$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144696.roa File: AS144696.roa (raw, json) Hash identifier: zLkMSoCHvCzx9mQSiujeI3CnYoNbertVaZ13aOWJ45o= Subject key identifier: CA:BD:3E:8E:A7:4E:4E:05:E3:5F:93:43:5A:2A:C5:E7:9C:2E:BC:1F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6DB0B13925412C71E26182B3DACDF3DE2C2B343E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144696.roa Signing time: Wed 04 Mar 2026 06:22:03 +0000 ROA not before: Wed 04 Mar 2026 06:17:03 +0000 ROA not after: Wed 03 Mar 2027 06:22:03 +0000 asID: 144696 IP address blocks: 240a:a7fe::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b0:b1:39:25:41:2c:71:e2:61:82:b3:da:cd:f3:de:2c:2b:34:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:03 2026 GMT Not After : Mar 3 06:22:03 2027 GMT Subject: CN=CABD3E8EA74E4E05E35F93435A2AC5E79C2EBC1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:af:0c:6f:22:78:d8:ec:56:f8:e1:ca:85:de: 52:77:ab:8a:37:64:81:c1:47:2a:f5:d5:1b:f9:42: 83:53:c7:3b:4b:9c:a8:88:d0:c3:49:42:a4:8e:f3: 93:50:2a:4c:4e:28:2c:64:42:e9:c5:44:eb:b7:3c: 78:50:b8:53:e5:b1:b9:57:b8:cb:a4:c0:fa:79:d9: 88:a5:a9:fb:c6:97:96:32:38:eb:9e:c9:95:c6:7f: ba:af:d6:8c:4d:57:ed:b1:f9:8f:00:01:53:8e:21: 18:8a:9e:65:b5:a3:77:40:d4:4d:08:9e:70:2f:21: 77:bf:5b:47:21:a6:d4:e2:1d:f8:71:00:6c:1d:a4: 22:1f:5d:81:02:f7:bd:7f:2d:8f:65:de:f4:23:7f: 58:ff:51:bb:9b:9d:5b:29:48:98:3b:14:b7:75:30: 9a:22:86:18:76:79:9e:3a:18:a4:bb:04:a7:4c:3e: 13:c7:46:53:ce:3c:9b:d0:3d:95:5e:b1:a6:e7:36: 9a:87:c9:49:71:54:ac:fe:8a:d3:6d:a6:86:70:a5: 35:eb:32:ed:85:5f:29:1a:36:9a:59:e7:ed:93:f8: e6:8f:fa:46:26:ab:77:18:fe:3f:8d:dc:cd:41:58: ab:ab:27:36:f0:d9:c9:d5:e4:4d:0c:07:6d:ae:36: 3f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:BD:3E:8E:A7:4E:4E:05:E3:5F:93:43:5A:2A:C5:E7:9C:2E:BC:1F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144696.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a7fe::/32 Signature Algorithm: sha256WithRSAEncryption 50:c6:14:6a:1e:b7:13:7e:2a:9b:a8:ea:bd:52:fa:5a:d1:4f: 52:7d:38:8c:fa:f8:c3:91:74:53:a4:d6:25:40:73:c1:2d:25: ad:aa:14:1a:ea:93:3f:e7:1e:04:be:1b:d5:74:94:af:8a:88: 85:d0:2c:dd:af:fd:ca:5d:6d:8f:d5:36:d5:7c:99:3b:ce:30: c4:80:3d:c8:0b:5b:e7:d5:09:82:26:e8:61:ee:a2:a5:e1:ac: c5:de:db:db:3a:16:aa:56:74:c2:69:29:46:06:4e:d7:84:e1: 35:52:a7:ca:08:50:fa:24:85:4c:d7:23:9a:4d:50:a9:39:71: 70:11:c6:82:db:07:20:e7:cc:26:bf:51:21:c1:7f:c5:41:bb: e5:56:61:09:07:2e:a5:c9:65:14:44:4d:c2:a6:f8:ac:f5:82: c5:66:76:d5:4e:bc:2c:a2:21:07:2f:d5:bc:b4:92:df:df:6f: 3a:28:44:e4:f3:c7:05:b4:c2:52:29:e8:dc:ff:47:6a:65:e1: 10:97:15:a8:07:25:52:56:4f:11:fa:53:4f:51:92:99:34:23: 78:5f:2f:d9:b6:99:9e:07:a9:76:f8:4d:b9:97:b6:77:9c:6b: 96:21:15:60:f2:a3:1c:93:40:91:b7:00:28:46:2f:61:a3:a8: 12:1c:79:e6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbbCxOSVBLHHiYYKz2s3z3iwrND4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcwM1oX DTI3MDMwMzA2MjIwM1owMzExMC8GA1UEAxMoQ0FCRDNFOEVBNzRFNEUwNUUzNUY5 MzQzNUEyQUM1RTc5QzJFQkMxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWvDG8ieNjsVvjhyoXeUnerijdkgcFHKvXVG/lCg1PHO0ucqIjQw0lCpI7z k1AqTE4oLGRC6cVE67c8eFC4U+WxuVe4y6TA+nnZiKWp+8aXljI4657JlcZ/uq/W jE1X7bH5jwABU44hGIqeZbWjd0DUTQiecC8hd79bRyGm1OId+HEAbB2kIh9dgQL3 vX8tj2Xe9CN/WP9Ru5udWylImDsUt3UwmiKGGHZ5njoYpLsEp0w+E8dGU848m9A9 lV6xpuc2mofJSXFUrP6K022mhnClNesy7YVfKRo2mlnn7ZP45o/6Riardxj+P43c zUFYq6snNvDZydXkTQwHba42P7cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTKvT6O p05OBeNfk0NaKsXnnC68HzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK p/4wDQYJKoZIhvcNAQELBQADggEBAFDGFGoetxN+Kpuo6r1S+lrRT1J9OIz6+MOR dFOk1iVAc8EtJa2qFBrqkz/nHgS+G9V0lK+KiIXQLN2v/cpdbY/VNtV8mTvOMMSA PcgLW+fVCYIm6GHuoqXhrMXe29s6FqpWdMJpKUYGTteE4TVSp8oIUPokhUzXI5pN UKk5cXARxoLbByDnzCa/USHBf8VBu+VWYQkHLqXJZRRETcKm+Kz1gsVmdtVOvCyi IQcv1by0kt/fbzooROTzxwW0wlIp6Nz/R2pl4RCXFagHJVJWTxH6U09Rkpk0I3hf L9m2mZ4HqXb4TbmXtneca5YhFWDyoxyTQJG3AChGL2GjqBIceeY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:34 2026 by rpki-client