$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144572.roa File: AS144572.roa (raw, json) Hash identifier: 78o6v3qivKsHA5c44jrhQPM7VZx/hVdWifA05u3+FM4= Subject key identifier: 25:15:67:45:25:D6:91:9E:36:33:E8:50:A9:2F:BA:3A:38:DB:F3:02 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4B2E775119F62BA3476DDCC171225C27EB77E475 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144572.roa Signing time: Wed 04 Mar 2026 06:20:47 +0000 ROA not before: Wed 04 Mar 2026 06:15:47 +0000 ROA not after: Wed 03 Mar 2027 06:20:47 +0000 asID: 144572 IP address blocks: 240a:a782::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:2e:77:51:19:f6:2b:a3:47:6d:dc:c1:71:22:5c:27:eb:77:e4:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:47 2026 GMT Not After : Mar 3 06:20:47 2027 GMT Subject: CN=2515674525D6919E3633E850A92FBA3A38DBF302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:48:b1:47:27:74:52:83:d6:64:94:a9:08: 2d:fc:32:93:8a:09:66:54:a2:08:74:24:af:b5:55: 56:3f:6f:9f:18:66:a8:97:b1:29:05:b6:6e:59:b2: f6:54:60:b9:d9:d9:8f:5a:29:35:41:9b:f2:12:81: 98:bb:71:8c:3f:0d:28:7d:68:bd:8d:9a:fa:3c:bc: 9a:c7:f5:ee:7f:04:54:82:66:7f:a2:e1:b3:f7:05: b9:2f:9f:5f:20:00:09:39:a1:b0:f2:f4:b7:74:7a: 33:25:ec:25:89:2a:df:cc:77:a3:87:bb:65:91:05: 06:ab:27:8f:a3:ae:3f:44:e8:0e:9b:b5:a7:9e:1e: 20:8f:62:8b:de:e9:25:a1:c3:60:82:12:c3:dc:aa: 7a:00:64:fa:6e:a9:7d:2c:83:fc:f6:4d:bc:39:d9: 47:09:36:08:66:44:d1:52:f4:c4:7c:98:af:9c:1f: 6f:e1:6a:d8:c1:06:51:99:c6:3b:51:62:7f:00:e2: 2e:dd:de:4a:0d:75:4f:8c:d2:ee:31:41:08:5c:b3: b7:58:5d:1a:58:86:46:88:3e:58:a7:3a:0d:cf:66: b1:e3:8a:e5:7c:9e:60:29:a4:80:7b:08:61:39:fc: de:f3:e9:83:c6:cf:a3:ba:50:cf:77:ae:aa:13:83: 13:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:15:67:45:25:D6:91:9E:36:33:E8:50:A9:2F:BA:3A:38:DB:F3:02 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144572.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a782::/32 Signature Algorithm: sha256WithRSAEncryption c9:f8:e6:6c:fd:59:40:df:89:59:e4:bc:f4:24:ff:61:2e:11: 50:34:8a:ed:71:8a:6e:26:33:37:ac:5b:17:e7:39:53:f4:34: 82:7c:f7:a4:93:a8:7b:e8:91:2f:3e:1c:32:54:1a:17:c3:14: 24:cf:73:a1:b9:25:46:83:c2:fe:9a:75:72:e4:ab:2f:a1:1b: 7d:04:ed:68:32:9e:42:a6:20:95:1d:83:db:7e:13:aa:86:e3: b5:9e:e8:9f:d7:11:21:17:95:76:c5:70:7d:1b:96:ca:80:58: b2:32:87:11:e7:9f:98:e7:f0:b5:10:e3:da:99:f5:69:c7:08: eb:b5:32:4e:9b:b0:0f:6f:dc:73:c9:8a:2b:e3:cb:6b:9c:bc: 28:80:df:b0:8f:bf:84:46:34:73:ce:d5:d9:77:8c:d4:b8:85: 1f:3c:b0:5e:65:41:60:8f:4a:41:85:91:80:61:2a:e1:52:0a: 39:b0:1d:35:9d:0f:a0:95:16:fa:e6:41:3a:df:33:a1:05:5a: 13:f1:8c:f0:08:98:d3:6b:e1:e9:54:1c:f0:d6:62:e7:31:ee: 5f:e3:06:cc:92:61:c3:71:aa:29:d4:10:8e:12:ea:5c:fc:14: a5:38:3d:cd:57:11:37:7d:c9:60:0f:a5:14:aa:67:65:75:51: 67:95:ea:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSy53URn2K6NHbdzBcSJcJ+t35HUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0N1oX DTI3MDMwMzA2MjA0N1owMzExMC8GA1UEAxMoMjUxNTY3NDUyNUQ2OTE5RTM2MzNF ODUwQTkyRkJBM0EzOERCRjMwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnISLFHJ3RSg9ZklKkILfwyk4oJZlSiCHQkr7VVVj9vnxhmqJexKQW2blmy 9lRgudnZj1opNUGb8hKBmLtxjD8NKH1ovY2a+jy8msf17n8EVIJmf6Lhs/cFuS+f XyAACTmhsPL0t3R6MyXsJYkq38x3o4e7ZZEFBqsnj6OuP0ToDpu1p54eII9ii97p JaHDYIISw9yqegBk+m6pfSyD/PZNvDnZRwk2CGZE0VL0xHyYr5wfb+Fq2MEGUZnG O1FifwDiLt3eSg11T4zS7jFBCFyzt1hdGliGRog+WKc6Dc9mseOK5XyeYCmkgHsI YTn83vPpg8bPo7pQz3euqhODE3MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQlFWdF JdaRnjYz6FCpL7o6ONvzAjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU3Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4IwDQYJKoZIhvcNAQELBQADggEBAMn45mz9WUDfiVnkvPQk/2EuEVA0iu1xim4m MzesWxfnOVP0NIJ896STqHvokS8+HDJUGhfDFCTPc6G5JUaDwv6adXLkqy+hG30E 7WgynkKmIJUdg9t+E6qG47We6J/XESEXlXbFcH0blsqAWLIyhxHnn5jn8LUQ49qZ 9WnHCOu1Mk6bsA9v3HPJiivjy2ucvCiA37CPv4RGNHPO1dl3jNS4hR88sF5lQWCP SkGFkYBhKuFSCjmwHTWdD6CVFvrmQTrfM6EFWhPxjPAImNNr4elUHPDWYucx7l/j BsySYcNxqinUEI4S6lz8FKU4Pc1XETd9yWAPpRSqZ2V1UWeV6pY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:05 2026 by rpki-client