$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144791.roa File: AS144791.roa (raw, json) Hash identifier: GKgOJImqeiM7n2DILInZKdkLiBInwtA2uTwChlwRMzo= Subject key identifier: 63:77:AC:50:57:54:6C:26:43:60:7B:82:DE:C0:5C:86:A8:BF:34:19 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4A634ADD74007820792546DF869D30BBC22B104D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144791.roa Signing time: Wed 04 Mar 2026 06:22:38 +0000 ROA not before: Wed 04 Mar 2026 06:17:38 +0000 ROA not after: Wed 03 Mar 2027 06:22:38 +0000 asID: 144791 IP address blocks: 240a:a85d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:63:4a:dd:74:00:78:20:79:25:46:df:86:9d:30:bb:c2:2b:10:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:38 2026 GMT Not After : Mar 3 06:22:38 2027 GMT Subject: CN=6377AC5057546C2643607B82DEC05C86A8BF3419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b6:d3:0d:f5:9f:d6:2f:5c:8d:26:15:73:ba: 9a:67:c9:49:d5:97:ae:fa:78:17:11:a0:a0:9c:49: 87:18:a9:2d:9e:92:29:d6:56:03:48:bb:09:fa:c1: ad:89:3d:51:95:58:3b:77:2f:f6:7c:1e:e0:b1:6c: c2:8d:a9:ee:dc:90:5a:9d:12:c8:b0:87:5a:70:ff: 30:63:09:da:08:49:4f:5a:6d:ce:f2:21:3d:d4:79: 54:65:d0:b6:fc:6b:1e:64:d0:b5:69:13:4e:3e:67: 79:9e:7a:2c:4f:0c:dc:3a:70:55:15:71:21:fa:cf: 63:02:25:5b:43:6e:b0:0f:b9:f8:03:f0:77:91:24: 47:5f:3f:e2:d4:83:6a:9e:7a:2a:1a:54:0b:25:3a: 4e:25:6b:96:6f:8e:b7:40:f4:89:6d:f3:15:bc:b1: ad:b9:80:d3:83:72:d7:f7:93:6b:6e:f6:ce:eb:e1: 76:07:6d:9b:37:c2:f3:86:33:b8:a1:4c:85:2b:cd: fd:f5:15:af:65:d4:41:72:da:ab:a6:76:8b:0a:ac: 62:b2:44:0e:d6:0d:b2:a9:25:49:a5:70:bb:09:0c: c5:a7:90:48:df:ff:86:56:72:0c:df:97:6e:30:6c: 25:65:6a:b1:a6:61:bf:46:b8:32:12:d4:8e:46:92: 9b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:77:AC:50:57:54:6C:26:43:60:7B:82:DE:C0:5C:86:A8:BF:34:19 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144791.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a85d::/32 Signature Algorithm: sha256WithRSAEncryption 56:63:50:db:67:dc:60:0e:8d:fc:f4:dc:cf:c0:83:88:57:8f: b9:6d:20:d6:20:43:9b:af:39:65:01:c0:e1:4b:a4:95:58:1b: 5e:a7:83:3b:b7:b2:4e:39:89:8a:35:b6:fb:3d:1d:70:0f:1c: ff:da:73:49:80:fa:17:29:f1:6a:d8:94:53:31:a0:d3:2f:e0: eb:75:0f:5f:0d:cc:99:d5:b0:36:19:30:ac:67:a0:e8:25:f4: 29:2f:20:ca:3e:e7:1c:0e:7a:0a:f1:58:33:a1:ea:00:7f:8f: e8:21:a4:54:63:ac:89:2d:9e:d8:b2:64:2b:23:89:3f:7d:28: bd:b8:90:9c:8a:97:98:10:12:d9:70:3c:34:20:07:6a:99:38: f2:5c:c6:7c:70:35:87:f1:03:59:cc:c3:cf:9a:90:21:64:1b: bd:8e:88:be:af:9c:46:92:53:0c:b6:a1:11:71:68:a0:7e:22: 65:a0:4f:51:80:9c:9b:c9:c2:7c:99:37:3a:8b:b2:5b:85:2f: a4:da:4e:68:9d:e5:3e:ad:86:88:8c:c4:9c:4a:4b:a2:70:cc: ed:2d:c8:29:d4:8b:f0:43:d7:05:0d:63:fe:ac:4e:94:69:30: 35:2b:8d:b7:7a:00:ed:f0:75:8c:6f:5b:69:eb:d8:14:b7:f1: 17:5d:5b:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSmNK3XQAeCB5JUbfhp0wu8IrEE0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTczOFoX DTI3MDMwMzA2MjIzOFowMzExMC8GA1UEAxMoNjM3N0FDNTA1NzU0NkMyNjQzNjA3 QjgyREVDMDVDODZBOEJGMzQxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANa20w31n9YvXI0mFXO6mmfJSdWXrvp4FxGgoJxJhxipLZ6SKdZWA0i7CfrB rYk9UZVYO3cv9nwe4LFswo2p7tyQWp0SyLCHWnD/MGMJ2ghJT1ptzvIhPdR5VGXQ tvxrHmTQtWkTTj5neZ56LE8M3DpwVRVxIfrPYwIlW0NusA+5+APwd5EkR18/4tSD ap56KhpUCyU6TiVrlm+Ot0D0iW3zFbyxrbmA04Ny1/eTa272zuvhdgdtmzfC84Yz uKFMhSvN/fUVr2XUQXLaq6Z2iwqsYrJEDtYNsqklSaVwuwkMxaeQSN//hlZyDN+X bjBsJWVqsaZhv0a4MhLUjkaSm10CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRjd6xQ V1RsJkNge4LewFyGqL80GTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDc5MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qF0wDQYJKoZIhvcNAQELBQADggEBAFZjUNtn3GAOjfz03M/Ag4hXj7ltINYgQ5uv OWUBwOFLpJVYG16ngzu3sk45iYo1tvs9HXAPHP/ac0mA+hcp8WrYlFMxoNMv4Ot1 D18NzJnVsDYZMKxnoOgl9CkvIMo+5xwOegrxWDOh6gB/j+ghpFRjrIktntiyZCsj iT99KL24kJyKl5gQEtlwPDQgB2qZOPJcxnxwNYfxA1nMw8+akCFkG72OiL6vnEaS Uwy2oRFxaKB+ImWgT1GAnJvJwnyZNzqLsluFL6TaTmid5T6thoiMxJxKS6JwzO0t yCnUi/BD1wUNY/6sTpRpMDUrjbd6AO3wdYxvW2nr2BS38RddWyw= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:44 2026 by rpki-client