$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144760.roa File: AS144760.roa (raw, json) Hash identifier: AMz+YeeUnINoN5ZVgZpts9zx0Pq36CdTHfLW0WPAwtk= Subject key identifier: 14:5C:80:9A:2B:38:01:67:34:A0:EF:9C:5B:97:18:36:D8:B7:90:17 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3657915E973E65AFC954598F7577F5B7F3554150 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144760.roa Signing time: Wed 04 Mar 2026 06:21:06 +0000 ROA not before: Wed 04 Mar 2026 06:16:06 +0000 ROA not after: Wed 03 Mar 2027 06:21:06 +0000 asID: 144760 IP address blocks: 240a:a83e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:57:91:5e:97:3e:65:af:c9:54:59:8f:75:77:f5:b7:f3:55:41:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:06 2026 GMT Not After : Mar 3 06:21:06 2027 GMT Subject: CN=145C809A2B38016734A0EF9C5B971836D8B79017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:04:a6:39:ab:45:7a:55:03:90:5f:d0:94:2b: db:3d:97:ed:b4:e9:b2:06:de:eb:54:c7:96:86:af: 92:3b:5c:f5:8c:f9:5b:3a:71:85:ae:f3:b8:c1:84: 82:7d:47:9a:17:62:08:ff:e6:31:99:0a:2a:ae:79: c2:53:b7:55:58:bd:ac:6f:5c:d1:bf:11:c0:f5:43: 19:0c:fa:5b:62:fa:8b:83:a7:7a:fe:20:28:1e:5b: 31:f9:a4:f7:ea:bc:17:7c:70:a4:16:1e:5d:c6:74: 89:bd:64:c8:bb:89:d6:b7:59:f1:cf:70:1e:04:67: a5:0c:0d:6e:e3:6e:f3:18:e1:ce:dc:49:f3:f7:51: 81:75:b9:58:22:ac:31:97:f2:67:ad:c0:ce:ab:7b: 6a:17:ab:af:11:a2:28:76:38:0b:b2:51:dd:8e:b5: 9b:0c:20:be:51:c3:25:e4:06:4a:50:4d:e9:3a:8d: 59:1c:3c:3e:d4:09:18:a1:c2:a8:62:1a:d1:c4:d1: 49:ec:ee:43:b6:36:ec:0d:11:fe:4a:68:b8:e8:33: 80:24:b5:23:24:dc:47:56:96:f6:50:5d:60:b1:3e: b4:3a:00:39:58:a3:41:5d:3b:16:c4:17:8d:39:08: fd:51:49:03:eb:ba:c0:e2:64:b0:cc:50:ec:d0:60: 5c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5C:80:9A:2B:38:01:67:34:A0:EF:9C:5B:97:18:36:D8:B7:90:17 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144760.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a83e::/32 Signature Algorithm: sha256WithRSAEncryption 09:47:d3:0d:f7:ee:2f:83:fe:bc:d3:9c:6a:ac:46:30:88:5d: 66:ed:29:7c:95:d3:31:5f:ad:92:ee:1c:6c:de:c8:80:06:ec: 3f:d6:3b:f1:1e:83:e2:67:1f:41:1c:a2:4d:05:cd:9c:31:21: 9c:cf:0a:0c:50:14:69:5f:48:88:c0:91:8e:a6:ed:d5:3d:f1: 78:14:18:d5:5d:ac:57:5c:e3:01:8d:96:58:80:be:30:29:79: 53:a3:7a:e3:4c:76:6f:2f:d3:01:ce:ca:27:35:f9:80:81:b8: bb:af:5e:23:50:7d:85:81:2a:ad:b0:18:2a:ca:2d:71:9a:94: b4:6a:a2:2c:6f:84:31:94:a8:c1:a4:76:c9:4c:64:50:38:8d: 10:a6:18:86:fc:d3:44:bc:12:07:70:ae:52:3c:b6:71:7b:75: 06:3a:b3:d8:2d:b5:28:cb:9f:5b:7e:65:19:b1:77:ea:af:d3: 7f:73:4d:2f:d8:5f:89:7e:77:29:bd:98:3d:46:ae:fa:3b:d1: b6:0e:29:4f:e5:4d:da:32:21:03:7e:ab:b4:49:5f:2a:a9:c4: 15:ce:cb:03:a9:0d:d1:75:e7:bb:76:9e:cf:c3:51:00:78:7e: 59:e1:af:86:ab:b1:01:3b:05:07:93:93:18:c8:36:e0:fd:f0: fe:20:80:30 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNleRXpc+Za/JVFmPdXf1t/NVQVAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYwNloX DTI3MDMwMzA2MjEwNlowMzExMC8GA1UEAxMoMTQ1QzgwOUEyQjM4MDE2NzM0QTBF RjlDNUI5NzE4MzZEOEI3OTAxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMcEpjmrRXpVA5Bf0JQr2z2X7bTpsgbe61THloavkjtc9Yz5Wzpxha7zuMGE gn1HmhdiCP/mMZkKKq55wlO3VVi9rG9c0b8RwPVDGQz6W2L6i4Onev4gKB5bMfmk 9+q8F3xwpBYeXcZ0ib1kyLuJ1rdZ8c9wHgRnpQwNbuNu8xjhztxJ8/dRgXW5WCKs MZfyZ63Azqt7aherrxGiKHY4C7JR3Y61mwwgvlHDJeQGSlBN6TqNWRw8PtQJGKHC qGIa0cTRSezuQ7Y27A0R/kpouOgzgCS1IyTcR1aW9lBdYLE+tDoAOVijQV07FsQX jTkI/VFJA+u6wOJksMxQ7NBgXNECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQUXICa KzgBZzSg75xblxg22LeQFzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qD4wDQYJKoZIhvcNAQELBQADggEBAAlH0w337i+D/rzTnGqsRjCIXWbtKXyV0zFf rZLuHGzeyIAG7D/WO/Eeg+JnH0Ecok0FzZwxIZzPCgxQFGlfSIjAkY6m7dU98XgU GNVdrFdc4wGNlliAvjApeVOjeuNMdm8v0wHOyic1+YCBuLuvXiNQfYWBKq2wGCrK LXGalLRqoixvhDGUqMGkdslMZFA4jRCmGIb800S8EgdwrlI8tnF7dQY6s9gttSjL n1t+ZRmxd+qv039zTS/YX4l+dym9mD1Grvo70bYOKU/lTdoyIQN+q7RJXyqpxBXO ywOpDdF157t2ns/DUQB4flnhr4arsQE7BQeTkxjINuD98P4ggDA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:41 2026 by rpki-client