$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144612.roa File: AS144612.roa (raw, json) Hash identifier: nkLhAK5kD0s/zsAtLbk+Fo0RPyDaUWD69Cnzkm046E8= Subject key identifier: 13:65:11:E4:6C:63:28:16:E8:95:50:1C:8F:B2:BF:63:97:EE:A9:CD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 32EAD436327D7A803C4A0542CEADB42AB75635F9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144612.roa Signing time: Wed 04 Mar 2026 06:20:07 +0000 ROA not before: Wed 04 Mar 2026 06:15:07 +0000 ROA not after: Wed 03 Mar 2027 06:20:07 +0000 asID: 144612 IP address blocks: 240a:a7aa::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ea:d4:36:32:7d:7a:80:3c:4a:05:42:ce:ad:b4:2a:b7:56:35:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:07 2026 GMT Not After : Mar 3 06:20:07 2027 GMT Subject: CN=136511E46C632816E895501C8FB2BF6397EEA9CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7d:1e:bc:3e:e5:cd:7d:9f:fe:60:d0:49:52: 16:0a:7a:45:95:24:80:7b:42:2c:31:5d:e2:7f:ad: 54:68:90:f2:a8:99:25:24:fd:21:15:1e:86:5f:81: 86:95:28:1c:e6:16:d1:92:71:d1:13:3b:cc:cf:8f: ed:db:5f:3e:28:22:03:3a:29:4e:54:d9:fd:e9:e0: 2e:d2:f5:d0:07:63:9c:97:fd:9a:81:69:5c:61:1a: 42:f3:fb:db:ec:8b:bd:99:57:a3:e8:21:8e:d4:44: e2:87:46:1f:3f:ad:3c:ad:4e:2e:c8:f5:4a:f2:5e: 99:92:85:01:36:af:2e:32:f2:84:a8:a4:8c:ca:d2: 05:3d:18:c8:8f:2c:cc:6a:ab:cd:35:3f:12:78:2c: 84:22:dd:21:59:82:52:43:6a:59:17:90:19:df:a9: c2:e3:67:94:75:c7:f9:a5:06:3a:47:ad:c2:f8:ae: ac:b9:21:9f:a8:c1:cf:29:94:e7:eb:a8:da:14:6b: bc:15:4b:16:25:91:3b:43:d9:3b:a8:ba:eb:7a:5e: 3c:4e:2f:03:8c:7b:19:46:0b:51:fe:c7:46:04:f6: 64:63:ca:f4:38:28:e2:6a:e4:22:b7:f8:06:ea:d4: c0:5a:3d:c6:6c:70:53:43:f2:3d:8a:19:70:fd:d7: a4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:65:11:E4:6C:63:28:16:E8:95:50:1C:8F:B2:BF:63:97:EE:A9:CD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144612.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7aa::/32 Signature Algorithm: sha256WithRSAEncryption 55:3c:27:4e:d0:01:56:f8:a6:8e:e2:19:0e:d1:0e:23:ca:c4: fd:d0:83:53:4a:5f:3d:24:e3:4c:b5:cd:f5:6a:7f:73:2f:e8: e9:8e:84:ca:ac:03:dc:b1:05:97:82:17:4d:3b:21:59:6e:c5: 04:2b:54:d5:88:25:fe:ac:bb:09:02:00:00:b7:45:21:1d:29: 37:37:1c:5a:71:34:46:d0:b0:5c:9a:9e:71:8c:af:c6:6e:3c: cc:51:67:99:31:1e:a5:d0:91:92:61:3a:73:dc:ea:98:17:1a: 85:73:c1:73:0a:55:1c:e2:3d:a5:94:db:01:f0:dd:88:90:b5: de:bc:0c:07:bc:ad:28:4a:f2:29:04:b0:4f:d5:2a:75:34:af: f9:70:89:71:ab:68:27:67:f7:46:cc:d2:24:50:16:45:64:94: 05:4d:78:ec:48:e6:e7:7e:50:4a:4e:c4:49:2a:f3:19:7c:27: dd:ed:eb:8d:69:b8:82:35:98:c8:58:e8:ee:58:be:17:ed:09: 88:81:f9:78:93:1c:ea:72:f5:2b:e9:1e:87:75:47:49:36:31: 60:44:2b:f4:d2:d0:65:fd:ca:e3:94:e8:36:7e:80:b9:76:f5: 31:df:ef:b2:de:43:e9:5e:7a:6a:a9:76:35:43:56:ec:d4:0d: 73:b4:83:ee -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMurUNjJ9eoA8SgVCzq20KrdWNfkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUwN1oX DTI3MDMwMzA2MjAwN1owMzExMC8GA1UEAxMoMTM2NTExRTQ2QzYzMjgxNkU4OTU1 MDFDOEZCMkJGNjM5N0VFQTlDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ99Hrw+5c19n/5g0ElSFgp6RZUkgHtCLDFd4n+tVGiQ8qiZJST9IRUehl+B hpUoHOYW0ZJx0RM7zM+P7dtfPigiAzopTlTZ/engLtL10AdjnJf9moFpXGEaQvP7 2+yLvZlXo+ghjtRE4odGHz+tPK1OLsj1SvJemZKFATavLjLyhKikjMrSBT0YyI8s zGqrzTU/EngshCLdIVmCUkNqWReQGd+pwuNnlHXH+aUGOketwviurLkhn6jBzymU 5+uo2hRrvBVLFiWRO0PZO6i663pePE4vA4x7GUYLUf7HRgT2ZGPK9Dgo4mrkIrf4 BurUwFo9xmxwU0PyPYoZcP3XpOcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQTZRHk bGMoFuiVUByPsr9jl+6pzTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDYxMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p6owDQYJKoZIhvcNAQELBQADggEBAFU8J07QAVb4po7iGQ7RDiPKxP3Qg1NKXz0k 40y1zfVqf3Mv6OmOhMqsA9yxBZeCF007IVluxQQrVNWIJf6suwkCAAC3RSEdKTc3 HFpxNEbQsFyannGMr8ZuPMxRZ5kxHqXQkZJhOnPc6pgXGoVzwXMKVRziPaWU2wHw 3YiQtd68DAe8rShK8ikEsE/VKnU0r/lwiXGraCdn90bM0iRQFkVklAVNeOxI5ud+ UEpOxEkq8xl8J93t641puII1mMhY6O5YvhftCYiB+XiTHOpy9SvpHod1R0k2MWBE K/TS0GX9yuOU6DZ+gLl29THf77LeQ+leemqpdjVDVuzUDXO0g+4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:10 2026 by rpki-client