$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144535.roa File: AS144535.roa (raw, json) Hash identifier: OImGzJhhkl4tat2ZXlqOznUwnBCjn8cR2Aq8DxHB/Tg= Subject key identifier: A6:FF:62:44:7A:6F:DA:C6:CF:84:03:8E:F2:CF:31:F0:68:C4:48:62 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1A51E1DC127B860FFD189AC76B99020FEE151472 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144535.roa Signing time: Wed 04 Mar 2026 06:20:53 +0000 ROA not before: Wed 04 Mar 2026 06:15:53 +0000 ROA not after: Wed 03 Mar 2027 06:20:53 +0000 asID: 144535 IP address blocks: 240a:a75d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:51:e1:dc:12:7b:86:0f:fd:18:9a:c7:6b:99:02:0f:ee:15:14:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:53 2026 GMT Not After : Mar 3 06:20:53 2027 GMT Subject: CN=A6FF62447A6FDAC6CF84038EF2CF31F068C44862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2b:f9:29:1a:7f:cc:7d:e5:73:8d:24:1d:0f: 05:b3:3c:37:71:8e:c9:01:6c:ef:bf:25:a6:8f:4e: c9:cd:f6:6a:fc:e2:f9:1a:c8:01:1a:45:e0:4c:98: ca:b4:75:60:8f:0a:bc:cb:05:d5:b3:c1:20:c4:e5: 42:4c:1b:e6:14:3d:21:25:56:53:48:cf:ef:9e:22: e3:3d:7a:2f:33:ca:5d:bb:b5:1d:53:19:bc:93:0d: df:4b:3e:67:23:b7:20:a2:f6:b2:18:e1:8b:22:b2: 66:0e:6d:f9:85:c4:8d:19:2b:3e:38:29:45:45:43: 20:90:da:16:5a:c4:68:0f:e9:b1:6c:ca:07:eb:d0: 6a:73:e9:f0:7e:7b:0d:8c:2c:44:62:66:cf:09:5e: 43:4e:c8:e0:ff:d3:7a:05:ff:a4:2a:66:87:3a:45: 36:a0:d2:31:34:4d:e4:85:68:d0:3b:a1:2d:19:44: e6:39:d4:1c:df:85:ef:50:03:65:c4:3d:07:ad:04: ed:5e:f9:95:28:86:81:42:5e:03:e8:35:56:f3:6a: 6b:7e:31:01:fe:22:b3:1c:83:1a:9d:28:2a:c1:dc: 2e:73:8f:d1:03:f0:91:11:e7:28:3a:3a:72:3e:11: 6b:1f:66:4d:10:19:86:df:d6:61:a2:ea:d0:60:a5: 2e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:FF:62:44:7A:6F:DA:C6:CF:84:03:8E:F2:CF:31:F0:68:C4:48:62 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a75d::/32 Signature Algorithm: sha256WithRSAEncryption 89:05:49:c7:a8:94:5b:e0:48:17:7a:ae:ed:57:d4:33:1e:d1: 1b:b6:b3:a0:78:e7:3b:62:18:e8:e2:c5:fd:73:da:a0:02:5c: 71:5d:23:39:67:0f:45:66:90:65:30:23:a6:29:bc:b3:64:53: 2e:3d:b2:a8:88:91:ca:bc:e5:93:e4:46:1c:c0:fc:bb:17:c4: 45:92:da:c8:2b:d6:ef:0d:b8:a4:be:62:c7:3f:b5:f6:63:36: b8:3e:ff:58:bf:e1:8e:50:8d:0a:a3:eb:45:35:c1:e9:57:a9: 1d:59:bb:77:72:52:40:76:ab:7e:7f:4f:ac:01:d3:43:7d:08: 83:c8:c4:e2:ab:2f:9e:6a:1c:08:08:bd:86:fa:05:34:9f:85: 4f:06:d3:26:e2:f8:79:95:d8:22:5a:d2:96:74:8a:04:c9:ff: ae:fe:7a:00:ed:f6:e4:39:97:99:5c:34:6e:cc:ce:19:a4:52: 32:d9:6b:20:e2:c7:2a:d1:b9:05:5b:63:a8:96:90:15:32:47: cc:ba:91:1f:20:81:f4:43:d2:be:f7:81:2b:d4:9d:04:61:2d: 01:2b:ab:32:76:cb:5d:92:ee:30:15:9d:6e:a3:b5:e4:88:90: 5f:d3:c3:f2:ef:51:31:ac:84:12:fd:82:bb:ab:a4:f1:9a:3f: e0:2e:41:eb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGlHh3BJ7hg/9GJrHa5kCD+4VFHIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU1M1oX DTI3MDMwMzA2MjA1M1owMzExMC8GA1UEAxMoQTZGRjYyNDQ3QTZGREFDNkNGODQw MzhFRjJDRjMxRjA2OEM0NDg2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJkr+Skaf8x95XONJB0PBbM8N3GOyQFs778lpo9Oyc32avzi+RrIARpF4EyY yrR1YI8KvMsF1bPBIMTlQkwb5hQ9ISVWU0jP754i4z16LzPKXbu1HVMZvJMN30s+ ZyO3IKL2shjhiyKyZg5t+YXEjRkrPjgpRUVDIJDaFlrEaA/psWzKB+vQanPp8H57 DYwsRGJmzwleQ07I4P/TegX/pCpmhzpFNqDSMTRN5IVo0DuhLRlE5jnUHN+F71AD ZcQ9B60E7V75lSiGgUJeA+g1VvNqa34xAf4isxyDGp0oKsHcLnOP0QPwkRHnKDo6 cj4Rax9mTRAZht/WYaLq0GClLn8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSm/2JE em/axs+EA47yzzHwaMRIYjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDUzNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p10wDQYJKoZIhvcNAQELBQADggEBAIkFSceolFvgSBd6ru1X1DMe0Ru2s6B45zti GOjixf1z2qACXHFdIzlnD0VmkGUwI6YpvLNkUy49sqiIkcq85ZPkRhzA/LsXxEWS 2sgr1u8NuKS+Ysc/tfZjNrg+/1i/4Y5QjQqj60U1welXqR1Zu3dyUkB2q35/T6wB 00N9CIPIxOKrL55qHAgIvYb6BTSfhU8G0ybi+HmV2CJa0pZ0igTJ/67+egDt9uQ5 l5lcNG7MzhmkUjLZayDixyrRuQVbY6iWkBUyR8y6kR8ggfRD0r73gSvUnQRhLQEr qzJ2y12S7jAVnW6jteSIkF/Tw/LvUTGshBL9grurpPGaP+AuQes= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:04 2026 by rpki-client