$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144575.roa File: AS144575.roa (raw, json) Hash identifier: uPwe9uHcOb5mtBVA13/y+AYOG044MyF2SZe8mJI6lCc= Subject key identifier: F6:08:01:89:78:86:42:A2:ED:E3:59:AC:89:A8:60:5D:C0:14:A8:61 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41FF2621F8C508813C154419947A39650C84A6B5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144575.roa Signing time: Wed 04 Mar 2026 06:20:02 +0000 ROA not before: Wed 04 Mar 2026 06:15:02 +0000 ROA not after: Wed 03 Mar 2027 06:20:02 +0000 asID: 144575 IP address blocks: 240a:a785::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ff:26:21:f8:c5:08:81:3c:15:44:19:94:7a:39:65:0c:84:a6:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:02 2026 GMT Not After : Mar 3 06:20:02 2027 GMT Subject: CN=F6080189788642A2EDE359AC89A8605DC014A861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:43:3f:51:57:0b:22:12:15:26:c9:b0:bb:cb: fb:ee:65:f3:cf:d6:df:27:b0:48:aa:d2:3b:34:4c: 64:a6:aa:b7:fa:e3:ce:6f:d3:ce:6a:01:3e:85:da: 95:68:d7:82:24:7f:78:3e:46:7e:a8:e9:aa:85:49: c1:73:e6:d0:0d:61:ac:49:7c:13:b6:c8:b1:cf:e2: 26:33:a7:e8:d6:75:36:61:a6:5e:31:59:1a:8a:f9: 64:10:d3:73:95:1c:ab:31:d7:1d:a5:9f:9d:f8:64: 71:19:a9:38:bd:58:bf:b1:bc:91:c3:c4:bc:01:dd: b3:75:a7:43:09:a7:a8:fc:bf:ee:03:dc:7b:34:17: ef:91:40:be:27:41:9f:f8:89:8d:6d:60:33:35:e2: fb:2c:fa:f3:04:4e:f8:fb:df:09:87:2e:84:b3:c1: c7:85:76:22:5e:e9:d7:b5:84:a8:06:3e:e7:5a:a5: 92:32:17:45:ff:32:db:fa:19:30:73:37:e5:94:fc: 8e:c0:e4:94:18:85:0e:58:12:33:c1:fe:c1:55:55: 69:45:99:c6:18:3e:65:b6:f6:a2:80:29:d4:72:c8: 0d:6d:52:6b:80:30:89:6e:da:da:3e:38:d0:eb:e5: 49:3a:30:4c:1a:6b:43:5b:61:48:49:4d:f8:03:26: 57:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:08:01:89:78:86:42:A2:ED:E3:59:AC:89:A8:60:5D:C0:14:A8:61 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144575.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a785::/32 Signature Algorithm: sha256WithRSAEncryption 37:9a:d9:a4:c3:de:c8:c0:b6:25:8a:19:2f:37:b5:38:47:0f: a6:bc:ea:6f:b3:39:55:57:ca:83:6a:34:d1:fa:ff:e5:36:61: 2c:70:6d:34:d6:3c:0a:76:01:ad:19:97:75:0d:76:fd:e8:b9: 4e:36:82:e7:4c:dc:c2:2b:5b:e1:ae:da:7c:a7:41:7b:fa:8f: 4c:af:b3:33:fb:61:69:db:51:ab:5e:86:3e:3c:5c:3c:d7:ec: 8d:9b:f9:ff:04:79:e3:ef:97:6a:d2:ea:12:ec:87:d3:05:d7: e1:cc:a7:d9:04:9b:fd:16:b0:ef:3d:ab:80:77:aa:3d:dc:7d: e8:e9:d6:67:8f:a7:d0:73:30:a9:55:7a:1a:52:21:86:35:23: 39:fe:f0:04:77:25:10:d1:ae:2e:57:da:b6:d0:1d:de:73:5e: bf:e5:9b:94:03:13:f3:02:07:b7:05:6d:83:55:7a:85:5b:35: 57:1c:3f:f5:b6:9b:e6:03:15:a7:22:bc:13:34:d3:09:b2:0f: 99:a2:42:3c:62:48:c0:21:85:54:a6:77:6f:3b:b2:78:84:ee: ee:84:45:d2:df:e0:ba:cf:80:65:75:2e:ca:85:b5:79:aa:ac: 07:b1:dc:ae:e8:c7:a1:9e:b5:eb:70:02:5e:c7:97:a7:69:f1: ad:9b:2a:02 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQf8mIfjFCIE8FUQZlHo5ZQyEprUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUwMloX DTI3MDMwMzA2MjAwMlowMzExMC8GA1UEAxMoRjYwODAxODk3ODg2NDJBMkVERTM1 OUFDODlBODYwNURDMDE0QTg2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1DP1FXCyISFSbJsLvL++5l88/W3yewSKrSOzRMZKaqt/rjzm/TzmoBPoXa lWjXgiR/eD5GfqjpqoVJwXPm0A1hrEl8E7bIsc/iJjOn6NZ1NmGmXjFZGor5ZBDT c5UcqzHXHaWfnfhkcRmpOL1Yv7G8kcPEvAHds3WnQwmnqPy/7gPcezQX75FAvidB n/iJjW1gMzXi+yz68wRO+PvfCYcuhLPBx4V2Il7p17WEqAY+51qlkjIXRf8y2/oZ MHM35ZT8jsDklBiFDlgSM8H+wVVVaUWZxhg+Zbb2ooAp1HLIDW1Sa4AwiW7a2j44 0OvlSTowTBprQ1thSElN+AMmV+0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT2CAGJ eIZCou3jWayJqGBdwBSoYTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU3NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4UwDQYJKoZIhvcNAQELBQADggEBADea2aTD3sjAtiWKGS83tThHD6a86m+zOVVX yoNqNNH6/+U2YSxwbTTWPAp2Aa0Zl3UNdv3ouU42gudM3MIrW+Gu2nynQXv6j0yv szP7YWnbUatehj48XDzX7I2b+f8EeePvl2rS6hLsh9MF1+HMp9kEm/0WsO89q4B3 qj3cfejp1mePp9BzMKlVehpSIYY1Izn+8AR3JRDRri5X2rbQHd5zXr/lm5QDE/MC B7cFbYNVeoVbNVccP/W2m+YDFacivBM00wmyD5miQjxiSMAhhVSmd287sniE7u6E RdLf4LrPgGV1LsqFtXmqrAex3K7ox6GetetwAl7Hl6dp8a2bKgI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:52 2026 by rpki-client