipSwkX4wtkyrjR3njIeAyzIFNo9nn03BXRrXT65dUki Auz/8mcykMM7FBMYequ/duxOYUg4JKQgqIFWGs2d7/ulpY+CE+03FapUB2UwnBw+ 9angLZWxufc9aAB0v1BigACt/I+Wzj3Sm97vKEfnwBJkLHN+DdO9XMMC3CQiO6bs gncBAynzvbd90TD+iXXRjZrpPLpqkN9hjPwT/H30ixABRQCtx1XC/HJPCNWs8FfT WwQAN+pURG5x1F/1X/hSvqnhBr1RfzL5BhLG9SG2eU6Sxd0Xh0j/AVBOYEQzMbim 7DFn5xXCVPKrEeG65NPkPl7JEPkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTV9K6e VpaoFEqF0YvpyUygac4vvjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pvowDQYJKoZIhvcNAQELBQADggEBAE22IW1oDaLCNg1ICWoWBFL7pNXMSJLl/R/X RIrjwh2FQx58K1v2cciXV4WIvmYYRdF7QiEf5yYdBKKDOcg7QmiHauJn4OLajuCO bjNkGfXqrm9CfnREbE3ZEsY+MMxM2lOjmzrk+MQwlQbY5KNhdyPpsn07KGZA9B6I QItTY8Ro4i+Y80KwlBFQxr25HpdGg1bjxq40kQ66HdOH514hz285MSuVf+5qEjSf hqRZVJRWDHpgIrUUnBA3OF3HxPLLtLR4m6Q2moZaMN3LM7xDBFN9kuEr/LX5e3Eq 3wnJWYCFH4YYqtjznOE3Sg+Yd6qKC9RYFvh52EXPoRarqc2oy78= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:35 2026 by rpki-client