$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144574.roa File: AS144574.roa (raw, json) Hash identifier: R3RvtEH4JCDTBOEE9izMu57QzNZke0SpjahC5eCKZvU= Subject key identifier: A0:81:E7:2D:D5:1F:9F:E9:3D:41:FB:02:93:DD:23:3E:25:E1:FF:9F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3E1352F3035516871A7FD5C00640A96F03D64251 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144574.roa Signing time: Wed 04 Mar 2026 06:20:19 +0000 ROA not before: Wed 04 Mar 2026 06:15:19 +0000 ROA not after: Wed 03 Mar 2027 06:20:19 +0000 asID: 144574 IP address blocks: 240a:a784::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:13:52:f3:03:55:16:87:1a:7f:d5:c0:06:40:a9:6f:03:d6:42:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:19 2026 GMT Not After : Mar 3 06:20:19 2027 GMT Subject: CN=A081E72DD51F9FE93D41FB0293DD233E25E1FF9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5d:76:37:2a:0c:a8:a6:f3:d9:b5:29:98:0c: b3:43:31:b0:64:a3:4c:2c:3c:aa:ab:ba:63:cc:ba: 3f:8b:a5:86:71:9c:a1:de:6f:f5:de:c5:d9:41:6f: 30:c6:13:31:e6:89:6d:03:87:a9:79:d5:e6:73:69: 48:c9:e6:eb:d1:75:e0:46:b9:75:d6:05:e7:45:74: 56:26:8a:ee:61:79:b7:96:3c:18:93:84:0c:c9:a2: 46:a2:9c:44:e9:bc:54:fe:d9:8f:d2:22:fb:f4:ac: bf:74:94:10:ee:89:47:ea:0a:4b:2f:d1:28:73:c6: d0:e9:c5:37:27:db:85:29:c4:6d:1b:6f:83:c4:d4: 93:66:4a:04:d3:e8:58:a2:9e:c1:cf:54:5d:2e:85: 02:db:34:f1:ae:f8:90:8b:ad:07:63:60:bc:71:b8: 10:bd:f6:23:ba:7a:71:49:e6:f0:1c:d1:67:27:d8: 99:01:b0:08:8a:aa:47:12:c7:d8:97:50:e9:ad:52: e4:81:81:be:da:90:34:f2:3d:ae:6b:e4:fc:e5:3d: 9a:e2:fe:73:de:62:91:b6:7b:27:37:80:bd:ef:60: 19:94:1b:5f:cb:0a:b5:6b:81:a1:2a:fe:4d:60:cb: bd:d1:a4:e1:f1:4d:2d:af:d9:a3:7b:61:1e:16:8f: 24:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:81:E7:2D:D5:1F:9F:E9:3D:41:FB:02:93:DD:23:3E:25:E1:FF:9F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144574.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a784::/32 Signature Algorithm: sha256WithRSAEncryption b1:fc:4c:75:61:2c:6f:5a:84:d0:67:98:f4:ba:02:f6:1d:9f: d9:71:0e:55:69:c4:2a:02:90:c2:0c:e0:58:48:6e:b4:17:bb: a7:08:8f:85:b3:4c:d3:b3:e0:5d:07:a3:82:b5:cc:21:62:df: 7e:d9:33:e7:3a:c0:56:83:53:83:1a:7d:71:b5:d0:af:bd:6f: 31:e0:e8:0a:4f:c9:2a:de:64:b1:cc:fa:43:c2:d1:d1:86:5b: ab:c5:88:55:0c:6c:06:cf:a6:0a:86:b1:5b:64:8f:72:3b:39: 4e:4a:bc:de:d2:94:7f:1a:eb:a4:ca:99:9c:1c:cf:fd:85:f0: 95:0d:e2:bb:de:f2:0b:33:85:3c:09:53:a3:cf:d4:8c:31:6a: b7:91:d2:a2:b7:be:c3:5d:22:81:d1:1d:f7:c7:8d:a8:5b:44: 2b:6e:d9:04:cb:9a:10:a5:c6:0b:52:a6:5d:54:1d:8a:53:f7: 99:0b:59:c7:a0:eb:f8:da:c9:97:80:72:bf:ba:ce:7a:3d:41: 27:01:04:58:25:fa:d1:57:51:e9:b4:07:ed:04:ad:11:e0:d0: 5d:e6:29:63:44:e9:db:f0:b6:be:15:ee:35:3f:74:c7:2e:d7: 8d:da:c6:8f:08:4e:18:4e:20:e7:ed:03:97:63:3d:37:d1:a7: 38:b4:01:d4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPhNS8wNVFocaf9XABkCpbwPWQlEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUxOVoX DTI3MDMwMzA2MjAxOVowMzExMC8GA1UEAxMoQTA4MUU3MkRENTFGOUZFOTNENDFG QjAyOTNERDIzM0UyNUUxRkY5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1ddjcqDKim89m1KZgMs0MxsGSjTCw8qqu6Y8y6P4ulhnGcod5v9d7F2UFv MMYTMeaJbQOHqXnV5nNpSMnm69F14Ea5ddYF50V0ViaK7mF5t5Y8GJOEDMmiRqKc ROm8VP7Zj9Ii+/Ssv3SUEO6JR+oKSy/RKHPG0OnFNyfbhSnEbRtvg8TUk2ZKBNPo WKKewc9UXS6FAts08a74kIutB2NgvHG4EL32I7p6cUnm8BzRZyfYmQGwCIqqRxLH 2JdQ6a1S5IGBvtqQNPI9rmvk/OU9muL+c95ikbZ7JzeAve9gGZQbX8sKtWuBoSr+ TWDLvdGk4fFNLa/Zo3thHhaPJCsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSggect 1R+f6T1B+wKT3SM+JeH/nzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4QwDQYJKoZIhvcNAQELBQADggEBALH8THVhLG9ahNBnmPS6AvYdn9lxDlVpxCoC kMIM4FhIbrQXu6cIj4WzTNOz4F0Ho4K1zCFi337ZM+c6wFaDU4MafXG10K+9bzHg 6ApPySreZLHM+kPC0dGGW6vFiFUMbAbPpgqGsVtkj3I7OU5KvN7SlH8a66TKmZwc z/2F8JUN4rve8gszhTwJU6PP1IwxareR0qK3vsNdIoHRHffHjahbRCtu2QTLmhCl xgtSpl1UHYpT95kLWceg6/jayZeAcr+6zno9QScBBFgl+tFXUem0B+0ErRHg0F3m KWNE6dvwtr4V7jU/dMcu143axo8IThhOIOftA5djPTfRpzi0AdQ= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:39 2026 by rpki-client