$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144558.roa File: AS144558.roa (raw, json) Hash identifier: IOowjgJdOkn5QHwuVMz/WvyuiRcRl65cAj8LN5l08MI= Subject key identifier: 1B:2E:D9:F3:9A:8C:72:4A:92:20:27:2C:2F:34:AA:FF:85:8D:D2:54 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 13193164AAE9473AB4C2BE073A9D0BED1EC2086C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144558.roa Signing time: Wed 04 Mar 2026 06:22:37 +0000 ROA not before: Wed 04 Mar 2026 06:17:37 +0000 ROA not after: Wed 03 Mar 2027 06:22:37 +0000 asID: 144558 IP address blocks: 240a:a774::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:19:31:64:aa:e9:47:3a:b4:c2:be:07:3a:9d:0b:ed:1e:c2:08:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:37 2026 GMT Not After : Mar 3 06:22:37 2027 GMT Subject: CN=1B2ED9F39A8C724A9220272C2F34AAFF858DD254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:92:68:bb:2e:75:8c:57:9d:04:28:87:cd:85: 60:41:2a:d1:5d:d3:bc:3f:d8:c2:eb:f0:48:02:26: 98:5c:64:3b:b5:e0:c7:90:ed:a5:5c:b7:58:44:22: 39:4a:60:46:d4:52:36:27:0b:b1:55:47:e3:19:44: bd:d3:a9:8e:be:b2:ba:ea:8a:34:f9:e5:40:45:fd: 68:e7:0e:51:a1:06:00:ec:54:29:16:a4:80:dc:1f: b5:3f:36:7c:e0:e6:7c:9e:6f:e9:69:59:ee:40:a2: e1:9b:f7:db:6a:83:f3:1b:30:40:12:7e:1b:b2:92: ac:97:f2:c7:02:6d:30:fe:e2:93:ff:87:4e:b7:25: 95:f5:7e:c2:3b:b6:e9:ea:7d:3f:e1:a6:84:4a:1b: 28:5a:ed:a8:2c:24:ac:08:f4:47:3c:e1:fd:61:cc: e7:10:b0:08:87:0b:c0:21:b6:27:7e:1e:ef:b1:ef: a9:4b:6a:eb:b1:5b:9e:12:02:35:6d:58:77:33:7d: 96:f6:05:ef:f2:67:03:82:69:eb:40:92:54:e5:49: 2f:ef:3d:88:a9:73:73:b0:0a:40:6b:e0:ee:28:8b: 97:60:66:d3:d7:86:4d:5e:33:6b:74:31:14:91:5c: c4:db:6a:8f:d7:51:00:94:54:77:c2:24:31:b5:c5: 5d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2E:D9:F3:9A:8C:72:4A:92:20:27:2C:2F:34:AA:FF:85:8D:D2:54 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144558.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a774::/32 Signature Algorithm: sha256WithRSAEncryption a3:e7:c7:81:b5:62:f5:37:22:79:b1:36:fc:8b:36:e1:8f:f6: 60:af:a0:22:9d:f9:d2:6b:58:2c:4f:1f:28:a5:b0:17:07:97: dc:c8:fc:19:1e:c2:aa:d5:83:33:00:2b:cf:18:1f:4e:28:86: 18:f5:33:00:52:b2:c4:39:f7:9d:c2:fe:08:0f:54:ae:dc:d8: a1:10:7d:3b:6a:7b:e4:fa:f1:43:c5:de:0e:0b:a2:47:b4:3f: b5:c9:78:c1:50:c4:50:9e:14:5d:6b:3c:c0:1d:90:59:73:e1: 4a:10:96:65:42:8b:62:60:3a:05:45:ab:8b:43:b6:de:e5:41: dc:ec:9f:49:32:e5:2a:b4:94:cf:3e:47:10:5e:de:e0:a2:c6: a1:d7:91:60:d2:87:fe:e0:0c:34:33:f8:81:4f:a5:6d:0f:c7: d9:04:fd:d4:e7:7a:f4:0a:22:48:5e:5b:59:e6:68:dc:f7:8b: 42:f1:91:90:e7:41:59:e5:d2:3e:7a:75:28:69:20:68:9c:9c: 3e:40:21:99:55:49:e9:a2:46:26:db:b8:3a:1a:21:4a:72:3b: 1f:a2:ef:31:18:44:95:b1:72:5f:13:7d:ea:ad:01:8a:10:33: ce:b0:8b:d6:b6:b7:25:75:48:2a:33:09:de:99:dc:8c:a6:44: bc:a8:9d:b5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUExkxZKrpRzq0wr4HOp0L7R7CCGwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczN1oX DTI3MDMwMzA2MjIzN1owMzExMC8GA1UEAxMoMUIyRUQ5RjM5QThDNzI0QTkyMjAy NzJDMkYzNEFBRkY4NThERDI1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKiSaLsudYxXnQQoh82FYEEq0V3TvD/YwuvwSAImmFxkO7Xgx5DtpVy3WEQi OUpgRtRSNicLsVVH4xlEvdOpjr6yuuqKNPnlQEX9aOcOUaEGAOxUKRakgNwftT82 fODmfJ5v6WlZ7kCi4Zv322qD8xswQBJ+G7KSrJfyxwJtMP7ik/+HTrcllfV+wju2 6ep9P+GmhEobKFrtqCwkrAj0Rzzh/WHM5xCwCIcLwCG2J34e77HvqUtq67FbnhIC NW1YdzN9lvYF7/JnA4Jp60CSVOVJL+89iKlzc7AKQGvg7iiLl2Bm09eGTV4za3Qx FJFcxNtqj9dRAJRUd8IkMbXFXYkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQbLtnz moxySpIgJywvNKr/hY3SVDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU1OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p3QwDQYJKoZIhvcNAQELBQADggEBAKPnx4G1YvU3InmxNvyLNuGP9mCvoCKd+dJr WCxPHyilsBcHl9zI/BkewqrVgzMAK88YH04ohhj1MwBSssQ5953C/ggPVK7c2KEQ fTtqe+T68UPF3g4Loke0P7XJeMFQxFCeFF1rPMAdkFlz4UoQlmVCi2JgOgVFq4tD tt7lQdzsn0ky5Sq0lM8+RxBe3uCixqHXkWDSh/7gDDQz+IFPpW0Px9kE/dTnevQK IkheW1nmaNz3i0LxkZDnQVnl0j56dShpIGicnD5AIZlVSemiRibbuDoaIUpyOx+i 7zEYRJWxcl8TfeqtAYoQM86wi9a2tyV1SCozCd6Z3IymRLyonbU= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:20 2026 by rpki-client