$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144737.roa File: AS144737.roa (raw, json) Hash identifier: aSA2hStqmacoBzSKBp0zTisUpW3LrmG56tjKCKBZFR4= Subject key identifier: EF:99:10:D4:3D:A7:7D:56:8A:23:2C:C4:EB:6B:9C:5C:B8:AC:F8:FD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 47F79CD9EAF71D31F9CD17A269B0538C70388BA9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144737.roa Signing time: Wed 04 Mar 2026 06:21:02 +0000 ROA not before: Wed 04 Mar 2026 06:16:02 +0000 ROA not after: Wed 03 Mar 2027 06:21:02 +0000 asID: 144737 IP address blocks: 240a:a827::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f7:9c:d9:ea:f7:1d:31:f9:cd:17:a2:69:b0:53:8c:70:38:8b:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:02 2026 GMT Not After : Mar 3 06:21:02 2027 GMT Subject: CN=EF9910D43DA77D568A232CC4EB6B9C5CB8ACF8FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:83:dd:9d:7c:ba:47:8e:ed:76:45:df:4e:83: d0:59:a2:3b:52:b1:23:b3:3f:ff:5d:cb:15:e1:8c: 91:80:0f:1a:eb:91:43:be:f2:b2:23:8f:03:a3:9e: fc:d1:c1:e7:07:b5:b5:0e:34:f8:45:77:c9:69:ef: a8:14:1c:4f:0e:9a:f2:85:2c:f1:36:e9:87:8a:f9: 38:9b:5d:3d:5c:23:03:2a:63:73:b5:b8:0b:93:02: c2:24:cf:50:e3:cd:fd:eb:b5:df:49:70:7f:f9:76: 37:e8:97:a5:38:47:00:3d:0c:84:6f:47:74:b2:ac: 6e:41:86:f8:56:1c:94:be:53:fc:b8:39:6d:52:08: dc:99:91:02:af:41:f4:ef:61:89:2b:c2:62:4b:7b: 36:c6:48:af:15:27:d3:96:29:bd:8d:fd:d1:cc:fa: a1:11:24:fb:68:cf:1f:89:35:0d:d7:fc:c1:fc:d4: 5d:90:2a:b7:15:39:5a:71:b5:95:b7:40:92:12:c8: 01:82:c9:f6:2a:ae:4c:7f:7a:78:78:26:81:98:37: cb:2a:6f:06:e6:7e:d7:46:b6:0a:94:2b:a2:84:b5: 00:e1:cf:e5:c4:6a:d3:45:72:d9:3d:bf:f1:fc:c6: b8:ea:2b:84:45:07:fb:b9:97:f8:e1:8c:fe:5a:47: fd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:99:10:D4:3D:A7:7D:56:8A:23:2C:C4:EB:6B:9C:5C:B8:AC:F8:FD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a827::/32 Signature Algorithm: sha256WithRSAEncryption b9:68:65:d7:7f:5a:b4:0d:bb:cd:ae:75:7f:79:9e:86:55:de: 85:4c:8d:04:50:70:f1:f4:14:f6:96:c5:fc:15:9f:5f:78:2c: 08:ac:99:c1:a7:c4:c2:80:a4:5c:f4:61:e2:d1:5f:d6:28:9b: f2:84:db:fd:37:e1:00:77:82:14:f8:36:4f:64:19:d4:b5:f3: e0:e4:41:55:2b:0c:79:45:5a:b2:ad:4b:14:d4:6a:44:91:d6: 4c:92:9e:5c:a9:05:b8:19:bb:c8:cc:08:ad:9e:46:cf:7f:c1: 9a:e8:ae:a4:dc:32:68:15:e6:33:70:bb:bb:39:2d:4a:18:c9: ce:6a:da:e9:c3:ff:9e:8e:cc:31:84:66:7c:bb:67:ae:a3:ce: 0c:ac:9c:97:68:25:f8:fd:b6:52:3b:08:c0:c0:f6:a0:e6:2b: fa:9c:16:b5:05:c2:0e:25:81:9a:db:78:7a:10:78:d5:58:6f: 45:79:2b:74:01:07:98:36:f1:18:00:ec:8f:60:ea:8d:fa:ec: e0:9d:ac:6a:25:5a:42:64:b6:d4:47:45:e6:95:c5:84:18:0f: de:f9:4e:58:51:5a:a9:43:33:b9:8b:10:32:72:b4:53:74:45: 84:16:5b:10:ac:ba:ba:e5:bf:7a:0c:2e:a8:aa:ae:6e:c4:96: 1a:69:51:68 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUR/ec2er3HTH5zReiabBTjHA4i6kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwMloX DTI3MDMwMzA2MjEwMlowMzExMC8GA1UEAxMoRUY5OTEwRDQzREE3N0Q1NjhBMjMy Q0M0RUI2QjlDNUNCOEFDRjhGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6D3Z18ukeO7XZF306D0FmiO1KxI7M//13LFeGMkYAPGuuRQ77ysiOPA6Oe /NHB5we1tQ40+EV3yWnvqBQcTw6a8oUs8Tbph4r5OJtdPVwjAypjc7W4C5MCwiTP UOPN/eu130lwf/l2N+iXpThHAD0MhG9HdLKsbkGG+FYclL5T/Lg5bVII3JmRAq9B 9O9hiSvCYkt7NsZIrxUn05YpvY390cz6oREk+2jPH4k1Ddf8wfzUXZAqtxU5WnG1 lbdAkhLIAYLJ9iquTH96eHgmgZg3yypvBuZ+10a2CpQrooS1AOHP5cRq00Vy2T2/ 8fzGuOorhEUH+7mX+OGM/lpH/ZECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTvmRDU Pad9VoojLMTra5xcuKz4/TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDczNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qCcwDQYJKoZIhvcNAQELBQADggEBALloZdd/WrQNu82udX95noZV3oVMjQRQcPH0 FPaWxfwVn194LAismcGnxMKApFz0YeLRX9Yom/KE2/034QB3ghT4Nk9kGdS18+Dk QVUrDHlFWrKtSxTUakSR1kySnlypBbgZu8jMCK2eRs9/wZrorqTcMmgV5jNwu7s5 LUoYyc5q2unD/56OzDGEZny7Z66jzgysnJdoJfj9tlI7CMDA9qDmK/qcFrUFwg4l gZrbeHoQeNVYb0V5K3QBB5g28RgA7I9g6o367OCdrGolWkJkttRHReaVxYQYD975 TlhRWqlDM7mLEDJytFN0RYQWWxCsurrlv3oMLqiqrm7ElhppUWg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:25 2026 by rpki-client