$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144630.roa File: AS144630.roa (raw, json) Hash identifier: PiHBnuHgT0RrKbg6Q6Xz55NywXXOX2+2zi2lks3mg5A= Subject key identifier: FD:90:46:45:A5:CC:AE:17:4E:27:DC:8D:11:33:C1:1E:68:CD:2C:B6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 532D17889F96A6FDD2CEB776619AA198B9D322F8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144630.roa Signing time: Wed 04 Mar 2026 06:21:31 +0000 ROA not before: Wed 04 Mar 2026 06:16:31 +0000 ROA not after: Wed 03 Mar 2027 06:21:31 +0000 asID: 144630 IP address blocks: 240a:a7bc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:2d:17:88:9f:96:a6:fd:d2:ce:b7:76:61:9a:a1:98:b9:d3:22:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:31 2026 GMT Not After : Mar 3 06:21:31 2027 GMT Subject: CN=FD904645A5CCAE174E27DC8D1133C11E68CD2CB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:53:0d:82:46:12:5f:f2:27:6e:d1:70:e6:17: 5d:20:a0:82:e1:d3:c4:0c:f0:b1:20:85:77:7f:62: 12:27:db:b5:5f:41:0b:6d:7a:1b:4c:18:23:ea:07: d8:6e:18:bf:f6:e6:78:6f:fc:4b:0e:fa:77:f1:4a: 42:dd:cf:38:0d:53:76:8c:04:c9:7f:e3:c3:81:30: 5a:d5:08:ed:e1:19:e3:b3:d7:cc:a5:e7:25:d3:99: 52:e7:de:f4:14:7d:e0:fb:87:af:66:ff:99:a4:0d: 6a:f2:9d:ec:9b:93:10:08:e2:fb:eb:13:50:f1:7d: a8:73:d5:ba:1f:c4:37:84:e7:20:6d:49:4a:2d:52: 2b:d1:e9:35:91:ee:1e:4c:7e:b2:4e:55:08:8f:3b: 97:79:5f:72:9f:79:5c:ae:93:74:83:27:48:ad:b1: 4d:44:ad:53:ae:26:0a:e0:41:85:01:8f:cb:82:b9: ba:0f:99:58:74:11:1d:34:9d:9e:fd:64:6c:2e:76: 99:25:30:c2:3b:bf:c9:07:fe:bb:e6:da:f0:00:04: 1c:f1:d4:a4:45:37:1f:9d:d1:c1:2c:67:a9:45:d2: ea:f6:a9:b7:4f:d5:31:5f:0d:5d:30:de:49:2d:bf: a1:75:c2:95:9b:ff:23:e4:79:2c:48:19:0b:f4:3a: c5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:90:46:45:A5:CC:AE:17:4E:27:DC:8D:11:33:C1:1E:68:CD:2C:B6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7bc::/32 Signature Algorithm: sha256WithRSAEncryption 06:01:04:d3:34:72:22:51:9f:ec:c9:7a:bd:97:21:72:a3:ba: 34:be:48:7f:43:d4:4a:38:ed:da:18:3d:c3:f0:04:8d:c1:77: 11:95:56:8e:08:2c:e1:79:d5:db:3c:4d:df:d1:e8:79:18:78: a2:e8:83:d0:ad:1d:7d:66:ec:81:18:84:2e:11:9f:c8:2f:3e: b3:49:e2:d0:05:2a:64:b1:28:f0:92:63:ab:50:a4:77:67:32: 13:e3:1f:ae:a3:2e:8f:ef:3e:7b:d1:46:94:21:cd:11:93:d2: b9:8b:04:27:d1:3b:f2:83:15:ee:bf:26:74:46:a2:31:b3:9a: 10:cd:20:6e:a4:ae:04:17:0a:37:00:1b:7a:33:d6:7c:f4:07: a4:62:5e:ce:16:61:f2:50:f7:ef:77:25:2f:94:9e:c1:39:65: 21:ae:f9:08:cb:46:e6:25:91:fa:50:72:30:cf:d8:ff:8e:0b: 43:60:7b:1b:61:ab:55:23:5a:e5:8e:32:30:91:f0:de:ef:66: 65:ef:89:89:06:71:5b:be:17:12:60:af:1e:7b:28:cb:5b:d0: e9:dd:d9:01:fd:54:54:7c:69:08:83:7c:f4:6f:71:97:e8:33: 90:5d:49:a6:cc:b2:23:ef:31:c4:5b:50:69:69:55:73:d2:db: 6f:12:34:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUy0XiJ+Wpv3Szrd2YZqhmLnTIvgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYzMVoX DTI3MDMwMzA2MjEzMVowMzExMC8GA1UEAxMoRkQ5MDQ2NDVBNUNDQUUxNzRFMjdE QzhEMTEzM0MxMUU2OENEMkNCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAItTDYJGEl/yJ27RcOYXXSCgguHTxAzwsSCFd39iEifbtV9BC216G0wYI+oH 2G4Yv/bmeG/8Sw76d/FKQt3POA1TdowEyX/jw4EwWtUI7eEZ47PXzKXnJdOZUufe 9BR94PuHr2b/maQNavKd7JuTEAji++sTUPF9qHPVuh/EN4TnIG1JSi1SK9HpNZHu Hkx+sk5VCI87l3lfcp95XK6TdIMnSK2xTUStU64mCuBBhQGPy4K5ug+ZWHQRHTSd nv1kbC52mSUwwju/yQf+u+ba8AAEHPHUpEU3H53RwSxnqUXS6vapt0/VMV8NXTDe SS2/oXXClZv/I+R5LEgZC/Q6xecCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT9kEZF pcyuF04n3I0RM8EeaM0stjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDYzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p7wwDQYJKoZIhvcNAQELBQADggEBAAYBBNM0ciJRn+zJer2XIXKjujS+SH9D1Eo4 7doYPcPwBI3BdxGVVo4ILOF51ds8Td/R6HkYeKLog9CtHX1m7IEYhC4Rn8gvPrNJ 4tAFKmSxKPCSY6tQpHdnMhPjH66jLo/vPnvRRpQhzRGT0rmLBCfRO/KDFe6/JnRG ojGzmhDNIG6krgQXCjcAG3oz1nz0B6RiXs4WYfJQ9+93JS+UnsE5ZSGu+QjLRuYl kfpQcjDP2P+OC0Ngexthq1UjWuWOMjCR8N7vZmXviYkGcVu+FxJgrx57KMtb0Ond 2QH9VFR8aQiDfPRvcZfoM5BdSabMsiPvMcRbUGlpVXPS228SNNo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:12 2026 by rpki-client