$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144554.roa File: AS144554.roa (raw, json) Hash identifier: 255hFNxbvJvZnEuo/+6mhTKc3zFwWuZ0/2zIT2qlabU= Subject key identifier: EE:EC:76:CC:76:41:8F:37:F7:78:B6:55:B8:88:74:B9:26:DF:38:77 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6CD426234B47D41A03A8018BF5209D0B7265FDAA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144554.roa Signing time: Wed 04 Mar 2026 06:22:04 +0000 ROA not before: Wed 04 Mar 2026 06:17:04 +0000 ROA not after: Wed 03 Mar 2027 06:22:04 +0000 asID: 144554 IP address blocks: 240a:a770::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:d4:26:23:4b:47:d4:1a:03:a8:01:8b:f5:20:9d:0b:72:65:fd:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:04 2026 GMT Not After : Mar 3 06:22:04 2027 GMT Subject: CN=EEEC76CC76418F37F778B655B88874B926DF3877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:60:ba:eb:2c:b5:be:7d:44:46:fb:f2:30:5f: 54:0f:ca:c9:8b:c6:fa:37:d6:e0:7f:dc:95:79:98: 60:86:73:4b:e3:66:90:4d:74:af:14:b4:a2:ca:3e: 80:ae:17:f6:ca:d6:f6:c5:66:d1:08:1a:d2:60:a6: 37:c9:d6:06:19:40:c1:04:a7:82:09:95:ba:04:a1: 6a:c8:c7:d7:14:6b:52:b5:41:4d:7a:94:e7:e2:d5: d4:63:53:05:50:cb:76:f5:97:c9:cd:98:1c:90:79: 10:65:24:4e:e6:ea:1c:ef:66:2f:cc:78:21:e5:fd: 25:d3:4c:73:fc:ab:a3:59:25:bf:c5:e7:b5:28:98: e2:57:4f:21:37:c5:a1:88:95:b9:22:a3:3f:95:8c: ca:8f:53:19:28:1d:1b:2f:aa:31:1d:80:1d:c6:99: 20:85:56:e6:4c:91:61:bd:6b:66:16:73:bc:bf:4d: ef:5a:cf:5c:ae:ca:cb:3f:21:f9:f0:27:3d:13:cb: 0a:cb:53:59:53:e5:60:9b:b2:21:c4:1d:a2:f3:fd: 24:66:7a:0d:56:80:97:0c:af:41:2b:77:df:13:aa: c8:dc:52:21:f4:03:96:36:5e:68:67:4e:3e:9a:e4: 8f:55:1f:cd:e9:e1:e5:1a:b1:5b:bb:ae:e3:4a:62: 07:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EC:76:CC:76:41:8F:37:F7:78:B6:55:B8:88:74:B9:26:DF:38:77 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a770::/32 Signature Algorithm: sha256WithRSAEncryption bb:3c:b0:7c:f4:5f:0e:e2:ad:f0:36:0e:9c:ca:4c:ec:0c:56: d2:11:7f:9a:c7:cb:5c:92:90:a9:84:f0:37:88:dd:4f:83:1c: f7:f8:c1:24:b5:42:d7:28:ae:70:75:fc:fc:3f:3f:19:93:c3: 81:f7:25:a2:96:33:a2:fd:f2:81:47:c5:ef:1b:15:86:e8:21: e9:a3:8b:bf:1f:4b:fc:c0:28:7f:a9:5b:52:3c:78:b4:9b:af: f7:4d:17:89:31:f6:b1:53:a6:77:c3:8d:7a:bd:9d:93:6b:ef: 16:78:de:1d:2e:50:8f:f2:30:15:c9:1a:4a:01:c3:e7:64:dd: d6:85:26:43:b7:57:85:0d:6f:1c:86:c5:9e:23:92:c8:88:67: 6d:6b:7a:78:99:0d:04:13:f9:fd:c0:73:24:3a:10:35:ca:62: ad:e6:bc:5b:76:e6:82:ad:10:19:41:c8:6d:ec:af:89:cb:7a: e0:5e:6a:ef:06:f8:ff:7f:ac:9d:76:71:b4:c3:8f:c5:c8:3e: 08:34:14:e4:cd:2c:1a:45:1b:ea:4c:54:1c:1f:fb:dd:60:f0: 73:fe:b6:8b:12:41:77:c3:c3:26:0f:81:ab:99:d4:d6:65:0b: c6:91:32:62:0a:0d:3d:39:0c:95:62:5a:8d:a4:2b:e5:4e:c7: 59:0d:03:e5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbNQmI0tH1BoDqAGL9SCdC3Jl/aowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcwNFoX DTI3MDMwMzA2MjIwNFowMzExMC8GA1UEAxMoRUVFQzc2Q0M3NjQxOEYzN0Y3NzhC NjU1Qjg4ODc0QjkyNkRGMzg3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJpguusstb59REb78jBfVA/KyYvG+jfW4H/clXmYYIZzS+NmkE10rxS0oso+ gK4X9srW9sVm0Qga0mCmN8nWBhlAwQSnggmVugShasjH1xRrUrVBTXqU5+LV1GNT BVDLdvWXyc2YHJB5EGUkTubqHO9mL8x4IeX9JdNMc/yro1klv8XntSiY4ldPITfF oYiVuSKjP5WMyo9TGSgdGy+qMR2AHcaZIIVW5kyRYb1rZhZzvL9N71rPXK7Kyz8h +fAnPRPLCstTWVPlYJuyIcQdovP9JGZ6DVaAlwyvQSt33xOqyNxSIfQDljZeaGdO Pprkj1Ufzenh5RqxW7uu40piB8cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTu7HbM dkGPN/d4tlW4iHS5Jt84dzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU1NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p3AwDQYJKoZIhvcNAQELBQADggEBALs8sHz0Xw7irfA2DpzKTOwMVtIRf5rHy1yS kKmE8DeI3U+DHPf4wSS1QtcornB1/Pw/PxmTw4H3JaKWM6L98oFHxe8bFYboIemj i78fS/zAKH+pW1I8eLSbr/dNF4kx9rFTpnfDjXq9nZNr7xZ43h0uUI/yMBXJGkoB w+dk3daFJkO3V4UNbxyGxZ4jksiIZ21reniZDQQT+f3AcyQ6EDXKYq3mvFt25oKt EBlByG3sr4nLeuBeau8G+P9/rJ12cbTDj8XIPgg0FOTNLBpFG+pMVBwf+91g8HP+ tosSQXfDwyYPgauZ1NZlC8aRMmIKDT05DJViWo2kK+VOx1kNA+U= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:39 2026 by rpki-client