$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144674.roa File: AS144674.roa (raw, json) Hash identifier: fKaZ95bDpC1qbZyR3eypAOz5Y3aIA/UISIIhF+jGDmA= Subject key identifier: 85:0B:F6:71:A5:0A:A9:6B:DA:5F:36:89:B5:ED:C3:28:86:DB:1B:56 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 092BC53F92E53E96E1F1D8383BB319E04036F206 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144674.roa Signing time: Wed 04 Mar 2026 06:19:45 +0000 ROA not before: Wed 04 Mar 2026 06:14:45 +0000 ROA not after: Wed 03 Mar 2027 06:19:45 +0000 asID: 144674 IP address blocks: 240a:a7e8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:2b:c5:3f:92:e5:3e:96:e1:f1:d8:38:3b:b3:19:e0:40:36:f2:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:45 2026 GMT Not After : Mar 3 06:19:45 2027 GMT Subject: CN=850BF671A50AA96BDA5F3689B5EDC32886DB1B56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:14:36:6f:86:b9:97:76:14:96:68:e8:fb: a0:48:e1:19:6b:64:fd:1a:2e:e9:dd:d6:a0:83:56: e6:bb:c9:32:44:bb:57:ee:9c:50:15:d1:04:91:ca: 53:1f:25:0c:a2:07:78:ef:36:a1:36:1d:d0:67:d3: 4a:99:99:ad:72:dd:54:64:3b:f1:66:a1:09:bd:51: c9:c1:a4:30:72:e9:e8:f7:4f:3e:a3:71:03:b9:fb: 83:18:54:e7:6b:99:9a:7c:c1:18:b9:ff:1f:95:d8: 13:5b:a4:cc:3a:fa:87:5f:3b:52:43:b8:2e:56:18: 43:5c:32:2d:3f:df:fc:db:65:79:f7:c2:e0:05:39: bc:82:49:47:63:5f:69:d1:af:c7:2f:19:30:27:31: 74:48:64:11:b1:59:4a:3f:36:b9:89:8b:6a:1b:50: 0f:74:3f:36:63:ad:de:0c:c3:ab:04:d5:00:34:e4: b5:16:f1:11:78:9c:93:54:da:bc:6d:13:e9:ed:95: 34:0b:48:95:09:60:d1:22:23:6e:1e:e5:7d:5c:19: 5d:1f:1a:81:63:f0:38:6e:84:96:0d:17:6d:50:3c: 17:e2:3f:bc:25:25:b9:97:59:dd:4a:59:37:32:3f: 3b:14:a7:6a:1e:8c:e7:d8:2c:c2:65:7f:7b:07:11: 4e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0B:F6:71:A5:0A:A9:6B:DA:5F:36:89:B5:ED:C3:28:86:DB:1B:56 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144674.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7e8::/32 Signature Algorithm: sha256WithRSAEncryption 89:28:31:55:2f:c2:53:5f:63:e9:d6:7e:b5:d9:fb:68:da:35: 8d:f1:2d:30:d2:b5:63:91:40:a0:38:11:f9:ac:12:01:2a:f8: 53:e2:9e:f2:14:3b:59:46:94:e8:56:c1:66:9f:ba:f8:f7:bb: 10:b9:52:58:2b:f0:56:e1:b7:ba:2b:01:aa:b1:0c:5a:8d:94: 66:ef:ed:4d:21:2c:7c:a0:81:af:88:0a:3b:0c:a1:ed:7a:82: 15:62:f5:ce:c8:3a:13:a4:5a:b2:52:26:4e:fa:c0:10:97:40: f5:43:ae:42:c6:11:ea:6e:71:df:5a:1c:8d:4e:66:e7:62:c9: df:27:a5:86:89:05:3c:35:60:32:ca:fc:b6:16:04:dd:d4:ea: 6b:56:1b:97:71:5d:77:2e:cf:2d:8f:16:42:c2:63:ab:4c:8c: 01:d9:17:cf:ff:b5:41:31:9d:a9:66:61:f6:fc:bc:25:cd:dd: 02:a7:95:ea:bb:b5:b9:a0:c6:bd:9a:ee:9d:ce:59:bd:7b:69: 32:99:01:c9:9e:9d:92:08:d5:91:3a:08:c1:2f:57:25:8b:8b: 98:84:30:df:dc:3e:e5:b0:60:54:5c:f5:e4:ba:88:76:a0:a2: b6:a3:79:91:8f:44:67:61:ea:92:53:7b:d1:60:2b:ea:ec:f0: 33:77:88:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCSvFP5LlPpbh8dg4O7MZ4EA28gYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0NVoX DTI3MDMwMzA2MTk0NVowMzExMC8GA1UEAxMoODUwQkY2NzFBNTBBQTk2QkRBNUYz Njg5QjVFREMzMjg4NkRCMUI1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyqFDZvhrmXdhSWaOj7oEjhGWtk/Rou6d3WoINW5rvJMkS7V+6cUBXRBJHK Ux8lDKIHeO82oTYd0GfTSpmZrXLdVGQ78WahCb1RycGkMHLp6PdPPqNxA7n7gxhU 52uZmnzBGLn/H5XYE1ukzDr6h187UkO4LlYYQ1wyLT/f/NtleffC4AU5vIJJR2Nf adGvxy8ZMCcxdEhkEbFZSj82uYmLahtQD3Q/NmOt3gzDqwTVADTktRbxEXick1Ta vG0T6e2VNAtIlQlg0SIjbh7lfVwZXR8agWPwOG6Elg0XbVA8F+I/vCUluZdZ3UpZ NzI/OxSnah6M59gswmV/ewcRThUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSFC/Zx pQqpa9pfNom17cMohtsbVjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p+gwDQYJKoZIhvcNAQELBQADggEBAIkoMVUvwlNfY+nWfrXZ+2jaNY3xLTDStWOR QKA4EfmsEgEq+FPinvIUO1lGlOhWwWafuvj3uxC5Ulgr8Fbht7orAaqxDFqNlGbv 7U0hLHygga+ICjsMoe16ghVi9c7IOhOkWrJSJk76wBCXQPVDrkLGEepucd9aHI1O Zudiyd8npYaJBTw1YDLK/LYWBN3U6mtWG5dxXXcuzy2PFkLCY6tMjAHZF8//tUEx nalmYfb8vCXN3QKnleq7tbmgxr2a7p3OWb17aTKZAcmenZII1ZE6CMEvVyWLi5iE MN/cPuWwYFRc9eS6iHagorajeZGPRGdh6pJTe9FgK+rs8DN3iKA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:14 2026 by rpki-client