$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144808.roa File: AS144808.roa (raw, json) Hash identifier: N5zWVA2kmcGQOyIf3ifyAlOrOfwqaYULEi8qpZVT8Jw= Subject key identifier: 63:37:27:57:D9:66:69:D7:C8:46:CD:AF:9F:53:82:DE:14:8E:C5:FF Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3A4297CDBC5373D2EA5D77254D38B9040673851E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144808.roa Signing time: Wed 04 Mar 2026 06:19:27 +0000 ROA not before: Wed 04 Mar 2026 06:14:27 +0000 ROA not after: Wed 03 Mar 2027 06:19:27 +0000 asID: 144808 IP address blocks: 240a:a86e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:42:97:cd:bc:53:73:d2:ea:5d:77:25:4d:38:b9:04:06:73:85:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:27 2026 GMT Not After : Mar 3 06:19:27 2027 GMT Subject: CN=63372757D96669D7C846CDAF9F5382DE148EC5FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b3:9a:86:4e:3f:aa:87:6a:d5:6a:4c:7a:85: 56:f1:51:17:28:af:16:dc:03:0e:e8:46:e1:f8:e9: bc:17:ae:df:79:6a:0a:30:3a:1a:ae:77:53:72:e7: fd:38:85:0d:94:b6:81:33:55:bd:f5:b2:23:43:49: 04:c5:0b:c9:fb:2b:11:87:ea:b7:c5:b4:94:8a:8c: e5:b3:55:19:3a:f2:d0:35:3e:1f:dc:51:d5:e9:be: 76:05:66:40:51:ed:c0:8f:df:d8:9b:49:62:b5:93: 28:82:4a:bd:63:d3:7f:09:8c:42:24:51:b6:6d:ad: 0e:89:38:09:69:3b:c7:be:af:4f:7c:cc:a3:f5:9d: 4b:97:45:bd:64:4d:65:3a:0a:f2:42:1b:92:44:b6: d2:27:ad:66:03:8c:0b:19:c6:f3:eb:ee:25:77:b8: c5:80:f9:09:57:1f:ff:c7:00:e1:02:a6:47:d8:c2: 32:ca:7f:7f:21:30:ed:b3:51:02:69:61:5f:95:3a: c0:11:e9:d8:a8:54:45:83:52:3d:ab:9f:2a:a4:63: ea:70:02:cb:25:49:f6:ce:d1:0b:ee:ad:c9:d0:fd: 91:1a:c7:d0:bc:6f:a9:74:d1:f6:84:a1:1d:d0:77: 50:ca:44:ed:c4:e8:c7:01:d7:ea:7d:ca:c3:8b:04: 4e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:37:27:57:D9:66:69:D7:C8:46:CD:AF:9F:53:82:DE:14:8E:C5:FF X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144808.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a86e::/32 Signature Algorithm: sha256WithRSAEncryption b6:a3:a8:12:97:d2:0f:83:34:18:10:38:6b:e1:20:d3:3a:74: 4f:3f:40:8c:a5:03:95:98:18:ed:71:bf:04:34:d2:04:d2:2e: 4d:ee:8f:1f:d6:d8:aa:68:7c:9d:a3:1d:d0:12:1c:f1:33:3c: 05:72:ab:32:02:e5:73:ef:93:c6:11:c6:d7:65:8e:de:81:8b: fa:4c:a0:1d:83:37:92:ce:f7:06:80:3b:b2:bd:62:bf:9a:f3: 5a:0f:49:ff:be:01:f8:82:11:a2:dd:9c:ae:5b:5a:df:c8:45: ef:5f:e6:7d:ec:df:b9:02:d5:26:84:61:77:7e:7f:63:ff:eb: 52:56:23:5f:00:cf:37:0f:c9:2e:70:76:f8:df:02:cf:a2:a0: 8d:b5:a9:c2:d3:65:d9:6e:c1:7a:18:91:d6:04:fb:24:bf:85: e8:2e:33:ac:c3:7e:1b:2b:44:e2:f2:95:03:6c:35:65:60:74: 9c:27:fb:7c:ae:c7:f1:f0:40:96:77:51:92:19:07:13:09:92: 22:32:a9:92:32:60:cb:4d:e2:56:f3:5b:23:a7:59:60:72:a1: 71:06:02:eb:ed:72:2b:75:59:61:3c:cc:88:f7:2f:98:1d:fa: 05:3f:62:30:04:9c:da:0c:8e:07:87:22:b2:3f:4e:d4:8a:64: aa:c3:c0:bf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOkKXzbxTc9LqXXclTTi5BAZzhR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQyN1oX DTI3MDMwMzA2MTkyN1owMzExMC8GA1UEAxMoNjMzNzI3NTdEOTY2NjlEN0M4NDZD REFGOUY1MzgyREUxNDhFQzVGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOuzmoZOP6qHatVqTHqFVvFRFyivFtwDDuhG4fjpvBeu33lqCjA6Gq53U3Ln /TiFDZS2gTNVvfWyI0NJBMULyfsrEYfqt8W0lIqM5bNVGTry0DU+H9xR1em+dgVm QFHtwI/f2JtJYrWTKIJKvWPTfwmMQiRRtm2tDok4CWk7x76vT3zMo/WdS5dFvWRN ZToK8kIbkkS20ietZgOMCxnG8+vuJXe4xYD5CVcf/8cA4QKmR9jCMsp/fyEw7bNR AmlhX5U6wBHp2KhURYNSPaufKqRj6nACyyVJ9s7RC+6tydD9kRrH0LxvqXTR9oSh HdB3UMpE7cToxwHX6n3Kw4sETqcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRjNydX 2WZp18hGza+fU4LeFI7F/zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDgwOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qG4wDQYJKoZIhvcNAQELBQADggEBALajqBKX0g+DNBgQOGvhINM6dE8/QIylA5WY GO1xvwQ00gTSLk3ujx/W2KpofJ2jHdASHPEzPAVyqzIC5XPvk8YRxtdljt6Bi/pM oB2DN5LO9waAO7K9Yr+a81oPSf++AfiCEaLdnK5bWt/IRe9f5n3s37kC1SaEYXd+ f2P/61JWI18AzzcPyS5wdvjfAs+ioI21qcLTZdluwXoYkdYE+yS/heguM6zDfhsr ROLylQNsNWVgdJwn+3yux/HwQJZ3UZIZBxMJkiIyqZIyYMtN4lbzWyOnWWByoXEG Auvtcit1WWE8zIj3L5gd+gU/YjAEnNoMjgeHIrI/TtSKZKrDwL8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:10 2026 by rpki-client