$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144454.roa File: AS144454.roa (raw, json) Hash identifier: se6jxOsduyCtlMQ9fVzMzXHipKyLxHxC+15BxvUc4Ds= Subject key identifier: 8A:9A:CC:DC:31:EC:FF:3D:61:8E:62:5F:70:89:EE:2F:88:B0:BC:B7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 56EB6156A3A6218659BFA69767AAC27E731F44 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144454.roa Signing time: Wed 04 Mar 2026 06:15:46 +0000 ROA not before: Wed 04 Mar 2026 06:10:46 +0000 ROA not after: Wed 03 Mar 2027 06:15:46 +0000 asID: 144454 IP address blocks: 240a:a70c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:eb:61:56:a3:a6:21:86:59:bf:a6:97:67:aa:c2:7e:73:1f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:46 2026 GMT Not After : Mar 3 06:15:46 2027 GMT Subject: CN=8A9ACCDC31ECFF3D618E625F7089EE2F88B0BCB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:41:67:e3:e7:76:c1:01:8b:b7:8d:16:88:a2: 49:14:60:e2:3e:d1:eb:b9:af:f0:ce:ee:5f:b9:39: 29:34:f9:31:cc:66:c3:f1:98:40:2a:2f:f8:e3:5e: 99:45:ae:00:02:74:bc:34:3e:de:05:a4:bc:5f:b0: 3f:8a:bf:25:c9:ff:99:21:63:f9:72:c9:2f:6c:9f: 12:22:16:f1:ff:16:45:91:80:76:98:e3:90:07:67: c7:c8:c0:25:55:62:53:74:d3:a7:ba:1a:f7:5c:c5: 5c:09:7d:4e:67:f3:ed:f6:54:7c:89:88:86:63:09: 04:40:2f:d0:fe:fb:74:a0:59:da:fa:5a:b4:44:65: 21:ba:da:16:9c:58:aa:c7:8c:ad:c4:70:a1:8f:9c: 3c:39:2c:68:69:15:25:0f:74:2e:16:80:cd:29:ed: 1c:6b:76:a9:ab:2d:53:3d:b5:3a:79:8f:01:6e:0b: 39:4f:7d:4f:49:85:a3:ce:77:2c:7c:96:c6:ac:86: 2c:e3:76:bc:4e:60:fa:e7:c4:7a:f2:1b:de:3a:7c: 31:8c:c2:91:c8:b6:b0:42:fd:ed:bd:3e:60:c6:69: 91:52:dc:8d:a9:88:35:cd:eb:25:55:a9:e5:75:f6: a8:49:16:b2:36:50:7c:62:c1:19:00:cf:77:66:36: c5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:9A:CC:DC:31:EC:FF:3D:61:8E:62:5F:70:89:EE:2F:88:B0:BC:B7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a70c::/32 Signature Algorithm: sha256WithRSAEncryption 2d:40:ce:96:c3:80:d6:ad:81:a8:8a:86:f5:e5:1b:11:2a:88: 28:7a:73:01:93:21:1f:7a:27:f0:bf:33:32:72:29:be:25:80: 93:71:9d:34:6b:55:1c:22:71:69:d9:9a:d3:2d:40:59:ce:67: dd:4c:d3:be:84:04:cd:d5:fb:5c:e0:05:bc:a6:6d:c6:04:1a: 41:22:3f:dc:5f:b8:f2:fd:73:0d:ab:6f:69:70:ba:01:83:71: 04:d2:69:3e:23:00:c3:2a:ab:11:d3:f1:7e:6a:0a:d0:14:af: