$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144585.roa File: AS144585.roa (raw, json) Hash identifier: 6AscEsF0odeH7sgk0qtscJ9QFV82hdUuuxLWmvUJpis= Subject key identifier: CE:58:70:F8:C1:50:19:DD:77:77:1B:92:1D:8D:55:D4:21:B4:C1:91 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 50D5E46E9CEEE97C03DADB9FE61360E8E208779B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144585.roa Signing time: Wed 04 Mar 2026 06:19:17 +0000 ROA not before: Wed 04 Mar 2026 06:14:17 +0000 ROA not after: Wed 03 Mar 2027 06:19:17 +0000 asID: 144585 IP address blocks: 240a:a78f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d5:e4:6e:9c:ee:e9:7c:03:da:db:9f:e6:13:60:e8:e2:08:77:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:17 2026 GMT Not After : Mar 3 06:19:17 2027 GMT Subject: CN=CE5870F8C15019DD77771B921D8D55D421B4C191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6e:37:e8:d7:3a:a0:13:05:ff:59:4b:26:9a: 3b:ac:5c:40:a0:ce:df:6e:68:5c:ac:6b:b6:80:b3: 81:fe:72:89:00:d3:55:4c:b9:60:71:ef:03:a5:a9: f3:8b:4b:e0:54:81:cd:6e:d5:b2:ba:25:ea:f0:a8: 6e:97:ea:91:59:94:28:57:77:2e:d5:ea:09:4b:27: 75:8f:1c:a5:02:10:8b:97:6e:1f:d6:f3:9c:0c:3d: b0:c0:52:ad:b3:d6:03:ce:b1:af:ae:ec:40:49:23: df:aa:43:ed:d9:15:82:e8:bf:2a:6c:4f:d2:fc:a0: 11:45:58:1c:7b:4d:6e:a2:bd:d1:92:c9:81:54:aa: f7:88:bd:ce:63:92:e9:fb:7b:b5:37:ab:57:53:0a: f2:67:7d:1d:85:20:6b:92:8f:38:b2:94:b0:56:97: cc:da:0b:62:40:3b:80:a1:37:f8:37:67:00:02:a4: d4:a0:75:36:03:be:8c:d5:a2:d7:ba:9e:62:17:0c: 2f:62:94:bf:0d:23:c9:45:f2:09:e6:b4:d6:ff:d9: b3:f0:28:9a:d5:87:12:ff:13:fd:69:d0:f0:a6:09: a9:e6:e6:1d:ee:84:56:17:1d:d2:fd:9f:50:44:d1: 67:a6:12:0d:c1:88:2c:64:a5:96:c6:69:82:3a:d0: 89:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:58:70:F8:C1:50:19:DD:77:77:1B:92:1D:8D:55:D4:21:B4:C1:91 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144585.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a78f::/32 Signature Algorithm: sha256WithRSAEncryption 7e:45:50:f7:13:fb:ca:ad:cb:a5:b6:d1:df:78:1d:2e:d1:88: 5b:bd:98:3d:42:07:6f:40:b0:b8:0b:11:82:69:4f:f7:ef:8f: f1:c9:1d:af:50:ec:e8:68:2a:42:4b:35:2a:45:c2:a1:47:34: 04:6a:5a:5c:ad:39:1b:84:90:32:2e:01:b3:1f:45:47:f4:b8: 0c:da:60:74:c0:6a:ef:d1:9b:fd:be:63:e5:a5:e8:ae:1d:7b: e9:e9:7c:d0:78:da:ff:7a:42:e1:95:04:75:10:df:76:96:cf: d3:7f:03:47:13:10:cc:4b:d6:5a:58:4f:35:d0:06:3a:d2:4c: c6:b1:30:92:12:8b:50:be:79:71:b0:38:1e:ab:86:a3:9e:1d: 84:5a:8a:8c:f3:4c:9e:fc:94:a9:e1:9a:c9:2b:77:3b:77:2b: 8d:a7:bf:a8:ed:23:9e:f9:f7:af:f8:07:13:a0:95:d9:9e:39: 2c:a0:a4:a0:80:a3:17:e4:85:2f:42:e2:fc:8f:d5:de:3e:df: 5c:ee:ef:2b:3b:3a:97:4d:58:db:a3:cc:7f:4a:92:e4:9f:db: b0:1f:49:e1:c3:aa:c4:f7:05:89:6d:81:13:2b:f4:49:8b:e1: e6:2a:39:c4:d8:ac:14:75:2e:17:37:61:c5:00:03:fb:a4:96: d8:13:ec:5e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUNXkbpzu6XwD2tuf5hNg6OIId5swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQxN1oX DTI3MDMwMzA2MTkxN1owMzExMC8GA1UEAxMoQ0U1ODcwRjhDMTUwMTlERDc3Nzcx QjkyMUQ4RDU1RDQyMUI0QzE5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBuN+jXOqATBf9ZSyaaO6xcQKDO325oXKxrtoCzgf5yiQDTVUy5YHHvA6Wp 84tL4FSBzW7Vsrol6vCobpfqkVmUKFd3LtXqCUsndY8cpQIQi5duH9bznAw9sMBS rbPWA86xr67sQEkj36pD7dkVgui/KmxP0vygEUVYHHtNbqK90ZLJgVSq94i9zmOS 6ft7tTerV1MK8md9HYUga5KPOLKUsFaXzNoLYkA7gKE3+DdnAAKk1KB1NgO+jNWi 17qeYhcML2KUvw0jyUXyCea01v/Zs/AomtWHEv8T/WnQ8KYJqebmHe6EVhcd0v2f UETRZ6YSDcGILGSllsZpgjrQiSUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTOWHD4 wVAZ3Xd3G5IdjVXUIbTBkTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDU4NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p48wDQYJKoZIhvcNAQELBQADggEBAH5FUPcT+8qty6W20d94HS7RiFu9mD1CB29A sLgLEYJpT/fvj/HJHa9Q7OhoKkJLNSpFwqFHNARqWlytORuEkDIuAbMfRUf0uAza YHTAau/Rm/2+Y+Wl6K4de+npfNB42v96QuGVBHUQ33aWz9N/A0cTEMxL1lpYTzXQ BjrSTMaxMJISi1C+eXGwOB6rhqOeHYRaiozzTJ78lKnhmskrdzt3K42nv6jtI575 96/4BxOgldmeOSygpKCAoxfkhS9C4vyP1d4+31zu7ys7OpdNWNujzH9KkuSf27Af SeHDqsT3BYltgRMr9EmL4eYqOcTYrBR1Lhc3YcUAA/ukltgT7F4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:17 2026 by rpki-client