$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144694.roa File: AS144694.roa (raw, json) Hash identifier: +lzui/cZNWtSs2spac1YVZl/Gxo0HL+G1m0HgyQa8pI= Subject key identifier: 0F:C8:62:DD:F9:69:DA:80:47:89:2C:C2:56:C0:17:97:BC:24:E2:A5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 20BE0FC2DD90A274D0C145681F6C26CFF04312A5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144694.roa Signing time: Wed 04 Mar 2026 06:19:38 +0000 ROA not before: Wed 04 Mar 2026 06:14:38 +0000 ROA not after: Wed 03 Mar 2027 06:19:38 +0000 asID: 144694 IP address blocks: 240a:a7fc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:be:0f:c2:dd:90:a2:74:d0:c1:45:68:1f:6c:26:cf:f0:43:12:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:38 2026 GMT Not After : Mar 3 06:19:38 2027 GMT Subject: CN=0FC862DDF969DA8047892CC256C01797BC24E2A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:71:36:a0:ee:bf:38:35:9f:88:7c:47:88:b6: 21:bd:ad:16:9e:83:e4:41:9e:90:ad:ac:06:45:fe: 82:3f:1f:ee:5d:41:69:df:7a:1a:47:41:09:9a:b5: e5:42:c4:76:04:b6:f2:8c:a0:6c:f6:da:b2:34:c4: 71:25:f4:aa:a8:1e:82:5c:e5:42:59:0d:f8:ee:16: de:5b:6e:f8:5a:93:af:97:dd:f7:f2:de:1b:1e:8d: 28:8d:83:e8:58:3e:73:bd:e7:60:59:9d:2a:d1:7a: 5b:67:6d:2f:00:ff:a5:12:5c:04:f3:8e:8f:9d:fd: 48:83:de:e7:80:d7:27:e4:ca:60:d1:39:1e:81:fb: c4:a0:c9:76:a9:e1:90:60:cf:eb:35:ff:5d:94:ef: 59:59:f3:0c:99:ea:72:38:78:22:6f:2a:86:17:31: 43:fa:08:de:ce:74:6a:f6:a4:10:3d:84:3c:0b:9f: 00:c9:40:9a:bd:1e:18:7e:fd:b6:3c:c7:a6:dd:a5: 85:3e:9b:d0:22:58:a9:fa:f7:4e:e1:ac:7d:8d:7b: 79:67:ce:3a:7e:01:26:0a:23:e4:28:0f:f5:04:76: fd:83:11:19:2d:65:a1:3d:e0:e0:20:4f:75:b4:37: 83:f3:0c:8f:d0:2f:be:f7:3a:b3:f5:1c:ee:7e:e5: 17:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C8:62:DD:F9:69:DA:80:47:89:2C:C2:56:C0:17:97:BC:24:E2:A5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144694.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7fc::/32 Signature Algorithm: sha256WithRSAEncryption 9d:e2:83:07:b6:71:d0:11:ce:27:e8:a3:a1:84:fe:e2:0c:92: 38:29:ed:84:89:25:3c:af:ea:7b:60:a2:12:64:7e:3a:06:0a: 69:6e:6c:f1:b9:83:74:f5:b4:58:c6:ee:a8:e1:db:c8:fb:29: 7c:f8:13:07:9d:88:95:12:4d:3d:02:e6:cf:5b:38:a9:1f:3e: 76:b6:86:15:ee:a6:f8:27:9f:61:0b:8d:5a:ab:0a:93:10:cc: f1:38:62:7e:be:4c:95:e6:ca:80:9c:3f:63:d6:c6:31:32:ad: 90:2a:fb:d8:9e:ef:ec:13:35:b8:4a:c4:8c:a5:e4:f0:55:50: a2:6a:d7:9e:d5:11:30:b7:f9:ee:2d:0d:13:00:c4:d3:f8:99: 61:0b:1c:e5:28:1a:cc:64:22:02:f2:a8:a1:a8:d6:23:a6:a2: 32:6e:c8:53:75:99:05:7a:f9:e7:68:69:22:18:c9:86:7a:c8: 2a:6d:80:35:e3:7a:36:81:27:29:db:96:56:7c:f2:12:9d:36: c5:b2:96:a9:e9:04:d1:ba:94:e8:15:b2:29:a2:f7:53:76:67: 18:a4:90:cf:be:57:68:06:2a:c3:35:81:97:62:38:64:43:de: ba:e0:61:a8:b0:7c:82:bd:09:cb:ad:1d:3d:47:9d:6b:a3:e0: 5e:8a:dd:e2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIL4Pwt2QonTQwUVoH2wmz/BDEqUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQzOFoX DTI3MDMwMzA2MTkzOFowMzExMC8GA1UEAxMoMEZDODYyRERGOTY5REE4MDQ3ODky Q0MyNTZDMDE3OTdCQzI0RTJBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKlxNqDuvzg1n4h8R4i2Ib2tFp6D5EGekK2sBkX+gj8f7l1Bad96GkdBCZq1 5ULEdgS28oygbPbasjTEcSX0qqgeglzlQlkN+O4W3ltu+FqTr5fd9/LeGx6NKI2D 6Fg+c73nYFmdKtF6W2dtLwD/pRJcBPOOj539SIPe54DXJ+TKYNE5HoH7xKDJdqnh kGDP6zX/XZTvWVnzDJnqcjh4Im8qhhcxQ/oI3s50avakED2EPAufAMlAmr0eGH79 tjzHpt2lhT6b0CJYqfr3TuGsfY17eWfOOn4BJgoj5CgP9QR2/YMRGS1loT3g4CBP dbQ3g/MMj9Avvvc6s/Uc7n7lFxECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQPyGLd +WnagEeJLMJWwBeXvCTipTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY5NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p/wwDQYJKoZIhvcNAQELBQADggEBAJ3igwe2cdARzifoo6GE/uIMkjgp7YSJJTyv 6ntgohJkfjoGCmlubPG5g3T1tFjG7qjh28j7KXz4EwediJUSTT0C5s9bOKkfPna2 hhXupvgnn2ELjVqrCpMQzPE4Yn6+TJXmyoCcP2PWxjEyrZAq+9ie7+wTNbhKxIyl 5PBVUKJq157VETC3+e4tDRMAxNP4mWELHOUoGsxkIgLyqKGo1iOmojJuyFN1mQV6 +edoaSIYyYZ6yCptgDXjejaBJynbllZ88hKdNsWylqnpBNG6lOgVsimi91N2Zxik kM++V2gGKsM1gZdiOGRD3rrgYaiwfIK9CcutHT1HnWuj4F6K3eI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:22 2026 by rpki-client