$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144892.roa File: AS144892.roa (raw, json) Hash identifier: 4chUtJ3n/RQT1xAik3TcjBz9HXmY4buUY0jLhOTU8+U= Subject key identifier: F1:D4:2E:8E:07:98:93:AC:FC:AD:8F:B4:46:7F:28:07:46:1B:42:AC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4D7A6006059FA8C397F7EB80178A1947CACD680F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144892.roa Signing time: Wed 04 Mar 2026 06:21:49 +0000 ROA not before: Wed 04 Mar 2026 06:16:49 +0000 ROA not after: Wed 03 Mar 2027 06:21:49 +0000 asID: 144892 IP address blocks: 240a:a8c2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:7a:60:06:05:9f:a8:c3:97:f7:eb:80:17:8a:19:47:ca:cd:68:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:49 2026 GMT Not After : Mar 3 06:21:49 2027 GMT Subject: CN=F1D42E8E079893ACFCAD8FB4467F2807461B42AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:b0:dd:81:e9:c6:5b:24:23:73:51:76:a9: a3:46:9a:84:0e:20:12:06:fe:9b:33:c9:47:8f:ac: 3d:ee:59:f5:8b:8f:08:f5:d9:9a:75:31:88:22:cc: db:38:0e:16:44:36:dd:5f:52:a5:6d:e9:ed:9f:a0: b8:a4:9d:9b:88:31:6c:8d:cc:4e:2c:72:98:a2:ed: 88:3b:e8:65:ca:5e:c1:e2:1e:77:26:36:43:1c:d8: 6e:c1:54:32:f3:03:6d:99:2a:e3:4a:c4:de:28:70: bc:f0:15:1b:54:d3:f8:27:b6:98:14:d2:8c:b5:89: 51:35:ea:44:49:d7:3d:72:ca:cd:fd:28:08:00:ff: 81:ab:05:fa:a5:f9:a2:b8:05:19:16:1f:49:74:0a: f4:f2:71:02:a1:d2:38:f8:68:7d:77:96:75:de:ad: f6:6f:d4:6c:44:94:f0:27:39:f0:fd:68:fe:6d:85: 39:56:6e:4a:cd:36:b7:26:f3:33:14:7e:bf:05:59: 0c:dc:6b:cb:d9:d6:5c:3e:99:63:89:e4:60:e1:79: b7:ca:ea:58:5a:04:70:63:c8:41:4a:78:47:e8:6b: f4:5e:d5:2a:98:fe:36:b9:c2:5a:70:3a:4b:15:de: fd:5a:22:60:ed:bf:94:e0:37:2f:1e:d1:dc:63:30: 44:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D4:2E:8E:07:98:93:AC:FC:AD:8F:B4:46:7F:28:07:46:1B:42:AC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144892.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a8c2::/32 Signature Algorithm: sha256WithRSAEncryption cb:5c:ba:b0:61:f3:1e:5c:32:bd:18:e8:b9:51:08:eb:9f:c6: 1a:4d:e9:45:a9:1c:4e:87:38:84:cf:76:f9:44:ce:a8:89:a8: 8c:cc:2a:26:24:01:ec:ee:c9:cb:b8:1b:57:75:98:91:d8:dc: a8:c2:89:b5:d9:c4:c0:74:e3:a7:0b:73:48:5c:4b:a8:f8:89: 3c:ce:b0:50:61:2d:36:12:31:7f:eb:87:f9:ef:b5:01:45:03: d8:1a:95:f8:e1:89:44:ea:ab:27:fb:5a:31:4a:21:37:33:01: 54:1d:75:30:41:3d:ec:22:68:39:a4:74:57:3d:d6:c8:f6:b3: 81:a8:a6:ee:dd:e5:4f:22:6d:32:e2:b2:43:a4:00:58:cb:03: 0f:2c:1a:94:4f:82:b8:87:c0:4e:29:c8:e9:3f:b0:cb:56:81: 6f:ae:14:1f:8c:40:df:76:6b:74:07:56:f0:39:d0:ac:1b:de: bb:64:e1:cf:7b:c0:a1:e9:fb:33:4f:45:dd:7d:56:ca:f9:c3: 3c:d2:14:19:03:16:fa:0e:d3:98:14:ac:c4:da:87:03:91:8d: 02:01:0e:d2:aa:da:26:a4:15:cd:bc:8b:bc:53:c9:86:08:81: 6a:91:d1:35:aa:c8:2d:2e:32:03:18:89:20:49:4d:e6:21:b8: 82:ea:28:b1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTXpgBgWfqMOX9+uAF4oZR8rNaA8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY0OVoX DTI3MDMwMzA2MjE0OVowMzExMC8GA1UEAxMoRjFENDJFOEUwNzk4OTNBQ0ZDQUQ4 RkI0NDY3RjI4MDc0NjFCNDJBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMqssN2B6cZbJCNzUXapo0aahA4gEgb+mzPJR4+sPe5Z9YuPCPXZmnUxiCLM 2zgOFkQ23V9SpW3p7Z+guKSdm4gxbI3MTixymKLtiDvoZcpeweIedyY2QxzYbsFU MvMDbZkq40rE3ihwvPAVG1TT+Ce2mBTSjLWJUTXqREnXPXLKzf0oCAD/gasF+qX5 orgFGRYfSXQK9PJxAqHSOPhofXeWdd6t9m/UbESU8Cc58P1o/m2FOVZuSs02tybz MxR+vwVZDNxry9nWXD6ZY4nkYOF5t8rqWFoEcGPIQUp4R+hr9F7VKpj+NrnCWnA6 SxXe/VoiYO2/lOA3Lx7R3GMwRCECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTx1C6O B5iTrPytj7RGfygHRhtCrDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDg5Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qMIwDQYJKoZIhvcNAQELBQADggEBAMtcurBh8x5cMr0Y6LlRCOufxhpN6UWpHE6H OITPdvlEzqiJqIzMKiYkAezuycu4G1d1mJHY3KjCibXZxMB046cLc0hcS6j4iTzO sFBhLTYSMX/rh/nvtQFFA9galfjhiUTqqyf7WjFKITczAVQddTBBPewiaDmkdFc9 1sj2s4Gopu7d5U8ibTLiskOkAFjLAw8sGpRPgriHwE4pyOk/sMtWgW+uFB+MQN92 a3QHVvA50Kwb3rtk4c97wKHp+zNPRd19Vsr5wzzSFBkDFvoO05gUrMTahwORjQIB DtKq2iakFc28i7xTyYYIgWqR0TWqyC0uMgMYiSBJTeYhuILqKLE= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:17 2026 by rpki-client