$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144765.roa File: AS144765.roa (raw, json) Hash identifier: ubJVxcz4dHsVjrMJuNVU59pV8fGrPr/4x+gCh1EleT8= Subject key identifier: B8:C1:DF:39:98:14:3E:AC:06:B9:13:DE:27:B7:61:18:37:18:EE:87 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2487482D037B652592E90A4C7403AB10276959B9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144765.roa Signing time: Wed 04 Mar 2026 06:19:18 +0000 ROA not before: Wed 04 Mar 2026 06:14:18 +0000 ROA not after: Wed 03 Mar 2027 06:19:18 +0000 asID: 144765 IP address blocks: 240a:a843::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:87:48:2d:03:7b:65:25:92:e9:0a:4c:74:03:ab:10:27:69:59:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:18 2026 GMT Not After : Mar 3 06:19:18 2027 GMT Subject: CN=B8C1DF3998143EAC06B913DE27B761183718EE87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8e:fd:1b:f4:6c:4f:30:25:f0:22:a7:7d:29: 54:ce:27:45:f0:91:a7:25:05:e1:d0:65:54:5f:e2: 6f:2e:b7:65:8d:a5:0e:72:f8:34:9e:b2:4b:0b:a9: 34:ac:52:ce:18:dc:d7:bf:ea:37:c0:16:89:30:ab: e6:4c:e9:7d:1d:3d:da:ff:2e:ef:67:51:a7:9f:a6: 9a:b5:5c:73:76:e3:83:c5:e8:3b:bf:6e:bb:ac:90: ff:cd:6d:68:be:42:91:ef:25:1d:2d:e0:2c:5b:41: cc:c6:8e:3d:59:23:1f:a3:2a:f4:4b:c4:24:53:20: a2:e1:8d:9d:20:32:90:e0:2e:92:96:e9:db:a4:54: 6d:a2:30:5d:25:3e:01:d8:44:fc:8a:a8:0e:90:48: d9:05:f1:d4:43:61:b8:13:be:ea:a5:61:f9:a7:8d: 34:fb:da:2c:f8:75:2b:75:78:90:06:97:2c:05:a6: 42:5c:80:fc:43:16:03:42:43:52:77:60:93:be:ad: fd:e4:43:96:6c:1d:ea:7c:91:fc:71:c1:d2:19:75: e0:9c:e0:3b:7b:00:c5:0e:b0:76:ba:5f:f3:71:e5: 9d:0c:86:71:2f:56:e3:06:eb:7f:3e:ff:f4:9f:15: 62:00:0a:37:2c:af:92:63:49:0b:84:72:c0:22:fe: 9e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C1:DF:39:98:14:3E:AC:06:B9:13:DE:27:B7:61:18:37:18:EE:87 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144765.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a843::/32 Signature Algorithm: sha256WithRSAEncryption 57:dc:c9:5c:45:e2:07:35:7e:a6:ff:ab:7e:a6:e9:ca:fc:50: 4e:cb:db:70:b7:c8:ce:f8:aa:26:d8:3e:64:6d:5a:18:dd:b1: 93:1f:b9:49:f8:08:20:4b:c4:c2:62:9d:4f:31:3b:dd:ef:ce: 49:c9:63:08:ee:7c:e7:f1:cb:48:e7:8f:99:91:28:20:1e:a4: 8f:f3:a4:d7:ba:e1:61:18:a0:3b:3d:ed:82:33:b1:46:9b:ce: 4c:6b:02:6a:73:a9:aa:1c:94:29:ef:bf:09:ce:b9:d6:f8:dc: 45:99:64:0d:9f:17:15:1a:55:9b:b5:5c:b4:ff:ba:6c:3f:c1: 6f:74:37:2e:ab:c2:30:7e:81:91:6e:03:b4:cf:41:a5:3b:19: bf:db:bf:34:1c:ee:13:1d:fe:71:72:ab:02:a0:07:58:f4:7a: 1a:00:8c:59:8b:3e:9c:e2:55:ac:21:1c:81:06:fb:fe:7a:9b: 68:a9:55:a9:c2:8a:e6:c1:01:63:d4:72:94:71:61:ba:60:8e: 68:61:f2:fa:07:c9:13:59:3b:b8:a3:3e:3e:2c:d3:85:dd:28: fa:95:ca:c6:b5:ce:0c:e8:df:1b:ab:42:ad:56:8e:72:b3:5d: 66:89:ba:bd:b7:8f:41:0e:cd:a7:f2:30:73:ae:6c:47:d7:14: 51:69:a2:cf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJIdILQN7ZSWS6QpMdAOrECdpWbkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQxOFoX DTI3MDMwMzA2MTkxOFowMzExMC8GA1UEAxMoQjhDMURGMzk5ODE0M0VBQzA2Qjkx M0RFMjdCNzYxMTgzNzE4RUU4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOqO/Rv0bE8wJfAip30pVM4nRfCRpyUF4dBlVF/iby63ZY2lDnL4NJ6ySwup NKxSzhjc17/qN8AWiTCr5kzpfR092v8u72dRp5+mmrVcc3bjg8XoO79uu6yQ/81t aL5Cke8lHS3gLFtBzMaOPVkjH6Mq9EvEJFMgouGNnSAykOAukpbp26RUbaIwXSU+ AdhE/IqoDpBI2QXx1ENhuBO+6qVh+aeNNPvaLPh1K3V4kAaXLAWmQlyA/EMWA0JD Undgk76t/eRDlmwd6nyR/HHB0hl14JzgO3sAxQ6wdrpf83HlnQyGcS9W4wbrfz7/ 9J8VYgAKNyyvkmNJC4RywCL+njMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS4wd85 mBQ+rAa5E94nt2EYNxjuhzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc2NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qEMwDQYJKoZIhvcNAQELBQADggEBAFfcyVxF4gc1fqb/q36m6cr8UE7L23C3yM74 qibYPmRtWhjdsZMfuUn4CCBLxMJinU8xO93vzknJYwjufOfxy0jnj5mRKCAepI/z pNe64WEYoDs97YIzsUabzkxrAmpzqaoclCnvvwnOudb43EWZZA2fFxUaVZu1XLT/ umw/wW90Ny6rwjB+gZFuA7TPQaU7Gb/bvzQc7hMd/nFyqwKgB1j0ehoAjFmLPpzi VawhHIEG+/56m2ipVanCiubBAWPUcpRxYbpgjmhh8voHyRNZO7ijPj4s04XdKPqV ysa1zgzo3xurQq1WjnKzXWaJur23j0EOzafyMHOubEfXFFFpos8= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:38 2026 by rpki-client