$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144522.roa File: AS144522.roa (raw, json) Hash identifier: 3RFVJV0imGcfGHk4JC2qOiXy/2H4mslVhS82NZ7B5kI= Subject key identifier: CE:AE:48:CB:82:D7:8E:A3:41:73:39:87:34:95:7B:FD:8F:12:A6:3A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 36FB608384D036024F689E50BCCB60A08D4F8644 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144522.roa Signing time: Wed 04 Mar 2026 06:20:42 +0000 ROA not before: Wed 04 Mar 2026 06:15:42 +0000 ROA not after: Wed 03 Mar 2027 06:20:42 +0000 asID: 144522 IP address blocks: 240a:a750::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:fb:60:83:84:d0:36:02:4f:68:9e:50:bc:cb:60:a0:8d:4f:86:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:42 2026 GMT Not After : Mar 3 06:20:42 2027 GMT Subject: CN=CEAE48CB82D78EA34173398734957BFD8F12A63A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3b:5d:d5:82:eb:b0:e0:9b:bb:c5:da:56:72: ba:41:a6:f0:dd:4e:c8:5b:c5:8c:df:38:91:9d:bd: fe:75:78:27:9e:f1:57:d3:b2:43:2a:85:fe:ec:15: 50:94:2a:43:29:7d:62:1c:ad:00:08:63:5c:e2:7f: fc:1b:b8:60:71:8a:ef:02:40:0b:92:95:3c:ab:96: 0b:e7:fa:4b:d0:bb:6d:04:04:55:85:fa:e3:f1:b0: 16:7e:ff:37:c2:22:37:88:aa:79:9e:22:e8:fd:22: 32:ae:07:84:37:e3:ca:1a:6d:ec:07:b2:cc:86:72: 0f:52:26:f5:a9:3a:73:d1:2e:20:f8:19:49:d6:b1: 3f:b3:85:53:ab:eb:3f:33:ee:ed:5a:95:3f:08:69: a0:bf:e3:c0:ef:d5:cc:e6:55:a6:19:75:44:63:dd: 9f:0a:c3:d5:45:a7:3e:73:f5:80:38:78:33:0b:e6: 05:a5:08:ff:4f:64:ec:14:49:2a:9c:ef:b2:d0:23: 29:ba:3b:ef:df:b3:21:05:57:56:5e:a1:c3:f6:3f: b9:ef:58:da:cd:6e:05:62:f0:16:ff:5e:ec:ea:f5: 94:71:6b:a7:cc:10:c6:1f:e2:70:a5:33:3c:ab:ed: 9c:32:f6:88:be:cf:42:a4:3f:1c:66:37:06:a8:5c: a3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:AE:48:CB:82:D7:8E:A3:41:73:39:87:34:95:7B:FD:8F:12:A6:3A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144522.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a750::/32 Signature Algorithm: sha256WithRSAEncryption 8d:55:63:f2:5d:f3:c7:6c:2e:94:51:9a:97:9f:03:a1:eb:ab: 38:d2:a4:f8:66:40:06:7f:1c:8d:c8:37:bc:b4:1b:3f:e9:09: ef:18:42:12:43:9b:99:1a:48:4a:65:d9:a2:6b:7c:fb:f2:2d: e3:50:66:a7:a9:42:b1:71:27:9b:bf:70:9e:18:19:7d:95:69: 73:32:60:99:27:2e:0f:d1:09:85:9f:ad:9e:d8:88:48:76:6a: 2f:df:74:1b:8a:54:01:c1:0a:0b:ee:af:a2:d5:d1:ca:84:a0: f7:58:5d:6e:84:11:13:d3:89:7a:b0:bb:4b:20:e7:56:7f:df: 71:71:01:4b:78:51:19:f3:51:7e:ba:cc:df:e9:a9:48:6d:78: 60:82:e7:bb:b8:f5:19:3f:27:24:6b:78:18:97:46:b6:42:f0: d8:fa:92:57:f8:d3:b7:ff:12:6e:80:e5:19:69:14:b8:76:27: 16:43:fa:1f:c6:31:55:07:ba:4c:f8:42:fc:ee:59:87:ad:35: 9b:33:86:2d:47:92:92:aa:a9:e8:a1:21:2c:dc:35:40:bb:84: ee:c4:8e:40:40:dd:cf:51:e2:90:ad:85:df:7d:63:3c:19:9e: 39:fd:23:a1:53:77:1d:29:49:cb:c1:ca:74:c5:43:39:83:49: 41:1c:6c:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNvtgg4TQNgJPaJ5QvMtgoI1PhkQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0MloX DTI3MDMwMzA2MjA0MlowMzExMC8GA1UEAxMoQ0VBRTQ4Q0I4MkQ3OEVBMzQxNzMz OTg3MzQ5NTdCRkQ4RjEyQTYzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI47XdWC67Dgm7vF2lZyukGm8N1OyFvFjN84kZ29/nV4J57xV9OyQyqF/uwV UJQqQyl9YhytAAhjXOJ//Bu4YHGK7wJAC5KVPKuWC+f6S9C7bQQEVYX64/GwFn7/ N8IiN4iqeZ4i6P0iMq4HhDfjyhpt7AeyzIZyD1Im9ak6c9EuIPgZSdaxP7OFU6vr PzPu7VqVPwhpoL/jwO/VzOZVphl1RGPdnwrD1UWnPnP1gDh4MwvmBaUI/09k7BRJ KpzvstAjKbo779+zIQVXVl6hw/Y/ue9Y2s1uBWLwFv9e7Or1lHFrp8wQxh/icKUz PKvtnDL2iL7PQqQ/HGY3Bqhco/cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTOrkjL gteOo0FzOYc0lXv9jxKmOjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDUyMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p1AwDQYJKoZIhvcNAQELBQADggEBAI1VY/Jd88dsLpRRmpefA6HrqzjSpPhmQAZ/ HI3IN7y0Gz/pCe8YQhJDm5kaSEpl2aJrfPvyLeNQZqepQrFxJ5u/cJ4YGX2VaXMy YJknLg/RCYWfrZ7YiEh2ai/fdBuKVAHBCgvur6LV0cqEoPdYXW6EERPTiXqwu0sg 51Z/33FxAUt4URnzUX66zN/pqUhteGCC57u49Rk/JyRreBiXRrZC8Nj6klf407f/ Em6A5RlpFLh2JxZD+h/GMVUHukz4QvzuWYetNZszhi1HkpKqqeihISzcNUC7hO7E jkBA3c9R4pCthd99YzwZnjn9I6FTdx0pScvBynTFQzmDSUEcbLA= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:36 2026 by rpki-client