$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144670.roa File: AS144670.roa (raw, json) Hash identifier: u2suCSqRQeJXlx2StEHQc/NJHU6CLmfCl1rTrcaFK28= Subject key identifier: 5A:18:4F:B2:78:EF:17:E5:65:51:9B:3E:26:A2:04:09:52:1F:59:31 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2D3D16B9683486B038DD8A6027B8B4B96DC8C707 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144670.roa Signing time: Wed 04 Mar 2026 06:21:56 +0000 ROA not before: Wed 04 Mar 2026 06:16:56 +0000 ROA not after: Wed 03 Mar 2027 06:21:56 +0000 asID: 144670 IP address blocks: 240a:a7e4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:3d:16:b9:68:34:86:b0:38:dd:8a:60:27:b8:b4:b9:6d:c8:c7:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:56 2026 GMT Not After : Mar 3 06:21:56 2027 GMT Subject: CN=5A184FB278EF17E565519B3E26A20409521F5931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ba:79:19:1b:9a:d4:ea:bc:a1:71:ae:69:a0: 51:24:c8:45:36:f2:d5:9d:06:3c:c7:57:2e:f5:be: 84:c0:47:36:80:9b:89:9f:fd:b8:ad:65:3c:4d:bc: 07:7a:89:a6:7e:02:13:ea:b2:24:01:1b:08:a1:df: af:f7:70:05:a1:c8:54:d5:c1:88:11:de:bf:e7:49: a8:a1:d0:ac:b0:68:7b:7c:6a:4a:b3:ca:71:fe:03: 91:e3:fe:e4:5a:f8:07:11:00:6f:fa:30:6b:a1:e0: 56:35:5f:af:12:95:c4:8b:a8:0b:48:12:a0:11:6a: d7:d8:48:c3:7e:21:48:c5:2a:50:22:6f:7b:65:b0: 64:de:5a:96:5b:1f:c8:cd:5e:8f:c6:4f:63:a0:71: 65:34:ee:4d:67:07:dc:e1:dc:bf:e5:33:dd:c9:42: 2d:c1:34:e2:43:d9:7b:9c:f8:22:62:3e:98:79:8d: 9e:55:bd:e7:a3:8e:27:b1:98:db:a7:d0:3e:b5:56: f0:f9:b4:86:45:49:8f:8f:aa:8a:78:fc:7b:e2:27: 47:6b:50:46:63:4e:14:3e:cf:b9:99:9a:16:ba:6f: e4:5e:c0:8d:04:0c:f9:f0:13:39:7e:6e:c5:c0:1d: 8f:c8:86:a1:96:cc:8e:70:50:3f:c8:13:d6:f0:e4: 1d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:18:4F:B2:78:EF:17:E5:65:51:9B:3E:26:A2:04:09:52:1F:59:31 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144670.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7e4::/32 Signature Algorithm: sha256WithRSAEncryption 78:8e:69:f8:af:4b:96:86:ea:69:dd:33:b1:6c:b8:12:13:69: ba:e3:f9:d6:64:5c:71:b3:07:40:f7:ba:28:f3:ff:b8:d3:dd: 20:3f:08:3a:fa:b4:21:67:4e:a2:c7:b0:db:eb:40:ee:b2:13: f3:7a:c9:7f:9a:3d:03:aa:2c:81:fa:7d:af:54:fb:9a:7c:0b: 4b:ba:14:3f:37:e3:b2:62:ab:74:f8:72:6d:58:33:e6:63:ea: 1e:d3:5c:75:3c:ae:4d:af:f6:7c:6e:24:50:f8:34:6b:c9:d1: e1:23:a1:13:93:01:95:56:c3:0e:ea:65:6c:03:42:35:f2:8e: 12:a3:5b:d4:de:68:de:b8:71:c0:22:18:4e:d9:b3:b1:83:bb: 74:98:b8:18:ae:58:d3:8f:ae:be:71:f1:85:37:9a:57:d9:05: b6:98:61:da:b2:41:60:e6:ed:10:c6:1b:06:40:f8:11:6f:f8: 4e:74:17:d8:81:3d:30:95:bd:50:e2:09:64:e4:34:67:cc:2a: 95:48:f2:01:46:bf:99:12:9e:e9:a8:23:7a:bf:67:f6:d4:b5: a0:c8:76:55:0f:0b:3b:e6:c3:be:59:44:16:0c:e4:16:d8:34: 6c:97:42:cf:b4:55:27:87:70:b6:32:87:21:5f:0b:93:f0:53: fe:c9:7a:77 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULT0WuWg0hrA43YpgJ7i0uW3IxwcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1NloX DTI3MDMwMzA2MjE1NlowMzExMC8GA1UEAxMoNUExODRGQjI3OEVGMTdFNTY1NTE5 QjNFMjZBMjA0MDk1MjFGNTkzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANS6eRkbmtTqvKFxrmmgUSTIRTby1Z0GPMdXLvW+hMBHNoCbiZ/9uK1lPE28 B3qJpn4CE+qyJAEbCKHfr/dwBaHIVNXBiBHev+dJqKHQrLBoe3xqSrPKcf4DkeP+ 5Fr4BxEAb/owa6HgVjVfrxKVxIuoC0gSoBFq19hIw34hSMUqUCJve2WwZN5allsf yM1ej8ZPY6BxZTTuTWcH3OHcv+Uz3clCLcE04kPZe5z4ImI+mHmNnlW956OOJ7GY 26fQPrVW8Pm0hkVJj4+qinj8e+InR2tQRmNOFD7PuZmaFrpv5F7AjQQM+fATOX5u xcAdj8iGoZbMjnBQP8gT1vDkHdECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRaGE+y eO8X5WVRmz4mogQJUh9ZMTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY3MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p+QwDQYJKoZIhvcNAQELBQADggEBAHiOafivS5aG6mndM7FsuBITabrj+dZkXHGz B0D3uijz/7jT3SA/CDr6tCFnTqLHsNvrQO6yE/N6yX+aPQOqLIH6fa9U+5p8C0u6 FD8347Jiq3T4cm1YM+Zj6h7TXHU8rk2v9nxuJFD4NGvJ0eEjoROTAZVWww7qZWwD QjXyjhKjW9TeaN64ccAiGE7Zs7GDu3SYuBiuWNOPrr5x8YU3mlfZBbaYYdqyQWDm 7RDGGwZA+BFv+E50F9iBPTCVvVDiCWTkNGfMKpVI8gFGv5kSnumoI3q/Z/bUtaDI dlUPCzvmw75ZRBYM5BbYNGyXQs+0VSeHcLYyhyFfC5PwU/7Jenc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:34 2026 by rpki-client