$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144600.roa File: AS144600.roa (raw, json) Hash identifier: RBiWuG95fcDes+C4HM9KRCc7bnGXHUMlruVWQpq5Kck= Subject key identifier: 1A:60:1C:96:55:F0:5B:B9:48:75:9E:AB:50:2C:FB:25:F4:6F:21:50 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 31BEC7E097BCE143842AA7DB9FFFCD151E76E3D2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144600.roa Signing time: Wed 04 Mar 2026 06:19:26 +0000 ROA not before: Wed 04 Mar 2026 06:14:26 +0000 ROA not after: Wed 03 Mar 2027 06:19:26 +0000 asID: 144600 IP address blocks: 240a:a79e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:be:c7:e0:97:bc:e1:43:84:2a:a7:db:9f:ff:cd:15:1e:76:e3:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:26 2026 GMT Not After : Mar 3 06:19:26 2027 GMT Subject: CN=1A601C9655F05BB948759EAB502CFB25F46F2150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c0:e6:ec:ab:0c:03:64:a5:05:ed:ac:bd:b8: 52:a1:71:63:2c:da:26:2b:43:7c:81:54:f3:ce:e1: a8:84:dc:6c:02:f1:5d:d9:12:03:e7:0f:fb:08:31: b7:ec:fc:a9:cd:f2:d7:62:44:5f:c8:52:5a:03:7d: d8:86:51:f3:40:8e:a1:43:1d:39:ba:37:bc:c0:26: 0e:6a:90:84:a4:2a:77:d7:b1:7f:ba:f4:27:65:47: 35:5e:f9:a3:2d:82:4c:74:56:37:da:7c:fa:6d:04: 61:02:9d:a7:42:ae:9b:5f:98:81:35:5e:00:21:48: 4f:e9:5f:f4:04:99:37:ed:11:31:6d:89:12:aa:8f: 33:94:b7:b8:d8:4f:75:f4:97:77:71:08:78:ab:b1: b4:98:96:d7:7d:3d:39:71:b1:44:2f:4c:cc:83:4c: 09:08:d0:a4:24:94:1d:02:8c:b7:31:2f:51:37:ba: 77:cd:40:ed:70:29:2d:d6:e2:55:0e:cb:6b:b6:86: 4d:8c:cc:36:7c:68:ee:1e:14:cc:81:66:4e:d4:d3: 33:db:c2:db:40:f2:0c:e8:a3:e5:72:d1:cb:a7:33: a1:fe:c8:9c:a1:4d:d6:12:f0:19:b2:b6:55:64:f2: 05:a9:f9:de:f6:a0:4c:74:38:43:cc:50:45:57:eb: 1b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:60:1C:96:55:F0:5B:B9:48:75:9E:AB:50:2C:FB:25:F4:6F:21:50 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144600.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a79e::/32 Signature Algorithm: sha256WithRSAEncryption 37:05:87:09:05:e5:ac:b9:cf:16:3b:95:2b:cc:7f:9b:4f:55: d4:7d:6c:96:b0:25:d3:bb:a9:c0:6f:2a:7c:8a:06:4c:24:22: 7c:7d:a8:22:95:0f:fb:9d:fe:0d:27:50:3e:fe:0f:8a:5d:3c: 52:c5:96:7b:d6:98:63:3d:18:03:f4:b7:e0:3c:04:36:2c:9c: 34:75:a8:c6:e3:c6:0f:fe:43:74:01:4f:70:e1:02:83:5c:4c: 05:a9:11:61:d4:79:15:d1:b9:33:1b:0a:d1:60:7c:91:e5:d1: 20:a1:f6:bf:b1:d4:31:8d:a7:44:51:b7:12:96:d9:10:40:f1: d9:e6:42:0f:46:2e:dc:14:b3:c5:06:06:97:e1:2c:22:aa:58: 46:a9:f3:53:94:1d:45:ef:b6:e4:ac:2d:f7:e0:15:d5:01:64: 4e:06:74:36:96:12:24:69:4b:17:f9:cf:f5:82:e3:3c:36:58: fb:d1:50:e8:ce:0e:50:05:bd:f6:9d:af:9e:99:6a:34:e7:4b: 47:b9:33:96:b7:08:6c:58:d4:ef:85:9f:a7:be:be:6a:a7:23: 54:61:7e:1d:68:11:16:e0:89:0f:0b:a0:2c:5a:c7:c0:ac:55: 2d:45:03:e0:f8:b0:c9:bc:b4:47:8c:05:7c:18:3e:d9:00:c7: 6c:a3:88:e0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMb7H4Je84UOEKqfbn//NFR5249IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQyNloX DTI3MDMwMzA2MTkyNlowMzExMC8GA1UEAxMoMUE2MDFDOTY1NUYwNUJCOTQ4NzU5 RUFCNTAyQ0ZCMjVGNDZGMjE1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfA5uyrDANkpQXtrL24UqFxYyzaJitDfIFU887hqITcbALxXdkSA+cP+wgx t+z8qc3y12JEX8hSWgN92IZR80COoUMdObo3vMAmDmqQhKQqd9exf7r0J2VHNV75 oy2CTHRWN9p8+m0EYQKdp0Kum1+YgTVeACFIT+lf9ASZN+0RMW2JEqqPM5S3uNhP dfSXd3EIeKuxtJiW1309OXGxRC9MzINMCQjQpCSUHQKMtzEvUTe6d81A7XApLdbi VQ7La7aGTYzMNnxo7h4UzIFmTtTTM9vC20DyDOij5XLRy6czof7InKFN1hLwGbK2 VWTyBan53vagTHQ4Q8xQRVfrGykCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQaYByW VfBbuUh1nqtQLPsl9G8hUDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDYwMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p54wDQYJKoZIhvcNAQELBQADggEBADcFhwkF5ay5zxY7lSvMf5tPVdR9bJawJdO7 qcBvKnyKBkwkInx9qCKVD/ud/g0nUD7+D4pdPFLFlnvWmGM9GAP0t+A8BDYsnDR1 qMbjxg/+Q3QBT3DhAoNcTAWpEWHUeRXRuTMbCtFgfJHl0SCh9r+x1DGNp0RRtxKW 2RBA8dnmQg9GLtwUs8UGBpfhLCKqWEap81OUHUXvtuSsLffgFdUBZE4GdDaWEiRp Sxf5z/WC4zw2WPvRUOjODlAFvfadr56ZajTnS0e5M5a3CGxY1O+Fn6e+vmqnI1Rh fh1oERbgiQ8LoCxax8CsVS1FA+D4sMm8tEeMBXwYPtkAx2yjiOA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:35 2026 by rpki-client