$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144577.roa File: AS144577.roa (raw, json) Hash identifier: soCY450BdTLtK4800WL5XP7W6nXxU0h/oGZ1oHuqJ9g= Subject key identifier: F1:8F:A2:77:55:07:EA:7F:D3:25:E0:39:91:28:D1:7F:95:3C:3E:05 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 04415A8645039A669AA5F3395ED7F67F9821866C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144577.roa Signing time: Wed 04 Mar 2026 06:20:26 +0000 ROA not before: Wed 04 Mar 2026 06:15:26 +0000 ROA not after: Wed 03 Mar 2027 06:20:26 +0000 asID: 144577 IP address blocks: 240a:a787::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:41:5a:86:45:03:9a:66:9a:a5:f3:39:5e:d7:f6:7f:98:21:86:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:26 2026 GMT Not After : Mar 3 06:20:26 2027 GMT Subject: CN=F18FA2775507EA7FD325E0399128D17F953C3E05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:a7:38:03:a1:c6:bd:d6:02:24:36:62:48: 41:57:80:fa:1a:b4:66:21:a0:de:94:71:f1:80:60: f5:d4:54:ff:ab:ac:62:70:c8:b3:9a:c1:08:94:4e: ee:95:22:11:3c:88:f0:a6:8f:8b:96:b0:de:19:d0: 6c:66:59:3c:98:0a:2a:24:dc:47:f0:9b:bd:46:2a: ba:2f:eb:fc:12:d4:49:30:9f:12:cc:fd:36:ef:0b: fe:ca:67:fd:e0:5d:ef:43:c4:ac:8e:68:d8:4b:b6: 6d:8a:8b:a8:0a:2a:12:f5:6f:3d:96:d0:63:57:16: f4:db:f0:7b:1a:22:de:3e:68:5f:db:c5:23:52:81: 03:80:f5:fc:a9:e4:0e:2f:89:d9:d9:7c:fe:fb:7d: ae:13:72:46:ba:f8:3d:a2:99:10:ed:81:8e:a7:ae: c2:ab:db:be:3a:8a:55:fe:42:8f:e1:c2:1d:7d:e3: be:ec:b6:38:31:27:a3:c9:16:43:34:5b:11:12:4e: 00:be:0c:b2:6d:58:43:0f:0d:08:1e:26:34:7e:9a: e5:f9:03:1e:2b:4c:5b:74:8e:06:db:e4:7a:83:60: 5d:8e:24:f9:34:a0:ec:5e:ef:1c:f7:1f:b9:2c:ef: 2d:39:f1:cb:cb:72:65:82:76:e0:db:c0:fd:9e:14: 5a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:8F:A2:77:55:07:EA:7F:D3:25:E0:39:91:28:D1:7F:95:3C:3E:05 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144577.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a787::/32 Signature Algorithm: sha256WithRSAEncryption 56:de:c0:a6:c5:ee:af:71:30:af:a0:d9:c2:a1:9e:79:81:0a: 17:7e:4d:c7:82:9e:3d:05:fa:0d:ec:ae:1b:98:66:a7:90:d9: cd:38:28:04:a2:57:97:de:e0:c8:5b:b4:08:2f:cb:5b:dd:f4: c8:bf:21:65:98:23:69:f3:e6:b7:d5:46:cd:09:3d:1b:85:95: 64:63:49:a0:ce:d3:05:26:71:d3:eb:54:8f:10:a1:6c:b3:00: 74:12:e8:bf:55:55:19:e2:87:45:d9:dd:95:d4:58:38:d4:0a: c6:d2:2b:d9:6e:5c:b4:bb:85:e0:a2:b7:99:75:98:b4:f7:ba: cb:fd:93:fe:3e:ac:90:e3:88:75:f0:13:3c:11:b3:91:78:a3: f9:b3:73:df:d7:af:56:15:eb:e2:f0:1f:47:1d:86:d1:7a:06: e9:c1:0a:df:59:3e:96:28:73:ee:20:50:32:c1:82:06:b1:2b: 8b:4d:6a:25:73:48:7e:aa:83:62:1a:3b:35:ee:4b:95:f2:e3: c9:77:d7:a9:30:03:e7:e6:ee:4f:03:62:98:91:45:fc:91:fc: eb:d4:2f:b1:67:dd:a9:a0:bd:3a:3a:5d:4a:86:2c:56:d8:84: 72:d0:59:ce:a6:53:b0:4c:c6:ec:0f:fd:cc:95:c9:7f:35:d3: c3:9c:44:e7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBEFahkUDmmaapfM5Xtf2f5ghhmwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUyNloX DTI3MDMwMzA2MjAyNlowMzExMC8GA1UEAxMoRjE4RkEyNzc1NTA3RUE3RkQzMjVF MDM5OTEyOEQxN0Y5NTNDM0UwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK98pzgDoca91gIkNmJIQVeA+hq0ZiGg3pRx8YBg9dRU/6usYnDIs5rBCJRO 7pUiETyI8KaPi5aw3hnQbGZZPJgKKiTcR/CbvUYqui/r/BLUSTCfEsz9Nu8L/spn /eBd70PErI5o2Eu2bYqLqAoqEvVvPZbQY1cW9Nvwexoi3j5oX9vFI1KBA4D1/Knk Di+J2dl8/vt9rhNyRrr4PaKZEO2BjqeuwqvbvjqKVf5Cj+HCHX3jvuy2ODEno8kW QzRbERJOAL4Msm1YQw8NCB4mNH6a5fkDHitMW3SOBtvkeoNgXY4k+TSg7F7vHPcf uSzvLTnxy8tyZYJ24NvA/Z4UWqsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTxj6J3 VQfqf9Ml4DmRKNF/lTw+BTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU3Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4cwDQYJKoZIhvcNAQELBQADggEBAFbewKbF7q9xMK+g2cKhnnmBChd+TceCnj0F +g3srhuYZqeQ2c04KASiV5fe4MhbtAgvy1vd9Mi/IWWYI2nz5rfVRs0JPRuFlWRj SaDO0wUmcdPrVI8QoWyzAHQS6L9VVRnih0XZ3ZXUWDjUCsbSK9luXLS7heCit5l1 mLT3usv9k/4+rJDjiHXwEzwRs5F4o/mzc9/Xr1YV6+LwH0cdhtF6BunBCt9ZPpYo c+4gUDLBggaxK4tNaiVzSH6qg2IaOzXuS5Xy48l316kwA+fm7k8DYpiRRfyR/OvU L7Fn3amgvTo6XUqGLFbYhHLQWc6mU7BMxuwP/cyVyX8108OcROc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:19 2026 by rpki-client