$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144637.roa File: AS144637.roa (raw, json) Hash identifier: hWKkaFFyVNaSZgYMQNiW3pnD9T5DJQIcrNygdPxOvhw= Subject key identifier: 1E:53:FA:09:FA:5C:10:11:D3:E2:70:C2:9C:1B:2F:2B:61:20:65:EE Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 026D1B98BA42FEB034DF0A8C3E5B64680FA53C1E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144637.roa Signing time: Wed 04 Mar 2026 06:21:51 +0000 ROA not before: Wed 04 Mar 2026 06:16:51 +0000 ROA not after: Wed 03 Mar 2027 06:21:51 +0000 asID: 144637 IP address blocks: 240a:a7c3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6d:1b:98:ba:42:fe:b0:34:df:0a:8c:3e:5b:64:68:0f:a5:3c:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:51 2026 GMT Not After : Mar 3 06:21:51 2027 GMT Subject: CN=1E53FA09FA5C1011D3E270C29C1B2F2B612065EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d2:61:80:e7:13:50:90:89:58:16:64:81:73: c3:1d:6c:b5:f5:87:b0:91:28:68:33:b5:c2:35:9c: f1:4e:fe:aa:13:c4:71:e3:55:c4:a3:9c:c9:4b:11: a6:59:d0:2b:98:46:0e:cf:e2:a8:ba:b9:a5:8a:db: d9:15:a4:79:e8:ff:01:e8:fc:7d:bf:43:d6:96:f4: 76:c3:ba:4b:b3:1d:1f:fd:ad:21:11:a5:fe:7c:55: 92:a5:53:5b:5e:cb:b2:07:dc:94:c1:ea:78:f7:e9: fd:d6:16:3d:b0:ad:8c:d9:7a:aa:89:b1:89:50:9f: 4d:a0:c9:87:32:61:ee:63:59:5b:8c:6d:51:a9:1c: 69:e1:83:61:cf:96:ab:5c:db:ea:c0:67:5e:71:62: ed:d7:54:8f:1b:f9:25:e2:cb:44:a9:0b:bd:1a:9f: 8b:e1:59:12:18:11:fd:71:bd:c4:9f:4c:01:d0:25: f9:33:a5:59:b4:15:6c:c2:d3:33:c9:5e:b1:46:73: fb:00:3b:6c:04:98:9b:1f:75:f5:b9:06:6c:97:a5: 42:1b:61:88:9a:65:d7:03:04:f5:c7:9d:24:13:d7: 2d:55:a4:78:d6:31:2a:d9:3b:9c:05:02:b0:39:38: 3f:3f:4d:42:f7:49:5a:7c:50:82:5a:8f:67:a9:a6: e4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:53:FA:09:FA:5C:10:11:D3:E2:70:C2:9C:1B:2F:2B:61:20:65:EE X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7c3::/32 Signature Algorithm: sha256WithRSAEncryption 6a:f0:5b:95:42:48:33:1f:92:d6:93:77:cb:65:bb:26:e8:16: f1:1e:ad:4f:1d:8e:27:85:3e:47:01:a9:dc:e8:c7:d1:8f:19: fe:e4:c3:36:e7:9a:ff:6c:f5:ec:ad:0a:12:ee:d4:50:a6:db: 49:5f:4a:1d:5f:9a:42:fb:e3:b3:5b:f3:6a:19:b2:43:fb:cd: 24:fe:7e:6e:f1:5f:89:12:b6:2d:3a:a6:2b:3d:71:2b:57:fa: 58:e5:64:d6:ee:03:66:70:15:51:c1:a5:e4:37:98:c5:0f:e3: 29:be:03:9a:28:b0:7b:df:47:6e:f3:f8:99:53:cc:01:71:0b: bc:40:47:ff:d1:07:54:ad:45:a6:77:f1:7b:62:dc:ba:94:89: 4f:20:9b:f0:e6:19:ec:95:14:98:6b:8f:07:c0:47:86:52:03: f3:c1:33:13:ee:c5:fc:fc:38:73:e6:32:eb:e1:f8:fc:93:e5: 32:56:68:30:48:1d:9b:74:27:42:56:e7:a0:8a:16:33:37:9e: ae:01:29:57:84:9e:d0:36:6c:e7:d3:a2:13:1f:d7:2a:93:8b: a6:5e:c3:bd:ca:ac:8a:84:22:37:6f:5e:44:b6:27:95:9a:e3: 68:35:2a:87:66:3b:17:b3:31:09:39:06:fd:97:e3:55:7b:ad: da:d4:44:40 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUAm0bmLpC/rA03wqMPltkaA+lPB4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1MVoX DTI3MDMwMzA2MjE1MVowMzExMC8GA1UEAxMoMUU1M0ZBMDlGQTVDMTAxMUQzRTI3 MEMyOUMxQjJGMkI2MTIwNjVFRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKLSYYDnE1CQiVgWZIFzwx1stfWHsJEoaDO1wjWc8U7+qhPEceNVxKOcyUsR plnQK5hGDs/iqLq5pYrb2RWkeej/Aej8fb9D1pb0dsO6S7MdH/2tIRGl/nxVkqVT W17LsgfclMHqePfp/dYWPbCtjNl6qomxiVCfTaDJhzJh7mNZW4xtUakcaeGDYc+W q1zb6sBnXnFi7ddUjxv5JeLLRKkLvRqfi+FZEhgR/XG9xJ9MAdAl+TOlWbQVbMLT M8lesUZz+wA7bASYmx919bkGbJelQhthiJpl1wME9cedJBPXLVWkeNYxKtk7nAUC sDk4Pz9NQvdJWnxQglqPZ6mm5NUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQeU/oJ +lwQEdPicMKcGy8rYSBl7jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDYzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p8MwDQYJKoZIhvcNAQELBQADggEBAGrwW5VCSDMfktaTd8tluyboFvEerU8djieF PkcBqdzox9GPGf7kwzbnmv9s9eytChLu1FCm20lfSh1fmkL747Nb82oZskP7zST+ fm7xX4kSti06pis9cStX+ljlZNbuA2ZwFVHBpeQ3mMUP4ym+A5oosHvfR27z+JlT zAFxC7xAR//RB1StRaZ38Xti3LqUiU8gm/DmGeyVFJhrjwfAR4ZSA/PBMxPuxfz8 OHPmMuvh+PyT5TJWaDBIHZt0J0JW56CKFjM3nq4BKVeEntA2bOfTohMf1yqTi6Ze w73KrIqEIjdvXkS2J5Wa42g1KodmOxezMQk5Bv2X41V7rdrUREA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:10 2026 by rpki-client