$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144806.roa File: AS144806.roa (raw, json) Hash identifier: VX31GRu1An8Mfqs5oPNtml3OOLoxqcScU8f+f0bxFj4= Subject key identifier: 5F:80:1E:9B:BF:AA:82:90:02:52:62:9C:C9:A5:EA:76:D2:4F:D9:1F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0FC7FD70B83562F3144DAB7C61BBB2D7D3FA0767 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144806.roa Signing time: Wed 04 Mar 2026 06:19:31 +0000 ROA not before: Wed 04 Mar 2026 06:14:31 +0000 ROA not after: Wed 03 Mar 2027 06:19:31 +0000 asID: 144806 IP address blocks: 240a:a86c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c7:fd:70:b8:35:62:f3:14:4d:ab:7c:61:bb:b2:d7:d3:fa:07:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:31 2026 GMT Not After : Mar 3 06:19:31 2027 GMT Subject: CN=5F801E9BBFAA82900252629CC9A5EA76D24FD91F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:1f:5d:8b:14:e1:86:2e:01:95:e5:84:02: 19:93:8c:a3:e4:11:76:2c:00:91:87:ce:cd:ea:3c: 86:21:64:18:37:40:cf:a5:54:6d:02:9c:32:dc:66: 98:d9:7e:7f:7a:40:8a:f2:73:ae:f5:21:f0:84:ba: 5f:3d:01:e9:75:75:38:36:fe:ea:df:35:e8:05:4c: 4c:a8:0e:f6:db:be:5f:6a:de:2a:64:e4:e1:bc:6e: 23:b0:87:b8:99:df:0a:6d:b0:00:8c:77:09:68:64: 0b:08:2d:8a:18:5e:77:eb:b8:e0:13:08:10:93:50: fe:f9:cb:cc:71:37:6b:9f:d6:3b:ec:52:92:35:a0: c5:13:a7:0f:04:bf:b6:2f:26:85:2d:ab:c1:73:3e: b9:72:8a:75:6a:25:ed:c0:99:19:b3:98:9e:94:9c: 3e:1e:99:17:5b:bc:92:62:55:87:a9:f0:69:21:27: ee:b3:21:75:48:10:95:3b:98:58:8a:64:86:2d:ed: ab:86:b8:d7:08:50:b6:b5:82:5d:72:52:14:08:15: e6:89:eb:ac:2c:a3:92:f3:f5:e5:69:50:68:54:10: 9e:7f:ff:a0:7b:a6:0f:48:a7:f1:b6:72:c6:2c:b1: d2:4e:7e:51:4a:93:b3:2a:9f:5d:92:ce:cf:b1:fc: ee:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:80:1E:9B:BF:AA:82:90:02:52:62:9C:C9:A5:EA:76:D2:4F:D9:1F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144806.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a86c::/32 Signature Algorithm: sha256WithRSAEncryption 32:b8:34:03:dc:8f:36:a2:b0:ba:36:67:c8:3a:4c:bc:f9:53: 30:05:7a:eb:5b:d1:52:d4:4d:ec:ed:66:dd:b0:cd:a5:1e:4d: f3:2f:c4:11:9b:a1:62:d6:71:c3:45:44:85:53:88:2d:49:66: d4:27:5c:d6:f3:0a:76:f7:47:d6:b4:3f:73:52:86:58:88:54: 1e:50:45:1e:fc:09:b4:bf:c3:98:f8:02:62:8c:75:e7:a9:4e: 91:4b:40:d6:66:af:75:4c:68:8a:9d:69:78:cc:78:c9:99:41: 2d:1b:0a:3f:c7:cd:a5:90:bf:e0:93:e7:80:ac:40:92:82:cb: 31:e8:1c:9e:7e:3f:2f:83:9d:66:5e:aa:eb:a2:5c:92:b9:d3: 4f:8d:de:42:bf:a3:68:3c:aa:bd:f6:16:cb:28:e3:1b:55:33: ca:d0:74:4c:85:2f:16:f8:07:9e:de:98:31:28:bb:05:e1:b9: e1:79:7f:71:46:fc:d8:dc:9b:ee:d9:77:a5:92:7b:01:c9:22: ea:f8:bd:3a:a9:8e:85:8f:50:60:84:5a:57:54:99:70:5e:4c: 86:97:62:b9:d3:ce:f2:08:ac:d6:2f:83:1c:ad:35:d2:33:6f: e6:ac:e3:89:01:6d:f8:a7:ff:89:5a:2c:bc:29:9c:5d:31:cc: 44:dd:d9:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUD8f9cLg1YvMUTat8Ybuy19P6B2cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQzMVoX DTI3MDMwMzA2MTkzMVowMzExMC8GA1UEAxMoNUY4MDFFOUJCRkFBODI5MDAyNTI2 MjlDQzlBNUVBNzZEMjRGRDkxRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJFH12LFOGGLgGV5YQCGZOMo+QRdiwAkYfOzeo8hiFkGDdAz6VUbQKcMtxm mNl+f3pAivJzrvUh8IS6Xz0B6XV1ODb+6t816AVMTKgO9tu+X2reKmTk4bxuI7CH uJnfCm2wAIx3CWhkCwgtihhed+u44BMIEJNQ/vnLzHE3a5/WO+xSkjWgxROnDwS/ ti8mhS2rwXM+uXKKdWol7cCZGbOYnpScPh6ZF1u8kmJVh6nwaSEn7rMhdUgQlTuY WIpkhi3tq4a41whQtrWCXXJSFAgV5onrrCyjkvP15WlQaFQQnn//oHumD0in8bZy xiyx0k5+UUqTsyqfXZLOz7H87psCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRfgB6b v6qCkAJSYpzJpep20k/ZHzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDgwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qGwwDQYJKoZIhvcNAQELBQADggEBADK4NAPcjzaisLo2Z8g6TLz5UzAFeutb0VLU TeztZt2wzaUeTfMvxBGboWLWccNFRIVTiC1JZtQnXNbzCnb3R9a0P3NShliIVB5Q RR78CbS/w5j4AmKMdeepTpFLQNZmr3VMaIqdaXjMeMmZQS0bCj/HzaWQv+CT54Cs QJKCyzHoHJ5+Py+DnWZequuiXJK500+N3kK/o2g8qr32Fsso4xtVM8rQdEyFLxb4 B57emDEouwXhueF5f3FG/Njcm+7Zd6WSewHJIur4vTqpjoWPUGCEWldUmXBeTIaX YrnTzvIIrNYvgxytNdIzb+as44kBbfin/4laLLwpnF0xzETd2ZY= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:26 2026 by rpki-client