$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144772.roa File: AS144772.roa (raw, json) Hash identifier: qmuzLfDz20BiN6CPyI4TopxnDmpZVmjjytqQoS3AJNA= Subject key identifier: AD:6C:39:91:A2:01:80:0F:8A:7C:7F:05:79:54:5A:D8:AA:71:E4:D5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2C21319CAA2697E7DA2E9FA3A32F8D0F45D7DFEB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144772.roa Signing time: Wed 04 Mar 2026 06:21:38 +0000 ROA not before: Wed 04 Mar 2026 06:16:38 +0000 ROA not after: Wed 03 Mar 2027 06:21:38 +0000 asID: 144772 IP address blocks: 240a:a84a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:21:31:9c:aa:26:97:e7:da:2e:9f:a3:a3:2f:8d:0f:45:d7:df:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:38 2026 GMT Not After : Mar 3 06:21:38 2027 GMT Subject: CN=AD6C3991A201800F8A7C7F0579545AD8AA71E4D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e8:11:ea:68:87:1b:76:c6:4f:76:73:98:fe: ea:e5:94:d3:a9:17:a2:14:55:fe:07:6c:1d:a6:0a: 74:13:f8:09:36:82:37:76:89:1c:49:d5:8e:96:b2: e0:f1:b1:6e:a3:fd:ac:8b:1b:c0:0b:84:22:3f:be: 3b:3e:a7:8a:fa:bc:e4:ae:fe:01:0c:90:15:39:90: f8:e4:30:46:40:56:98:ac:79:d0:c1:53:7f:2d:b7: 22:5a:fd:21:a3:cb:59:e3:e1:5b:0a:4b:e4:2a:cd: df:d0:c3:46:12:84:c8:65:ac:d1:f6:a0:49:2c:8b: ff:8c:ff:51:87:90:4d:07:50:97:17:09:00:d0:5e: a1:14:2e:24:5b:48:f8:b8:46:95:9f:a9:65:6d:52: a4:b3:98:5d:48:7a:d5:24:6e:ca:a6:ac:fd:89:d0: 90:14:a9:23:ea:a0:96:f2:70:2e:2c:f8:65:3e:c9: 09:1c:c9:0c:16:36:24:7d:c3:b0:d8:ea:a4:1c:9a: 4d:fb:07:a6:27:e1:e0:5e:13:ec:7f:2b:f0:59:f5: 05:9c:0f:3d:20:0b:a0:d3:8d:72:62:a3:b7:2a:68: 28:32:3c:b1:b3:4d:bf:69:9b:12:b5:14:f7:fd:b6: 5c:69:67:be:b2:cf:31:9a:82:07:c3:5e:ea:d2:2f: 52:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:6C:39:91:A2:01:80:0F:8A:7C:7F:05:79:54:5A:D8:AA:71:E4:D5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144772.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a84a::/32 Signature Algorithm: sha256WithRSAEncryption 7b:28:54:cc:27:19:ed:8b:dd:17:e7:45:79:8b:52:fd:b7:d5: 1b:4f:2a:0d:cc:8b:c8:eb:43:47:c4:91:69:cc:92:9e:1a:b8: 3e:a5:b5:32:b7:0c:fb:a2:c4:ba:45:b0:a1:9a:91:22:cb:af: 2c:e3:8c:7a:69:5a:a0:07:2e:62:55:87:4b:57:40:24:bb:11: e2:6d:ae:e8:68:21:5d:c8:e6:a1:d5:f9:da:46:24:77:21:38: 3d:6b:02:8e:71:6e:ed:9d:71:ec:00:06:19:11:35:97:1a:dd: 8f:1a:b8:af:8d:9a:6a:6c:c0:10:ec:16:d9:0f:1c:b0:a6:ec: 2d:bd:51:9b:79:f4:8a:49:3c:e4:58:cd:f5:38:ee:56:cf:02: c2:c2:6c:df:48:df:14:e8:67:ec:20:f7:b0:c0:09:f5:13:95: f5:c6:b3:8d:c0:a4:01:56:01:5b:48:6b:5d:05:de:48:68:0f: 5c:5e:7f:03:dd:28:bd:67:f0:ce:d6:1f:ee:04:a6:1f:80:b9: 43:71:22:a7:cc:59:f8:55:e8:a2:87:7b:f2:86:2c:ae:ff:99: 52:99:65:3f:4e:59:cd:e4:b1:80:e0:5a:bc:4c:70:1f:1f:56: 54:44:ca:4f:64:4f:64:e8:82:66:5d:1d:ec:ae:91:41:8e:b6: 2a:89:26:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULCExnKoml+faLp+joy+ND0XX3+swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYzOFoX DTI3MDMwMzA2MjEzOFowMzExMC8GA1UEAxMoQUQ2QzM5OTFBMjAxODAwRjhBN0M3 RjA1Nzk1NDVBRDhBQTcxRTRENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOToEepohxt2xk92c5j+6uWU06kXohRV/gdsHaYKdBP4CTaCN3aJHEnVjpay 4PGxbqP9rIsbwAuEIj++Oz6nivq85K7+AQyQFTmQ+OQwRkBWmKx50MFTfy23Ilr9 IaPLWePhWwpL5CrN39DDRhKEyGWs0fagSSyL/4z/UYeQTQdQlxcJANBeoRQuJFtI +LhGlZ+pZW1SpLOYXUh61SRuyqas/YnQkBSpI+qglvJwLiz4ZT7JCRzJDBY2JH3D sNjqpByaTfsHpifh4F4T7H8r8Fn1BZwPPSALoNONcmKjtypoKDI8sbNNv2mbErUU 9/22XGlnvrLPMZqCB8Ne6tIvUvcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBStbDmR ogGAD4p8fwV5VFrYqnHk1TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc3Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qEowDQYJKoZIhvcNAQELBQADggEBAHsoVMwnGe2L3RfnRXmLUv231RtPKg3Mi8jr Q0fEkWnMkp4auD6ltTK3DPuixLpFsKGakSLLryzjjHppWqAHLmJVh0tXQCS7EeJt ruhoIV3I5qHV+dpGJHchOD1rAo5xbu2dcewABhkRNZca3Y8auK+NmmpswBDsFtkP HLCm7C29UZt59IpJPORYzfU47lbPAsLCbN9I3xToZ+wg97DACfUTlfXGs43ApAFW AVtIa10F3khoD1xefwPdKL1n8M7WH+4Eph+AuUNxIqfMWfhV6KKHe/KGLK7/mVKZ ZT9OWc3ksYDgWrxMcB8fVlREyk9kT2TogmZdHeyukUGOtiqJJnY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:10 2026 by rpki-client