$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144461.roa File: AS144461.roa (raw, json) Hash identifier: 6SuJAK58HNn/IQBNxyr6NGyo/Ntb3RsRngfm5lk7GM0= Subject key identifier: B2:03:38:73:A3:65:31:70:1C:50:13:5C:AC:76:62:4B:65:A4:F7:E9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 248001E1BE7AB902588B6C541B912B6D8D82995C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144461.roa Signing time: Wed 04 Mar 2026 06:14:18 +0000 ROA not before: Wed 04 Mar 2026 06:09:18 +0000 ROA not after: Wed 03 Mar 2027 06:14:18 +0000 asID: 144461 IP address blocks: 240a:a713::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:80:01:e1:be:7a:b9:02:58:8b:6c:54:1b:91:2b:6d:8d:82:99:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:18 2026 GMT Not After : Mar 3 06:14:18 2027 GMT Subject: CN=B2033873A36531701C50135CAC76624B65A4F7E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bf:16:4e:5b:4a:54:17:b8:d3:be:9a:8e:9f: c7:47:98:dc:49:7a:a6:a4:20:19:6b:bc:1d:b1:46: 06:a8:2a:5f:d6:09:4c:41:9f:6d:9b:db:2d:7b:42: 40:26:59:b9:ce:ba:26:90:91:d8:67:f7:8c:14:e8: 47:da:29:11:ea:95:4f:31:e5:19:75:ba:ad:96:69: a8:9c:75:0d:89:33:9c:ea:0d:b9:9f:e0:33:7b:11: d7:50:b9:68:4b:5f:b4:47:21:51:a1:c8:05:7b:8d: 87:47:e0:01:9d:0e:d7:36:6b:21:ca:bc:d8:24:32: f1:7d:73:af:ff:6d:91:c2:c1:ef:72:2e:88:71:0e: 83:99:f5:5d:5e:83:86:3c:6c:7d:39:d6:b5:6f:c9: 17:98:c1:a6:b7:ab:49:65:ee:78:4a:6d:41:fc:b4: 09:28:fc:a0:7d:65:ea:15:b9:16:af:25:40:63:73: 9c:e1:72:1d:2c:67:16:b7:1f:2f:ec:9c:ee:70:83: 6a:19:76:be:3f:59:2d:1d:a9:2a:d7:f0:e5:1a:84: 5a:e9:1c:c5:0b:d0:3c:91:87:c6:9f:40:1f:a7:f0: 30:fe:83:8d:65:38:4c:fb:d0:d9:6c:5e:36:28:b6: 00:1f:c0:94:91:0d:70:41:7a:b8:4d:7b:63:6f:01: a7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:03:38:73:A3:65:31:70:1C:50:13:5C:AC:76:62:4B:65:A4:F7:E9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144461.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a713::/32 Signature Algorithm: sha256WithRSAEncryption 32:25:d5:92:7e:04:8a:d4:c8:92:1e:aa:e5:de:07:7f:dd:cb: e8:e7:4c:0c:ab:c8:e4:8d:a9:6f:7c:af:99:22:5b:09:ff:19: 90:93:77:d4:77:ce:0f:53:42:df:e1:97:7d:c3:45:d3:20:df: e5:26:4e:73:be:ae:3c:4b:72:e1:7d:bc:6f:50:a7:20:9a:e0: c5:b8:dd:14:32:0e:ce:64:54:0d:45:39:56:19:f4:16:82:4b: c9:4f:8e:af:e1:99:7d:f5:cc:50:6c:a9:93:ff:d9:2b:83:9f: 8c:2e:45:9b:b2:0a:44:46:ec:09:95:9b:39:bb:f1:d2:c0:36: b2:2b:50:3b:90:61:14:43:74:c6:a3:22:32:20:f0:e6:18:05: 9d:13:1d:6c:43:59:1b:fb:f7:2f:b4:e7:d0:59:a9:74:02:1e: e8:76:e5:24:79:85:c6:a9:1a:6f:4a:79:64:05:e2:c1:99:8c: a4:05:c2:b2:9b:1c:c6:42:df:b9:51:aa:9e:6f:eb:62:8b:48: ef:92:4c:03:17:f9:ed:87:55:c0:98:f3:b3:28:16:b3:da:62: b8:5a:70:34:d2:c0:fc:c7:69:72:6b:a3:37:49:b1:f4:54:99: 51:e3:44:e5:d5:96:98:68:37:fc:57:22:93:33:58:ff:d9:14: d2:f0:35:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJIAB4b56uQJYi2xUG5ErbY2CmVwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkxOFoX DTI3MDMwMzA2MTQxOFowMzExMC8GA1UEAxMoQjIwMzM4NzNBMzY1MzE3MDFDNTAx MzVDQUM3NjYyNEI2NUE0RjdFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2/Fk5bSlQXuNO+mo6fx0eY3El6pqQgGWu8HbFGBqgqX9YJTEGfbZvbLXtC QCZZuc66JpCR2Gf3jBToR9opEeqVTzHlGXW6rZZpqJx1DYkznOoNuZ/gM3sR11C5 aEtftEchUaHIBXuNh0fgAZ0O1zZrIcq82CQy8X1zr/9tkcLB73IuiHEOg5n1XV6D hjxsfTnWtW/JF5jBprerSWXueEptQfy0CSj8oH1l6hW5Fq8lQGNznOFyHSxnFrcf L+yc7nCDahl2vj9ZLR2pKtfw5RqEWukcxQvQPJGHxp9AH6fwMP6DjWU4TPvQ2Wxe Nii2AB/AlJENcEF6uE17Y28Bp/kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSyAzhz o2UxcBxQE1ysdmJLZaT36TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQ2MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pxMwDQYJKoZIhvcNAQELBQADggEBADIl1ZJ+BIrUyJIequXeB3/dy+jnTAyryOSN qW98r5kiWwn/GZCTd9R3zg9TQt/hl33DRdMg3+UmTnO+rjxLcuF9vG9QpyCa4MW4 3RQyDs5kVA1FOVYZ9BaCS8lPjq/hmX31zFBsqZP/2SuDn4wuRZuyCkRG7AmVmzm7 8dLANrIrUDuQYRRDdMajIjIg8OYYBZ0THWxDWRv79y+059BZqXQCHuh25SR5hcap Gm9KeWQF4sGZjKQFwrKbHMZC37lRqp5v62KLSO+STAMX+e2HVcCY87MoFrPaYrha cDTSwPzHaXJrozdJsfRUmVHjROXVlphoN/xXIpMzWP/ZFNLwNWM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:22 2026 by rpki-client