$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144573.roa File: AS144573.roa (raw, json) Hash identifier: 4r9OwdzzphcVpNfwNqD14+HNb1dVjpA7bd3i3Bx4T0E= Subject key identifier: 47:A2:59:74:79:0D:9E:9E:77:EF:93:EE:AD:F1:15:5B:23:6E:34:61 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 48CFDD2397C4B768537D9B4F2D4AB85C9C853B1D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144573.roa Signing time: Wed 04 Mar 2026 06:22:21 +0000 ROA not before: Wed 04 Mar 2026 06:17:21 +0000 ROA not after: Wed 03 Mar 2027 06:22:21 +0000 asID: 144573 IP address blocks: 240a:a783::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:cf:dd:23:97:c4:b7:68:53:7d:9b:4f:2d:4a:b8:5c:9c:85:3b:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:21 2026 GMT Not After : Mar 3 06:22:21 2027 GMT Subject: CN=47A25974790D9E9E77EF93EEADF1155B236E3461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2d:cd:4e:40:b7:e6:a3:db:d1:76:ea:64:e6: 78:83:3f:c3:12:16:0b:9e:21:bc:a6:80:54:72:c8: 4a:a1:08:dd:61:3d:3c:cc:99:ea:90:40:71:cb:d1: e2:8a:c5:5c:a1:57:d6:be:37:4b:0b:f4:63:99:b8: 99:0a:28:e4:5c:43:c8:66:97:14:3e:85:55:8d:f9: fe:10:18:2a:0f:9f:7b:bc:19:b9:92:57:68:e5:dc: 88:fd:d4:94:f4:52:8e:a5:e3:a1:a2:65:36:72:a9: 4b:22:3b:9d:68:20:b8:22:be:52:5b:42:f9:37:8e: d7:d0:1c:46:5b:b9:c4:67:ff:bd:86:74:91:d8:76: 36:3f:23:7e:9b:e9:0f:67:4a:87:87:8f:dc:48:98: d7:b3:e7:67:6f:2b:e6:0d:09:32:f7:ec:9c:61:6b: 67:94:48:36:43:ce:d9:8d:95:ec:40:76:f5:50:4a: a2:30:d8:6c:d8:b0:fe:b0:4e:06:99:a1:8f:c5:66: 9d:f9:11:f6:b0:2b:71:83:0b:63:d0:19:7a:80:3c: 3e:61:8b:83:87:99:29:3f:1b:a5:df:8b:fb:9d:cc: 52:50:ce:b9:16:a4:c4:d8:b7:87:93:4c:29:4c:a2: fd:83:7e:3a:01:40:47:c6:74:71:88:10:e1:24:e1: 13:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A2:59:74:79:0D:9E:9E:77:EF:93:EE:AD:F1:15:5B:23:6E:34:61 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144573.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a783::/32 Signature Algorithm: sha256WithRSAEncryption 4d:ad:a4:93:20:77:06:5f:7e:31:68:08:92:9e:5e:e9:41:6a: a1:b5:b4:9d:89:d6:9a:ba:1b:79:0a:b9:fc:95:af:e9:4c:96: 3d:d1:93:5e:d6:91:98:36:e8:16:48:d1:31:a5:fd:fd:72:1d: 00:cd:36:35:5f:45:63:9e:42:e1:37:e6:64:3a:b3:c8:25:00: 9f:ef:be:8a:5b:fa:de:4a:92:89:96:1d:ca:4d:46:a2:ad:dd: d7:2a:80:35:e5:15:ec:45:a0:e7:85:1b:67:a3:3c:96:ab:68: 4a:e1:04:3c:99:dd:d4:d8:94:b3:44:a1:7f:78:cf:d5:c4:cd: 9d:0b:d9:9a:c8:3b:dc:03:73:20:79:bb:5a:0a:e0:20:30:4c: 59:b1:0a:09:b3:fa:21:f3:32:59:b3:be:a6:0e:e4:d1:7f:84: 32:19:a1:b0:68:66:45:96:0d:bd:16:e9:65:ea:e1:b7:9b:10: df:6f:c6:88:5c:5a:6a:b8:f7:5a:8c:ca:be:99:b2:a8:18:b8: 8a:54:ab:f6:76:e8:98:85:47:9b:e1:ad:da:b8:c0:61:a6:8a: a0:58:5f:47:9c:dc:15:c6:a3:6b:66:44:bb:e4:53:fa:13:d0: 9b:9b:d8:6b:6a:db:de:1b:8e:5e:b3:8b:e9:9d:52:4a:4c:0f: f5:c3:1c:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSM/dI5fEt2hTfZtPLUq4XJyFOx0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcyMVoX DTI3MDMwMzA2MjIyMVowMzExMC8GA1UEAxMoNDdBMjU5NzQ3OTBEOUU5RTc3RUY5 M0VFQURGMTE1NUIyMzZFMzQ2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgtzU5At+aj29F26mTmeIM/wxIWC54hvKaAVHLISqEI3WE9PMyZ6pBAccvR 4orFXKFX1r43Swv0Y5m4mQoo5FxDyGaXFD6FVY35/hAYKg+fe7wZuZJXaOXciP3U lPRSjqXjoaJlNnKpSyI7nWgguCK+UltC+TeO19AcRlu5xGf/vYZ0kdh2Nj8jfpvp D2dKh4eP3EiY17PnZ28r5g0JMvfsnGFrZ5RINkPO2Y2V7EB29VBKojDYbNiw/rBO Bpmhj8VmnfkR9rArcYMLY9AZeoA8PmGLg4eZKT8bpd+L+53MUlDOuRakxNi3h5NM KUyi/YN+OgFAR8Z0cYgQ4SThE+UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRHoll0 eQ2ennfvk+6t8RVbI240YTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU3My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4MwDQYJKoZIhvcNAQELBQADggEBAE2tpJMgdwZffjFoCJKeXulBaqG1tJ2J1pq6 G3kKufyVr+lMlj3Rk17WkZg26BZI0TGl/f1yHQDNNjVfRWOeQuE35mQ6s8glAJ/v vopb+t5KkomWHcpNRqKt3dcqgDXlFexFoOeFG2ejPJaraErhBDyZ3dTYlLNEoX94 z9XEzZ0L2ZrIO9wDcyB5u1oK4CAwTFmxCgmz+iHzMlmzvqYO5NF/hDIZobBoZkWW Db0W6WXq4bebEN9vxohcWmq491qMyr6ZsqgYuIpUq/Z26JiFR5vhrdq4wGGmiqBY X0ec3BXGo2tmRLvkU/oT0Jub2Gtq294bjl6zi+mdUkpMD/XDHBA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:50 2026 by rpki-client