$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144624.roa File: AS144624.roa (raw, json) Hash identifier: K2FT3NAmLN5NPPxNmQcGjoBnkuAOQbactRkwpZaeStM= Subject key identifier: F4:E3:36:0D:DC:E5:14:B6:55:EF:78:8A:6C:58:13:1D:B3:7E:64:3D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41F44F750165DCD2EAD69E573112FC6ECD3A5DCD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144624.roa Signing time: Wed 04 Mar 2026 06:20:13 +0000 ROA not before: Wed 04 Mar 2026 06:15:13 +0000 ROA not after: Wed 03 Mar 2027 06:20:13 +0000 asID: 144624 IP address blocks: 240a:a7b6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f4:4f:75:01:65:dc:d2:ea:d6:9e:57:31:12:fc:6e:cd:3a:5d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:13 2026 GMT Not After : Mar 3 06:20:13 2027 GMT Subject: CN=F4E3360DDCE514B655EF788A6C58131DB37E643D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:65:c4:b1:aa:b8:9f:76:40:66:e5:bc:60:ba: e2:2b:95:07:4e:fe:17:be:8d:bb:c7:9c:af:83:45: 98:a3:df:56:34:6e:94:b4:0b:4d:54:11:04:34:2b: 47:3e:60:16:18:6c:ae:23:7c:da:eb:2a:0d:24:e7: ba:da:00:bf:44:a7:5e:b9:3a:5d:7a:f2:1f:a3:ea: ae:fe:0f:6d:4c:e5:1c:56:87:b5:c0:fa:b4:e9:e3: c7:24:78:73:63:fa:c2:95:30:e1:e8:d1:70:b8:65: 17:55:ac:1f:29:8f:3f:ee:61:dc:7d:3e:2c:09:2e: 41:84:4d:04:0c:51:72:a0:b7:6d:f9:d8:02:63:4e: 36:44:21:29:24:2f:dd:cd:41:f8:f4:04:f2:e2:f3: 2d:ec:a5:33:5b:da:40:c5:3c:da:5f:3d:d7:d0:93: cb:4a:65:bb:cf:f1:0d:54:d2:b4:a8:02:ef:25:a7: 9b:f8:2e:c0:65:cc:0a:4f:3b:50:b0:e6:1a:ce:14: 55:59:66:f7:79:02:52:58:5a:b2:9c:84:07:f4:9a: 2f:b0:b1:4e:d7:5b:f0:fe:02:3e:3a:da:de:a3:97: 52:e6:eb:c1:69:97:40:17:bd:e2:e5:7b:8f:5e:96: 7b:5c:2a:ac:72:c2:9a:eb:56:88:f7:11:77:6c:d6: 2d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E3:36:0D:DC:E5:14:B6:55:EF:78:8A:6C:58:13:1D:B3:7E:64:3D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144624.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7b6::/32 Signature Algorithm: sha256WithRSAEncryption 3a:e9:fd:9c:98:ad:6b:41:a0:a8:e8:94:ae:ce:97:4a:20:34: bb:ab:0f:a1:28:b2:d3:ca:12:b9:25:95:84:7c:1d:7b:4a:57: a1:16:7f:75:14:11:90:07:f0:9a:d8:d8:dc:4c:4c:77:af:96: f8:ee:6d:53:f3:56:93:c5:10:56:72:77:d6:35:72:ef:19:97: 93:1f:1b:ff:ac:03:65:fa:74:1e:b8:ff:a1:0d:90:9b:1f:65: f1:7e:cf:11:d1:2a:1b:e8:cf:43:2b:e0:67:09:74:30:a6:f0: 45:5b:a6:60:e8:e0:18:cc:09:0e:46:e4:bc:00:86:53:ad:de: 26:9e:44:0f:d4:67:30:4d:a0:2e:de:9f:51:16:bb:b9:2d:89: 37:89:07:c1:8a:07:17:02:a5:cb:3b:8d:f5:8e:1e:7c:fe:4f: 08:dc:55:a1:82:48:91:85:cf:5c:be:70:c0:2a:cc:89:af:c0: aa:72:c0:ca:6c:0e:72:9f:8c:a0:79:cc:3a:d3:40:c8:67:2c: 65:e7:ca:aa:9c:15:55:28:d7:60:21:7a:d8:63:92:85:ec:38: db:e9:9e:84:44:5a:31:71:73:28:b8:50:bd:5a:32:8b:d2:58: 1b:12:64:13:ef:0c:ca:96:eb:d1:b1:3e:9b:e5:c5:22:b1:3b: f5:8c:c2:d4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQfRPdQFl3NLq1p5XMRL8bs06Xc0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUxM1oX DTI3MDMwMzA2MjAxM1owMzExMC8GA1UEAxMoRjRFMzM2MEREQ0U1MTRCNjU1RUY3 ODhBNkM1ODEzMURCMzdFNjQzRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1lxLGquJ92QGblvGC64iuVB07+F76Nu8ecr4NFmKPfVjRulLQLTVQRBDQr Rz5gFhhsriN82usqDSTnutoAv0SnXrk6XXryH6Pqrv4PbUzlHFaHtcD6tOnjxyR4 c2P6wpUw4ejRcLhlF1WsHymPP+5h3H0+LAkuQYRNBAxRcqC3bfnYAmNONkQhKSQv 3c1B+PQE8uLzLeylM1vaQMU82l8919CTy0plu8/xDVTStKgC7yWnm/guwGXMCk87 ULDmGs4UVVlm93kCUlhaspyEB/SaL7CxTtdb8P4CPjra3qOXUubrwWmXQBe94uV7 j16We1wqrHLCmutWiPcRd2zWLdECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT04zYN 3OUUtlXveIpsWBMds35kPTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDYyNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p7YwDQYJKoZIhvcNAQELBQADggEBADrp/ZyYrWtBoKjolK7Ol0ogNLurD6EostPK ErkllYR8HXtKV6EWf3UUEZAH8JrY2NxMTHevlvjubVPzVpPFEFZyd9Y1cu8Zl5Mf G/+sA2X6dB64/6ENkJsfZfF+zxHRKhvoz0Mr4GcJdDCm8EVbpmDo4BjMCQ5G5LwA hlOt3iaeRA/UZzBNoC7en1EWu7ktiTeJB8GKBxcCpcs7jfWOHnz+TwjcVaGCSJGF z1y+cMAqzImvwKpywMpsDnKfjKB5zDrTQMhnLGXnyqqcFVUo12AhethjkoXsONvp noREWjFxcyi4UL1aMovSWBsSZBPvDMqW69GxPpvlxSKxO/WMwtQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:12 2026 by rpki-client