e8:84:ff:e7:03:0d:df:dc:b7:83:52:f5:74:fd:53:79:73:3f: 4c:9a:2f:80:e4:f5:1c:f5:6d:8b:96:1b:05:33:c4:00:1f:26: 6d:88:7e:8d:d4:5d:82:a2:6d:73:65:88:f5:36:04:27:f2:7e: 14:45:96:5b:9b:99:a6:9d:e8:55:9d:a2:45:e5:6e:a8:63:ac: 6c:fb:a2:14:b0:76:38:84:89:c4:bf:14:5f:c8:6c:71:2b:62: a4:93:fa:21:1f:d3:d5:22:eb:4a:ce:3c:e1:88:28:e0:81:2a: 90:31:50:20:92:02:d5:32:84:65:8a:9f:e9:ac:b9:26:c4:cb: f5:ef:ff:69:03:27:bf:69:ee:08:f1:3e:7d:2a:86:12:08:00: df:d7:53:19 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgITVuthVqOmIYZZv6aXZ6rCfnMfRDANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDDAxBOTFFNUQ2MTAwMDExMTAvBgNVBAUTKDA1RkM5QzVCODg1 MDZGN0MwRDNGODYyQzg4OTVCRUQ2N0U5RjhFQkEwHhcNMjYwMzA0MDYxMDQ2WhcN MjcwMzAzMDYxNTQ2WjAzMTEwLwYDVQQDEyg4QTlBQ0NEQzMxRUNGRjNENjE4RTYy NUY3MDg5RUUyRjg4QjBCQ0I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0Fn4+d2wQGLt40WiKJJFGDiPtHrua/wzu5fuTkpNPkxzGbD8ZhAKi/4416Z Ra4AAnS8ND7eBaS8X7A/ir8lyf+ZIWP5cskvbJ8SIhbx/xZFkYB2mOOQB2fHyMAl VWJTdNOnuhr3XMVcCX1OZ/Pt9lR8iYiGYwkEQC/Q/vt0oFna+lq0RGUhutoWnFiq x4ytxHChj5w8OSxoaRUlD3QuFoDNKe0ca3apqy1TPbU6eY8Bbgs5T31PSYWjzncs fJbGrIYs43a8TmD658R68hveOnwxjMKRyLawQv3tvT5gxmmRUtyNqYg1zeslVanl dfaoSRayNlB8YsEZAM93ZjbFUwIDAQABo4IBxTCCAcEwHQYDVR0OBBYEFIqazNwx 7P89YY5iX3CJ7i+IsLy3MB8GA1UdIwQYMBaAFAX8nFuIUG98DT+GLIiVvtZ+n466 MA4GA1UdDwEB/wQEAwIHgDBjBgNVHR8EXDBaMFigVqBUhlJyc3luYzovL3Jwa2ku Y2VybmV0Lm5ldC9yZXBvL2Nlcm5ldC8wLzA1RkM5QzVCODg1MDZGN0MwRDNGODYy Qzg4OTVCRUQ2N0U5RjhFQkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcw AoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0JmeWNXNGhRYjN3TlA0WXNpSlctMW42Zmpy by5jZXIwTgYIKwYBBQUHAQsEQjBAMD4GCCsGAQUFBzALhjJyc3luYzovL3Jwa2ku Y2VybmV0Lm5ldC9yZXBvL2Nlcm5ldC8wL0FTMTQ0NDU0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAqn DDANBgkqhkiG9w0BAQsFAAOCAQEALUDOlsOA1q2BqIqG9eUbESqIKHpzAZMhH3on 8L8zMnIpviWAk3GdNGtVHCJxadma0y1AWc5n3UzTvoQEzdX7XOAFvKZtxgQaQSI/ 3F+48v1zDatvaXC6AYNxBNJpPiMAwyqrEdPxfmoK0BSv6IT/5wMN39y3g1L1dP1T eXM/TJovgOT1HPVti5YbBTPEAB8mbYh+jdRdgqJtc2WI9TYEJ/J+FEWWW5uZpp3o VZ2iReVuqGOsbPuiFLB2OISJxL8UX8hscStipJP6IR/T1SLrSs484Ygo4IEqkDFQ IJIC1TKEZYqf6ay5JsTL9e//aQMnv2nuCPE+fSqGEggA39dTGQ== -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:47 2026 by rpki-client