$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144691.roa File: AS144691.roa (raw, json) Hash identifier: v6KGh1+V7IjV3JVdNzS5o+BAUqq4+/JmwmjiZ43/GH4= Subject key identifier: 9E:6B:91:FE:52:92:26:0E:CF:05:CB:57:CE:B2:2F:67:5B:B5:1B:81 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2717B8E123DD17B7D4638A933960DA114E5892AA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144691.roa Signing time: Wed 04 Mar 2026 06:19:48 +0000 ROA not before: Wed 04 Mar 2026 06:14:48 +0000 ROA not after: Wed 03 Mar 2027 06:19:48 +0000 asID: 144691 IP address blocks: 240a:a7f9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:17:b8:e1:23:dd:17:b7:d4:63:8a:93:39:60:da:11:4e:58:92:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:48 2026 GMT Not After : Mar 3 06:19:48 2027 GMT Subject: CN=9E6B91FE5292260ECF05CB57CEB22F675BB51B81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e0:d8:74:5f:1d:a4:3b:cc:1e:81:46:bd:82: 1b:25:3c:53:3e:34:1b:fe:69:6b:e6:80:41:02:50: d4:6e:7f:b7:76:4c:d3:68:a2:45:01:90:af:79:be: 57:f2:ea:77:bf:b3:d6:5a:59:86:a0:1f:0a:87:92: 46:54:e7:51:14:49:a0:60:a3:8a:54:9b:3b:52:23: 1c:27:72:d7:77:28:c0:fc:8f:17:5b:d9:78:f1:b3: 60:7d:74:42:98:7c:0c:97:e7:13:a0:04:8e:15:5e: 30:f9:9c:c8:11:ba:af:5c:96:f9:d3:84:6c:50:98: 70:cf:30:44:31:78:63:38:36:db:b7:9c:ca:60:4b: f8:8f:39:82:6d:14:53:18:28:e5:d2:a6:6c:2c:9d: f5:50:fb:55:ea:b6:7a:e8:27:25:d0:d2:9e:68:ec: 0c:c5:01:b5:6a:98:0d:5b:4e:df:39:90:01:55:c6: 3f:0f:3d:69:35:da:81:c2:26:2a:95:e3:18:11:aa: e5:06:40:fe:e6:ce:82:5c:c8:48:6b:0d:b1:37:6d: 1d:ad:01:68:33:d7:12:a1:28:3b:bc:7c:7c:a6:e4: 8b:09:93:ba:9a:08:ac:8b:a7:d8:43:4e:dc:0c:e2: 73:1a:a3:67:9a:c5:ee:88:28:3d:09:4a:cb:93:19: ba:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:6B:91:FE:52:92:26:0E:CF:05:CB:57:CE:B2:2F:67:5B:B5:1B:81 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144691.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7f9::/32 Signature Algorithm: sha256WithRSAEncryption ae:79:7a:db:1e:96:fa:9f:ab:2f:98:00:a7:ce:14:3b:ee:f1: d2:ee:fb:56:37:81:57:21:37:5b:69:05:21:de:97:9a:cb:9e: ac:d2:1e:33:15:e2:42:f0:7d:90:df:5d:c7:28:65:48:74:2d: 3b:c0:e9:e0:e7:cf:4c:11:72:a0:21:20:ec:32:95:8f:ef:bb: eb:6b:96:d8:0b:87:bc:d7:c2:d5:aa:62:4e:77:d9:af:9c:8b: d1:7c:a8:12:6c:8d:b4:cf:b8:6b:02:b2:80:87:b8:42:7c:f6: 33:f6:60:57:ae:ed:a2:9d:e2:0d:44:f5:95:1f:cc:03:ce:09: 5e:89:3f:76:32:93:6e:d1:aa:25:96:8f:e5:97:d8:4f:7f:d5: 1f:8c:90:0d:b9:c2:91:8b:fe:c4:63:5d:f2:bc:ae:6f:75:0c: ab:28:01:25:35:fb:a1:21:2c:9b:33:ce:95:b7:be:af:1a:1e: 37:dd:11:b2:93:87:52:da:c7:07:0a:20:c6:8d:4e:78:a8:d8: c3:a5:17:51:ac:56:68:bc:65:31:03:35:07:39:ac:f1:bb:f7: 9a:07:94:ff:50:10:89:5b:3b:f9:df:24:f7:b0:11:6a:8d:33: 63:9e:f5:d6:41:96:6c:19:68:3a:8e:be:7d:b6:0d:3f:3e:16: 55:06:b5:71 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJxe44SPdF7fUY4qTOWDaEU5YkqowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0OFoX DTI3MDMwMzA2MTk0OFowMzExMC8GA1UEAxMoOUU2QjkxRkU1MjkyMjYwRUNGMDVD QjU3Q0VCMjJGNjc1QkI1MUI4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOrg2HRfHaQ7zB6BRr2CGyU8Uz40G/5pa+aAQQJQ1G5/t3ZM02iiRQGQr3m+ V/Lqd7+z1lpZhqAfCoeSRlTnURRJoGCjilSbO1IjHCdy13cowPyPF1vZePGzYH10 Qph8DJfnE6AEjhVeMPmcyBG6r1yW+dOEbFCYcM8wRDF4Yzg227ecymBL+I85gm0U Uxgo5dKmbCyd9VD7Veq2eugnJdDSnmjsDMUBtWqYDVtO3zmQAVXGPw89aTXagcIm KpXjGBGq5QZA/ubOglzISGsNsTdtHa0BaDPXEqEoO7x8fKbkiwmTupoIrIun2ENO 3AzicxqjZ5rF7ogoPQlKy5MZunUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSea5H+ UpImDs8Fy1fOsi9nW7UbgTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY5MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p/kwDQYJKoZIhvcNAQELBQADggEBAK55etselvqfqy+YAKfOFDvu8dLu+1Y3gVch N1tpBSHel5rLnqzSHjMV4kLwfZDfXccoZUh0LTvA6eDnz0wRcqAhIOwylY/vu+tr ltgLh7zXwtWqYk532a+ci9F8qBJsjbTPuGsCsoCHuEJ89jP2YFeu7aKd4g1E9ZUf zAPOCV6JP3Yyk27RqiWWj+WX2E9/1R+MkA25wpGL/sRjXfK8rm91DKsoASU1+6Eh LJszzpW3vq8aHjfdEbKTh1LaxwcKIMaNTnio2MOlF1GsVmi8ZTEDNQc5rPG795oH lP9QEIlbO/nfJPewEWqNM2Oe9dZBlmwZaDqOvn22DT8+FlUGtXE= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:37 2026 by rpki-client