$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144499.roa File: AS144499.roa (raw, json) Hash identifier: GAOTHFEJMxhUUHY72UQlOgC820ZL36bu3WwQmpw/gT0= Subject key identifier: 10:5E:AC:BA:97:94:99:56:3C:D9:38:FB:80:9F:9F:45:B3:85:0A:11 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 78EC629B5DB59388F10256BE85764523B49DC3F8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144499.roa Signing time: Wed 04 Mar 2026 06:13:10 +0000 ROA not before: Wed 04 Mar 2026 06:08:10 +0000 ROA not after: Wed 03 Mar 2027 06:13:10 +0000 asID: 144499 IP address blocks: 240a:a739::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ec:62:9b:5d:b5:93:88:f1:02:56:be:85:76:45:23:b4:9d:c3:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:10 2026 GMT Not After : Mar 3 06:13:10 2027 GMT Subject: CN=105EACBA979499563CD938FB809F9F45B3850A11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a5:bc:27:2b:8a:88:9c:89:c3:54:3c:31:9c: 25:f2:b5:39:ed:3a:9e:ff:5b:10:09:d2:3e:7d:e6: 32:a7:bb:cf:ce:ee:97:4c:39:74:b2:c7:6b:b4:7f: fa:1e:6f:f7:07:27:f7:b5:22:1f:1e:62:6a:a9:29: f1:53:f3:ac:0c:1e:73:13:c2:c7:e9:ae:b6:18:fa: ae:5d:74:01:d3:74:f6:a1:17:a2:e6:a2:1c:45:cb: 10:44:20:85:1f:da:eb:fe:10:58:ae:d3:a2:1d:9c: 6a:fd:42:dd:78:c2:bd:4b:f6:d2:dd:ca:06:de:6c: 3d:02:07:13:08:27:d2:25:68:e9:c9:4d:16:0b:e1: 34:c7:8d:ef:b7:9e:65:fa:b5:bb:10:74:f3:45:69: 7f:80:4c:bd:3c:3c:82:d9:b5:d2:94:25:3e:f5:bf: f0:c1:a4:04:26:10:f6:5a:ea:7b:d6:b9:6e:75:ed: 75:68:7a:ae:ec:38:4c:80:8a:ed:e0:17:31:e1:04: 68:01:61:6b:c7:b2:1d:2b:aa:b2:ed:3d:38:4f:73: 6d:f8:8d:94:0e:35:d1:df:89:31:c4:93:6f:b6:32: 09:f4:4c:04:26:7b:ad:0b:38:5f:f3:05:0c:57:0f: 1a:d0:5f:5d:61:2a:b2:cc:d5:0d:4a:68:b6:39:50: 92:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:5E:AC:BA:97:94:99:56:3C:D9:38:FB:80:9F:9F:45:B3:85:0A:11 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144499.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a739::/32 Signature Algorithm: sha256WithRSAEncryption 6a:b9:2f:5d:ae:88:21:ca:55:7a:c7:0d:3b:00:66:ec:e3:d4: f4:84:b6:65:92:7e:ed:22:5d:66:3a:66:9d:36:fe:0b:f8:17: d7:6e:59:ff:37:93:6f:4d:94:b3:62:89:4b:e3:3b:b9:1c:82: c8:f0:e5:54:92:a2:ea:c5:0a:5e:a4:23:f6:a9:4d:a3:07:b4: 34:78:18:cd:0f:75:98:02:7d:53:28:73:49:5c:95:b4:6d:a2: 46:91:e0:48:07:ac:51:a1:c4:37:ff:ad:0e:34:b7:e3:c2:dc: 0f:4d:1d:ae:9c:57:22:4d:ac:12:c5:a8:a2:de:d3:85:39:a6: 50:31:ba:71:db:f2:bc:c1:06:14:15:eb:b2:cd:ef:6c:51:ca: 0d:7f:0f:9a:07:3e:01:4a:5d:f3:e0:f6:16:de:fe:58:de:1e: b2:67:83:4c:6a:0c:1e:2f:0b:fa:25:ea:61:39:03:11:b5:1d: b2:02:87:ea:34:43:59:75:13:1d:7a:13:3f:c9:e6:4f:0e:f8: 3c:0b:e6:9d:2e:43:3b:64:48:de:80:ec:32:17:9f:da:82:78: 25:23:ca:2d:5a:66:8a:ca:c7:fa:c0:4f:fb:48:a5:47:19:fe: 33:85:85:53:e5:00:70:bc:96:82:a5:e0:8d:7a:79:10:82:0b: e8:86:9f:d5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUeOxim121k4jxAla+hXZFI7Sdw/gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgxMFoX DTI3MDMwMzA2MTMxMFowMzExMC8GA1UEAxMoMTA1RUFDQkE5Nzk0OTk1NjNDRDkz OEZCODA5RjlGNDVCMzg1MEExMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGlvCcrioicicNUPDGcJfK1Oe06nv9bEAnSPn3mMqe7z87ul0w5dLLHa7R/ +h5v9wcn97UiHx5iaqkp8VPzrAwecxPCx+muthj6rl10AdN09qEXouaiHEXLEEQg hR/a6/4QWK7Toh2cav1C3XjCvUv20t3KBt5sPQIHEwgn0iVo6clNFgvhNMeN77ee Zfq1uxB080Vpf4BMvTw8gtm10pQlPvW/8MGkBCYQ9lrqe9a5bnXtdWh6ruw4TICK 7eAXMeEEaAFha8eyHSuqsu09OE9zbfiNlA410d+JMcSTb7YyCfRMBCZ7rQs4X/MF DFcPGtBfXWEqsszVDUpotjlQkqUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQQXqy6 l5SZVjzZOPuAn59Fs4UKETAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDQ5OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pzkwDQYJKoZIhvcNAQELBQADggEBAGq5L12uiCHKVXrHDTsAZuzj1PSEtmWSfu0i XWY6Zp02/gv4F9duWf83k29NlLNiiUvjO7kcgsjw5VSSourFCl6kI/apTaMHtDR4 GM0PdZgCfVMoc0lclbRtokaR4EgHrFGhxDf/rQ40t+PC3A9NHa6cVyJNrBLFqKLe 04U5plAxunHb8rzBBhQV67LN72xRyg1/D5oHPgFKXfPg9hbe/ljeHrJng0xqDB4v C/ol6mE5AxG1HbICh+o0Q1l1Ex16Ez/J5k8O+DwL5p0uQztkSN6A7DIXn9qCeCUj yi1aZorKx/rAT/tIpUcZ/jOFhVPlAHC8loKl4I16eRCCC+iGn9U= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:17 2026 by rpki-client