$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144581.roa File: AS144581.roa (raw, json) Hash identifier: z96DTdqQIGLpuKrptOpMieRdu2/lbqVUOCQDurR7hdc= Subject key identifier: 6A:B0:33:D0:D5:F5:5E:00:FE:26:F7:6C:84:0D:49:49:B8:E5:C0:AD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0B515865D1F48B5C099C2E92A129086FF9B8A130 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144581.roa Signing time: Wed 04 Mar 2026 06:21:44 +0000 ROA not before: Wed 04 Mar 2026 06:16:44 +0000 ROA not after: Wed 03 Mar 2027 06:21:44 +0000 asID: 144581 IP address blocks: 240a:a78b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:51:58:65:d1:f4:8b:5c:09:9c:2e:92:a1:29:08:6f:f9:b8:a1:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:44 2026 GMT Not After : Mar 3 06:21:44 2027 GMT Subject: CN=6AB033D0D5F55E00FE26F76C840D4949B8E5C0AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8a:f2:06:40:23:c4:99:b8:f1:65:bb:a8:72: af:da:a9:41:c7:94:b6:75:56:b9:d1:c3:a3:73:55: c2:8f:2f:87:23:45:88:d2:4c:1d:3a:87:17:df:fa: 8c:a2:8c:d6:99:96:a0:8a:14:cf:38:ee:93:73:a9: 9d:4f:98:8f:e6:2b:02:68:6a:f6:78:46:b0:f5:ca: fa:b3:5d:70:cb:d1:9e:a7:17:87:8e:d8:a8:8d:76: 2a:55:30:84:fb:9f:29:11:6f:da:5f:06:65:27:14: 2a:94:26:94:69:2e:fa:4f:09:a5:c4:c6:52:af:92: b7:4b:52:29:37:28:66:29:df:c1:8a:b1:00:f8:e3: 65:2e:8a:62:c1:70:f0:52:5d:62:f5:7b:e6:8a:46: a1:8a:c1:7a:c5:4d:a5:50:14:54:2c:ff:66:7e:01: 17:a0:a3:4f:b3:78:8d:6a:7d:5e:1f:f3:af:51:da: 39:79:61:2e:5d:3c:f3:07:24:68:3c:ae:a4:1e:4f: 9a:82:0f:68:b7:93:ca:89:df:05:48:b7:d8:50:61: 2d:0b:90:ce:80:44:f6:3a:7b:71:ac:54:69:09:b8: ab:5b:8a:bb:3b:6a:65:83:f2:ef:a4:2e:e3:de:1b: b3:61:d1:12:f7:de:d8:77:99:cd:b7:56:78:98:05: 78:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B0:33:D0:D5:F5:5E:00:FE:26:F7:6C:84:0D:49:49:B8:E5:C0:AD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144581.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a78b::/32 Signature Algorithm: sha256WithRSAEncryption 48:5a:e2:26:b4:a3:1f:bb:39:72:95:85:f5:22:b0:bb:ad:4f: 40:25:d0:ae:ca:3c:1e:ff:bc:6c:f2:6a:23:72:f9:5a:1c:e8: 86:dd:29:41:a3:ba:fc:61:b1:72:41:78:50:fd:62:d8:25:cf: 0d:32:f6:3a:1e:fc:60:4d:f2:f1:88:c8:dc:af:ad:93:05:f6: 29:1d:16:0f:ea:fa:32:00:52:ca:9c:63:82:5d:54:8a:a8:76: 54:8a:07:6f:ab:f9:de:8b:40:0f:bf:83:22:24:a9:c4:b2:eb: a9:ce:1c:05:3e:f4:b6:21:a0:c6:a6:62:7a:8a:46:23:d1:d6: 7b:3e:5f:63:9f:79:b5:50:fc:45:18:7f:25:be:e1:cb:69:52: de:f9:12:5b:73:d4:7a:4c:72:27:ba:13:4b:50:45:5a:a6:f2: 15:66:76:1e:32:b4:96:e0:2f:ce:30:04:82:c4:a3:02:f5:00: 6c:a9:54:84:61:60:65:d5:d1:48:79:27:6f:7b:78:a3:a4:21: c0:79:34:51:64:9a:21:30:af:8b:ee:5e:a2:02:a7:e3:5e:bb: ab:0b:7b:73:80:37:f0:c7:f3:7e:67:07:10:5a:2e:90:3c:90: bf:ad:ab:bc:cd:a4:4a:80:58:b3:5d:8e:bf:d5:86:e5:9b:b9: 93:40:17:3d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUC1FYZdH0i1wJnC6SoSkIb/m4oTAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0NFoX DTI3MDMwMzA2MjE0NFowMzExMC8GA1UEAxMoNkFCMDMzRDBENUY1NUUwMEZFMjZG NzZDODQwRDQ5NDlCOEU1QzBBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCK8gZAI8SZuPFlu6hyr9qpQceUtnVWudHDo3NVwo8vhyNFiNJMHTqHF9/6 jKKM1pmWoIoUzzjuk3OpnU+Yj+YrAmhq9nhGsPXK+rNdcMvRnqcXh47YqI12KlUw hPufKRFv2l8GZScUKpQmlGku+k8JpcTGUq+St0tSKTcoZinfwYqxAPjjZS6KYsFw 8FJdYvV75opGoYrBesVNpVAUVCz/Zn4BF6CjT7N4jWp9Xh/zr1HaOXlhLl088wck aDyupB5PmoIPaLeTyonfBUi32FBhLQuQzoBE9jp7caxUaQm4q1uKuztqZYPy76Qu 494bs2HREvfe2HeZzbdWeJgFeJ0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRqsDPQ 1fVeAP4m92yEDUlJuOXArTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU4MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p4swDQYJKoZIhvcNAQELBQADggEBAEha4ia0ox+7OXKVhfUisLutT0Al0K7KPB7/ vGzyaiNy+Voc6IbdKUGjuvxhsXJBeFD9Ytglzw0y9joe/GBN8vGIyNyvrZMF9ikd Fg/q+jIAUsqcY4JdVIqodlSKB2+r+d6LQA+/gyIkqcSy66nOHAU+9LYhoMamYnqK RiPR1ns+X2OfebVQ/EUYfyW+4ctpUt75Eltz1HpMcie6E0tQRVqm8hVmdh4ytJbg L84wBILEowL1AGypVIRhYGXV0Uh5J297eKOkIcB5NFFkmiEwr4vuXqICp+Neu6sL e3OAN/DH835nBxBaLpA8kL+tq7zNpEqAWLNdjr/VhuWbuZNAFz0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:51 2026 by rpki-client