$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144506.roa File: AS144506.roa (raw, json) Hash identifier: WcyKRkYF/PQIwP9ICKWVuvdq6KG5+VqKRyEraUOIxK0= Subject key identifier: E3:52:B0:8F:21:CC:7E:E1:CC:F1:60:3E:53:17:11:8A:8A:86:83:1A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6B2DFE83463B87075CBB7D4FF28E16F3CAD23963 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144506.roa Signing time: Wed 04 Mar 2026 06:14:57 +0000 ROA not before: Wed 04 Mar 2026 06:09:57 +0000 ROA not after: Wed 03 Mar 2027 06:14:57 +0000 asID: 144506 IP address blocks: 240a:a740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:2d:fe:83:46:3b:87:07:5c:bb:7d:4f:f2:8e:16:f3:ca:d2:39:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:57 2026 GMT Not After : Mar 3 06:14:57 2027 GMT Subject: CN=E352B08F21CC7EE1CCF1603E5317118A8A86831A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5d:34:10:dc:7a:e3:8b:3e:8c:ee:c7:4f:cd: ff:db:15:f1:c2:d4:d4:20:fb:22:d6:65:e6:8e:56: 09:5f:24:83:29:3a:10:f2:bb:36:e8:26:6a:a3:d4: af:93:72:3a:35:99:4e:4d:89:6f:eb:d8:ee:11:9d: a3:9a:ee:6f:3b:26:f9:d9:7a:34:95:c0:26:fd:ea: 1e:34:89:27:60:46:6b:f0:a6:ff:88:95:d2:33:43: de:08:8d:92:cb:41:87:e0:47:7c:1f:e0:53:f9:35: c4:50:07:50:21:fc:78:45:0f:2d:1b:1b:f4:d3:50: 3c:b1:87:94:3a:f7:f5:68:73:fe:44:cc:7b:0a:2d: fe:9c:d3:2a:16:b8:cb:c6:2d:63:8c:f6:16:3a:a2: 9c:f7:75:a9:9d:06:5c:12:e8:3c:95:7a:87:3b:f7: 58:39:91:8c:fd:56:b9:d4:a0:db:0e:3f:8d:0e:41: cf:3e:bb:bf:8d:d2:08:5f:75:eb:c3:ab:6c:0c:88: 0f:05:30:f8:6c:b4:75:1b:f9:ba:54:66:24:94:be: 04:d4:d0:e5:4e:c9:8a:c7:74:41:49:70:0c:0a:24: 4f:53:af:bc:c4:52:ac:8b:bd:39:ea:46:d8:1f:b5: 21:98:c8:cf:62:e7:b1:24:9a:8f:14:05:6b:d0:b4: 9e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:52:B0:8F:21:CC:7E:E1:CC:F1:60:3E:53:17:11:8A:8A:86:83:1A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144506.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a740::/32 Signature Algorithm: sha256WithRSAEncryption ae:0e:da:1c:30:1c:00:1e:77:fc:cd:65:07:6a:d5:8e:e1:be: c6:b7:03:f8:54:37:79:e1:f9:db:36:c3:f8:51:48:00:14:59: 4d:fe:fd:3b:a9:88:dc:12:5c:10:95:ac:ae:0b:aa:52:19:54: ba:d6:36:2b:fc:6b:e2:78:3f:8e:9c:87:1c:24:02:7a:0f:da: 7e:98:03:04:96:dc:3c:ea:d4:37:24:39:08:ab:13:e6:cb:ae: 4f:23:6c:02:58:00:39:42:f4:14:11:8a:56:a1:c2:52:b2:03: 22:35:6d:cf:b8:60:55:d6:ef:ff:50:92:25:67:81:ee:0e:d4: 50:d4:06:85:bf:08:86:3c:22:f8:4c:8e:99:96:38:53:cb:32: 7b:df:ea:82:5a:fe:29:89:d2:f9:4d:c1:f9:91:4f:7c:5d:da: 9d:b8:de:97:f1:a5:b8:24:ca:18:59:81:57:f4:cd:66:0e:35: 82:b1:b9:fa:4e:4c:0f:ac:be:5e:f3:5c:cf:98:cb:54:d1:b6: b3:84:0b:92:28:f1:a3:86:94:2f:e2:5c:ec:52:bf:75:16:b7: d1:04:af:4e:6b:af:20:90:ac:ac:4d:41:94:65:0b:b3:70:58: 1e:2d:f6:be:79:b8:6a:fa:0f:e7:19:e8:63:8c:68:b5:7c:7f: 3e:e8:f8:f1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUay3+g0Y7hwdcu31P8o4W88rSOWMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk1N1oX DTI3MDMwMzA2MTQ1N1owMzExMC8GA1UEAxMoRTM1MkIwOEYyMUNDN0VFMUNDRjE2 MDNFNTMxNzExOEE4QTg2ODMxQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJtdNBDceuOLPozux0/N/9sV8cLU1CD7ItZl5o5WCV8kgyk6EPK7NugmaqPU r5NyOjWZTk2Jb+vY7hGdo5rubzsm+dl6NJXAJv3qHjSJJ2BGa/Cm/4iV0jND3giN kstBh+BHfB/gU/k1xFAHUCH8eEUPLRsb9NNQPLGHlDr39Whz/kTMewot/pzTKha4 y8YtY4z2FjqinPd1qZ0GXBLoPJV6hzv3WDmRjP1WudSg2w4/jQ5Bzz67v43SCF91 68OrbAyIDwUw+Gy0dRv5ulRmJJS+BNTQ5U7Jisd0QUlwDAokT1OvvMRSrIu9OepG 2B+1IZjIz2LnsSSajxQFa9C0nqcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTjUrCP Icx+4czxYD5TFxGKioaDGjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDUwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p0AwDQYJKoZIhvcNAQELBQADggEBAK4O2hwwHAAed/zNZQdq1Y7hvsa3A/hUN3nh +ds2w/hRSAAUWU3+/TupiNwSXBCVrK4LqlIZVLrWNiv8a+J4P46chxwkAnoP2n6Y AwSW3Dzq1DckOQirE+bLrk8jbAJYADlC9BQRilahwlKyAyI1bc+4YFXW7/9QkiVn ge4O1FDUBoW/CIY8IvhMjpmWOFPLMnvf6oJa/imJ0vlNwfmRT3xd2p243pfxpbgk yhhZgVf0zWYONYKxufpOTA+svl7zXM+Yy1TRtrOEC5Io8aOGlC/iXOxSv3UWt9EE r05rryCQrKxNQZRlC7NwWB4t9r55uGr6D+cZ6GOMaLV8fz7o+PE= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:23 2026 by rpki-client