$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144570.roa File: AS144570.roa (raw, json) Hash identifier: 2DB24IsMZ9k20mRHxnB7meBbE78v03RNVTl/0uX9hrM= Subject key identifier: C4:19:82:85:60:56:8D:DE:5C:3C:F5:15:6E:C5:83:BE:B9:CF:82:7C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 686F667D6D7B39A25270DE0F930EFCF543A899B7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144570.roa Signing time: Wed 04 Mar 2026 06:21:48 +0000 ROA not before: Wed 04 Mar 2026 06:16:48 +0000 ROA not after: Wed 03 Mar 2027 06:21:48 +0000 asID: 144570 IP address blocks: 240a:a780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:6f:66:7d:6d:7b:39:a2:52:70:de:0f:93:0e:fc:f5:43:a8:99:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:48 2026 GMT Not After : Mar 3 06:21:48 2027 GMT Subject: CN=C419828560568DDE5C3CF5156EC583BEB9CF827C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9c:a1:75:b2:e4:84:d7:84:7f:b8:3b:34:40: 58:31:7c:1e:3d:1c:d8:63:a7:86:9e:0c:4b:2c:13: de:27:0c:33:2d:18:29:9c:ef:ff:39:76:c8:f4:a9: bd:10:fa:a2:4d:15:e0:49:e0:38:43:4d:86:8e:0e: d2:f1:cd:7a:6d:9c:57:70:d3:e7:5c:8e:cc:f9:2b: 7a:a0:4b:12:3d:43:16:1b:10:d0:90:11:cc:47:29: be:2b:9d:ec:38:42:cd:54:b3:7f:00:df:b8:44:9b: 8c:37:91:2a:78:3e:47:98:fd:48:95:4e:d0:29:33: 54:23:f3:22:e1:32:0a:ef:39:02:84:94:b4:8f:7a: d0:dd:0c:ae:25:17:24:e9:ea:2b:f8:d6:f1:b6:18: ae:25:61:a5:25:13:3f:e5:b6:67:c2:34:31:df:34: c9:7e:16:e2:5c:93:64:5f:86:4b:44:04:24:c3:5b: 40:03:b6:c7:a4:bf:20:d3:5f:d7:6b:97:cb:cc:db: 3f:15:93:75:7a:d4:f2:d9:0b:a7:22:c6:ff:62:84: d0:f5:5d:fc:7d:37:82:28:fb:34:c4:a9:bb:9f:f7: 3d:21:71:4f:74:a8:91:e7:de:ad:6e:17:b6:7c:a1: 6b:12:0a:8f:84:90:c5:c8:ba:dd:f9:81:6e:fe:b0: ef:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:19:82:85:60:56:8D:DE:5C:3C:F5:15:6E:C5:83:BE:B9:CF:82:7C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144570.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a780::/32 Signature Algorithm: sha256WithRSAEncryption 63:33:39:5c:94:9b:a6:2e:b9:af:d9:9a:bf:81:35:5b:55:94: 39:14:d7:11:7e:85:4e:0e:48:cb:a7:5e:3f:1d:f7:bf:78:41: 9d:62:7e:70:66:9b:d3:a3:45:61:41:5c:cd:a8:f7:1d:6e:c0: f9:4d:0a:ce:37:8c:2e:06:4e:9a:80:62:0e:4f:39:93:15:c9: 89:41:17:50:f0:6a:0f:d1:8b:6f:6c:42:1f:1d:8f:bc:f6:71: 03:fe:88:4f:43:b4:ac:46:7c:26:10:b2:0f:db:53:f0:86:28: 39:2d:b8:5e:db:d5:4b:98:6e:a4:7f:b8:50:72:0f:00:ce:a4: f1:ac:ae:c6:c5:ec:8a:12:66:c5:ca:2b:08:15:fa:02:bd:2b: 59:9e:a8:c2:6a:fe:27:c7:b9:01:c4:74:a0:30:8c:31:ea:01: dd:19:1d:12:a4:92:e9:96:a9:bc:ee:fe:9e:5c:97:58:e1:5d: d9:a7:18:75:d5:aa:e8:cd:92:4a:fd:a9:b7:54:14:9b:49:36: aa:b3:d9:07:a5:0e:81:bf:51:e5:80:11:f1:0f:e8:82:52:9a: 9a:de:18:12:7b:19:f2:45:46:e8:cf:3c:91:a5:6a:48:d0:4b: ae:ff:3b:00:42:f6:98:02:01:1c:7c:27:77:4d:89:b4:4f:08: a0:dd:0b:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUaG9mfW17OaJScN4Pkw789UOombcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0OFoX DTI3MDMwMzA2MjE0OFowMzExMC8GA1UEAxMoQzQxOTgyODU2MDU2OERERTVDM0NG NTE1NkVDNTgzQkVCOUNGODI3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK6coXWy5ITXhH+4OzRAWDF8Hj0c2GOnhp4MSywT3icMMy0YKZzv/zl2yPSp vRD6ok0V4EngOENNho4O0vHNem2cV3DT51yOzPkreqBLEj1DFhsQ0JARzEcpviud 7DhCzVSzfwDfuESbjDeRKng+R5j9SJVO0CkzVCPzIuEyCu85AoSUtI960N0MriUX JOnqK/jW8bYYriVhpSUTP+W2Z8I0Md80yX4W4lyTZF+GS0QEJMNbQAO2x6S/INNf 12uXy8zbPxWTdXrU8tkLpyLG/2KE0PVd/H03gij7NMSpu5/3PSFxT3SokeferW4X tnyhaxIKj4SQxci63fmBbv6w77MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTEGYKF YFaN3lw89RVuxYO+uc+CfDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU3MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4AwDQYJKoZIhvcNAQELBQADggEBAGMzOVyUm6Yuua/Zmr+BNVtVlDkU1xF+hU4O SMunXj8d9794QZ1ifnBmm9OjRWFBXM2o9x1uwPlNCs43jC4GTpqAYg5POZMVyYlB F1Dwag/Ri29sQh8dj7z2cQP+iE9DtKxGfCYQsg/bU/CGKDktuF7b1UuYbqR/uFBy DwDOpPGsrsbF7IoSZsXKKwgV+gK9K1meqMJq/ifHuQHEdKAwjDHqAd0ZHRKkkumW qbzu/p5cl1jhXdmnGHXVqujNkkr9qbdUFJtJNqqz2QelDoG/UeWAEfEP6IJSmpre GBJ7GfJFRujPPJGlakjQS67/OwBC9pgCARx8J3dNibRPCKDdC5w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:04 2026 by rpki-client