$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144661.roa File: AS144661.roa (raw, json) Hash identifier: TNMaHtQfzheuxtaE1FHDS7iLdi0UUAJcBNWcej3Bzgw= Subject key identifier: A6:AC:91:67:D3:B3:06:5F:70:83:CB:A6:FB:17:13:AD:B9:16:41:41 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 57412E45CAC50B9D4BA04EE6D443075B8798290E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144661.roa Signing time: Wed 04 Mar 2026 06:21:01 +0000 ROA not before: Wed 04 Mar 2026 06:16:01 +0000 ROA not after: Wed 03 Mar 2027 06:21:01 +0000 asID: 144661 IP address blocks: 240a:a7db::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:41:2e:45:ca:c5:0b:9d:4b:a0:4e:e6:d4:43:07:5b:87:98:29:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:01 2026 GMT Not After : Mar 3 06:21:01 2027 GMT Subject: CN=A6AC9167D3B3065F7083CBA6FB1713ADB9164141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:8f:b1:1f:26:4b:45:39:d3:c4:3e:03:90:76: cd:e7:b9:d2:f9:9b:41:50:40:d1:74:4f:a6:57:ad: e7:c8:9f:6a:ab:8a:47:ca:38:05:5e:b0:be:89:5f: 77:46:40:57:55:f0:13:a2:3b:39:1d:71:fc:e7:1b: ba:bd:ff:d0:23:b4:51:3a:5a:3d:90:43:fb:25:54: 82:8a:60:9c:1f:d4:3e:41:f8:63:00:b4:7a:6a:90: 37:49:98:99:c3:1e:9d:bd:c3:0d:6e:88:07:93:71: f9:6a:cf:2b:53:5b:b8:0b:04:d0:3c:18:59:de:fc: e6:3e:e1:1c:d9:b8:20:c5:bf:7b:f9:f6:46:3d:1e: 67:4c:ff:6a:e6:78:2b:7d:35:55:9c:ba:ac:27:e8: 08:7f:30:74:66:43:10:38:3b:14:27:b6:48:1b:cd: 09:31:4c:78:e4:fd:3d:04:69:55:c5:c8:20:84:f0: 40:ba:c7:8a:0a:73:3a:c5:e5:2f:86:f1:94:ae:3f: 01:fa:e9:7d:46:b6:b1:3e:8e:13:cc:24:aa:fd:96: bc:d2:35:0c:c9:51:1c:a7:d8:54:7d:66:96:fc:58: e4:ba:41:26:01:34:ff:a1:44:c2:7b:4a:eb:fd:91: 8d:54:84:5f:6e:c2:3f:4a:85:5d:ae:a8:78:b1:ba: 1e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:AC:91:67:D3:B3:06:5F:70:83:CB:A6:FB:17:13:AD:B9:16:41:41 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144661.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7db::/32 Signature Algorithm: sha256WithRSAEncryption 2d:87:04:3a:98:66:7f:bb:d6:38:10:0b:2e:73:68:44:41:9f: c5:01:5d:34:1c:b1:c4:e6:4c:fe:51:b3:13:32:69:d1:ff:0b: f8:68:05:0e:89:04:b6:ca:bf:52:8b:01:54:7a:b6:31:27:c6: 6e:f0:17:1a:1e:79:95:f8:5c:91:76:bc:cf:b0:3f:3a:6b:95: 79:57:51:72:d2:2c:a0:16:db:64:7d:a7:4f:76:04:8f:c4:3f: 2c:fd:73:4e:f9:c7:9b:61:bb:b8:c9:0d:d9:c8:b3:f0:39:93: 9e:f9:8e:b4:77:c7:9c:79:7c:95:e1:37:83:c2:de:43:c4:b7: f8:b1:1e:00:c3:da:cd:d1:e7:79:7d:e7:6e:4b:87:07:58:b9: 49:4b:6b:a1:06:80:6c:3b:55:f8:ae:b1:cf:5c:59:3e:bb:00: bc:5a:52:1a:bd:2d:88:fe:a6:f0:67:a6:e0:66:a7:f3:90:85: bd:b6:8c:79:5a:93:4a:70:29:3a:fa:2a:de:71:47:c2:5c:3e: 70:03:a3:0c:fa:23:86:05:ed:5e:72:eb:d3:3f:f5:8d:44:9a: ef:cf:d4:dd:65:9b:fa:84:68:56:52:7f:3b:22:4b:ff:f2:be: 05:ad:ef:e6:c3:08:c6:a7:0a:37:fd:0a:78:6f:97:49:18:01: 74:b7:5b:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUV0EuRcrFC51LoE7m1EMHW4eYKQ4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwMVoX DTI3MDMwMzA2MjEwMVowMzExMC8GA1UEAxMoQTZBQzkxNjdEM0IzMDY1RjcwODND QkE2RkIxNzEzQURCOTE2NDE0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPOPsR8mS0U508Q+A5B2zee50vmbQVBA0XRPplet58ifaquKR8o4BV6wvolf d0ZAV1XwE6I7OR1x/Ocbur3/0CO0UTpaPZBD+yVUgopgnB/UPkH4YwC0emqQN0mY mcMenb3DDW6IB5Nx+WrPK1NbuAsE0DwYWd785j7hHNm4IMW/e/n2Rj0eZ0z/auZ4 K301VZy6rCfoCH8wdGZDEDg7FCe2SBvNCTFMeOT9PQRpVcXIIITwQLrHigpzOsXl L4bxlK4/AfrpfUa2sT6OE8wkqv2WvNI1DMlRHKfYVH1mlvxY5LpBJgE0/6FEwntK 6/2RjVSEX27CP0qFXa6oeLG6Hj0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSmrJFn 07MGX3CDy6b7FxOtuRZBQTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY2MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p9swDQYJKoZIhvcNAQELBQADggEBAC2HBDqYZn+71jgQCy5zaERBn8UBXTQcscTm TP5RsxMyadH/C/hoBQ6JBLbKv1KLAVR6tjEnxm7wFxoeeZX4XJF2vM+wPzprlXlX UXLSLKAW22R9p092BI/EPyz9c075x5thu7jJDdnIs/A5k575jrR3x5x5fJXhN4PC 3kPEt/ixHgDD2s3R53l9525LhwdYuUlLa6EGgGw7Vfiusc9cWT67ALxaUhq9LYj+ pvBnpuBmp/OQhb22jHlak0pwKTr6Kt5xR8JcPnADowz6I4YF7V5y69M/9Y1Emu/P 1N1lm/qEaFZSfzsiS//yvgWt7+bDCManCjf9Cnhvl0kYAXS3W2k= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:45 2026 by rpki-client