$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144692.roa File: AS144692.roa (raw, json) Hash identifier: 9dilY6UF05PD0B2uvkf2ZnJFPGjvZFG3exbYnxwIjx0= Subject key identifier: 5E:BE:8B:C9:93:00:B0:85:00:69:66:D6:70:D1:58:38:C9:38:21:17 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6912AD37CBFDF294D977DA608265EF0BF13A02A4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144692.roa Signing time: Wed 04 Mar 2026 06:20:59 +0000 ROA not before: Wed 04 Mar 2026 06:15:59 +0000 ROA not after: Wed 03 Mar 2027 06:20:59 +0000 asID: 144692 IP address blocks: 240a:a7fa::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:12:ad:37:cb:fd:f2:94:d9:77:da:60:82:65:ef:0b:f1:3a:02:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:59 2026 GMT Not After : Mar 3 06:20:59 2027 GMT Subject: CN=5EBE8BC99300B085006966D670D15838C9382117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0b:59:ac:cf:23:4a:b5:0d:d2:e0:b8:d1:fd: 8e:28:52:f1:c1:50:c2:8a:db:05:db:fb:63:82:cc: 98:33:54:3d:09:49:f3:5c:08:80:04:27:af:0d:30: 6b:3d:20:46:d7:33:03:43:8c:74:45:93:12:97:37: 96:42:8e:4c:8f:e9:28:ff:01:68:83:d5:bc:37:0d: 66:9d:bb:12:2f:7d:53:48:71:92:65:00:11:99:84: 38:bb:8c:61:5d:d4:17:7a:3d:5c:6f:fa:f2:db:f9: 3d:58:17:08:34:bf:88:d7:4e:3e:f7:83:92:e2:af: 0a:4b:b4:7b:29:86:58:54:18:f5:05:e6:2f:41:37: c3:10:4b:36:11:ec:ec:cd:85:e5:28:c3:95:88:98: b8:f3:6e:aa:57:46:a4:9d:5e:6e:ae:eb:1a:0a:20: f2:42:26:82:bd:cf:26:3f:94:02:09:0d:57:ec:1e: be:47:dd:82:08:0f:54:3b:9c:02:1c:da:77:e1:19: d8:6c:a2:17:0d:df:d4:67:f6:9f:b4:f0:11:37:f5: dd:62:d5:de:50:b0:8f:f1:d2:0e:f1:38:a3:3d:f4: a0:dc:98:c4:f9:c6:88:4a:d7:4c:95:de:1f:cb:2a: ff:86:f2:b8:fb:88:61:ad:f1:b9:50:72:24:df:82: b5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BE:8B:C9:93:00:B0:85:00:69:66:D6:70:D1:58:38:C9:38:21:17 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144692.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7fa::/32 Signature Algorithm: sha256WithRSAEncryption d0:23:94:f4:5b:36:ef:68:26:43:de:29:e2:c1:f1:c2:95:ec: 78:eb:5e:91:75:5d:b0:f7:c1:44:71:60:a3:9e:91:21:9d:ca: cc:7f:c7:7f:03:0a:90:b8:69:50:ea:18:7c:99:f1:fb:24:69: ec:7c:70:7e:9b:dc:2b:80:d4:c0:4c:7d:e1:d5:6f:91:bf:50: 5d:3b:f9:68:26:e4:1b:b0:05:17:cc:b1:6b:d7:d1:28:b3:3e: 78:b9:cf:fe:9d:ad:6d:1c:08:b1:78:54:0b:85:19:61:a1:bd: 40:d0:43:7c:2c:76:0d:09:be:94:52:f0:f9:15:da:cf:55:df: 54:59:3b:99:1c:fb:14:08:10:49:57:66:a8:7e:04:1a:da:5e: 20:9b:86:aa:c9:60:58:b5:65:97:74:f9:41:03:76:34:f0:92: 97:bc:fa:76:c1:15:18:1f:a7:4c:8a:f4:da:e9:44:31:69:22: 7c:ce:12:50:0b:d0:83:8a:d4:50:dd:d6:0e:d8:ab:bf:aa:3b: fb:57:72:cb:7d:73:3d:64:da:2d:13:ed:f9:93:c5:11:37:77: 04:a5:37:ec:69:12:22:88:da:18:1f:eb:b0:97:d2:35:20:3f: df:2f:ec:b7:73:bd:35:28:9c:e6:c1:66:65:b2:fd:36:36:ca: 5a:3e:e7:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUaRKtN8v98pTZd9pggmXvC/E6AqQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU1OVoX DTI3MDMwMzA2MjA1OVowMzExMC8GA1UEAxMoNUVCRThCQzk5MzAwQjA4NTAwNjk2 NkQ2NzBEMTU4MzhDOTM4MjExNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8LWazPI0q1DdLguNH9jihS8cFQworbBdv7Y4LMmDNUPQlJ81wIgAQnrw0w az0gRtczA0OMdEWTEpc3lkKOTI/pKP8BaIPVvDcNZp27Ei99U0hxkmUAEZmEOLuM YV3UF3o9XG/68tv5PVgXCDS/iNdOPveDkuKvCku0eymGWFQY9QXmL0E3wxBLNhHs 7M2F5SjDlYiYuPNuqldGpJ1ebq7rGgog8kImgr3PJj+UAgkNV+wevkfdgggPVDuc Ahzad+EZ2GyiFw3f1Gf2n7TwETf13WLV3lCwj/HSDvE4oz30oNyYxPnGiErXTJXe H8sq/4byuPuIYa3xuVByJN+CtU8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRevovJ kwCwhQBpZtZw0Vg4yTghFzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY5Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p/owDQYJKoZIhvcNAQELBQADggEBANAjlPRbNu9oJkPeKeLB8cKV7HjrXpF1XbD3 wURxYKOekSGdysx/x38DCpC4aVDqGHyZ8fskaex8cH6b3CuA1MBMfeHVb5G/UF07 +Wgm5BuwBRfMsWvX0SizPni5z/6drW0cCLF4VAuFGWGhvUDQQ3wsdg0JvpRS8PkV 2s9V31RZO5kc+xQIEElXZqh+BBraXiCbhqrJYFi1ZZd0+UEDdjTwkpe8+nbBFRgf p0yK9NrpRDFpInzOElAL0IOK1FDd1g7Yq7+qO/tXcst9cz1k2i0T7fmTxRE3dwSl N+xpEiKI2hgf67CX0jUgP98v7LdzvTUonObBZmWy/TY2ylo+54I= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:06 2026 by rpki-client