$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144810.roa File: AS144810.roa (raw, json) Hash identifier: Bhx8GO0JsySrG6hLhb6xOw2q3tKAbnt05ynevOf9V2E= Subject key identifier: 77:15:0B:08:9A:47:C0:28:3E:92:D0:3A:E3:8C:17:68:6E:AC:2A:03 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 017D111B5B53A53E7FDBC1DF2B34B7D18C669A56 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144810.roa Signing time: Wed 04 Mar 2026 06:21:26 +0000 ROA not before: Wed 04 Mar 2026 06:16:26 +0000 ROA not after: Wed 03 Mar 2027 06:21:26 +0000 asID: 144810 IP address blocks: 240a:a870::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:7d:11:1b:5b:53:a5:3e:7f:db:c1:df:2b:34:b7:d1:8c:66:9a:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:26 2026 GMT Not After : Mar 3 06:21:26 2027 GMT Subject: CN=77150B089A47C0283E92D03AE38C17686EAC2A03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:1f:fb:d5:69:31:60:b2:29:21:07:55:26: 75:64:e3:8b:aa:6d:2d:d2:5a:e5:21:0a:a5:db:d6: a2:28:e9:db:0c:86:43:16:ca:7d:50:71:b7:f0:71: a4:cf:d2:f9:57:12:cb:72:7a:25:84:f3:05:46:53: 03:41:22:22:2e:38:c5:18:34:07:5a:d4:cf:c0:dc: 2f:dc:6e:94:7f:ae:c3:f6:25:da:38:31:8a:e7:4b: 38:63:fa:c5:97:eb:97:fb:68:bf:2d:5e:f4:51:2f: c1:71:99:d4:6d:c9:61:2a:7d:e4:ff:d5:e4:16:07: 97:e0:d3:d8:34:97:af:1c:61:19:9d:14:23:bb:5e: 1a:7c:fc:5f:79:73:9d:be:c0:a9:18:1f:ba:f1:c9: 3b:b0:9a:e3:b2:14:13:ac:98:37:5f:a2:03:fa:53: fd:a2:e3:57:f8:ba:ca:55:95:24:78:a6:8b:a9:81: bc:64:cc:e9:33:0e:d8:8f:33:ae:77:fd:73:07:b1: 45:77:49:d3:c5:0f:15:f9:30:e7:a4:d1:22:48:01: 67:01:fc:09:a8:d4:3f:9f:3d:66:98:49:18:6e:23: 48:53:17:55:fc:cd:96:88:ee:d1:a7:96:88:10:b4: 59:0f:b2:e9:f2:8e:74:ff:72:bb:12:51:d0:06:a4: b7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:15:0B:08:9A:47:C0:28:3E:92:D0:3A:E3:8C:17:68:6E:AC:2A:03 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144810.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a870::/32 Signature Algorithm: sha256WithRSAEncryption 61:b8:05:01:9c:8a:85:3d:55:04:df:6c:d7:e3:1a:16:1e:a9: fe:e0:e1:3b:b8:fd:4f:e3:a4:a0:50:f9:69:49:a2:26:ef:9a: eb:a9:68:99:10:31:d9:83:49:d6:7d:f0:e6:95:51:40:60:0e: 5e:17:43:c1:23:31:43:ad:e7:f9:84:bf:34:f0:30:6e:0f:53: 1f:2f:70:cf:58:12:23:5a:1a:dd:45:24:3a:af:98:0c:77:aa: e2:70:26:e5:a6:8c:de:9a:1e:0d:cb:70:c1:28:af:da:8d:32: 83:38:8a:f3:63:49:db:00:ac:84:c3:cd:41:72:03:f2:0a:57: 7d:1b:2c:47:ef:af:75:b0:af:ef:90:6c:87:c2:cb:fe:1a:bd: b0:00:48:93:fc:0e:56:79:ed:7b:2c:a1:14:f2:ed:9a:ed:54: 46:75:1c:31:b2:63:d0:3f:02:15:1a:5e:e9:e1:9d:46:0e:11: d4:57:90:12:bc:72:d7:a7:33:7f:29:fb:a5:0c:bb:52:56:aa: ba:9b:7d:cc:04:f5:d4:42:4b:90:65:4a:ad:56:74:34:fa:d6: 53:2e:03:cb:20:b6:67:ef:70:5c:7c:63:b3:5d:af:d2:6a:34: 1d:45:b9:a8:7e:92:3c:1b:b1:41:f4:1a:85:a2:c0:af:98:bd: e1:15:d1:73 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUAX0RG1tTpT5/28HfKzS30YxmmlYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYyNloX DTI3MDMwMzA2MjEyNlowMzExMC8GA1UEAxMoNzcxNTBCMDg5QTQ3QzAyODNFOTJE MDNBRTM4QzE3Njg2RUFDMkEwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALobH/vVaTFgsikhB1UmdWTji6ptLdJa5SEKpdvWoijp2wyGQxbKfVBxt/Bx pM/S+VcSy3J6JYTzBUZTA0EiIi44xRg0B1rUz8DcL9xulH+uw/Yl2jgxiudLOGP6 xZfrl/tovy1e9FEvwXGZ1G3JYSp95P/V5BYHl+DT2DSXrxxhGZ0UI7teGnz8X3lz nb7AqRgfuvHJO7Ca47IUE6yYN1+iA/pT/aLjV/i6ylWVJHimi6mBvGTM6TMO2I8z rnf9cwexRXdJ08UPFfkw56TRIkgBZwH8CajUP589ZphJGG4jSFMXVfzNloju0aeW iBC0WQ+y6fKOdP9yuxJR0AaktxMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR3FQsI mkfAKD6S0DrjjBdobqwqAzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDgxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qHAwDQYJKoZIhvcNAQELBQADggEBAGG4BQGcioU9VQTfbNfjGhYeqf7g4Tu4/U/j pKBQ+WlJoibvmuupaJkQMdmDSdZ98OaVUUBgDl4XQ8EjMUOt5/mEvzTwMG4PUx8v cM9YEiNaGt1FJDqvmAx3quJwJuWmjN6aHg3LcMEor9qNMoM4ivNjSdsArITDzUFy A/IKV30bLEfvr3Wwr++QbIfCy/4avbAASJP8DlZ57XssoRTy7ZrtVEZ1HDGyY9A/ AhUaXunhnUYOEdRXkBK8ctenM38p+6UMu1JWqrqbfcwE9dRCS5BlSq1WdDT61lMu A8sgtmfvcFx8Y7Ndr9JqNB1Fuah+kjwbsUH0GoWiwK+YveEV0XM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:56 2026 by rpki-client