$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144611.roa File: AS144611.roa (raw, json) Hash identifier: v50FLPkrbWb/Lm4VMNPG6IyuRMEa/Rnp/At4VyZ2zl0= Subject key identifier: 76:F9:D3:60:6C:8F:E1:28:E3:27:01:F3:75:0D:D8:06:32:49:3D:11 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 529EC6409E310FE8465A3EF1B2260224183A591F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144611.roa Signing time: Wed 04 Mar 2026 06:22:17 +0000 ROA not before: Wed 04 Mar 2026 06:17:17 +0000 ROA not after: Wed 03 Mar 2027 06:22:17 +0000 asID: 144611 IP address blocks: 240a:a7a9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9e:c6:40:9e:31:0f:e8:46:5a:3e:f1:b2:26:02:24:18:3a:59:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:17 2026 GMT Not After : Mar 3 06:22:17 2027 GMT Subject: CN=76F9D3606C8FE128E32701F3750DD80632493D11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ca:5c:76:58:31:9c:41:59:74:a9:26:6e:80: e3:86:97:2f:5f:a4:78:ad:33:6d:da:f7:f9:9a:84: e2:9f:86:ba:12:af:54:d2:23:50:8e:6d:c0:e5:81: 1f:4a:98:e6:5a:86:13:10:12:3b:54:8c:cb:85:65: 12:6d:db:b0:99:95:19:99:d5:c3:9f:be:27:db:65: 86:5f:f2:c6:e5:f0:a2:99:da:e9:26:5b:29:79:df: 8d:cd:41:01:fa:38:49:f6:18:ce:e7:35:e9:16:52: 1b:6f:9e:ef:f6:ed:c9:7c:2c:68:30:90:f5:33:13: 8c:26:db:a4:9c:4d:f7:cb:86:ce:e8:b9:fb:93:81: 86:ed:4f:70:64:a0:a5:46:62:92:19:bf:c9:8d:ca: ce:db:70:19:f2:92:76:e3:b6:a2:4f:9f:a7:03:18: 43:9f:5b:18:19:ac:d7:15:44:7c:82:58:c4:cd:a6: cb:68:2e:39:b0:74:ee:26:60:d1:8d:6c:51:28:9d: f8:35:cc:23:a8:f7:b0:c9:61:58:47:cd:d5:41:8d: 8e:51:e0:42:53:16:b5:82:93:f0:d9:75:17:94:34: 0e:f4:de:42:9b:27:88:20:cb:0f:ee:92:1e:9b:59: 78:e6:bc:e0:2b:5b:c5:ea:90:0e:54:6f:52:f9:cf: 6e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F9:D3:60:6C:8F:E1:28:E3:27:01:F3:75:0D:D8:06:32:49:3D:11 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144611.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7a9::/32 Signature Algorithm: sha256WithRSAEncryption bd:c5:80:bc:c9:d6:f7:ed:6a:82:7c:88:e9:f4:36:aa:24:27: 48:dc:c0:51:b5:5d:6a:b5:f1:02:2f:16:0f:55:54:40:eb:c9: 74:8e:e3:00:f8:51:c7:e8:25:5d:47:d1:c5:b4:66:49:76:80: 0e:44:b3:0d:ba:57:d0:31:3c:b1:3a:c4:27:27:57:92:28:33: f2:cf:bf:2c:4b:68:b6:4f:33:f7:b1:2b:41:df:b5:35:c4:e7: d7:f1:70:97:e1:a4:e2:1e:2e:87:10:41:4d:4f:2b:7a:09:ee: c0:68:15:5c:e5:f6:d4:0f:35:91:5b:73:33:b3:ec:b3:fb:3e: e4:17:69:d8:ba:58:f2:ef:03:aa:f0:d8:39:b2:74:ab:de:15: 17:9b:2a:50:59:e6:98:ed:a0:d3:38:55:c7:a5:f9:e3:da:8d: a0:16:16:58:0a:83:1b:da:38:28:e0:93:85:14:f0:0a:aa:35: fc:f2:9d:d1:6a:2a:44:06:aa:eb:b7:f8:6c:a2:9d:75:ec:23: ca:2a:eb:26:76:17:2a:19:18:71:a2:38:e6:f6:e6:26:4b:df: 04:61:5a:8f:6e:4e:b6:0e:9f:ac:9c:80:9d:d0:26:00:62:bd: 0a:01:2d:25:31:2d:9a:ff:bb:e9:81:3b:5f:65:03:ff:4c:bf: 53:ec:dd:3e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUp7GQJ4xD+hGWj7xsiYCJBg6WR8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcxN1oX DTI3MDMwMzA2MjIxN1owMzExMC8GA1UEAxMoNzZGOUQzNjA2QzhGRTEyOEUzMjcw MUYzNzUwREQ4MDYzMjQ5M0QxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM/KXHZYMZxBWXSpJm6A44aXL1+keK0zbdr3+ZqE4p+GuhKvVNIjUI5twOWB H0qY5lqGExASO1SMy4VlEm3bsJmVGZnVw5++J9tlhl/yxuXwopna6SZbKXnfjc1B Afo4SfYYzuc16RZSG2+e7/btyXwsaDCQ9TMTjCbbpJxN98uGzui5+5OBhu1PcGSg pUZikhm/yY3KzttwGfKSduO2ok+fpwMYQ59bGBms1xVEfIJYxM2my2guObB07iZg 0Y1sUSid+DXMI6j3sMlhWEfN1UGNjlHgQlMWtYKT8Nl1F5Q0DvTeQpsniCDLD+6S HptZeOa84CtbxeqQDlRvUvnPbj8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR2+dNg bI/hKOMnAfN1DdgGMkk9ETAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDYxMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p6kwDQYJKoZIhvcNAQELBQADggEBAL3FgLzJ1vftaoJ8iOn0NqokJ0jcwFG1XWq1 8QIvFg9VVEDryXSO4wD4UcfoJV1H0cW0Zkl2gA5Esw26V9AxPLE6xCcnV5IoM/LP vyxLaLZPM/exK0HftTXE59fxcJfhpOIeLocQQU1PK3oJ7sBoFVzl9tQPNZFbczOz 7LP7PuQXadi6WPLvA6rw2DmydKveFRebKlBZ5pjtoNM4Vcel+ePajaAWFlgKgxva OCjgk4UU8AqqNfzyndFqKkQGquu3+GyinXXsI8oq6yZ2FyoZGHGiOOb25iZL3wRh Wo9uTrYOn6ycgJ3QJgBivQoBLSUxLZr/u+mBO19lA/9Mv1Ps3T4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:04 2026 by rpki-client