$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144481.roa File: AS144481.roa (raw, json) Hash identifier: 3+RlpXodjX8oS+NtzHsGZJYYmUmaR5GUaNUpzod8K7k= Subject key identifier: B6:3F:72:77:06:65:0C:0F:F8:3F:7C:25:21:25:13:07:F8:02:01:08 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 532A5669CF6271610DB0D3A69A76B7A8F17764A1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144481.roa Signing time: Wed 04 Mar 2026 06:14:23 +0000 ROA not before: Wed 04 Mar 2026 06:09:23 +0000 ROA not after: Wed 03 Mar 2027 06:14:23 +0000 asID: 144481 IP address blocks: 240a:a727::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:2a:56:69:cf:62:71:61:0d:b0:d3:a6:9a:76:b7:a8:f1:77:64:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:23 2026 GMT Not After : Mar 3 06:14:23 2027 GMT Subject: CN=B63F727706650C0FF83F7C2521251307F8020108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cc:fc:b5:d1:79:eb:54:47:2f:9a:df:53:e5: 37:71:38:d1:59:61:ee:ad:45:c0:41:31:50:6f:24: d1:3c:65:c6:2e:8e:f8:f3:b8:43:8f:b4:c3:88:49: 6c:09:5a:9d:23:94:1f:91:d9:31:9f:20:43:55:8a: 36:80:a5:da:e6:9e:3f:c2:ac:c3:11:1b:90:aa:00: b6:1b:62:66:d6:f7:bd:09:58:98:72:2e:9a:70:32: d8:69:ee:2c:97:4c:35:a1:df:e1:c4:02:8d:ee:c6: 78:46:c9:4e:0e:14:bc:9b:47:b8:dc:ce:47:1c:8b: 02:df:21:d9:5d:35:3f:7e:e2:bc:b1:f3:e2:d4:07: 1c:a2:83:3a:06:df:4d:0c:bc:88:a8:0b:b1:b8:05: 63:40:d6:8d:82:ea:b5:b1:f4:f2:9a:4d:af:b4:1f: 70:cd:ea:4c:02:8e:0b:58:67:4c:f5:0c:70:57:c1: 7b:d2:7a:dc:4b:4c:24:04:11:fc:2f:ed:94:b5:99: fd:41:70:47:72:23:42:56:6f:8a:5e:1a:56:f7:96: ee:3c:37:ba:cc:51:c8:42:4a:84:1f:ea:fd:14:ca: 73:2a:65:ed:4e:53:e1:22:f3:58:87:28:c3:c1:70: 50:56:ba:a0:2e:d3:ef:45:8a:73:bc:8e:de:e0:f1: ea:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3F:72:77:06:65:0C:0F:F8:3F:7C:25:21:25:13:07:F8:02:01:08 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a727::/32 Signature Algorithm: sha256WithRSAEncryption 4b:cc:d3:03:fc:60:63:a5:86:a8:f5:30:2c:da:20:63:ab:ab: 1a:f4:53:28:96:55:68:e9:67:18:dc:62:eb:1f:b3:50:97:1b: b6:07:4f:44:5c:ba:f8:eb:ae:33:d1:4f:8b:7d:2c:a4:fd:fe: c8:45:d5:0e:89:66:a8:de:fb:83:6a:01:b0:e1:18:dd:f9:47: db:a8:59:e8:de:22:1c:fb:8e:f6:6f:76:c3:c8:fb:8f:36:03: 76:03:15:74:82:8d:f9:9c:84:b1:f1:bc:30:36:32:c8:f9:87: ab:03:c2:26:4c:05:a7:cd:29:aa:4b:ee:30:c5:07:bd:f9:1f: a0:6e:9b:81:27:1c:b1:e1:a4:0f:85:97:6d:05:d2:8f:7c:a6: 99:13:d9:98:96:8e:12:95:fa:a2:16:d4:33:b1:fb:38:14:21: ca:90:b3:a4:69:30:3e:69:1c:23:c5:60:a8:5f:2c:e0:08:1e: 09:ec:84:8a:0d:69:a2:94:d2:1d:4e:0d:36:81:f4:b2:7c:96: a4:c9:a0:c3:73:dc:b8:a9:6f:1b:57:40:b8:ab:33:be:12:b0: c0:43:1f:9d:af:7d:62:b5:e2:08:73:a1:0c:f9:15:78:ec:59: 8c:b8:49:23:d4:89:da:89:a9:ab:65:64:9e:62:24:8c:11:18: 54:52:bc:f7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUypWac9icWENsNOmmna3qPF3ZKEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkyM1oX DTI3MDMwMzA2MTQyM1owMzExMC8GA1UEAxMoQjYzRjcyNzcwNjY1MEMwRkY4M0Y3 QzI1MjEyNTEzMDdGODAyMDEwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJrM/LXReetURy+a31PlN3E40Vlh7q1FwEExUG8k0Txlxi6O+PO4Q4+0w4hJ bAlanSOUH5HZMZ8gQ1WKNoCl2uaeP8KswxEbkKoAthtiZtb3vQlYmHIumnAy2Gnu LJdMNaHf4cQCje7GeEbJTg4UvJtHuNzORxyLAt8h2V01P37ivLHz4tQHHKKDOgbf TQy8iKgLsbgFY0DWjYLqtbH08ppNr7QfcM3qTAKOC1hnTPUMcFfBe9J63EtMJAQR /C/tlLWZ/UFwR3IjQlZvil4aVveW7jw3usxRyEJKhB/q/RTKcypl7U5T4SLzWIco w8FwUFa6oC7T70WKc7yO3uDx6jsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS2P3J3 BmUMD/g/fCUhJRMH+AIBCDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQ4MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pycwDQYJKoZIhvcNAQELBQADggEBAEvM0wP8YGOlhqj1MCzaIGOrqxr0UyiWVWjp ZxjcYusfs1CXG7YHT0RcuvjrrjPRT4t9LKT9/shF1Q6JZqje+4NqAbDhGN35R9uo WejeIhz7jvZvdsPI+482A3YDFXSCjfmchLHxvDA2Msj5h6sDwiZMBafNKapL7jDF B735H6Bum4EnHLHhpA+Fl20F0o98ppkT2ZiWjhKV+qIW1DOx+zgUIcqQs6RpMD5p HCPFYKhfLOAIHgnshIoNaaKU0h1ODTaB9LJ8lqTJoMNz3LipbxtXQLirM74SsMBD H52vfWK14ghzoQz5FXjsWYy4SSPUidqJqatlZJ5iJIwRGFRSvPc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:11 2026 by rpki-client