$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144803.roa File: AS144803.roa (raw, json) Hash identifier: gEumd87A5Ka0tv51GvY12BxvPRfbIUuGZrYdkDUGy1s= Subject key identifier: A4:ED:D2:4C:EA:1A:50:E6:A0:DF:39:B1:96:A6:6F:9C:88:33:38:45 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6125F7CBD0F2541C43D1BCA96C75EEFC7BE52DC1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144803.roa Signing time: Wed 04 Mar 2026 06:19:42 +0000 ROA not before: Wed 04 Mar 2026 06:14:42 +0000 ROA not after: Wed 03 Mar 2027 06:19:42 +0000 asID: 144803 IP address blocks: 240a:a869::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:25:f7:cb:d0:f2:54:1c:43:d1:bc:a9:6c:75:ee:fc:7b:e5:2d:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:42 2026 GMT Not After : Mar 3 06:19:42 2027 GMT Subject: CN=A4EDD24CEA1A50E6A0DF39B196A66F9C88333845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5f:dc:a9:62:40:76:83:03:cb:4a:a8:9d:8b: ff:6b:5d:bf:b7:24:b7:30:a3:3b:2a:d9:53:f1:9a: 28:4e:89:cd:d2:e1:a7:5b:65:ee:24:52:1b:77:20: ca:a9:fb:c7:f0:4f:33:f6:de:0d:51:6f:16:cd:cd: 47:c7:ba:1b:a2:9c:f5:1a:c0:0c:7b:95:ca:0a:5b: 5e:6f:ba:19:8c:55:30:eb:8c:17:df:6a:55:0f:bf: df:2d:45:09:92:34:fe:12:00:88:f9:87:f4:a8:55: c5:5a:7c:01:4b:02:20:de:f8:e5:74:4c:e8:61:19: 20:90:7f:a1:c6:18:78:2b:43:ad:17:04:32:2d:65: 2b:dc:f4:5b:db:b3:e4:fe:b0:78:20:45:07:da:4c: 26:c8:4d:0f:c1:57:7c:46:4a:0e:c9:6c:bf:ee:fc: 7c:75:a3:90:53:f8:e4:a6:6d:0f:73:5a:8b:46:77: 20:00:e5:48:a1:ac:45:11:4d:6e:5e:07:e7:d7:3f: af:b8:26:cb:f7:3a:89:60:af:de:d9:53:2f:14:13: f2:30:a4:90:8e:97:b5:47:7b:79:86:6c:75:fe:8d: ac:ef:4a:8a:1b:bc:dc:54:a1:6d:31:92:e4:b6:6d: 47:00:f6:66:87:bb:3b:e0:35:c6:45:4e:82:74:e2: e4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:ED:D2:4C:EA:1A:50:E6:A0:DF:39:B1:96:A6:6F:9C:88:33:38:45 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144803.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a869::/32 Signature Algorithm: sha256WithRSAEncryption 70:30:b1:ec:08:4b:26:c6:5f:55:3b:fd:4a:19:07:69:95:e9: ff:16:4e:3a:7f:40:bc:af:9e:57:af:ac:35:bb:4b:8d:7a:53: 70:db:b0:4b:bd:2c:73:92:d4:cb:87:d6:36:e0:48:7d:07:6c: e7:02:70:ed:74:d8:a7:e8:b8:63:25:e8:5b:fb:41:ac:3e:8c: 5d:f7:f5:94:c7:2f:0c:23:34:ef:00:5e:ac:9c:5e:f5:50:a4: 5e:57:95:37:41:6e:83:e9:08:bd:55:1d:b1:f7:4e:d3:f6:0a: 4d:bf:d6:02:7a:f1:cc:1a:65:8b:5a:29:9f:6d:59:fb:66:0b: 17:23:12:dc:19:16:ff:51:5c:90:10:13:29:62:2d:92:9a:49: f8:19:75:09:bc:99:51:dc:ab:e4:67:c0:0d:86:56:30:43:73: cc:7d:cf:3d:2e:0e:3c:e0:dd:60:67:85:69:99:7b:13:01:10: 92:09:61:73:a2:6b:e5:cb:32:62:50:39:a7:81:08:75:83:ab: 9f:47:e5:e2:97:35:23:33:5b:8e:ba:e4:36:f4:c4:1b:54:a6: 35:69:5e:e4:49:ef:70:b3:b2:5b:c8:f4:07:5b:8a:27:65:29: 2d:ab:ef:60:b7:25:29:c4:f0:4b:55:96:f8:7e:b3:64:be:12: 58:52:51:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYSX3y9DyVBxD0bypbHXu/HvlLcEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQ0MloX DTI3MDMwMzA2MTk0MlowMzExMC8GA1UEAxMoQTRFREQyNENFQTFBNTBFNkEwREYz OUIxOTZBNjZGOUM4ODMzMzg0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRf3KliQHaDA8tKqJ2L/2tdv7cktzCjOyrZU/GaKE6JzdLhp1tl7iRSG3cg yqn7x/BPM/beDVFvFs3NR8e6G6Kc9RrADHuVygpbXm+6GYxVMOuMF99qVQ+/3y1F CZI0/hIAiPmH9KhVxVp8AUsCIN745XRM6GEZIJB/ocYYeCtDrRcEMi1lK9z0W9uz 5P6weCBFB9pMJshND8FXfEZKDslsv+78fHWjkFP45KZtD3Nai0Z3IADlSKGsRRFN bl4H59c/r7gmy/c6iWCv3tlTLxQT8jCkkI6XtUd7eYZsdf6NrO9Kihu83FShbTGS 5LZtRwD2Zoe7O+A1xkVOgnTi5GsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSk7dJM 6hpQ5qDfObGWpm+ciDM4RTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDgwMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qGkwDQYJKoZIhvcNAQELBQADggEBAHAwsewISybGX1U7/UoZB2mV6f8WTjp/QLyv nlevrDW7S416U3DbsEu9LHOS1MuH1jbgSH0HbOcCcO102KfouGMl6Fv7Qaw+jF33 9ZTHLwwjNO8AXqycXvVQpF5XlTdBboPpCL1VHbH3TtP2Ck2/1gJ68cwaZYtaKZ9t WftmCxcjEtwZFv9RXJAQEyliLZKaSfgZdQm8mVHcq+RnwA2GVjBDc8x9zz0uDjzg 3WBnhWmZexMBEJIJYXOia+XLMmJQOaeBCHWDq59H5eKXNSMzW4665Db0xBtUpjVp XuRJ73CzslvI9AdbiidlKS2r72C3JSnE8EtVlvh+s2S+ElhSUeo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:20 2026 by rpki-client