$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144693.roa File: AS144693.roa (raw, json) Hash identifier: arqHm00zATiaChgd34tdm0dVqwWg8c1Keg9jzIjVHuQ= Subject key identifier: 6C:D9:06:31:CC:42:18:AC:EB:03:C4:B4:D6:6A:E2:02:C2:E2:D5:E7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7FC7F310CE31C1B4D08C786C93D9F0316CC45C88 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144693.roa Signing time: Wed 04 Mar 2026 06:22:14 +0000 ROA not before: Wed 04 Mar 2026 06:17:14 +0000 ROA not after: Wed 03 Mar 2027 06:22:14 +0000 asID: 144693 IP address blocks: 240a:a7fb::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c7:f3:10:ce:31:c1:b4:d0:8c:78:6c:93:d9:f0:31:6c:c4:5c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:14 2026 GMT Not After : Mar 3 06:22:14 2027 GMT Subject: CN=6CD90631CC4218ACEB03C4B4D66AE202C2E2D5E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3c:54:b3:59:6e:f6:04:28:df:f5:91:f5:01: b1:c8:18:fe:20:b3:ca:72:36:bd:21:4a:df:d4:76: 0e:81:94:c6:fd:64:cb:97:7d:15:a1:ab:fc:28:2b: 28:16:11:21:39:f5:68:a4:6b:8c:a5:78:90:28:e6: 55:c2:64:ae:e1:00:6a:5b:b7:2c:22:d2:6e:bb:07: 88:76:19:9f:cf:08:3f:37:eb:e8:0b:05:13:ee:72: 17:3e:2a:d0:cd:0b:fe:ff:88:26:05:dc:b6:bc:d5: 39:12:29:d7:2a:48:71:75:d2:f2:88:72:bc:70:d0: c0:13:64:01:78:f0:ed:d9:10:64:22:5b:78:4c:e7: ae:1b:2e:b1:16:2b:0d:07:14:4f:f6:b2:05:44:ab: 32:96:28:41:80:41:59:b4:fd:a1:b8:73:c6:d0:24: c1:6a:29:2a:77:82:36:03:3e:88:bb:71:bc:66:7e: 49:0f:28:ec:6b:07:e4:be:96:1a:db:cd:32:b7:d6: cd:57:10:f3:da:c4:07:11:95:71:5d:c5:d6:be:ef: b8:17:6b:69:2a:e0:61:6c:f5:de:ae:89:b6:f2:c0: 4c:12:ee:5e:35:63:5b:56:ab:fa:e9:11:c9:db:76: 68:b6:13:b6:97:45:4f:67:22:f1:b2:42:03:81:83: a5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D9:06:31:CC:42:18:AC:EB:03:C4:B4:D6:6A:E2:02:C2:E2:D5:E7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144693.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7fb::/32 Signature Algorithm: sha256WithRSAEncryption cd:d2:ce:a4:50:f8:14:f9:56:e1:14:11:29:95:1a:55:d0:5c: b3:f8:4b:72:57:09:f2:fa:be:17:c1:98:6f:98:dc:6c:04:8f: c9:33:6c:49:d8:11:e7:34:0f:cb:1c:cc:ac:ad:c2:4e:81:ba: 89:58:3a:b3:4b:b6:46:9b:11:fe:9c:e5:3b:05:f7:f6:83:eb: 9a:55:3f:0a:c4:d0:10:f1:b7:c1:46:31:b0:45:c0:25:f8:b9: 48:20:82:0e:a8:bb:9e:08:66:9a:bf:90:ac:6c:01:35:c2:b4: fb:5b:66:ea:fa:a7:30:a8:41:03:e9:d4:2b:e6:f7:f6:17:61: 72:b5:5f:fa:b1:a2:ce:65:e2:ca:64:22:14:74:35:29:1c:2b: ea:06:c7:b4:a1:5a:0d:1a:84:40:11:65:84:42:6b:48:19:7e: b3:6a:be:28:72:78:66:f9:f3:3c:37:f6:06:f6:9f:0e:88:bb: fb:01:87:d2:d8:ae:a6:9e:dc:7b:2a:2a:b1:9d:7c:fb:e7:ef: 7a:da:dd:28:e4:f6:5b:1d:68:0f:0a:df:c5:f2:bc:fb:27:7e: 9e:c2:a7:3e:ae:9c:a9:03:0f:5c:49:fd:a4:78:f9:ba:e3:7a: 98:c0:6d:7e:3c:ed:70:8a:0c:15:29:91:f1:fc:aa:62:e8:46: d8:75:a5:d3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUf8fzEM4xwbTQjHhsk9nwMWzEXIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcxNFoX DTI3MDMwMzA2MjIxNFowMzExMC8GA1UEAxMoNkNEOTA2MzFDQzQyMThBQ0VCMDND NEI0RDY2QUUyMDJDMkUyRDVFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALs8VLNZbvYEKN/1kfUBscgY/iCzynI2vSFK39R2DoGUxv1ky5d9FaGr/Cgr KBYRITn1aKRrjKV4kCjmVcJkruEAalu3LCLSbrsHiHYZn88IPzfr6AsFE+5yFz4q 0M0L/v+IJgXctrzVORIp1ypIcXXS8ohyvHDQwBNkAXjw7dkQZCJbeEznrhsusRYr DQcUT/ayBUSrMpYoQYBBWbT9obhzxtAkwWopKneCNgM+iLtxvGZ+SQ8o7GsH5L6W GtvNMrfWzVcQ89rEBxGVcV3F1r7vuBdraSrgYWz13q6JtvLATBLuXjVjW1ar+ukR ydt2aLYTtpdFT2ci8bJCA4GDpYsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRs2QYx zEIYrOsDxLTWauICwuLV5zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY5My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p/swDQYJKoZIhvcNAQELBQADggEBAM3SzqRQ+BT5VuEUESmVGlXQXLP4S3JXCfL6 vhfBmG+Y3GwEj8kzbEnYEec0D8sczKytwk6BuolYOrNLtkabEf6c5TsF9/aD65pV PwrE0BDxt8FGMbBFwCX4uUgggg6ou54IZpq/kKxsATXCtPtbZur6pzCoQQPp1Cvm 9/YXYXK1X/qxos5l4spkIhR0NSkcK+oGx7ShWg0ahEARZYRCa0gZfrNqvihyeGb5 8zw39gb2nw6Iu/sBh9LYrqae3HsqKrGdfPvn73ra3Sjk9lsdaA8K38XyvPsnfp7C pz6unKkDD1xJ/aR4+brjepjAbX487XCKDBUpkfH8qmLoRth1pdM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:31 2026 by rpki-client