$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144549.roa File: AS144549.roa (raw, json) Hash identifier: qDoYDj67B6eceg47xWvQg4hneBufYiiuj+DApEzfNKk= Subject key identifier: EF:A4:35:53:D8:8C:CF:FA:F5:B4:83:50:6F:DC:CF:36:C0:1C:BD:08 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 206782277B2A811E1A2390C7A6C02B3829763373 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144549.roa Signing time: Wed 04 Mar 2026 06:20:24 +0000 ROA not before: Wed 04 Mar 2026 06:15:24 +0000 ROA not after: Wed 03 Mar 2027 06:20:24 +0000 asID: 144549 IP address blocks: 240a:a76b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:67:82:27:7b:2a:81:1e:1a:23:90:c7:a6:c0:2b:38:29:76:33:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:24 2026 GMT Not After : Mar 3 06:20:24 2027 GMT Subject: CN=EFA43553D88CCFFAF5B483506FDCCF36C01CBD08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ea:6c:c7:35:13:f2:24:d7:8e:f4:62:0b:ea: 82:0e:03:6a:8f:57:c1:32:20:42:fa:00:8c:f2:98: 09:ce:8d:63:6b:0f:35:5c:e5:67:1c:56:f1:c0:91: 3d:80:b0:66:1a:82:52:f9:4f:47:e3:56:b3:b9:d6: ef:d3:82:8f:c9:e5:c0:ba:e1:09:da:e8:57:f0:a4: 28:37:df:ee:75:d4:d1:9a:6c:71:ef:99:85:e9:88: d4:6e:16:cc:8c:bf:fd:a0:94:03:c3:d8:bc:ec:bc: c2:c5:c3:01:93:9d:c1:eb:56:d6:f5:60:75:f6:da: 8e:c9:29:df:51:fc:b8:90:e1:9a:28:bb:a5:28:4d: d6:88:65:db:bc:4c:1b:68:76:bd:c2:8b:c8:a9:a8: 45:fd:4d:db:12:74:e1:83:6d:9e:1e:64:9c:60:3a: 52:26:2f:50:ae:93:0d:1e:27:49:4c:ef:4c:00:a8: 17:04:37:c9:72:0b:0e:af:64:39:68:75:dd:96:38: b4:3d:91:63:8f:b9:54:f3:20:2e:8b:7f:a9:14:ef: 4c:5a:81:cb:03:b0:15:11:9f:ca:31:ed:e3:3a:78: f2:d7:ac:27:71:8e:1a:36:74:b3:eb:31:83:a1:58: 18:ab:19:4a:a3:68:1d:5b:98:f6:d1:27:2e:94:64: 55:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A4:35:53:D8:8C:CF:FA:F5:B4:83:50:6F:DC:CF:36:C0:1C:BD:08 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144549.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a76b::/32 Signature Algorithm: sha256WithRSAEncryption 70:ac:7f:37:ba:4b:47:14:ef:1e:86:5d:ef:eb:26:ef:25:07: 41:3e:e1:0b:04:7a:05:70:1f:78:77:a5:ea:f9:b6:bb:a6:38: 28:d4:5e:2d:33:af:f9:47:f7:b7:51:a2:58:15:c7:0d:de:3a: 07:2b:27:53:a0:83:45:1f:37:8e:52:c6:5c:07:c1:5f:36:9f: 64:dc:57:3c:d1:fc:b1:22:c6:66:7d:8e:ec:db:3b:ae:58:f2: 1e:ee:12:b9:33:08:01:d9:ac:9e:58:7c:47:fe:97:f9:1e:6a: af:61:5c:14:2e:66:d9:9b:86:5b:cd:6b:32:2c:8e:fe:6b:9c: 7b:0a:df:f1:db:73:1a:f1:3b:f5:0e:93:e1:32:a8:7a:2a:f5: aa:7e:1a:15:34:ac:c2:ea:c1:5c:4e:d8:9c:b6:fd:4b:48:4b: e9:85:e5:52:d4:71:51:9a:bb:0c:f0:c5:00:3c:bd:64:72:32: 9e:4a:7a:f1:b3:c4:c8:f3:17:55:f5:bd:bf:4e:cc:50:63:b2: 7d:20:f6:d4:86:5a:6d:8c:ee:89:a4:82:7d:70:15:f7:26:f6: 14:51:10:4e:14:3e:9f:2a:41:d1:75:3e:10:0a:15:8c:e5:df: 9e:df:97:97:23:f1:5a:64:a2:0f:a1:6a:d6:ec:c8:a2:12:0f: 31:83:fd:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIGeCJ3sqgR4aI5DHpsArOCl2M3MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUyNFoX DTI3MDMwMzA2MjAyNFowMzExMC8GA1UEAxMoRUZBNDM1NTNEODhDQ0ZGQUY1QjQ4 MzUwNkZEQ0NGMzZDMDFDQkQwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTqbMc1E/Ik1470Ygvqgg4Dao9XwTIgQvoAjPKYCc6NY2sPNVzlZxxW8cCR PYCwZhqCUvlPR+NWs7nW79OCj8nlwLrhCdroV/CkKDff7nXU0Zpsce+ZhemI1G4W zIy//aCUA8PYvOy8wsXDAZOdwetW1vVgdfbajskp31H8uJDhmii7pShN1ohl27xM G2h2vcKLyKmoRf1N2xJ04YNtnh5knGA6UiYvUK6TDR4nSUzvTACoFwQ3yXILDq9k OWh13ZY4tD2RY4+5VPMgLot/qRTvTFqBywOwFRGfyjHt4zp48tesJ3GOGjZ0s+sx g6FYGKsZSqNoHVuY9tEnLpRkVV0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTvpDVT 2IzP+vW0g1Bv3M82wBy9CDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU0OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p2swDQYJKoZIhvcNAQELBQADggEBAHCsfze6S0cU7x6GXe/rJu8lB0E+4QsEegVw H3h3per5trumOCjUXi0zr/lH97dRolgVxw3eOgcrJ1Ogg0UfN45SxlwHwV82n2Tc VzzR/LEixmZ9juzbO65Y8h7uErkzCAHZrJ5YfEf+l/keaq9hXBQuZtmbhlvNazIs jv5rnHsK3/HbcxrxO/UOk+EyqHoq9ap+GhU0rMLqwVxO2Jy2/UtIS+mF5VLUcVGa uwzwxQA8vWRyMp5KevGzxMjzF1X1vb9OzFBjsn0g9tSGWm2M7omkgn1wFfcm9hRR EE4UPp8qQdF1PhAKFYzl357fl5cj8Vpkog+hatbsyKISDzGD/ZY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:40 2026 by rpki-client