$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144768.roa File: AS144768.roa (raw, json) Hash identifier: EvqFftp84rMppdbJNVGJK7oVZxwOviJVkUNpzm8up9E= Subject key identifier: 68:1E:A2:D2:75:B2:49:EB:89:55:AB:91:AE:E6:21:46:82:25:79:F1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0CA0D413120FE6FB92C838E6F430011B94075EBD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144768.roa Signing time: Wed 04 Mar 2026 06:19:42 +0000 ROA not before: Wed 04 Mar 2026 06:14:42 +0000 ROA not after: Wed 03 Mar 2027 06:19:42 +0000 asID: 144768 IP address blocks: 240a:a846::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a0:d4:13:12:0f:e6:fb:92:c8:38:e6:f4:30:01:1b:94:07:5e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:42 2026 GMT Not After : Mar 3 06:19:42 2027 GMT Subject: CN=681EA2D275B249EB8955AB91AEE62146822579F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:70:2f:2a:e3:5f:43:16:47:4b:e4:53:5e:1e: 91:19:e4:bd:fc:35:dd:79:0c:b5:29:35:1d:7f:7e: 4d:8a:1e:22:59:c6:30:b5:6f:81:a9:b1:c9:74:27: 1c:41:20:83:8b:78:c7:9e:50:bc:fc:3c:15:68:44: 02:9a:c8:0e:d8:3c:a6:80:2d:ed:2a:46:40:70:ea: 18:65:67:a8:aa:04:51:43:66:33:79:e6:5e:de:e5: 55:06:60:8a:11:67:25:77:a6:5b:14:54:48:a1:f4: 0a:cf:6c:0e:51:7d:8d:76:13:c0:22:0a:8f:b0:47: a3:a4:e1:1a:6c:c1:bd:7a:8e:3b:4e:67:6d:d6:80: 84:11:39:68:c1:47:da:02:74:2b:99:5f:6d:8c:8f: e6:7e:83:38:2e:e9:10:0c:38:70:5f:9c:7c:46:19: 2f:5c:33:41:df:d8:d6:75:7e:54:9e:46:c7:48:a6: 20:87:fe:cc:d9:2a:2e:6d:41:16:72:06:4e:a8:50: d4:6d:ba:76:1d:94:5a:30:22:19:b2:8b:74:b3:03: 7e:ee:67:fb:a0:1a:75:b4:86:88:9e:a3:fb:ca:06: 59:3f:1a:21:12:5e:f3:c3:d7:fc:32:81:96:cd:ea: 80:08:9f:1c:22:f8:fe:3b:89:77:ea:d6:bb:89:0e: 87:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:1E:A2:D2:75:B2:49:EB:89:55:AB:91:AE:E6:21:46:82:25:79:F1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144768.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a846::/32 Signature Algorithm: sha256WithRSAEncryption 28:13:23:f4:93:e8:14:0d:ff:82:59:4f:ea:e7:b8:02:69:6e: 1e:74:f7:ee:1d:81:cc:0e:bd:a4:60:41:89:69:1a:73:e8:91: 08:ff:1f:fd:c2:d2:c2:26:c4:4e:33:1e:a6:15:88:a5:79:a7: 44:ed:6c:24:4c:4d:f9:b7:c2:99:c5:14:66:95:d1:46:b1:21: b2:9e:1b:1c:9b:5f:22:ce:ae:d9:37:aa:94:e8:c2:9f:dd:57: a2:0f:78:8e:a2:ab:dc:23:98:e7:05:14:32:3a:95:03:be:d4: 57:e4:10:cd:67:87:a2:71:d2:a5:f0:99:0f:a0:a2:94:07:77: 64:20:13:dd:78:48:3c:27:12:bc:4f:18:03:65:b5:90:60:77: 79:cb:6f:8c:4f:6c:c3:f4:60:e4:54:d0:ce:c6:99:28:4f:0b: ab:42:c3:4b:2d:25:4c:b8:e4:ca:2c:31:9e:d5:cd:ad:63:1b: a5:a0:11:af:58:91:c8:ba:15:98:4e:18:0a:5c:5d:f8:92:6c: 73:25:46:03:a2:ac:b9:06:f7:8d:d4:da:14:d4:d7:1a:81:ca: 4d:cb:12:64:85:b0:45:80:cc:5b:f5:05:a2:e2:6a:73:4c:d7: 70:14:57:1f:bf:a7:0a:d3:3d:6f:1d:34:94:21:14:e8:ac:54: 68:82:c5:8f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDKDUExIP5vuSyDjm9DABG5QHXr0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0MloX DTI3MDMwMzA2MTk0MlowMzExMC8GA1UEAxMoNjgxRUEyRDI3NUIyNDlFQjg5NTVB QjkxQUVFNjIxNDY4MjI1NzlGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFwLyrjX0MWR0vkU14ekRnkvfw13XkMtSk1HX9+TYoeIlnGMLVvgamxyXQn HEEgg4t4x55QvPw8FWhEAprIDtg8poAt7SpGQHDqGGVnqKoEUUNmM3nmXt7lVQZg ihFnJXemWxRUSKH0Cs9sDlF9jXYTwCIKj7BHo6ThGmzBvXqOO05nbdaAhBE5aMFH 2gJ0K5lfbYyP5n6DOC7pEAw4cF+cfEYZL1wzQd/Y1nV+VJ5Gx0imIIf+zNkqLm1B FnIGTqhQ1G26dh2UWjAiGbKLdLMDfu5n+6AadbSGiJ6j+8oGWT8aIRJe88PX/DKB ls3qgAifHCL4/juJd+rWu4kOh7ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRoHqLS dbJJ64lVq5Gu5iFGgiV58TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc2OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qEYwDQYJKoZIhvcNAQELBQADggEBACgTI/ST6BQN/4JZT+rnuAJpbh509+4dgcwO vaRgQYlpGnPokQj/H/3C0sImxE4zHqYViKV5p0TtbCRMTfm3wpnFFGaV0UaxIbKe GxybXyLOrtk3qpTowp/dV6IPeI6iq9wjmOcFFDI6lQO+1FfkEM1nh6Jx0qXwmQ+g opQHd2QgE914SDwnErxPGANltZBgd3nLb4xPbMP0YORU0M7GmShPC6tCw0stJUy4 5MosMZ7Vza1jG6WgEa9Ykci6FZhOGApcXfiSbHMlRgOirLkG943U2hTU1xqByk3L EmSFsEWAzFv1BaLianNM13AUVx+/pwrTPW8dNJQhFOisVGiCxY8= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:40 2026 by rpki-client