$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144782.roa File: AS144782.roa (raw, json) Hash identifier: kj4W/+uWFZpGDen7Lsaw9/6Kc575V+RfCf+hmw0DhHY= Subject key identifier: 7B:C5:48:C9:D1:8F:C1:EB:C4:A0:8E:57:A1:F5:40:9B:4C:CB:48:C8 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 69026A625AA242ABDD67AB83FBBB2B3928D9DD82 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144782.roa Signing time: Wed 04 Mar 2026 06:21:44 +0000 ROA not before: Wed 04 Mar 2026 06:16:44 +0000 ROA not after: Wed 03 Mar 2027 06:21:44 +0000 asID: 144782 IP address blocks: 240a:a854::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:02:6a:62:5a:a2:42:ab:dd:67:ab:83:fb:bb:2b:39:28:d9:dd:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:44 2026 GMT Not After : Mar 3 06:21:44 2027 GMT Subject: CN=7BC548C9D18FC1EBC4A08E57A1F5409B4CCB48C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:86:76:b0:55:89:23:fe:63:77:8f:89:b8:2b: c3:22:2c:2e:f4:9f:2b:b1:ee:8d:67:02:a9:5b:4e: 15:0c:6c:71:36:22:0d:cb:7b:a8:a8:b6:de:6a:68: a5:6e:75:29:2d:ab:64:33:8c:71:c7:a6:df:90:be: a6:50:ab:b2:b4:2b:1d:46:47:4f:eb:38:9c:0c:94: 35:2f:b8:dc:37:cd:62:d0:e7:60:f6:c7:97:c7:ad: e9:63:0a:14:a6:48:f7:3d:77:ff:c7:22:70:26:1e: b3:9e:7b:a4:da:1e:4d:91:8b:f5:2a:6e:85:b2:f8: 76:48:64:62:0d:83:7e:ee:af:10:63:bb:4a:56:b1: 9c:2b:98:5e:f3:9f:3a:b4:e1:e3:23:f3:e6:85:05: 86:2a:b8:22:76:b7:97:e4:35:68:71:fc:99:9a:63: 5c:39:2b:aa:21:cc:cf:62:23:14:9c:e2:17:5a:88: 9a:52:0d:ae:85:0a:fe:27:f1:cc:a8:bd:8e:fe:3d: 4d:2e:d7:be:d0:86:b9:86:37:ef:f7:b3:b4:a3:0a: 69:dd:69:a7:89:79:9d:16:02:c0:9b:59:68:f7:8e: 54:83:5d:5e:08:3a:c7:af:df:36:c3:7a:e6:78:c1: a5:c3:78:58:8a:40:64:7e:7a:01:67:61:3f:6a:7e: ea:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C5:48:C9:D1:8F:C1:EB:C4:A0:8E:57:A1:F5:40:9B:4C:CB:48:C8 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144782.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a854::/32 Signature Algorithm: sha256WithRSAEncryption 95:e8:74:cf:83:46:8b:c1:65:99:d1:4d:30:a9:3a:08:8f:e4: 0c:cf:a5:27:51:36:5c:b0:2f:ce:9a:5b:8f:7a:b3:75:0f:60: 4b:6e:77:45:0b:83:aa:93:08:e1:d2:bf:b0:67:38:9e:6b:a6: da:16:14:4d:c7:90:ab:18:70:8a:9d:9f:40:d7:b2:12:a6:03: b2:76:5f:04:22:f7:f7:dc:10:90:98:ab:ac:3f:86:bc:1b:bf: 13:e3:8a:77:1e:9f:44:14:d5:cf:12:cc:65:b4:42:56:92:01: 07:f0:15:de:90:bc:70:f1:5b:f9:2e:22:9d:8e:68:eb:23:3f: e8:78:4f:82:9c:3f:31:e8:99:b5:c7:de:68:b0:eb:36:a2:d6: 4a:61:0e:7d:59:30:27:b9:ed:c9:5b:56:c9:0f:54:94:2a:c3: 70:51:b6:05:71:5a:fa:c6:e4:bd:e8:8e:73:4c:32:ba:c0:fd: b8:d0:b6:26:d5:2a:14:15:06:f3:98:22:9d:2a:42:50:1c:89: d8:ab:f7:4b:d0:51:c9:10:3e:02:80:4e:70:46:2f:3d:5b:08: b1:62:d8:26:b8:97:34:b9:a1:db:b9:79:b3:c4:46:39:c4:7d: bc:85:76:74:9f:c5:fb:69:eb:0a:d5:f5:7f:49:eb:cf:03:ec: ab:8e:c5:25 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUaQJqYlqiQqvdZ6uD+7srOSjZ3YIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0NFoX DTI3MDMwMzA2MjE0NFowMzExMC8GA1UEAxMoN0JDNTQ4QzlEMThGQzFFQkM0QTA4 RTU3QTFGNTQwOUI0Q0NCNDhDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmGdrBViSP+Y3ePibgrwyIsLvSfK7HujWcCqVtOFQxscTYiDct7qKi23mpo pW51KS2rZDOMccem35C+plCrsrQrHUZHT+s4nAyUNS+43DfNYtDnYPbHl8et6WMK FKZI9z13/8cicCYes557pNoeTZGL9SpuhbL4dkhkYg2Dfu6vEGO7SlaxnCuYXvOf OrTh4yPz5oUFhiq4Ina3l+Q1aHH8mZpjXDkrqiHMz2IjFJziF1qImlINroUK/ifx zKi9jv49TS7XvtCGuYY37/eztKMKad1pp4l5nRYCwJtZaPeOVINdXgg6x6/fNsN6 5njBpcN4WIpAZH56AWdhP2p+6o0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR7xUjJ 0Y/B68Sgjleh9UCbTMtIyDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc4Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qFQwDQYJKoZIhvcNAQELBQADggEBAJXodM+DRovBZZnRTTCpOgiP5AzPpSdRNlyw L86aW496s3UPYEtud0ULg6qTCOHSv7BnOJ5rptoWFE3HkKsYcIqdn0DXshKmA7J2 XwQi9/fcEJCYq6w/hrwbvxPjincen0QU1c8SzGW0QlaSAQfwFd6QvHDxW/kuIp2O aOsjP+h4T4KcPzHombXH3miw6zai1kphDn1ZMCe57clbVskPVJQqw3BRtgVxWvrG 5L3ojnNMMrrA/bjQtibVKhQVBvOYIp0qQlAcidir90vQUckQPgKATnBGLz1bCLFi 2Ca4lzS5odu5ebPERjnEfbyFdnSfxftp6wrV9X9J688D7KuOxSU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:53 2026 by rpki-client