$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144576.roa File: AS144576.roa (raw, json) Hash identifier: u+2k4TTF/Q2thCP8o2dU2zOhnroE5APlmZyZCPvUZcA= Subject key identifier: 71:2A:9A:C5:C2:4B:CF:9E:C7:65:95:48:40:50:C1:A0:0A:9D:70:7C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0A1D75D6D8C0EAB6AC7D34EF049524D46D5CD340 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144576.roa Signing time: Wed 04 Mar 2026 06:19:31 +0000 ROA not before: Wed 04 Mar 2026 06:14:31 +0000 ROA not after: Wed 03 Mar 2027 06:19:31 +0000 asID: 144576 IP address blocks: 240a:a786::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:1d:75:d6:d8:c0:ea:b6:ac:7d:34:ef:04:95:24:d4:6d:5c:d3:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:31 2026 GMT Not After : Mar 3 06:19:31 2027 GMT Subject: CN=712A9AC5C24BCF9EC76595484050C1A00A9D707C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:54:de:b2:69:5e:6c:f5:38:56:f9:cc:3f:56: c8:cc:01:40:a7:43:e7:6e:89:42:aa:13:38:6f:83: 5b:9d:79:03:37:7e:86:13:4b:97:c5:d5:52:6c:d0: a9:dd:b0:e2:19:a7:80:7a:55:28:e6:cc:68:a1:7b: 49:83:cf:b6:a4:0a:ab:a6:82:53:de:7e:f6:61:bb: b5:f7:89:d1:c2:e2:42:84:56:cd:3d:02:e3:33:53: 3b:68:cc:91:76:9a:a7:06:ec:14:d1:5c:2b:d0:ec: 58:10:b7:ae:ef:5c:5f:b3:96:ad:6a:4d:1b:7c:81: 52:13:dc:e4:9b:be:f5:06:9f:57:88:12:f6:ac:46: d4:3d:a6:99:a2:f6:3a:77:c7:83:e5:d6:66:e7:28: 85:cf:52:4b:b7:5d:96:0f:48:8f:73:bf:39:26:a7: 39:81:f0:fb:77:4c:e5:93:92:10:d8:6e:2e:8e:fb: ee:4f:09:d6:0d:f0:85:98:1b:77:9b:32:1b:2c:c4: 60:e6:21:6d:4b:56:97:6c:54:38:86:88:2d:72:12: 57:50:14:af:45:2b:84:7c:c6:9d:fe:42:c1:0c:c1: 7d:18:99:83:da:8f:42:29:06:3d:c5:df:b7:27:5b: a5:ad:2d:4d:56:31:9f:e3:67:3c:82:e9:1a:25:02: 46:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2A:9A:C5:C2:4B:CF:9E:C7:65:95:48:40:50:C1:A0:0A:9D:70:7C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a786::/32 Signature Algorithm: sha256WithRSAEncryption 20:7d:9c:c0:21:61:db:e7:b7:ac:a3:43:2a:4e:4f:50:15:d0: a8:13:55:67:8c:a5:01:43:b5:8d:2c:7e:fc:28:1e:f6:03:86: 38:bd:7f:6a:98:42:4f:4e:7a:74:8c:ff:10:0a:ce:d8:70:7d: ed:3d:48:bb:e7:0c:da:be:34:b2:dd:65:33:f8:21:c9:f3:b8: 1f:34:1f:0f:1e:f1:8d:6f:cc:c8:07:75:6e:dc:66:71:d2:a9: d3:1a:1f:12:2b:62:71:10:cd:f4:f7:ce:b1:4e:17:f4:55:33: 7a:c3:88:18:fb:6a:4f:d5:c2:64:f4:0f:ff:c4:b9:bb:c4:17: 7d:72:aa:c3:69:05:7b:4b:9f:1a:0c:a0:ee:fd:28:fa:05:a4: 58:bd:05:df:7a:0a:3c:13:bb:62:d3:64:f6:60:b1:78:15:9d: 3f:74:75:83:57:6c:45:ad:34:e5:6a:d6:6d:97:ce:9f:4a:4b: a4:ae:01:2c:ea:1e:34:4a:3c:a9:1e:56:e1:82:75:fe:91:e1: 10:a5:00:7d:18:60:e4:1d:0c:18:97:6b:72:3b:43:4d:da:6d: 52:51:20:ff:9a:a8:b2:ef:64:ff:38:cb:e6:0d:c0:2a:7a:b6: dc:63:d5:38:da:8f:16:f5:87:fe:95:85:8c:6b:2a:3a:3f:d4: f3:8e:0d:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCh111tjA6rasfTTvBJUk1G1c00AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQzMVoX DTI3MDMwMzA2MTkzMVowMzExMC8GA1UEAxMoNzEyQTlBQzVDMjRCQ0Y5RUM3NjU5 NTQ4NDA1MEMxQTAwQTlENzA3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdU3rJpXmz1OFb5zD9WyMwBQKdD526JQqoTOG+DW515Azd+hhNLl8XVUmzQ qd2w4hmngHpVKObMaKF7SYPPtqQKq6aCU95+9mG7tfeJ0cLiQoRWzT0C4zNTO2jM kXaapwbsFNFcK9DsWBC3ru9cX7OWrWpNG3yBUhPc5Ju+9QafV4gS9qxG1D2mmaL2 OnfHg+XWZucohc9SS7ddlg9Ij3O/OSanOYHw+3dM5ZOSENhuLo777k8J1g3whZgb d5syGyzEYOYhbUtWl2xUOIaILXISV1AUr0UrhHzGnf5CwQzBfRiZg9qPQikGPcXf tydbpa0tTVYxn+NnPILpGiUCRh0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRxKprF wkvPnsdllUhAUMGgCp1wfDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4YwDQYJKoZIhvcNAQELBQADggEBACB9nMAhYdvnt6yjQypOT1AV0KgTVWeMpQFD tY0sfvwoHvYDhji9f2qYQk9OenSM/xAKzthwfe09SLvnDNq+NLLdZTP4IcnzuB80 Hw8e8Y1vzMgHdW7cZnHSqdMaHxIrYnEQzfT3zrFOF/RVM3rDiBj7ak/VwmT0D//E ubvEF31yqsNpBXtLnxoMoO79KPoFpFi9Bd96CjwTu2LTZPZgsXgVnT90dYNXbEWt NOVq1m2Xzp9KS6SuASzqHjRKPKkeVuGCdf6R4RClAH0YYOQdDBiXa3I7Q03abVJR IP+aqLLvZP84y+YNwCp6ttxj1Tjajxb1h/6VhYxrKjo/1POODWM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:27 2026 by rpki-client