$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144509.roa File: AS144509.roa (raw, json) Hash identifier: Uo2rEj3NVAdP3lVP+dJSEtbRkiBB31Q/k20QzHmiFo8= Subject key identifier: 1E:32:D3:48:CA:C0:15:80:6A:46:58:65:04:FD:CF:C9:5F:C9:48:00 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 59FB974B51A1AB353DC748B35BD04369385595CC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144509.roa Signing time: Wed 04 Mar 2026 06:21:53 +0000 ROA not before: Wed 04 Mar 2026 06:16:53 +0000 ROA not after: Wed 03 Mar 2027 06:21:53 +0000 asID: 144509 IP address blocks: 240a:a743::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fb:97:4b:51:a1:ab:35:3d:c7:48:b3:5b:d0:43:69:38:55:95:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:53 2026 GMT Not After : Mar 3 06:21:53 2027 GMT Subject: CN=1E32D348CAC015806A46586504FDCFC95FC94800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8b:87:19:e6:80:dc:bf:37:c0:be:41:03:a0: b5:38:05:b0:c1:48:a6:07:7a:8b:60:77:46:c8:11: 77:17:82:e8:fb:19:4d:7b:4f:1b:11:b0:8f:3d:77: 8e:36:e5:91:1f:54:73:42:66:d9:14:47:80:5f:01: 49:ce:80:2a:0a:f5:e2:f1:a2:cb:e7:67:5a:b5:80: 42:4b:dc:f0:e9:46:41:91:3e:2a:cd:5c:71:dd:2a: 32:01:2c:9a:9f:b3:31:26:e4:3f:bf:60:aa:f1:f5: 40:3f:4a:71:61:05:89:08:a6:c8:66:14:19:67:9c: 58:ec:8c:ce:70:92:dc:73:9c:5d:66:d1:a6:e3:a3: dd:80:e8:78:10:23:50:ec:4f:2d:a2:13:45:7d:7b: 5d:67:8d:c4:12:5f:ca:1d:93:a1:72:ef:50:17:cd: 8b:92:ed:52:ba:bd:53:be:6f:ae:e0:de:dc:b9:f5: cd:d5:1f:fc:bc:91:3d:9e:35:d9:0b:c5:39:02:4f: 2c:d1:31:75:c8:e0:a6:17:49:fe:81:9a:9d:d8:16: ee:01:09:47:f1:f6:a2:67:36:3c:58:28:8a:a2:b7: 28:72:ff:80:c6:b0:e0:1f:10:56:e3:c4:19:cf:12: 8a:38:53:ae:87:11:49:57:ce:3b:bc:aa:b9:3b:dd: ae:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:32:D3:48:CA:C0:15:80:6A:46:58:65:04:FD:CF:C9:5F:C9:48:00 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a743::/32 Signature Algorithm: sha256WithRSAEncryption 59:33:98:c2:68:8f:7a:a8:89:b3:23:8a:f6:81:10:42:84:c7: 79:45:84:68:28:22:29:e3:85:26:56:75:93:fe:46:55:e6:37: da:74:94:f7:b4:09:86:51:43:f0:e0:b7:1a:fb:21:23:55:de: 95:de:07:d1:22:1e:2b:28:60:4e:7a:9f:2b:70:60:55:f3:5e: 2d:a2:42:53:b5:cf:68:0e:41:6a:a2:ca:9c:15:8b:fb:96:fd: 3f:27:77:a1:33:4d:71:23:3f:5f:a4:a7:b9:78:4f:09:2a:91: 7e:18:cb:66:33:20:e2:87:08:bb:a5:03:c4:6d:fb:9c:12:f8: 22:93:c1:50:aa:c4:a7:a1:d1:22:2b:2b:d1:7b:9e:be:30:03: 93:a9:9c:00:ee:c1:ce:2c:7d:fa:c8:85:d1:33:2e:8e:4f:12: 93:04:07:0f:16:8d:04:74:b5:1f:66:23:de:c7:fa:e1:84:3a: 04:6d:23:93:02:d3:37:a6:94:80:4e:e9:42:06:82:18:1f:12: 80:ea:1e:c3:60:77:28:90:ed:44:14:95:94:e4:be:dc:24:81: 9c:b7:ed:3b:d6:2d:73:04:82:0f:f4:51:4a:20:09:00:f1:a7: d7:d0:6e:96:d7:94:b6:e3:ba:23:74:9d:e2:90:9e:e1:b3:27: 11:dc:e0:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUWfuXS1GhqzU9x0izW9BDaThVlcwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1M1oX DTI3MDMwMzA2MjE1M1owMzExMC8GA1UEAxMoMUUzMkQzNDhDQUMwMTU4MDZBNDY1 ODY1MDRGRENGQzk1RkM5NDgwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmLhxnmgNy/N8C+QQOgtTgFsMFIpgd6i2B3RsgRdxeC6PsZTXtPGxGwjz13 jjblkR9Uc0Jm2RRHgF8BSc6AKgr14vGiy+dnWrWAQkvc8OlGQZE+Ks1ccd0qMgEs mp+zMSbkP79gqvH1QD9KcWEFiQimyGYUGWecWOyMznCS3HOcXWbRpuOj3YDoeBAj UOxPLaITRX17XWeNxBJfyh2ToXLvUBfNi5LtUrq9U75vruDe3Ln1zdUf/LyRPZ41 2QvFOQJPLNExdcjgphdJ/oGandgW7gEJR/H2omc2PFgoiqK3KHL/gMaw4B8QVuPE Gc8SijhTrocRSVfOO7yquTvdrpsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQeMtNI ysAVgGpGWGUE/c/JX8lIADAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDUwOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p0MwDQYJKoZIhvcNAQELBQADggEBAFkzmMJoj3qoibMjivaBEEKEx3lFhGgoIinj hSZWdZP+RlXmN9p0lPe0CYZRQ/Dgtxr7ISNV3pXeB9EiHisoYE56nytwYFXzXi2i QlO1z2gOQWqiypwVi/uW/T8nd6EzTXEjP1+kp7l4TwkqkX4Yy2YzIOKHCLulA8Rt +5wS+CKTwVCqxKeh0SIrK9F7nr4wA5OpnADuwc4sffrIhdEzLo5PEpMEBw8WjQR0 tR9mI97H+uGEOgRtI5MC0zemlIBO6UIGghgfEoDqHsNgdyiQ7UQUlZTkvtwkgZy3 7TvWLXMEgg/0UUogCQDxp9fQbpbXlLbjuiN0neKQnuGzJxHc4Nk= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:44 2026 by rpki-client