$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144867.roa File: AS144867.roa (raw, json) Hash identifier: fJcnMfMjBFLsXKBZxKYRKw/NG78zHQwESk67yGSZgB0= Subject key identifier: BB:FF:0C:93:B5:D7:77:97:3B:86:9B:1B:67:52:30:9B:A9:F3:15:9A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 04463A2B69FEBF06AFD4EF82443F2C15983535A2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144867.roa Signing time: Wed 04 Mar 2026 06:20:45 +0000 ROA not before: Wed 04 Mar 2026 06:15:45 +0000 ROA not after: Wed 03 Mar 2027 06:20:45 +0000 asID: 144867 IP address blocks: 240a:a8a9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:46:3a:2b:69:fe:bf:06:af:d4:ef:82:44:3f:2c:15:98:35:35:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:15:45 2026 GMT Not After : Mar 3 06:20:45 2027 GMT Subject: CN=BBFF0C93B5D777973B869B1B6752309BA9F3159A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:1c:0f:75:3a:67:3b:40:20:ae:cf:f5:9f:e2: d8:8f:01:3e:2a:92:71:c8:99:4d:3c:04:16:d6:6d: 4d:45:02:7c:ef:57:48:a7:de:d9:bf:d9:63:e8:f2: 4b:47:83:ba:bb:97:67:75:a2:ca:d9:8e:81:b0:92: d9:8f:3f:05:b6:70:89:21:d8:0c:13:55:83:0f:61: e2:ac:7e:47:6c:3f:07:a5:16:9d:f2:49:1a:2c:2e: 72:eb:80:2b:a9:bb:33:59:a4:85:3b:c7:c6:2a:a1: d6:b1:54:4f:a0:5a:58:26:02:c1:f1:4a:4b:9a:4f: 68:f1:06:da:b9:fb:4e:95:55:33:0a:6c:f8:ba:c0: 43:3e:85:2a:08:40:e3:20:da:19:6c:ae:ad:d8:37: b7:97:3d:e2:0d:a3:a1:f7:7e:8b:4d:02:ed:5e:f9: 4f:90:80:a4:87:d5:c2:52:a6:1a:58:ae:fe:4f:f1: 6e:14:fa:c6:97:98:14:8a:b0:28:a2:05:85:16:dd: 33:05:69:d9:07:53:3d:fd:17:91:35:37:77:4e:62: bc:fe:b4:ae:e5:14:ab:c1:2c:2f:bf:4a:68:d2:d3: 5c:95:a0:be:04:ff:20:16:fe:77:f3:0d:e3:e6:59: ce:1d:cf:38:0d:c3:3a:58:34:1e:6c:a2:ce:34:dd: 8f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:FF:0C:93:B5:D7:77:97:3B:86:9B:1B:67:52:30:9B:A9:F3:15:9A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a8a9::/32 Signature Algorithm: sha256WithRSAEncryption 53:23:23:ad:5f:59:d8:15:e3:84:19:df:d5:c3:0e:d2:2d:a5: 06:1f:b6:57:8d:fe:66:aa:00:43:be:c5:26:a4:8f:37:f7:ae: 41:42:57:8a:6d:b8:8c:b2:48:9e:ed:5c:30:97:5e:af:aa:d5: 71:d4:e0:7f:11:92:23:7a:8d:e9:0d:c3:9d:79:08:89:d0:d1: 37:7a:d6:0e:97:ff:6b:b0:4c:2f:29:9b:6a:68:17:f0:c2:5f: 46:48:50:cc:11:29:9c:5c:23:d4:af:36:8f:a3:71:87:ae:b3: 05:70:97:65:25:1e:19:0c:47:39:97:c7:f3:f9:0e:7e:9b:66: 10:ef:17:f7:43:49:38:bd:f8:1b:44:f7:71:90:87:a5:62:31: 56:41:66:98:6d:3b:df:cc:33:8f:4a:f7:af:d8:af:de:a0:f6: f5:81:f3:80:0b:85:be:86:c1:30:9a:45:06:d9:49:b4:e6:3e: 1d:bd:d6:99:65:b1:d4:20:87:ba:23:14:87:ca:df:06:06:88: 2e:33:8a:fd:40:af:da:01:88:da:d1:f1:62:72:1e:7a:a6:3e: 89:86:d7:ee:9d:19:87:31:65:3e:61:d2:50:5e:6a:19:f5:3a: 27:31:43:c1:8f:c1:14:bc:7a:31:d6:e5:cc:1b:cf:d8:47:a5: 10:5d:61:62 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBEY6K2n+vwav1O+CRD8sFZg1NaIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTU0NVoX DTI3MDMwMzA2MjA0NVowMzExMC8GA1UEAxMoQkJGRjBDOTNCNUQ3Nzc5NzNCODY5 QjFCNjc1MjMwOUJBOUYzMTU5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPccD3U6ZztAIK7P9Z/i2I8BPiqScciZTTwEFtZtTUUCfO9XSKfe2b/ZY+jy S0eDuruXZ3WiytmOgbCS2Y8/BbZwiSHYDBNVgw9h4qx+R2w/B6UWnfJJGiwucuuA K6m7M1mkhTvHxiqh1rFUT6BaWCYCwfFKS5pPaPEG2rn7TpVVMwps+LrAQz6FKghA 4yDaGWyurdg3t5c94g2jofd+i00C7V75T5CApIfVwlKmGliu/k/xbhT6xpeYFIqw KKIFhRbdMwVp2QdTPf0XkTU3d05ivP60ruUUq8EsL79KaNLTXJWgvgT/IBb+d/MN 4+ZZzh3POA3DOlg0HmyizjTdj30CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS7/wyT tdd3lzuGmxtnUjCbqfMVmjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDg2Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qKkwDQYJKoZIhvcNAQELBQADggEBAFMjI61fWdgV44QZ39XDDtItpQYftleN/maq AEO+xSakjzf3rkFCV4ptuIyySJ7tXDCXXq+q1XHU4H8RkiN6jekNw515CInQ0Td6 1g6X/2uwTC8pm2poF/DCX0ZIUMwRKZxcI9SvNo+jcYeuswVwl2UlHhkMRzmXx/P5 Dn6bZhDvF/dDSTi9+BtE93GQh6ViMVZBZphtO9/MM49K96/Yr96g9vWB84ALhb6G wTCaRQbZSbTmPh291pllsdQgh7ojFIfK3wYGiC4ziv1Ar9oBiNrR8WJyHnqmPomG 1+6dGYcxZT5h0lBeahn1OicxQ8GPwRS8ejHW5cwbz9hHpRBdYWI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:28 2026 by rpki-client