$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144764.roa File: AS144764.roa (raw, json) Hash identifier: 1IEn6f+leikXkThf6vEVnJWxBZUG37hVyxVRfttvE3w= Subject key identifier: 06:A7:57:A6:64:A7:54:B0:70:98:87:DE:4E:CB:DF:32:D4:A7:80:03 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 46561B5D07BF9F88C3ED3318B746B7DC169C409B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144764.roa Signing time: Wed 04 Mar 2026 06:22:33 +0000 ROA not before: Wed 04 Mar 2026 06:17:33 +0000 ROA not after: Wed 03 Mar 2027 06:22:33 +0000 asID: 144764 IP address blocks: 240a:a842::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:56:1b:5d:07:bf:9f:88:c3:ed:33:18:b7:46:b7:dc:16:9c:40:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:33 2026 GMT Not After : Mar 3 06:22:33 2027 GMT Subject: CN=06A757A664A754B0709887DE4ECBDF32D4A78003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0d:a8:98:f7:5c:18:5a:0f:f0:58:b8:1b:00: 56:be:d4:09:11:73:78:fc:b4:30:f9:9c:b2:a4:12: 97:71:89:ad:af:8c:6f:c6:af:42:c1:9f:e5:de:89: 46:56:7e:ce:31:b0:72:aa:01:de:c4:90:a9:12:01: 8e:cf:90:17:13:93:4e:8c:dc:b2:f4:d8:b1:5a:c7: 69:3b:dd:a6:8e:71:42:b5:7e:40:60:0a:4f:c8:5f: 9d:dc:17:06:55:c0:a1:2b:f3:11:91:70:57:04:b3: c8:3e:79:db:be:26:30:5b:a6:df:e6:4f:d4:9c:40: 4d:9f:55:88:84:47:2a:04:0f:5f:08:a9:0c:5c:80: 78:84:d7:b6:f3:f2:7b:a1:43:89:fa:90:c8:01:04: e6:42:ad:4e:7b:23:a0:6a:ef:1c:c2:63:d6:86:8c: 6d:41:d7:a5:35:91:5a:2f:c3:d1:33:0e:60:c3:53: 29:8c:62:f0:35:2a:e3:e7:e8:18:f8:e2:4e:5e:4e: 08:8e:e9:33:a0:5f:21:37:5f:22:54:f1:c2:4c:a9: 12:c3:a3:49:d6:ae:cb:82:fc:55:cc:f7:5b:31:fe: e5:e0:5b:1e:7c:db:48:e3:4a:c5:71:2c:2b:0a:32: 4b:25:e3:13:11:4c:09:3d:8c:6c:ac:c7:6e:fe:25: f2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A7:57:A6:64:A7:54:B0:70:98:87:DE:4E:CB:DF:32:D4:A7:80:03 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144764.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a842::/32 Signature Algorithm: sha256WithRSAEncryption 82:50:ae:96:64:88:82:5e:a3:3f:9a:4b:e0:18:18:05:14:82: 20:dc:5c:f0:13:3d:01:0d:c9:92:d7:60:91:b0:c7:b4:f2:c9: 7e:4e:ef:a1:8b:a4:6b:34:b9:df:1c:4c:49:be:53:21:22:31: 57:06:e9:c7:45:b2:57:1f:c3:c5:8f:83:37:e2:ae:10:ef:97: a5:b4:b9:6d:ac:02:d7:b8:93:1f:80:ae:eb:1a:c1:d7:dc:49: b0:d4:65:b2:14:1f:73:cc:f1:fe:2d:f4:db:93:10:67:32:21: c7:e4:4c:f3:af:72:39:55:c3:25:de:63:98:34:65:a7:4c:81: d3:dc:5e:64:ee:1d:f7:cb:e1:e4:14:e9:80:4d:c6:12:2c:e0: aa:90:ca:97:ad:2a:7b:bb:30:61:fd:0e:ab:b9:96:83:d3:e8: 4d:83:f4:40:a0:e5:1b:21:4b:1b:40:0e:cf:4a:68:8d:f3:e4: a9:d2:12:04:19:2d:c4:0c:4b:43:7d:a2:2e:c2:13:b1:59:7c: c5:4c:b2:df:fc:ee:ce:14:b6:5e:a3:85:4a:eb:4e:79:bd:44: f4:6a:86:8c:df:13:a4:ff:a3:4b:40:dc:e0:29:07:fc:f7:e0: bd:bd:1e:01:aa:91:97:27:08:95:9e:07:d9:d5:7f:93:c1:5f: 9f:71:8c:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIURlYbXQe/n4jD7TMYt0a33BacQJswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczM1oX DTI3MDMwMzA2MjIzM1owMzExMC8GA1UEAxMoMDZBNzU3QTY2NEE3NTRCMDcwOTg4 N0RFNEVDQkRGMzJENEE3ODAwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQNqJj3XBhaD/BYuBsAVr7UCRFzePy0MPmcsqQSl3GJra+Mb8avQsGf5d6J RlZ+zjGwcqoB3sSQqRIBjs+QFxOTTozcsvTYsVrHaTvdpo5xQrV+QGAKT8hfndwX BlXAoSvzEZFwVwSzyD55274mMFum3+ZP1JxATZ9ViIRHKgQPXwipDFyAeITXtvPy e6FDifqQyAEE5kKtTnsjoGrvHMJj1oaMbUHXpTWRWi/D0TMOYMNTKYxi8DUq4+fo GPjiTl5OCI7pM6BfITdfIlTxwkypEsOjSdauy4L8Vcz3WzH+5eBbHnzbSONKxXEs KwoySyXjExFMCT2MbKzHbv4l8skCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQGp1em ZKdUsHCYh95Oy98y1KeAAzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qEIwDQYJKoZIhvcNAQELBQADggEBAIJQrpZkiIJeoz+aS+AYGAUUgiDcXPATPQEN yZLXYJGwx7TyyX5O76GLpGs0ud8cTEm+UyEiMVcG6cdFslcfw8WPgzfirhDvl6W0 uW2sAte4kx+ArusawdfcSbDUZbIUH3PM8f4t9NuTEGcyIcfkTPOvcjlVwyXeY5g0 ZadMgdPcXmTuHffL4eQU6YBNxhIs4KqQypetKnu7MGH9Dqu5loPT6E2D9ECg5Rsh SxtADs9KaI3z5KnSEgQZLcQMS0N9oi7CE7FZfMVMst/87s4Utl6jhUrrTnm9RPRq hozfE6T/o0tA3OApB/z34L29HgGqkZcnCJWeB9nVf5PBX59xjGY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:50 2026 by rpki-client