$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144710.roa File: AS144710.roa (raw, json) Hash identifier: BPNTvfLhZpF4YuZGyWh/q81EnvXtuBxlGInqF2GyjAI= Subject key identifier: CF:50:31:FA:0D:DF:6A:70:0B:FC:A6:C0:89:22:1B:D0:29:D1:47:69 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 53B2C5CF39CA376861D2034DF31BB5ECCA202EFF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144710.roa Signing time: Wed 04 Mar 2026 06:21:27 +0000 ROA not before: Wed 04 Mar 2026 06:16:27 +0000 ROA not after: Wed 03 Mar 2027 06:21:27 +0000 asID: 144710 IP address blocks: 240a:a80c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b2:c5:cf:39:ca:37:68:61:d2:03:4d:f3:1b:b5:ec:ca:20:2e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:27 2026 GMT Not After : Mar 3 06:21:27 2027 GMT Subject: CN=CF5031FA0DDF6A700BFCA6C089221BD029D14769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9f:f3:68:eb:65:15:22:45:39:18:1f:27:07: 26:6e:a0:d4:f6:e2:c7:0c:94:4e:2a:79:51:3a:af: 0e:05:97:13:b5:68:c7:79:e4:49:d0:d9:b0:03:8d: 0b:36:7c:fe:9b:46:65:b1:1b:85:3a:14:b2:51:36: a6:fa:34:35:37:3c:0b:31:61:ce:b7:77:ed:8d:04: ab:7b:3a:71:db:17:28:c6:9f:a0:2f:76:cd:b5:93: 5f:41:9e:79:a4:ac:a5:ea:f7:a3:d6:c4:a7:fd:dc: 54:c1:91:0a:2e:a4:ec:f6:f2:16:17:6f:53:11:bb: 01:af:d1:bf:e1:0d:48:72:fc:b8:98:67:f5:57:09: c3:87:75:95:c1:6c:c7:a6:a0:fe:1b:5a:5b:ec:fa: a1:24:88:9b:5e:a7:78:39:b9:c9:b6:dd:7d:b6:92: 01:c3:20:16:1d:c5:96:4d:b9:28:7b:e7:14:dd:ff: 11:65:97:3f:fe:6c:c1:c4:ae:ce:3e:2c:92:25:52: 55:c9:71:66:09:5d:40:b1:74:22:fe:fd:2b:f6:d4: 0c:64:90:18:49:23:e3:67:41:d3:a4:d2:67:28:ae: 70:07:c3:61:b4:3b:5e:05:01:b4:3b:94:c8:c7:07: 96:b3:7d:d7:fe:6b:30:f5:65:d9:a6:79:6e:1d:28: 62:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:50:31:FA:0D:DF:6A:70:0B:FC:A6:C0:89:22:1B:D0:29:D1:47:69 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144710.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a80c::/32 Signature Algorithm: sha256WithRSAEncryption ba:0a:3d:6e:02:7f:1b:38:be:39:67:b5:67:93:30:5a:a8:61: 30:9a:de:33:fa:24:97:0c:34:61:9b:6a:f4:81:c4:9a:e1:cd: 03:99:a5:d5:2d:ef:98:e3:58:1b:30:0e:b5:f7:b1:da:68:a6: 1a:c4:a1:0f:70:bb:4c:4e:92:b6:f5:2c:4f:12:32:2e:a5:d3: 6e:a6:08:ff:8e:33:41:5a:19:95:13:5b:59:a1:66:91:ca:c8: 74:f5:92:30:ca:8f:14:4f:b3:15:7f:8f:70:1c:1f:73:0f:23: 1b:6a:b8:90:d4:64:4f:97:b5:3e:f6:94:6a:82:94:ed:fa:aa: d8:df:fb:88:42:ee:0e:69:34:3b:73:ea:fa:0e:26:cc:0d:29: 0d:99:0b:d5:2f:32:cd:e7:48:41:55:a0:e7:1d:83:cc:7b:9e: 34:ad:87:6e:76:61:5e:51:3b:35:14:77:2b:5b:bf:01:10:9a: 5f:fb:12:ec:09:99:0a:fc:c8:49:45:b6:0a:88:82:fb:5d:3d: 48:05:75:2f:83:0e:0d:3e:e4:98:21:85:41:2a:47:1d:75:3d: 6f:70:9f:92:94:28:96:6d:e3:f2:bc:2e:9b:7d:47:1d:ba:83: f2:bb:8e:d8:6a:42:e2:20:af:00:e4:6a:50:84:93:3c:69:c0: 00:68:7c:ef -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUU7LFzznKN2hh0gNN8xu17MogLv8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYyN1oX DTI3MDMwMzA2MjEyN1owMzExMC8GA1UEAxMoQ0Y1MDMxRkEwRERGNkE3MDBCRkNB NkMwODkyMjFCRDAyOUQxNDc2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmf82jrZRUiRTkYHycHJm6g1PbixwyUTip5UTqvDgWXE7Vox3nkSdDZsAON CzZ8/ptGZbEbhToUslE2pvo0NTc8CzFhzrd37Y0Eq3s6cdsXKMafoC92zbWTX0Ge eaSsper3o9bEp/3cVMGRCi6k7PbyFhdvUxG7Aa/Rv+ENSHL8uJhn9VcJw4d1lcFs x6ag/htaW+z6oSSIm16neDm5ybbdfbaSAcMgFh3Flk25KHvnFN3/EWWXP/5swcSu zj4skiVSVclxZgldQLF0Iv79K/bUDGSQGEkj42dB06TSZyiucAfDYbQ7XgUBtDuU yMcHlrN91/5rMPVl2aZ5bh0oYtsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTPUDH6 Dd9qcAv8psCJIhvQKdFHaTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDcxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qAwwDQYJKoZIhvcNAQELBQADggEBALoKPW4Cfxs4vjlntWeTMFqoYTCa3jP6JJcM NGGbavSBxJrhzQOZpdUt75jjWBswDrX3sdpophrEoQ9wu0xOkrb1LE8SMi6l026m CP+OM0FaGZUTW1mhZpHKyHT1kjDKjxRPsxV/j3AcH3MPIxtquJDUZE+XtT72lGqC lO36qtjf+4hC7g5pNDtz6voOJswNKQ2ZC9UvMs3nSEFVoOcdg8x7njSth252YV5R OzUUdytbvwEQml/7EuwJmQr8yElFtgqIgvtdPUgFdS+DDg0+5JghhUEqRx11PW9w n5KUKJZt4/K8Lpt9Rx26g/K7jthqQuIgrwDkalCEkzxpwABofO8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:00 2026 by rpki-client