$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144449.roa File: AS144449.roa (raw, json) Hash identifier: c8bp6PTqOwtKLhz9eCXbsBQadVwZEt47UZmi0ieW7KM= Subject key identifier: 4B:02:45:7C:76:97:04:C1:97:E2:FC:AF:FC:76:10:14:FA:15:41:54 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 284945A1F2568EA1BC42B2FA1231F6720F83A28D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144449.roa Signing time: Wed 04 Mar 2026 06:15:14 +0000 ROA not before: Wed 04 Mar 2026 06:10:14 +0000 ROA not after: Wed 03 Mar 2027 06:15:14 +0000 asID: 144449 IP address blocks: 240a:a707::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:49:45:a1:f2:56:8e:a1:bc:42:b2:fa:12:31:f6:72:0f:83:a2:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:14 2026 GMT Not After : Mar 3 06:15:14 2027 GMT Subject: CN=4B02457C769704C197E2FCAFFC761014FA154154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:98:a5:89:0c:66:4d:02:5c:78:24:f5:c1:2f: 85:cf:4c:58:ef:5c:e9:c8:0f:0c:be:85:81:40:13: 4a:cf:43:6d:9a:29:73:a0:13:99:77:36:72:86:21: 66:2e:5a:89:f9:df:07:59:4a:dd:e5:b7:fb:51:63: 85:19:49:b2:3b:02:13:66:ca:f3:e2:65:1f:1b:01: 3d:ed:44:f1:8d:6f:63:da:2a:50:83:41:18:8e:cc: d8:7a:15:fc:46:d6:56:47:17:dd:bb:87:a7:1b:9d: 4c:98:14:ae:d6:92:bd:d2:54:ff:c8:fb:27:2f:9e: c4:a8:db:cf:8e:8d:a4:54:6c:76:ee:32:fc:97:58: c7:e6:04:f8:ff:ef:da:46:4b:91:77:3c:f7:90:f4: 3f:57:60:d0:24:4b:a9:d0:75:66:23:64:4b:3f:d0: a5:c6:99:c7:5b:84:9d:45:14:e8:e3:df:3f:7d:18: 55:a2:d2:ed:f3:03:f6:4c:bc:8a:b4:6d:8b:d4:35: 29:74:28:38:dd:ec:f7:14:2b:ad:2d:26:80:eb:ee: 2a:e2:04:01:39:43:85:52:5f:05:cf:21:06:ff:d1: cc:85:d2:13:be:6b:78:62:a7:60:b1:87:ea:de:96: ce:5f:ab:18:95:7a:86:34:f8:6d:12:4f:3c:42:8c: 59:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:02:45:7C:76:97:04:C1:97:E2:FC:AF:FC:76:10:14:FA:15:41:54 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144449.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a707::/32 Signature Algorithm: sha256WithRSAEncryption 1b:89:ff:52:b9:7e:fc:0c:6d:82:03:c0:29:80:11:c7:15:24: f8:40:76:8e:27:5e:f5:d6:1e:06:5c:dd:41:3a:c7:03:59:95: 43:cd:c7:37:65:6c:04:ae:3a:d5:fa:59:be:fd:9d:b1:c2:15: ff:ee:fc:0f:bd:a0:ee:06:2d:e3:c1:d9:fd:b9:c6:30:4d:4c: 33:5f:d5:dd:c4:6d:ba:e3:5c:aa:58:4c:57:6c:47:b2:8a:92: c2:67:3d:da:a2:5e:ee:2f:0d:66:3f:77:90:bd:03:fd:ee:3c: e0:c1:3a:25:65:a6:93:e9:8e:2d:00:9d:40:b6:8a:cd:9d:ad: 38:60:ed:09:7b:ef:1a:53:9a:62:39:6b:ac:44:f0:32:9f:bb: 31:8d:00:63:e9:fb:da:c5:56:a6:69:fd:a3:dc:5f:16:c2:45: fe:50:66:d2:0f:d2:a8:f8:45:ec:83:20:52:51:7d:1f:ec:3f: 32:d8:73:b3:cd:60:65:a4:3c:cf:0c:b6:c6:d1:1c:09:0c:d6: cc:f5:83:e3:89:9e:38:32:75:9a:71:c3:6c:d3:3b:73:59:6c: 77:76:26:f3:30:bf:da:ce:b9:a6:67:51:be:b3:43:18:2d:b0: 1f:12:c8:5b:65:ab:9b:0b:b8:e6:2f:1f:09:6e:57:c9:7c:1f: 3d:f0:ac:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKElFofJWjqG8QrL6EjH2cg+Doo0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAxNFoX DTI3MDMwMzA2MTUxNFowMzExMC8GA1UEAxMoNEIwMjQ1N0M3Njk3MDRDMTk3RTJG Q0FGRkM3NjEwMTRGQTE1NDE1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANOYpYkMZk0CXHgk9cEvhc9MWO9c6cgPDL6FgUATSs9DbZopc6ATmXc2coYh Zi5aifnfB1lK3eW3+1FjhRlJsjsCE2bK8+JlHxsBPe1E8Y1vY9oqUINBGI7M2HoV /EbWVkcX3buHpxudTJgUrtaSvdJU/8j7Jy+exKjbz46NpFRsdu4y/JdYx+YE+P/v 2kZLkXc895D0P1dg0CRLqdB1ZiNkSz/QpcaZx1uEnUUU6OPfP30YVaLS7fMD9ky8 irRti9Q1KXQoON3s9xQrrS0mgOvuKuIEATlDhVJfBc8hBv/RzIXSE75reGKnYLGH 6t6Wzl+rGJV6hjT4bRJPPEKMWWUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRLAkV8 dpcEwZfi/K/8dhAU+hVBVDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQ0OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pwcwDQYJKoZIhvcNAQELBQADggEBABuJ/1K5fvwMbYIDwCmAEccVJPhAdo4nXvXW HgZc3UE6xwNZlUPNxzdlbASuOtX6Wb79nbHCFf/u/A+9oO4GLePB2f25xjBNTDNf 1d3EbbrjXKpYTFdsR7KKksJnPdqiXu4vDWY/d5C9A/3uPODBOiVlppPpji0AnUC2 is2drThg7Ql77xpTmmI5a6xE8DKfuzGNAGPp+9rFVqZp/aPcXxbCRf5QZtIP0qj4 ReyDIFJRfR/sPzLYc7PNYGWkPM8MtsbRHAkM1sz1g+OJnjgydZpxw2zTO3NZbHd2 JvMwv9rOuaZnUb6zQxgtsB8SyFtlq5sLuOYvHwluV8l8Hz3wrJs= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:31 2026 by rpki-client