$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144836.roa File: AS144836.roa (raw, json) Hash identifier: U/38LA+TLgdfgKmIL0lYRcSQu2CBGdTvJ842+N9NW1k= Subject key identifier: 3A:8F:73:F7:94:35:31:F6:4B:47:7F:CA:75:71:71:17:E3:CC:0B:59 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3D0ECD73B0A1ECA22C60CDA329D82A09F487396C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144836.roa Signing time: Wed 04 Mar 2026 06:20:30 +0000 ROA not before: Wed 04 Mar 2026 06:15:30 +0000 ROA not after: Wed 03 Mar 2027 06:20:30 +0000 asID: 144836 IP address blocks: 240a:a88a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:0e:cd:73:b0:a1:ec:a2:2c:60:cd:a3:29:d8:2a:09:f4:87:39:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:30 2026 GMT Not After : Mar 3 06:20:30 2027 GMT Subject: CN=3A8F73F7943531F64B477FCA75717117E3CC0B59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a3:0e:4e:3c:8a:d7:fd:60:94:e0:3d:b6:3a: c2:72:5d:ec:39:4b:af:af:be:5e:66:55:ad:60:4f: 21:ad:b1:08:0b:47:15:7d:9b:a1:96:3c:2a:0b:af: ac:7e:02:50:ce:7c:77:03:b1:d5:09:a3:cc:94:85: 89:d6:46:5d:29:f7:0b:99:82:22:a1:85:38:02:de: f4:04:6b:b5:71:18:08:f3:00:94:96:aa:d3:67:28: 7a:2c:f1:80:70:ea:ad:83:8a:33:07:03:e6:44:a0: 2d:4f:ad:8d:d1:a9:55:d8:7d:f2:d0:92:df:53:5d: 4d:17:ab:c6:60:f0:dc:c0:af:51:5b:34:a1:76:09: 72:ba:aa:81:ec:8b:3c:ee:d0:e5:b9:01:df:d9:85: 2b:3a:7a:88:10:dd:c9:d6:67:7a:e9:bd:df:3a:af: 4e:62:d0:9d:a3:cc:5a:1a:75:1b:77:de:ab:04:05: 2f:d3:2b:68:ee:6f:d9:af:98:82:7d:aa:6a:9a:4c: 1b:28:3b:1c:1b:39:8f:ce:a0:62:2e:e8:d9:fe:23: 94:50:3d:08:85:14:40:bd:20:ab:7d:44:bf:bb:cc: bd:14:c4:88:75:77:6c:ea:18:26:af:54:4a:1e:94: 9e:60:97:11:8f:13:fb:1c:2f:b8:59:8e:97:80:b4: 19:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8F:73:F7:94:35:31:F6:4B:47:7F:CA:75:71:71:17:E3:CC:0B:59 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a88a::/32 Signature Algorithm: sha256WithRSAEncryption c5:cf:43:77:42:a1:bf:ac:26:d6:87:5b:1d:01:6c:ec:49:88: 0d:66:cf:e8:ea:6b:f1:a5:a9:55:0b:5c:7e:41:c0:02:b2:9f: 69:81:01:7c:8d:d4:8c:43:00:47:d4:e3:cb:e6:51:61:e1:0c: cc:e6:ae:df:4a:86:9e:86:26:d9:47:bc:26:b3:1e:03:98:7a: af:bd:b1:95:fc:b9:84:fa:32:bf:84:75:a8:c5:97:1f:af:8d: 8b:48:94:6d:b4:80:51:43:b8:40:d4:d5:93:d0:84:0e:0f:c5: 16:69:9f:83:de:44:b6:be:2b:93:12:ff:da:de:2b:eb:3d:5c: df:5f:cb:f2:14:74:22:65:cf:4a:41:73:8e:5b:01:23:e2:95: 7d:11:16:e3:af:42:04:c3:79:83:5c:c9:c6:73:29:e4:57:2e: e2:4e:a0:cb:f9:87:87:a8:ff:d3:d0:70:2e:f7:2d:c2:f7:37: 67:0c:98:bf:e9:4a:95:aa:d4:24:45:ea:11:fe:1a:b8:35:49: 6c:9f:e4:82:fc:e5:75:a4:91:5d:24:59:fa:14:98:33:57:58: 1f:5c:c3:6f:b1:4b:f5:e2:a0:df:c5:a3:c5:82:e2:19:bc:69: 9e:91:81:59:0d:5e:48:f8:ff:e7:58:fa:0f:96:f5:f2:1a:d4: 51:22:34:03 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPQ7Nc7Ch7KIsYM2jKdgqCfSHOWwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTUzMFoX DTI3MDMwMzA2MjAzMFowMzExMC8GA1UEAxMoM0E4RjczRjc5NDM1MzFGNjRCNDc3 RkNBNzU3MTcxMTdFM0NDMEI1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSjDk48itf9YJTgPbY6wnJd7DlLr6++XmZVrWBPIa2xCAtHFX2boZY8Kguv rH4CUM58dwOx1QmjzJSFidZGXSn3C5mCIqGFOALe9ARrtXEYCPMAlJaq02coeizx gHDqrYOKMwcD5kSgLU+tjdGpVdh98tCS31NdTRerxmDw3MCvUVs0oXYJcrqqgeyL PO7Q5bkB39mFKzp6iBDdydZneum93zqvTmLQnaPMWhp1G3feqwQFL9MraO5v2a+Y gn2qappMGyg7HBs5j86gYi7o2f4jlFA9CIUUQL0gq31Ev7vMvRTEiHV3bOoYJq9U Sh6UnmCXEY8T+xwvuFmOl4C0GXsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ6j3P3 lDUx9ktHf8p1cXEX48wLWTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDgzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qIowDQYJKoZIhvcNAQELBQADggEBAMXPQ3dCob+sJtaHWx0BbOxJiA1mz+jqa/Gl qVULXH5BwAKyn2mBAXyN1IxDAEfU48vmUWHhDMzmrt9Khp6GJtlHvCazHgOYeq+9 sZX8uYT6Mr+EdajFlx+vjYtIlG20gFFDuEDU1ZPQhA4PxRZpn4PeRLa+K5MS/9re K+s9XN9fy/IUdCJlz0pBc45bASPilX0RFuOvQgTDeYNcycZzKeRXLuJOoMv5h4eo /9PQcC73LcL3N2cMmL/pSpWq1CRF6hH+Grg1SWyf5IL85XWkkV0kWfoUmDNXWB9c w2+xS/XioN/Fo8WC4hm8aZ6RgVkNXkj4/+dY+g+W9fIa1FEiNAM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:00 2026 by rpki-client