$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144511.roa File: AS144511.roa (raw, json) Hash identifier: BVNDdzllOXgG7SffhbSOi/GfksnAC6HQJEIpLgdWc+4= Subject key identifier: 16:4F:2E:62:E1:40:D8:05:6F:C3:62:E4:93:4A:43:36:B4:30:D2:B0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 468431842302404FFEE2CE64E1B0728F30EE6551 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144511.roa Signing time: Wed 04 Mar 2026 06:21:30 +0000 ROA not before: Wed 04 Mar 2026 06:16:30 +0000 ROA not after: Wed 03 Mar 2027 06:21:30 +0000 asID: 144511 IP address blocks: 240a:a745::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:84:31:84:23:02:40:4f:fe:e2:ce:64:e1:b0:72:8f:30:ee:65:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:30 2026 GMT Not After : Mar 3 06:21:30 2027 GMT Subject: CN=164F2E62E140D8056FC362E4934A4336B430D2B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:29:9f:22:25:df:c2:cc:3f:71:b6:ff:c0:42: ff:23:1a:da:07:6d:40:b2:b9:2b:b4:e2:5a:4f:e0: ee:53:71:5a:97:c5:57:40:32:4e:73:8e:cd:b2:5d: 35:aa:84:e2:14:97:d7:1f:00:60:a9:0b:80:c7:23: 95:29:38:6c:27:02:71:96:3d:39:a8:47:23:8b:ad: 27:50:f7:2e:29:3c:9e:c6:d8:b7:c4:24:c4:3b:e3: f4:1f:80:48:3a:03:7b:83:d7:54:02:48:a2:67:a9: 4e:cd:d3:1a:14:4c:48:3d:da:cf:6f:54:12:35:e6: 2f:a9:13:70:c2:0b:4b:ec:76:21:55:15:b3:51:95: d8:e7:a3:2d:c1:ad:47:06:e0:28:a3:22:da:0e:99: 11:05:c0:12:0c:17:df:6a:d8:c0:9f:5d:cf:c7:ea: 62:e1:aa:1d:3a:f2:34:d5:74:fd:94:c0:1e:5b:b5: a2:74:e7:80:e7:2d:68:a2:05:5f:e1:96:65:78:1e: 7f:1a:b1:2c:19:fb:fe:67:f3:6a:de:a9:7b:75:4d: 82:ba:0a:f4:55:1d:5b:d0:59:d5:e2:4e:fa:d4:e0: e1:68:a7:99:35:ac:44:f5:33:cc:d0:49:ce:4a:b7: b2:95:1a:83:74:7b:9e:1a:a6:c7:83:af:50:06:78: e5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4F:2E:62:E1:40:D8:05:6F:C3:62:E4:93:4A:43:36:B4:30:D2:B0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144511.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a745::/32 Signature Algorithm: sha256WithRSAEncryption c7:16:17:33:28:d3:ab:f4:0c:8c:8d:da:e5:52:d4:84:66:ae: f2:02:04:41:60:fc:74:4d:c8:63:da:b6:0d:db:c3:45:40:a9: ac:1d:6c:76:9a:3d:50:cc:28:38:41:ad:54:14:f2:6b:59:a5: 6b:12:4c:80:dd:96:7c:af:0b:f6:76:a1:7f:5f:18:9e:2e:6d: 71:f8:be:7c:88:5b:10:1c:58:ef:80:da:75:7a:ee:2b:63:17: 5a:22:87:12:25:0e:bd:10:ee:d5:d2:99:df:a6:5c:6f:ed:09: 68:2b:02:4e:1d:61:ea:d8:57:a7:7c:3a:d1:be:6d:9c:e2:ba: c0:9b:a6:b3:88:5c:a0:b1:50:b7:6c:e6:27:b3:34:c5:b0:34: fb:f6:82:20:82:79:5f:88:17:2e:33:65:6a:21:d0:ec:41:ab: 12:91:a9:9f:82:50:64:9f:1a:78:63:10:54:47:5c:e2:8f:5e: fe:d0:93:5b:3e:08:f0:65:66:b8:d6:a6:ac:38:ed:50:a0:38: 20:94:03:99:7b:5a:d4:ac:56:83:34:33:8d:81:1c:8d:a5:b4: c8:8f:2d:ba:17:8b:f2:e0:bc:dd:7e:48:78:45:dc:8e:84:8d: 15:f8:80:61:17:53:4a:d7:23:61:d0:2e:c1:45:fb:29:ef:2d: 2b:27:c9:8e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIURoQxhCMCQE/+4s5k4bByjzDuZVEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYzMFoX DTI3MDMwMzA2MjEzMFowMzExMC8GA1UEAxMoMTY0RjJFNjJFMTQwRDgwNTZGQzM2 MkU0OTM0QTQzMzZCNDMwRDJCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOopnyIl38LMP3G2/8BC/yMa2gdtQLK5K7TiWk/g7lNxWpfFV0AyTnOOzbJd NaqE4hSX1x8AYKkLgMcjlSk4bCcCcZY9OahHI4utJ1D3Lik8nsbYt8QkxDvj9B+A SDoDe4PXVAJIomepTs3TGhRMSD3az29UEjXmL6kTcMILS+x2IVUVs1GV2OejLcGt RwbgKKMi2g6ZEQXAEgwX32rYwJ9dz8fqYuGqHTryNNV0/ZTAHlu1onTngOctaKIF X+GWZXgefxqxLBn7/mfzat6pe3VNgroK9FUdW9BZ1eJO+tTg4WinmTWsRPUzzNBJ zkq3spUag3R7nhqmx4OvUAZ45UsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQWTy5i 4UDYBW/DYuSTSkM2tDDSsDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDUxMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p0UwDQYJKoZIhvcNAQELBQADggEBAMcWFzMo06v0DIyN2uVS1IRmrvICBEFg/HRN yGPatg3bw0VAqawdbHaaPVDMKDhBrVQU8mtZpWsSTIDdlnyvC/Z2oX9fGJ4ubXH4 vnyIWxAcWO+A2nV67itjF1oihxIlDr0Q7tXSmd+mXG/tCWgrAk4dYerYV6d8OtG+ bZziusCbprOIXKCxULds5iezNMWwNPv2giCCeV+IFy4zZWoh0OxBqxKRqZ+CUGSf GnhjEFRHXOKPXv7Qk1s+CPBlZrjWpqw47VCgOCCUA5l7WtSsVoM0M42BHI2ltMiP LboXi/LgvN1+SHhF3I6EjRX4gGEXU0rXI2HQLsFF+ynvLSsnyY4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:58 2026 by rpki-client