$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144709.roa File: AS144709.roa (raw, json) Hash identifier: UQvBTLXnLLVxkx0flYhQ9dl7vQUpvvHAqGZTkuhC2VE= Subject key identifier: C1:BC:DD:C8:0B:E3:31:38:77:A8:F0:6B:69:D2:88:34:26:46:30:6C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5DB17022F268B1D320B093E450952F01A1427866 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144709.roa Signing time: Wed 04 Mar 2026 06:21:22 +0000 ROA not before: Wed 04 Mar 2026 06:16:22 +0000 ROA not after: Wed 03 Mar 2027 06:21:22 +0000 asID: 144709 IP address blocks: 240a:a80b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:b1:70:22:f2:68:b1:d3:20:b0:93:e4:50:95:2f:01:a1:42:78:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:22 2026 GMT Not After : Mar 3 06:21:22 2027 GMT Subject: CN=C1BCDDC80BE3313877A8F06B69D288342646306C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4d:bb:b6:54:5e:59:b7:2e:06:5f:f2:4e:54: 94:50:86:a5:e4:2e:ae:6c:a2:28:7a:32:64:0f:40: f0:37:d2:ea:cc:99:87:7f:01:f3:e8:1e:12:29:ec: 75:02:af:65:06:6f:ce:35:20:4c:1f:07:ea:2b:12: c8:fb:24:85:bd:e4:08:dc:b5:80:04:8e:ec:f2:0e: fe:17:c2:cd:14:90:42:2a:90:08:bc:ff:b8:40:bb: 16:64:39:e6:8e:ca:f9:68:d9:fd:73:05:f1:3a:e9: 15:e6:7c:4f:a5:ea:8f:c6:21:58:b8:c5:94:5b:7e: 6d:2f:9f:bf:fc:eb:27:13:09:cd:5b:a6:28:1d:de: 00:58:02:a1:08:74:b5:07:d6:e9:51:04:7e:77:df: 71:cc:70:06:62:4f:c2:fe:58:f6:91:4a:fc:b1:bd: 1e:a3:88:46:a9:e9:38:8d:6b:8b:c3:a5:45:ef:72: 7b:7b:bb:66:83:1c:62:6c:23:f2:4f:1a:8c:3c:1d: fd:99:ce:75:a3:8c:e0:b3:3e:d3:34:95:f6:54:6c: 87:29:c4:1d:c9:60:a7:07:78:a3:2f:e8:2b:25:f1: 49:dd:f3:77:ce:17:37:2e:34:9a:09:ba:03:ea:e0: ba:d6:76:ed:1f:67:30:1e:71:cb:ab:c7:65:bf:e0: 91:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:BC:DD:C8:0B:E3:31:38:77:A8:F0:6B:69:D2:88:34:26:46:30:6C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144709.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a80b::/32 Signature Algorithm: sha256WithRSAEncryption 53:9d:b9:a6:63:97:27:ec:52:12:c1:b8:85:61:50:90:1e:ab: 9b:be:d1:73:1b:7a:48:f6:ed:ae:c9:e9:ad:a9:cc:f6:1c:09: 2b:27:fc:aa:34:76:b6:60:df:8b:1b:77:ae:dc:c7:72:48:95: 22:0e:16:7f:de:de:33:5c:a5:d8:1a:76:72:d1:b4:10:c2:98: 26:21:47:09:94:66:02:9d:77:ea:fa:ba:49:f3:06:0a:c5:48: 3a:9d:38:35:38:d1:46:7f:bc:15:38:e5:fc:37:ce:8d:4d:32: e0:21:cb:9d:e2:2a:5d:9e:75:8b:fa:0d:fa:80:15:32:39:a2: 08:6e:f7:11:fd:82:2a:9c:1f:3c:aa:3a:1d:08:0c:ac:b5:4f: 59:69:e9:69:70:a7:03:41:da:29:16:f9:2e:27:88:1a:a8:37: ca:62:eb:15:05:70:16:03:f0:79:53:27:7e:46:ab:3f:ed:47: 53:a3:ea:52:44:48:16:7b:09:98:3c:b0:dc:b9:0c:7d:1a:0f: fb:92:ee:c8:54:8c:69:c9:19:4c:42:e7:5f:d8:aa:e4:cb:0f: 10:d4:ca:b3:1e:9e:1b:e3:87:c7:e7:d8:cb:71:cb:6d:23:c6: db:72:c5:a9:02:9e:ff:8d:5d:84:13:16:b5:db:7c:79:98:e0: 54:af:66:cb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXbFwIvJosdMgsJPkUJUvAaFCeGYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYyMloX DTI3MDMwMzA2MjEyMlowMzExMC8GA1UEAxMoQzFCQ0REQzgwQkUzMzEzODc3QThG MDZCNjlEMjg4MzQyNjQ2MzA2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhNu7ZUXlm3LgZf8k5UlFCGpeQurmyiKHoyZA9A8DfS6syZh38B8+geEins dQKvZQZvzjUgTB8H6isSyPskhb3kCNy1gASO7PIO/hfCzRSQQiqQCLz/uEC7FmQ5 5o7K+WjZ/XMF8TrpFeZ8T6Xqj8YhWLjFlFt+bS+fv/zrJxMJzVumKB3eAFgCoQh0 tQfW6VEEfnffccxwBmJPwv5Y9pFK/LG9HqOIRqnpOI1ri8OlRe9ye3u7ZoMcYmwj 8k8ajDwd/ZnOdaOM4LM+0zSV9lRshynEHclgpwd4oy/oKyXxSd3zd84XNy40mgm6 A+rgutZ27R9nMB5xy6vHZb/gkekCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTBvN3I C+MxOHeo8Gtp0og0JkYwbDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDcwOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qAswDQYJKoZIhvcNAQELBQADggEBAFOduaZjlyfsUhLBuIVhUJAeq5u+0XMbekj2 7a7J6a2pzPYcCSsn/Ko0drZg34sbd67cx3JIlSIOFn/e3jNcpdgadnLRtBDCmCYh RwmUZgKdd+r6uknzBgrFSDqdODU40UZ/vBU45fw3zo1NMuAhy53iKl2edYv6DfqA FTI5oghu9xH9giqcHzyqOh0IDKy1T1lp6WlwpwNB2ikW+S4niBqoN8pi6xUFcBYD 8HlTJ35Gqz/tR1Oj6lJESBZ7CZg8sNy5DH0aD/uS7shUjGnJGUxC51/YquTLDxDU yrMenhvjh8fn2Mtxy20jxttyxakCnv+NXYQTFrXbfHmY4FSvZss= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:45 2026 by rpki-client