$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144446.roa File: AS144446.roa (raw, json) Hash identifier: ijXmgUO8RPg25HLj2/zLzN1yJLSWc6rVErEKBxp56Pk= Subject key identifier: F1:6A:18:3F:E5:9D:4F:2B:8A:34:36:51:52:3B:25:C0:83:85:26:69 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3A8D9980EE45B87538CB1D2204A59AE1A63264ED Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144446.roa Signing time: Wed 04 Mar 2026 06:13:18 +0000 ROA not before: Wed 04 Mar 2026 06:08:18 +0000 ROA not after: Wed 03 Mar 2027 06:13:18 +0000 asID: 144446 IP address blocks: 240a:a704::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8d:99:80:ee:45:b8:75:38:cb:1d:22:04:a5:9a:e1:a6:32:64:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:18 2026 GMT Not After : Mar 3 06:13:18 2027 GMT Subject: CN=F16A183FE59D4F2B8A343651523B25C083852669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:45:15:78:2f:cc:3a:c5:ae:8a:32:48:2d:fc: fa:6e:f9:40:c0:e8:67:f0:88:0b:de:bd:48:bd:97: 58:9e:ce:d3:7b:00:2e:57:5d:9c:f8:06:ac:60:30: 2a:2a:d0:af:a3:bd:74:6e:70:55:b3:91:ca:c4:04: 75:ce:09:25:e7:6e:28:60:6b:8a:7f:e5:72:c0:3f: a7:f2:80:2b:b1:c1:d2:62:c7:c3:fe:74:86:34:9d: 7a:e0:fa:d6:49:b4:df:90:36:c5:5f:b4:f5:e5:7d: 52:7d:36:4d:af:2f:e5:0f:43:25:51:01:f4:0c:1c: 1a:1c:e3:34:c3:13:1f:df:e6:2a:ad:68:2f:b0:dd: 76:44:3f:1f:22:56:f0:70:ed:e3:61:89:f2:a3:f0: 23:97:42:d7:38:1b:3f:63:b9:54:7f:80:e6:da:48: 20:28:fd:4d:9d:97:cb:b6:cd:c2:52:5b:24:32:e9: 99:0c:da:4f:f2:5c:a4:19:2a:c4:5a:c3:43:ab:2e: 92:01:3f:0b:76:e3:3f:5b:a1:ce:a4:36:5f:95:44: 5d:cb:40:c0:a3:e1:8d:f0:b5:4a:7a:90:6a:66:18: 99:02:2f:1a:bb:4a:9d:bb:a7:b4:02:8b:a8:16:96: 25:f3:ca:38:8b:e5:44:7b:1c:d7:9a:66:28:29:77: 40:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6A:18:3F:E5:9D:4F:2B:8A:34:36:51:52:3B:25:C0:83:85:26:69 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144446.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a704::/32 Signature Algorithm: sha256WithRSAEncryption 0a:91:12:9a:61:fe:f9:64:8e:e6:ff:db:be:87:17:9c:e8:99: 0b:f8:71:97:be:27:eb:d7:2f:d3:7a:8d:c1:0f:03:a3:ba:06: c5:a1:41:9a:cf:6b:68:02:ad:6a:33:19:2d:cf:8a:e3:d1:29: f5:9d:1a:04:5f:e1:87:00:88:05:1d:89:4e:b0:e1:69:16:a1: 4a:07:71:82:da:c1:39:45:b0:7f:6a:ca:b5:b5:11:aa:e7:05: f9:19:b0:d4:02:ee:58:bd:8c:73:d3:83:18:f7:23:7a:0b:35: 72:fc:2e:52:a3:b8:b7:45:39:7c:d0:97:5c:6e:db:ea:f3:07: 12:cb:7f:40:dc:26:14:9f:c3:1e:7d:9e:5c:3d:6a:e4:31:c2: 70:12:89:b9:b5:5b:c8:c9:52:0f:fe:d3:55:94:4b:0d:7e:2b: 3c:d4:1b:0c:e0:65:21:e1:26:5a:8c:b8:50:6e:ed:38:bb:71: ed:71:7f:f0:bc:42:db:8e:96:c2:49:4b:93:0d:85:ac:c5:e3: 86:41:64:fe:be:89:a3:59:31:33:44:7b:e5:89:4b:42:ac:88: 8a:03:7b:c0:44:73:69:a3:09:8d:d5:9b:9d:bf:c2:ad:ef:79: 4c:f0:13:ca:a7:25:b5:f2:4f:86:13:d8:96:a8:14:38:61:ff: 3a:1b:91:2f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOo2ZgO5FuHU4yx0iBKWa4aYyZO0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgxOFoX DTI3MDMwMzA2MTMxOFowMzExMC8GA1UEAxMoRjE2QTE4M0ZFNTlENEYyQjhBMzQz NjUxNTIzQjI1QzA4Mzg1MjY2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIdFFXgvzDrFrooySC38+m75QMDoZ/CIC969SL2XWJ7O03sALlddnPgGrGAw KirQr6O9dG5wVbORysQEdc4JJeduKGBrin/lcsA/p/KAK7HB0mLHw/50hjSdeuD6 1km035A2xV+09eV9Un02Ta8v5Q9DJVEB9AwcGhzjNMMTH9/mKq1oL7DddkQ/HyJW 8HDt42GJ8qPwI5dC1zgbP2O5VH+A5tpIICj9TZ2Xy7bNwlJbJDLpmQzaT/JcpBkq xFrDQ6sukgE/C3bjP1uhzqQ2X5VEXctAwKPhjfC1SnqQamYYmQIvGrtKnbuntAKL qBaWJfPKOIvlRHsc15pmKCl3QPsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTxahg/ 5Z1PK4o0NlFSOyXAg4UmaTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQ0Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pwQwDQYJKoZIhvcNAQELBQADggEBAAqREpph/vlkjub/276HF5zomQv4cZe+J+vX L9N6jcEPA6O6BsWhQZrPa2gCrWozGS3PiuPRKfWdGgRf4YcAiAUdiU6w4WkWoUoH cYLawTlFsH9qyrW1EarnBfkZsNQC7li9jHPTgxj3I3oLNXL8LlKjuLdFOXzQl1xu 2+rzBxLLf0DcJhSfwx59nlw9auQxwnASibm1W8jJUg/+01WUSw1+KzzUGwzgZSHh JlqMuFBu7Ti7ce1xf/C8QtuOlsJJS5MNhazF44ZBZP6+iaNZMTNEe+WJS0KsiIoD e8BEc2mjCY3Vm52/wq3veUzwE8qnJbXyT4YT2JaoFDhh/zobkS8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:13 2026 by rpki-client