$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144749.roa File: AS144749.roa (raw, json) Hash identifier: rLjYIi2jDZSTnbUMju9kOxi5IepGKNQ5ffwF2l2eGvM= Subject key identifier: 6B:4D:CD:F5:52:69:40:6A:0D:7B:C0:49:7D:9E:F5:55:05:50:B1:58 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0B99159FF1353245CDAE141AA52C594F6BE6364A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144749.roa Signing time: Wed 04 Mar 2026 06:21:55 +0000 ROA not before: Wed 04 Mar 2026 06:16:55 +0000 ROA not after: Wed 03 Mar 2027 06:21:55 +0000 asID: 144749 IP address blocks: 240a:a833::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:99:15:9f:f1:35:32:45:cd:ae:14:1a:a5:2c:59:4f:6b:e6:36:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:55 2026 GMT Not After : Mar 3 06:21:55 2027 GMT Subject: CN=6B4DCDF55269406A0D7BC0497D9EF5550550B158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bf:fa:b1:f8:4c:8c:f6:ca:a8:ba:75:77:0e: e7:0b:a3:c7:69:ab:ca:dc:d8:50:48:a0:ad:c9:09: 22:4d:0b:70:b5:e0:41:e1:f6:56:98:0f:03:cd:ee: bd:e0:1e:ef:57:89:0c:4f:5c:c6:ec:2a:34:20:39: ee:5a:67:be:cb:84:43:8d:93:28:90:8e:e6:55:39: ed:d4:22:fe:0d:e2:ca:c2:55:13:d6:c1:4f:c8:16: 50:ad:fe:1c:12:ed:5d:b1:53:f2:b6:6b:9e:ae:3e: 44:b8:59:9d:44:96:aa:25:1f:68:08:11:98:66:df: 4a:11:df:04:e1:ab:93:16:ab:1c:90:71:dd:ca:a1: bd:3c:ed:04:51:04:48:64:4c:32:2f:77:a7:5a:28: 27:59:5b:b6:5a:40:6c:7f:3d:46:ee:a9:47:c7:c7: 22:fb:5c:14:96:40:cc:f6:26:05:0d:e7:24:0f:4c: 7b:80:f2:d7:9d:a3:57:67:01:29:a1:26:7a:c0:86: 6d:d0:2f:22:da:f1:ba:8d:a8:c6:82:92:49:aa:02: 13:a2:a1:71:fb:7c:64:f2:a7:bd:ef:db:4d:2e:00: 59:cc:ad:c7:64:2d:6b:41:72:46:c8:ab:34:84:7c: 78:fb:60:23:83:d5:15:b3:5d:28:8d:ce:ef:52:4d: 9a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:4D:CD:F5:52:69:40:6A:0D:7B:C0:49:7D:9E:F5:55:05:50:B1:58 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144749.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a833::/32 Signature Algorithm: sha256WithRSAEncryption 93:ee:d8:cb:d1:f7:f6:ff:e0:fc:8e:da:dd:fb:0c:a1:bf:09: 88:b8:c5:e3:8d:a6:4a:c5:69:99:3c:24:07:05:3b:1f:19:f8: 59:65:a9:60:2f:6f:2f:ee:68:8d:73:12:9c:09:83:b9:a5:dc: f0:d0:23:da:71:d0:8a:ef:5a:90:e7:66:d7:09:28:b6:c5:ff: 84:de:c5:4c:25:fa:08:b6:f6:6c:ad:90:9f:9f:e3:7f:c6:3b: a7:d9:c7:a4:68:6a:d8:04:9e:8b:ae:7d:14:4e:65:d7:09:31: 0d:47:9c:82:0d:bf:19:99:3a:8e:be:5f:1b:81:c4:c2:25:3b: 54:39:a9:ea:09:0f:2d:ef:bd:33:88:be:16:92:8d:c3:0f:9b: 59:a3:86:df:a6:47:f2:c4:26:42:c2:67:21:4b:51:52:74:bc: 97:af:4e:36:05:ee:57:24:e7:68:bb:1e:97:2a:19:d3:36:0e: 20:93:97:95:b6:87:27:d6:9e:60:0d:9c:0f:bd:64:d7:ed:97: 0f:9a:35:3e:fc:48:44:9b:e9:83:bf:6b:ca:b3:93:d2:6e:28: 3c:e2:a3:17:c7:d5:76:c1:0e:81:8e:46:63:75:d7:ec:a8:55: 47:b8:63:40:9e:2a:5c:48:90:29:22:96:dc:82:9a:4e:9c:e5: a7:ab:64:ab -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUC5kVn/E1MkXNrhQapSxZT2vmNkowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1NVoX DTI3MDMwMzA2MjE1NVowMzExMC8GA1UEAxMoNkI0RENERjU1MjY5NDA2QTBEN0JD MDQ5N0Q5RUY1NTUwNTUwQjE1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANS/+rH4TIz2yqi6dXcO5wujx2mrytzYUEigrckJIk0LcLXgQeH2VpgPA83u veAe71eJDE9cxuwqNCA57lpnvsuEQ42TKJCO5lU57dQi/g3iysJVE9bBT8gWUK3+ HBLtXbFT8rZrnq4+RLhZnUSWqiUfaAgRmGbfShHfBOGrkxarHJBx3cqhvTztBFEE SGRMMi93p1ooJ1lbtlpAbH89Ru6pR8fHIvtcFJZAzPYmBQ3nJA9Me4Dy152jV2cB KaEmesCGbdAvItrxuo2oxoKSSaoCE6Khcft8ZPKnve/bTS4AWcytx2Qta0FyRsir NIR8ePtgI4PVFbNdKI3O71JNmqsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRrTc31 UmlAag17wEl9nvVVBVCxWDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc0OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qDMwDQYJKoZIhvcNAQELBQADggEBAJPu2MvR9/b/4PyO2t37DKG/CYi4xeONpkrF aZk8JAcFOx8Z+FllqWAvby/uaI1zEpwJg7ml3PDQI9px0IrvWpDnZtcJKLbF/4Te xUwl+gi29mytkJ+f43/GO6fZx6RoatgEnouufRROZdcJMQ1HnIINvxmZOo6+XxuB xMIlO1Q5qeoJDy3vvTOIvhaSjcMPm1mjht+mR/LEJkLCZyFLUVJ0vJevTjYF7lck 52i7HpcqGdM2DiCTl5W2hyfWnmANnA+9ZNftlw+aNT78SESb6YO/a8qzk9JuKDzi oxfH1XbBDoGORmN11+yoVUe4Y0CeKlxIkCkiltyCmk6c5aerZKs= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:14 2026 by rpki-client