$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144563.roa File: AS144563.roa (raw, json) Hash identifier: Rgf4f4fpYHKXuI8X+yrizv9OudgG2ZSmhH0SM7Jng64= Subject key identifier: 22:5E:DC:73:18:06:FA:19:02:27:47:E7:F7:31:B8:43:35:D2:49:AF Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7D2A4CA2B57851530CFA0A0D6A23E82C1B8B8E21 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144563.roa Signing time: Wed 04 Mar 2026 06:19:21 +0000 ROA not before: Wed 04 Mar 2026 06:14:21 +0000 ROA not after: Wed 03 Mar 2027 06:19:21 +0000 asID: 144563 IP address blocks: 240a:a779::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:2a:4c:a2:b5:78:51:53:0c:fa:0a:0d:6a:23:e8:2c:1b:8b:8e:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:21 2026 GMT Not After : Mar 3 06:19:21 2027 GMT Subject: CN=225EDC731806FA19022747E7F731B84335D249AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:85:1d:28:ae:0c:cd:09:e6:da:f1:d3:5f:df: 46:ba:1d:2c:36:bb:39:9d:e7:83:a4:1a:df:c5:73: 9a:ac:7b:58:1f:ba:53:7f:24:8f:ea:e0:69:9b:16: e7:7a:98:76:90:5e:99:35:a6:32:51:bb:c7:4f:fc: 83:42:1f:a5:a0:d5:ad:2c:8c:a6:30:f3:9f:47:71: c8:5c:09:d8:de:bb:0c:7a:ab:55:0a:13:f5:dc:56: 6a:bd:45:75:0f:b1:33:94:71:5d:61:58:84:e5:8e: 4b:7e:39:f9:ed:2d:a3:b9:72:f1:64:48:09:36:9e: e5:e5:86:dd:1d:5f:4b:96:32:43:01:f4:33:00:6c: e1:da:fd:0d:ef:bc:11:20:a1:0e:ad:ab:4f:3a:66: 13:a4:b8:e3:c8:fa:9b:79:2a:5e:bf:a0:e2:b9:80: 6b:ab:4b:e9:6f:f4:49:5e:ee:5e:25:ae:ac:d1:59: fd:bc:c0:f6:4c:27:f0:52:80:07:86:8c:94:fe:91: 1e:4d:1f:30:70:4a:70:7e:51:92:3d:80:15:b5:75: 3f:ed:b0:f5:ba:b2:f8:50:e2:32:ed:28:da:66:73: 20:64:45:f5:f9:f7:cc:68:31:89:b0:66:93:38:2e: e8:4d:60:fe:5b:3f:d1:08:67:d4:5e:2f:3d:b0:77: fb:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:5E:DC:73:18:06:FA:19:02:27:47:E7:F7:31:B8:43:35:D2:49:AF X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144563.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a779::/32 Signature Algorithm: sha256WithRSAEncryption be:db:95:c1:5a:22:44:af:88:d7:6b:68:5a:a4:fd:8f:e5:82: cb:9b:f3:66:25:a0:bc:7b:4c:bb:b8:ca:78:7b:87:c7:98:a7: 87:65:ac:3c:25:99:5c:73:93:5b:0b:95:8a:f2:58:20:9c:89: 41:a5:c5:84:2f:df:13:8b:01:ed:48:c9:bb:0e:cf:91:66:32: 41:33:3d:87:d2:8f:91:99:88:66:69:65:96:54:a2:7f:fc:8e: b7:a8:6b:3f:5e:22:fc:61:4f:3b:e3:75:e9:d4:78:70:f0:6e: 4f:a6:d5:b6:0a:6d:7a:fc:c7:af:89:32:1c:85:02:7d:42:0b: 48:ed:e6:d6:34:86:c9:68:23:96:fc:19:cb:b9:35:8c:fc:f7: 92:b9:29:ea:c2:45:9a:db:06:fc:ff:1b:84:f3:12:41:85:ef: 9c:f9:b8:0f:0f:bd:7e:7b:63:87:f5:79:a4:cc:c3:c1:a4:4b: 92:48:51:2e:84:2b:a2:21:8a:11:67:85:ac:8e:59:59:9b:a5: 97:14:72:60:e3:c7:70:ab:4f:15:2e:8e:28:f2:ba:b8:4c:59: 8a:b0:9f:27:1e:04:d3:ca:a5:9d:9e:5e:35:96:8f:d4:31:44: 7e:e0:05:87:15:89:40:74:2d:c5:32:cf:d0:6c:0a:3d:df:d9: bb:17:19:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUfSpMorV4UVMM+goNaiPoLBuLjiEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQyMVoX DTI3MDMwMzA2MTkyMVowMzExMC8GA1UEAxMoMjI1RURDNzMxODA2RkExOTAyMjc0 N0U3RjczMUI4NDMzNUQyNDlBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ6FHSiuDM0J5trx01/fRrodLDa7OZ3ng6Qa38Vzmqx7WB+6U38kj+rgaZsW 53qYdpBemTWmMlG7x0/8g0IfpaDVrSyMpjDzn0dxyFwJ2N67DHqrVQoT9dxWar1F dQ+xM5RxXWFYhOWOS345+e0to7ly8WRICTae5eWG3R1fS5YyQwH0MwBs4dr9De+8 ESChDq2rTzpmE6S448j6m3kqXr+g4rmAa6tL6W/0SV7uXiWurNFZ/bzA9kwn8FKA B4aMlP6RHk0fMHBKcH5Rkj2AFbV1P+2w9bqy+FDiMu0o2mZzIGRF9fn3zGgxibBm kzgu6E1g/ls/0Qhn1F4vPbB3+38CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQiXtxz GAb6GQInR+f3MbhDNdJJrzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU2My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p3kwDQYJKoZIhvcNAQELBQADggEBAL7blcFaIkSviNdraFqk/Y/lgsub82YloLx7 TLu4ynh7h8eYp4dlrDwlmVxzk1sLlYryWCCciUGlxYQv3xOLAe1IybsOz5FmMkEz PYfSj5GZiGZpZZZUon/8jreoaz9eIvxhTzvjdenUeHDwbk+m1bYKbXr8x6+JMhyF An1CC0jt5tY0hsloI5b8Gcu5NYz895K5KerCRZrbBvz/G4TzEkGF75z5uA8PvX57 Y4f1eaTMw8GkS5JIUS6EK6IhihFnhayOWVmbpZcUcmDjx3CrTxUujijyurhMWYqw nyceBNPKpZ2eXjWWj9QxRH7gBYcViUB0LcUyz9BsCj3f2bsXGRI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:12 2026 by rpki-client