$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144678.roa File: AS144678.roa (raw, json) Hash identifier: txUPkqAXEwRiYHx7fNFuS33q2Ja+6qUBveX0O8kkBp0= Subject key identifier: 0E:FA:F2:50:13:56:7E:DA:90:7F:91:12:A6:7A:9F:CB:94:1C:A1:A9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 634DC45702C88F3F8CEFDA526BC925018EC783BD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144678.roa Signing time: Wed 04 Mar 2026 06:21:59 +0000 ROA not before: Wed 04 Mar 2026 06:16:59 +0000 ROA not after: Wed 03 Mar 2027 06:21:59 +0000 asID: 144678 IP address blocks: 240a:a7ec::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:4d:c4:57:02:c8:8f:3f:8c:ef:da:52:6b:c9:25:01:8e:c7:83:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:59 2026 GMT Not After : Mar 3 06:21:59 2027 GMT Subject: CN=0EFAF25013567EDA907F9112A67A9FCB941CA1A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:69:4f:b2:73:0b:6a:3a:40:60:3d:8d:c8:ea: a1:e7:fa:3d:8d:46:85:6a:e3:14:48:95:ba:e8:fc: ac:b0:24:2b:03:7c:99:d2:6e:3f:30:b9:fb:e1:ad: ab:ba:c9:5f:5e:96:60:c7:5a:28:36:b5:7f:6e:5b: bb:1b:87:69:44:4a:e8:8e:91:d5:9e:22:1e:05:02: bf:c3:87:6e:ba:63:f5:2d:a9:49:f2:06:63:6d:57: 1e:b2:c0:37:ec:fa:bc:f3:c6:00:c1:ae:95:9b:7c: 3b:db:fb:0a:5e:04:d1:da:26:5a:61:7a:0e:64:54: 3b:2a:fb:d9:16:53:d8:70:04:04:7c:59:15:49:a1: c2:15:5f:c4:b9:bc:69:0f:48:75:8a:6b:20:2e:d0: 9d:3b:70:d9:66:67:93:a8:80:e7:b4:83:35:f3:94: d9:8a:2d:39:f8:b0:1d:6d:09:6e:9d:ea:70:bb:34: 24:26:8d:25:49:8f:39:04:77:7e:cb:6d:de:8a:0e: 5a:7f:51:42:e1:18:f3:ee:6a:5e:aa:6d:6d:f1:ce: c4:91:8d:3c:d9:d8:a8:35:17:ad:ee:90:67:51:eb: ea:f7:23:4a:82:c4:5e:11:65:d7:b3:5b:af:f1:43: 98:b2:fc:64:15:8a:92:39:41:08:58:36:cd:fe:c1: 50:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FA:F2:50:13:56:7E:DA:90:7F:91:12:A6:7A:9F:CB:94:1C:A1:A9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144678.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7ec::/32 Signature Algorithm: sha256WithRSAEncryption 04:17:1b:14:a3:fa:9d:12:d0:72:25:16:c5:41:74:e6:c9:43: 85:6a:01:63:77:43:7f:2f:ca:80:ab:db:53:71:8d:62:d2:c2: ae:6e:3e:c5:97:cf:5e:47:c7:e3:2d:73:ef:c9:a4:12:88:40: 56:f5:55:b0:ab:6d:20:ed:a8:fa:16:64:c0:15:52:d0:24:7b: bd:e9:a5:41:d6:19:65:06:20:bd:85:fe:89:1b:14:3a:a6:e1: 2b:e3:b3:af:52:48:2d:d7:67:c0:bd:02:8f:1d:88:0e:5e:67: a0:10:70:f5:7d:da:11:4a:b9:1f:fb:92:7e:8b:0a:35:df:61: 82:28:37:6c:39:19:93:65:a1:ca:9a:73:ae:18:86:05:54:8a: 4c:27:ee:ea:f3:31:32:6a:cb:c7:4c:3c:55:57:69:52:1a:88: 2d:c0:2e:30:4d:4f:ac:4c:dc:41:44:8c:cb:c8:36:bc:ad:9f: e8:85:a1:e0:01:1c:e2:2c:7c:84:17:6a:57:aa:5f:a1:a1:4c: ea:cc:5d:41:5f:48:e2:0d:fd:6a:3c:84:1b:de:8e:74:6e:f4: bc:e1:8c:05:13:a1:8a:62:61:10:13:86:ba:a3:b8:7e:62:96: 17:b1:fd:9b:46:c7:fe:70:fa:a7:78:a4:23:34:b1:a6:d9:45: d1:2c:e0:71 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUY03EVwLIjz+M79pSa8klAY7Hg70wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1OVoX DTI3MDMwMzA2MjE1OVowMzExMC8GA1UEAxMoMEVGQUYyNTAxMzU2N0VEQTkwN0Y5 MTEyQTY3QTlGQ0I5NDFDQTFBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNpT7JzC2o6QGA9jcjqoef6PY1GhWrjFEiVuuj8rLAkKwN8mdJuPzC5++Gt q7rJX16WYMdaKDa1f25buxuHaURK6I6R1Z4iHgUCv8OHbrpj9S2pSfIGY21XHrLA N+z6vPPGAMGulZt8O9v7Cl4E0domWmF6DmRUOyr72RZT2HAEBHxZFUmhwhVfxLm8 aQ9IdYprIC7QnTtw2WZnk6iA57SDNfOU2YotOfiwHW0Jbp3qcLs0JCaNJUmPOQR3 fstt3ooOWn9RQuEY8+5qXqptbfHOxJGNPNnYqDUXre6QZ1Hr6vcjSoLEXhFl17Nb r/FDmLL8ZBWKkjlBCFg2zf7BUEUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQO+vJQ E1Z+2pB/kRKmep/LlByhqTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY3OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p+wwDQYJKoZIhvcNAQELBQADggEBAAQXGxSj+p0S0HIlFsVBdObJQ4VqAWN3Q38v yoCr21NxjWLSwq5uPsWXz15Hx+Mtc+/JpBKIQFb1VbCrbSDtqPoWZMAVUtAke73p pUHWGWUGIL2F/okbFDqm4Svjs69SSC3XZ8C9Ao8diA5eZ6AQcPV92hFKuR/7kn6L CjXfYYIoN2w5GZNlocqac64YhgVUikwn7urzMTJqy8dMPFVXaVIaiC3ALjBNT6xM 3EFEjMvINrytn+iFoeABHOIsfIQXaleqX6GhTOrMXUFfSOIN/Wo8hBvejnRu9Lzh jAUToYpiYRAThrqjuH5ilhex/ZtGx/5w+qd4pCM0sabZRdEs4HE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:04 2026 by rpki-client