$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144537.roa File: AS144537.roa (raw, json) Hash identifier: P3slh2Ol+dqahGkZV/l+KW5g9xXokZ5QN2yxwu18jCk= Subject key identifier: 68:C1:5A:91:B2:A4:AD:5D:DE:9C:AA:D5:86:23:A5:51:BA:FC:A0:F6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 56EB0FFA79CA232D55797AAB9CD494AC7C1AE5DD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144537.roa Signing time: Wed 04 Mar 2026 06:22:26 +0000 ROA not before: Wed 04 Mar 2026 06:17:26 +0000 ROA not after: Wed 03 Mar 2027 06:22:26 +0000 asID: 144537 IP address blocks: 240a:a75f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:eb:0f:fa:79:ca:23:2d:55:79:7a:ab:9c:d4:94:ac:7c:1a:e5:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:26 2026 GMT Not After : Mar 3 06:22:26 2027 GMT Subject: CN=68C15A91B2A4AD5DDE9CAAD58623A551BAFCA0F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7e:db:ed:12:cc:45:36:78:78:67:99:13:9e: 59:98:16:16:3e:7b:fe:16:fc:20:97:8f:df:55:8c: c3:75:26:89:ea:fa:3d:a2:57:9b:cb:bd:a1:90:06: 57:63:27:d8:7e:53:5b:56:43:4d:5c:15:37:4a:1d: 0c:85:fb:c2:50:e7:dc:e9:2d:32:61:bb:64:43:9f: 55:57:f6:e4:f3:04:c2:fa:b6:65:52:23:c5:de:3f: 80:b6:7c:e1:04:06:43:c7:aa:a0:3c:2c:02:09:8f: fd:62:b8:4c:d6:d6:3c:fd:bc:75:71:01:ce:2c:c1: d0:ad:44:ba:b4:bd:35:6c:22:9c:67:03:73:07:0c: b4:cf:28:7d:d0:a0:3a:9b:19:2f:c0:17:df:87:97: cc:f6:3a:a6:c1:56:fc:68:68:b8:7a:b9:e5:c4:92: b2:e7:1f:51:07:54:66:eb:07:28:27:9d:1d:6e:5e: 94:85:20:dc:2e:73:1c:d3:3e:97:2e:cf:53:19:47: 70:cc:c9:8d:ff:66:b3:58:39:87:f9:0a:40:c9:5b: e2:e9:79:49:1d:8f:15:57:86:e0:99:51:9f:b1:0f: 1f:d7:a8:58:03:2f:04:4e:90:c2:94:6d:f4:04:e6: f4:08:94:3f:a4:a0:4d:2c:bb:2e:c5:09:05:d3:ac: 97:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C1:5A:91:B2:A4:AD:5D:DE:9C:AA:D5:86:23:A5:51:BA:FC:A0:F6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a75f::/32 Signature Algorithm: sha256WithRSAEncryption 87:9a:6f:c2:0d:aa:51:77:bc:71:68:6c:b5:da:c8:18:a0:6a: a5:65:00:12:43:ae:5f:3e:bd:99:55:7b:86:5e:6e:a2:86:20: 0d:2f:59:7f:81:b7:a5:3a:aa:1b:a9:82:b7:95:51:9b:78:87: eb:2e:05:2a:a6:18:74:c6:22:50:17:3f:21:01:35:fd:b0:78: 4b:3f:32:be:81:d7:d5:73:86:09:da:c0:24:57:3d:af:eb:b9: 75:b5:cc:90:15:3b:f5:a3:77:50:6e:82:45:d3:1c:01:c7:1e: bb:fa:b0:bd:1d:84:79:a6:7f:77:a3:97:f8:48:a2:ac:8b:41: ad:52:94:eb:26:0a:53:ef:6a:26:e8:3b:76:1a:ef:5b:94:8b: 03:f5:96:cf:d5:96:1d:2d:db:63:dd:12:37:99:7c:1d:4a:05: cb:39:d6:76:34:3a:fc:29:cb:54:aa:4c:70:9f:ea:66:4d:42: 8c:35:3d:0b:a2:3a:de:e0:b9:8e:e7:a6:a7:4a:6e:8e:d6:e7: 7b:24:35:92:97:92:b8:6c:a3:53:ec:f6:a4:1c:dd:0e:47:b9: fe:48:14:ee:e9:23:53:6a:27:3d:b3:7d:c8:23:88:54:3b:64: a9:6c:99:c3:1a:15:d3:d9:f9:13:4d:c0:cf:02:bf:e7:ac:a6: 92:0f:d0:92 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVusP+nnKIy1VeXqrnNSUrHwa5d0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcyNloX DTI3MDMwMzA2MjIyNlowMzExMC8GA1UEAxMoNjhDMTVBOTFCMkE0QUQ1RERFOUNB QUQ1ODYyM0E1NTFCQUZDQTBGNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKN+2+0SzEU2eHhnmROeWZgWFj57/hb8IJeP31WMw3Umier6PaJXm8u9oZAG V2Mn2H5TW1ZDTVwVN0odDIX7wlDn3OktMmG7ZEOfVVf25PMEwvq2ZVIjxd4/gLZ8 4QQGQ8eqoDwsAgmP/WK4TNbWPP28dXEBzizB0K1EurS9NWwinGcDcwcMtM8ofdCg OpsZL8AX34eXzPY6psFW/GhouHq55cSSsucfUQdUZusHKCedHW5elIUg3C5zHNM+ ly7PUxlHcMzJjf9ms1g5h/kKQMlb4ul5SR2PFVeG4JlRn7EPH9eoWAMvBE6QwpRt 9ATm9AiUP6SgTSy7LsUJBdOsl5sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRowVqR sqStXd6cqtWGI6VRuvyg9jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDUzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p18wDQYJKoZIhvcNAQELBQADggEBAIeab8INqlF3vHFobLXayBigaqVlABJDrl8+ vZlVe4ZebqKGIA0vWX+Bt6U6qhupgreVUZt4h+suBSqmGHTGIlAXPyEBNf2weEs/ Mr6B19VzhgnawCRXPa/ruXW1zJAVO/Wjd1BugkXTHAHHHrv6sL0dhHmmf3ejl/hI oqyLQa1SlOsmClPvaiboO3Ya71uUiwP1ls/Vlh0t22PdEjeZfB1KBcs51nY0Ovwp y1SqTHCf6mZNQow1PQuiOt7guY7npqdKbo7W53skNZKXkrhso1Ps9qQc3Q5Huf5I FO7pI1NqJz2zfcgjiFQ7ZKlsmcMaFdPZ+RNNwM8Cv+esppIP0JI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:41 2026 by rpki-client