$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144476.roa File: AS144476.roa (raw, json) Hash identifier: dYz5sL8GtknUPITBxG/jbcxTDCDTEksI8JFmIJkfyGw= Subject key identifier: 40:50:BE:79:7B:49:81:85:28:0D:E9:AD:30:29:E3:0B:BC:16:B0:C8 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0F8A7A2E1841EBA9F5670417A0212F56472F2F34 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144476.roa Signing time: Wed 04 Mar 2026 06:13:19 +0000 ROA not before: Wed 04 Mar 2026 06:08:19 +0000 ROA not after: Wed 03 Mar 2027 06:13:19 +0000 asID: 144476 IP address blocks: 240a:a722::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8a:7a:2e:18:41:eb:a9:f5:67:04:17:a0:21:2f:56:47:2f:2f:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:19 2026 GMT Not After : Mar 3 06:13:19 2027 GMT Subject: CN=4050BE797B498185280DE9AD3029E30BBC16B0C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b1:f3:cf:b3:cf:48:4b:0f:41:9d:1f:d8:cd: 28:b2:c5:47:c5:7d:3d:64:6b:54:b8:f4:2c:22:f7: 70:4e:24:01:84:57:8d:60:49:8e:b6:83:37:d2:28: ab:8c:47:e1:32:fd:cb:7f:72:97:4c:85:a9:77:85: 6a:12:be:b0:fe:ff:98:48:96:71:46:86:7b:a3:22: 75:54:66:6c:7e:e8:67:ff:33:5b:69:5e:65:32:e8: 50:ca:2b:c7:0b:8c:13:1a:e9:2f:3e:0c:33:d3:f1: 06:23:81:f8:93:29:fb:12:2e:41:0e:14:2e:9b:e9: f6:b6:34:15:f9:22:dc:61:26:60:cd:62:9a:8b:68: 46:5d:e2:34:6c:14:60:5e:b0:8f:df:40:d6:46:a0: 24:a2:92:eb:cb:c9:b6:b5:eb:65:c0:27:17:0f:32: 85:50:d6:81:36:7a:f6:ad:0f:94:ba:7e:b8:a7:b8: 3f:e1:9e:8a:f5:cd:60:9c:71:73:fe:2c:3a:c6:4a: 7e:b6:f7:75:2f:5b:54:f3:ae:d5:5f:0d:6a:f1:b8: 03:ad:98:d4:1f:0e:14:f8:f1:72:8b:2b:39:fe:7d: ac:ec:e9:9a:dd:0f:48:9f:bf:41:2a:f5:60:ac:0d: 57:93:a2:3e:60:9e:b4:9c:3e:e7:79:92:ab:da:9c: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:50:BE:79:7B:49:81:85:28:0D:E9:AD:30:29:E3:0B:BC:16:B0:C8 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144476.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a722::/32 Signature Algorithm: sha256WithRSAEncryption dc:f0:4c:34:ea:d3:6f:4c:ae:6e:c8:85:f3:53:fd:f3:64:99: f7:d4:50:d1:de:86:13:ef:21:9c:f3:82:08:75:1a:ac:e5:d9: 6a:72:9d:1a:67:79:f0:ec:52:00:9f:df:d4:13:54:19:51:e1: 1b:f8:db:bb:04:44:21:38:e3:32:46:9e:df:d5:4a:5d:aa:2c: 56:e7:f4:65:aa:51:3f:aa:d5:64:a4:6d:f3:31:45:63:49:a8: 48:c3:73:25:44:64:62:86:2c:f6:0e:14:c3:f8:62:2c:84:30: 5f:fc:16:89:b2:bc:3b:52:84:12:19:5d:3a:df:4e:6b:8a:8b: ed:32:6d:d0:9c:87:e6:1d:5f:ee:4d:3a:5c:95:5a:f9:6a:a6: 92:ee:6f:6e:3c:62:0b:07:05:1c:39:ca:18:49:ec:f7:8f:3b: dd:28:5a:27:d6:7a:7c:11:54:52:f5:8b:35:c9:09:ae:d6:c3: 58:b0:f2:09:f9:2f:b7:e1:a2:6f:7d:eb:9d:07:63:25:e9:da: b8:92:d3:65:3a:14:b1:6f:de:f5:40:82:f1:f5:1f:dc:17:ad: d3:e4:68:9f:89:29:84:da:8d:2a:d9:5c:ef:de:8e:60:ac:06: ca:2d:2f:66:b5:07:94:da:94:c4:0f:42:c9:ab:a5:06:1e:b7: f3:49:2f:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUD4p6LhhB66n1ZwQXoCEvVkcvLzQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgxOVoX DTI3MDMwMzA2MTMxOVowMzExMC8GA1UEAxMoNDA1MEJFNzk3QjQ5ODE4NTI4MERF OUFEMzAyOUUzMEJCQzE2QjBDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2x88+zz0hLD0GdH9jNKLLFR8V9PWRrVLj0LCL3cE4kAYRXjWBJjraDN9Io q4xH4TL9y39yl0yFqXeFahK+sP7/mEiWcUaGe6MidVRmbH7oZ/8zW2leZTLoUMor xwuMExrpLz4MM9PxBiOB+JMp+xIuQQ4ULpvp9rY0Ffki3GEmYM1imotoRl3iNGwU YF6wj99A1kagJKKS68vJtrXrZcAnFw8yhVDWgTZ69q0PlLp+uKe4P+GeivXNYJxx c/4sOsZKfrb3dS9bVPOu1V8NavG4A62Y1B8OFPjxcosrOf59rOzpmt0PSJ+/QSr1 YKwNV5OiPmCetJw+53mSq9qcGp8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRAUL55 e0mBhSgN6a0wKeMLvBawyDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQ3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pyIwDQYJKoZIhvcNAQELBQADggEBANzwTDTq029Mrm7IhfNT/fNkmffUUNHehhPv IZzzggh1Gqzl2WpynRpnefDsUgCf39QTVBlR4Rv427sERCE44zJGnt/VSl2qLFbn 9GWqUT+q1WSkbfMxRWNJqEjDcyVEZGKGLPYOFMP4YiyEMF/8FomyvDtShBIZXTrf TmuKi+0ybdCch+YdX+5NOlyVWvlqppLub248YgsHBRw5yhhJ7PePO90oWifWenwR VFL1izXJCa7Ww1iw8gn5L7fhom99650HYyXp2riS02U6FLFv3vVAgvH1H9wXrdPk aJ+JKYTajSrZXO/ejmCsBsotL2a1B5TalMQPQsmrpQYet/NJL+o= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:29 2026 by rpki-client