$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144606.roa File: AS144606.roa (raw, json) Hash identifier: rd1QDt1Hpzsx6/e09ryW6L16DdV0lvT6bb0JLWn9Czk= Subject key identifier: 0C:50:97:2D:C0:D3:A8:72:DA:C6:13:C2:8C:50:57:AD:F8:05:3F:8B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1C83EB636FCE9546576578285305E5A02CE83BA9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144606.roa Signing time: Wed 04 Mar 2026 06:22:35 +0000 ROA not before: Wed 04 Mar 2026 06:17:35 +0000 ROA not after: Wed 03 Mar 2027 06:22:35 +0000 asID: 144606 IP address blocks: 240a:a7a4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:83:eb:63:6f:ce:95:46:57:65:78:28:53:05:e5:a0:2c:e8:3b:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:35 2026 GMT Not After : Mar 3 06:22:35 2027 GMT Subject: CN=0C50972DC0D3A872DAC613C28C5057ADF8053F8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:f7:11:2e:ef:2b:43:c7:ae:8a:7a:5b:8e: 6c:e7:b0:8c:e0:9d:45:03:4c:75:43:0c:d4:e0:01: 52:19:bf:d3:17:90:0f:a8:61:c6:af:4e:cb:57:09: e7:07:85:cd:55:3e:f5:0d:54:11:db:37:3f:c1:8c: b9:0c:4f:dc:af:7c:f8:c0:90:bd:3c:9e:90:62:3b: 5a:dc:00:41:d1:5c:cc:36:36:af:7d:2a:de:cd:cf: e1:cf:0a:07:f8:5b:ba:60:4c:eb:19:9a:4d:16:be: 9a:8a:db:96:52:cb:d4:c0:4c:92:d8:f8:d9:14:0a: a3:e6:74:c6:07:08:bb:0c:82:62:8a:0a:33:46:fe: 63:ce:c9:5e:18:29:4f:83:c5:7c:dd:76:6d:fd:80: 15:3f:d3:9c:32:86:11:a7:59:3a:64:2e:d4:dd:a5: ee:c8:6c:cf:20:68:84:ea:00:79:2b:75:41:b8:bd: b3:44:73:1f:9b:6e:4a:ef:84:b6:86:a8:36:32:7d: 44:ae:fa:02:0e:d3:de:fe:05:d7:45:ac:dd:7c:0e: 41:bb:e6:7f:5a:46:3c:64:4c:a1:35:e1:d3:e4:b6: 33:e7:52:89:a8:60:78:08:7a:e0:39:bc:b8:38:00: 69:82:90:fa:10:a5:bf:70:61:0b:fe:08:dd:5b:12: ca:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:50:97:2D:C0:D3:A8:72:DA:C6:13:C2:8C:50:57:AD:F8:05:3F:8B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144606.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7a4::/32 Signature Algorithm: sha256WithRSAEncryption 16:d3:66:fb:77:b3:27:7b:47:26:4f:1f:e8:d2:c7:bd:b3:73: ca:54:e9:e6:67:64:77:87:b8:fe:2b:f2:6f:f9:21:50:5d:60: 3c:de:b8:f9:20:ee:68:da:12:2d:1e:99:a6:7a:a5:0c:a0:e0: f9:3f:dc:a6:42:86:57:1d:ed:4d:2f:60:ea:ca:b8:40:fe:d8: c4:ce:56:3a:4b:76:5d:d4:ad:a2:32:ee:d5:24:33:75:49:e6: 5f:ff:bd:51:e4:e8:6d:60:19:3c:90:5c:9b:3d:63:a4:c9:8a: ca:c4:f7:54:1e:78:c6:c7:c9:28:d8:dd:1b:72:ec:4d:1c:4f: 48:34:c3:77:be:5c:af:77:b3:65:1b:09:55:7c:71:d8:1f:58: 81:46:b6:2d:12:c8:59:70:f1:6a:b9:d5:14:00:b0:5c:a2:03: 65:05:99:27:14:3a:15:b3:03:61:d3:67:42:0b:92:60:d8:0b: d1:c9:bb:01:d9:5e:48:a8:5f:12:12:83:de:cc:54:b8:15:49: 08:e2:24:f9:d5:fb:ab:82:18:44:6b:ff:bc:54:d7:59:3f:ab: 49:1f:dd:12:b6:2b:9e:8a:ca:e5:fd:81:47:6b:5d:57:12:90: 20:2c:55:ce:09:53:1d:ef:4b:4f:bf:e1:d6:e1:56:d7:d7:4f: 7e:4a:69:31 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHIPrY2/OlUZXZXgoUwXloCzoO6kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczNVoX DTI3MDMwMzA2MjIzNVowMzExMC8GA1UEAxMoMEM1MDk3MkRDMEQzQTg3MkRBQzYx M0MyOEM1MDU3QURGODA1M0Y4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANN99xEu7ytDx66KeluObOewjOCdRQNMdUMM1OABUhm/0xeQD6hhxq9Oy1cJ 5weFzVU+9Q1UEds3P8GMuQxP3K98+MCQvTyekGI7WtwAQdFczDY2r30q3s3P4c8K B/hbumBM6xmaTRa+morbllLL1MBMktj42RQKo+Z0xgcIuwyCYooKM0b+Y87JXhgp T4PFfN12bf2AFT/TnDKGEadZOmQu1N2l7shszyBohOoAeSt1Qbi9s0RzH5tuSu+E toaoNjJ9RK76Ag7T3v4F10Ws3XwOQbvmf1pGPGRMoTXh0+S2M+dSiahgeAh64Dm8 uDgAaYKQ+hClv3BhC/4I3VsSyicCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQMUJct wNOoctrGE8KMUFet+AU/izAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDYwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p6QwDQYJKoZIhvcNAQELBQADggEBABbTZvt3syd7RyZPH+jSx72zc8pU6eZnZHeH uP4r8m/5IVBdYDzeuPkg7mjaEi0emaZ6pQyg4Pk/3KZChlcd7U0vYOrKuED+2MTO VjpLdl3UraIy7tUkM3VJ5l//vVHk6G1gGTyQXJs9Y6TJisrE91QeeMbHySjY3Rty 7E0cT0g0w3e+XK93s2UbCVV8cdgfWIFGti0SyFlw8Wq51RQAsFyiA2UFmScUOhWz A2HTZ0ILkmDYC9HJuwHZXkioXxISg97MVLgVSQjiJPnV+6uCGERr/7xU11k/q0kf 3RK2K56KyuX9gUdrXVcSkCAsVc4JUx3vS0+/4dbhVtfXT35KaTE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:24 2026 by rpki-client