$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144722.roa File: AS144722.roa (raw, json) Hash identifier: mMEirVPWHZczaTd9gv1Cjg53sdYQ8RiOVtcioYqCb1A= Subject key identifier: 40:FA:51:B3:12:25:13:1D:23:FE:B7:1F:0B:F0:C2:AC:85:80:EE:19 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 50E4E023D9A609282460CFD8748C78898621461E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144722.roa Signing time: Wed 04 Mar 2026 06:21:56 +0000 ROA not before: Wed 04 Mar 2026 06:16:56 +0000 ROA not after: Wed 03 Mar 2027 06:21:56 +0000 asID: 144722 IP address blocks: 240a:a818::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e4:e0:23:d9:a6:09:28:24:60:cf:d8:74:8c:78:89:86:21:46:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:56 2026 GMT Not After : Mar 3 06:21:56 2027 GMT Subject: CN=40FA51B31225131D23FEB71F0BF0C2AC8580EE19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:c1:ea:28:cc:62:66:d4:d9:e6:08:18:fb:6d: 71:75:ef:8c:9f:74:05:1f:28:fe:5f:5a:c1:9e:54: 01:a0:50:15:b3:f0:8b:fd:78:15:68:07:ac:96:c3: 86:9a:72:0f:b2:7a:e5:fb:d9:73:31:e5:62:72:6a: 90:64:60:fd:44:7b:f2:26:5a:5a:57:fc:ab:e7:2a: 3e:78:97:34:15:15:24:77:e4:7e:75:26:28:7a:c0: 4c:b1:45:91:cc:f2:05:88:6f:49:ce:86:fa:d5:d0: e3:c6:59:70:f3:2f:ef:05:3a:c8:ea:45:90:5c:f9: 55:b4:66:c9:80:04:43:45:17:d0:1c:6d:d0:1f:37: 4f:52:eb:24:94:bf:0c:da:96:e2:c5:09:07:02:9d: 2d:af:d2:57:f8:5e:b8:fa:26:88:ab:1f:bd:bc:59: b8:c4:35:60:92:16:e2:3d:1e:12:2b:31:b1:c0:47: 00:12:28:f7:30:d4:29:9f:f8:24:46:da:3e:e9:dc: a4:fd:1c:4c:f3:8d:2d:b1:ea:bd:30:dd:11:e4:23: 3c:95:dd:8f:39:ae:57:65:a6:7a:19:84:01:8f:b2: 6a:02:90:e3:a1:e4:21:9d:d8:e8:1c:a5:81:f9:ba: 13:f6:20:13:06:ff:c4:14:ec:59:09:4f:30:44:05: b2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FA:51:B3:12:25:13:1D:23:FE:B7:1F:0B:F0:C2:AC:85:80:EE:19 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144722.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a818::/32 Signature Algorithm: sha256WithRSAEncryption 68:50:55:0e:7c:9c:a7:0d:3a:d1:54:f5:6e:da:78:20:71:0b: 50:be:18:05:c8:ea:d2:0a:df:5b:f1:5d:e0:8d:83:70:ad:db: c2:e1:a1:67:72:e2:42:7f:71:10:5f:5c:87:29:aa:66:3c:e0: 34:0a:10:94:97:90:27:4f:ba:1d:fb:49:52:45:1e:78:af:35: e5:40:b0:be:56:42:69:f6:8d:01:2a:08:f4:8a:65:46:2b:1b: c3:ac:fc:f9:78:f3:87:85:4e:83:10:1a:78:e9:ff:84:9c:ea: 61:c2:be:a7:02:8d:8b:89:d7:d2:4b:39:37:8e:c5:78:0d:d1: 79:53:80:2e:9e:1c:fe:ee:81:d2:a5:ac:fc:00:f3:62:3b:cb: 42:3a:98:1b:9a:b2:ab:59:db:3b:97:9a:d8:46:a8:ee:46:c3: 06:bd:f3:33:5a:5a:f3:fa:52:58:30:5e:71:e6:7c:58:44:bd: 6b:eb:58:75:42:ab:94:4e:37:48:83:33:cd:ba:d6:b2:e1:f5: 2b:de:3e:c3:23:23:f0:e6:c1:e6:dd:3d:1c:1b:df:40:ce:71: 9e:1a:0f:b7:76:d5:ec:ee:67:c7:ad:cb:ef:95:96:61:0a:e6: 00:8d:ca:2f:bb:ee:2d:36:15:ce:fa:26:b7:08:76:cf:1c:f5: 18:24:b4:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUOTgI9mmCSgkYM/YdIx4iYYhRh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1NloX DTI3MDMwMzA2MjE1NlowMzExMC8GA1UEAxMoNDBGQTUxQjMxMjI1MTMxRDIzRkVC NzFGMEJGMEMyQUM4NTgwRUUxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIbB6ijMYmbU2eYIGPttcXXvjJ90BR8o/l9awZ5UAaBQFbPwi/14FWgHrJbD hppyD7J65fvZczHlYnJqkGRg/UR78iZaWlf8q+cqPniXNBUVJHfkfnUmKHrATLFF kczyBYhvSc6G+tXQ48ZZcPMv7wU6yOpFkFz5VbRmyYAEQ0UX0Bxt0B83T1LrJJS/ DNqW4sUJBwKdLa/SV/heuPomiKsfvbxZuMQ1YJIW4j0eEisxscBHABIo9zDUKZ/4 JEbaPuncpP0cTPONLbHqvTDdEeQjPJXdjzmuV2WmehmEAY+yagKQ46HkIZ3Y6Byl gfm6E/YgEwb/xBTsWQlPMEQFsgsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRA+lGz EiUTHSP+tx8L8MKshYDuGTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDcyMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qBgwDQYJKoZIhvcNAQELBQADggEBAGhQVQ58nKcNOtFU9W7aeCBxC1C+GAXI6tIK 31vxXeCNg3Ct28LhoWdy4kJ/cRBfXIcpqmY84DQKEJSXkCdPuh37SVJFHnivNeVA sL5WQmn2jQEqCPSKZUYrG8Os/Pl484eFToMQGnjp/4Sc6mHCvqcCjYuJ19JLOTeO xXgN0XlTgC6eHP7ugdKlrPwA82I7y0I6mBuasqtZ2zuXmthGqO5Gwwa98zNaWvP6 UlgwXnHmfFhEvWvrWHVCq5RON0iDM8261rLh9SvePsMjI/DmwebdPRwb30DOcZ4a D7d21ezuZ8ety++VlmEK5gCNyi+77i02Fc76JrcIds8c9RgktIU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:45 2026 by rpki-client