$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144913.roa File: AS144913.roa (raw, json) Hash identifier: qYkbvJQpYw1CCy0fXuZKC2f//srwQsKGvf3nNmb/u30= Subject key identifier: 98:62:19:11:93:C3:25:34:2F:88:EE:2A:64:38:79:9D:43:01:32:CC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 01AD2B6A771A40149898D1916CC768C065A9829E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144913.roa Signing time: Wed 04 Mar 2026 06:22:14 +0000 ROA not before: Wed 04 Mar 2026 06:17:14 +0000 ROA not after: Wed 03 Mar 2027 06:22:14 +0000 asID: 144913 IP address blocks: 240a:a8d7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ad:2b:6a:77:1a:40:14:98:98:d1:91:6c:c7:68:c0:65:a9:82:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:14 2026 GMT Not After : Mar 3 06:22:14 2027 GMT Subject: CN=9862191193C325342F88EE2A6438799D430132CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c0:c6:20:ff:08:ac:e8:c6:ef:34:b0:e4:fe: 13:43:ba:4b:87:65:e0:db:35:38:ea:a9:07:42:2b: 2d:d3:42:1e:94:25:24:31:80:3d:1b:24:7b:5b:b9: 52:38:c5:84:a5:f2:d3:ff:b2:b1:6c:70:81:5c:3b: 96:8b:55:d5:45:4b:88:b6:66:87:4a:ce:95:c5:d8: f4:f2:26:25:a2:6a:39:64:d7:24:d8:f7:dc:ba:be: 50:4a:c0:2b:61:d1:28:db:43:68:ac:8f:15:df:4e: 95:04:4e:b0:2c:ce:64:55:dd:df:b4:90:32:51:a9: ea:c1:b4:67:53:a6:49:70:d1:ad:14:41:07:5f:1e: e0:40:66:46:61:5c:cc:62:17:23:ba:d0:11:ba:a2: 53:5d:c1:62:71:c0:8c:09:24:0b:e7:57:c8:b4:fc: 91:fb:cb:56:64:ef:c8:21:d3:bc:3d:23:c1:3d:9f: bd:41:63:9f:49:e2:c1:20:21:97:78:53:87:c6:b6: 6c:08:ef:74:b3:64:eb:cf:11:b5:6c:c6:8a:03:c9: 37:50:4c:42:8c:91:23:c7:1e:3c:95:33:f9:67:f9: d8:9d:ac:83:23:57:a6:1b:43:be:e7:c5:9e:06:33: e1:f1:00:2f:b8:9b:3f:86:73:f6:49:0f:e6:92:64: c3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:62:19:11:93:C3:25:34:2F:88:EE:2A:64:38:79:9D:43:01:32:CC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144913.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a8d7::/32 Signature Algorithm: sha256WithRSAEncryption 33:dd:02:f2:c9:61:8f:34:ac:12:08:42:4f:59:f7:a2:96:30: f3:a5:4a:6f:6b:65:8f:2c:14:46:c0:b2:19:7f:f2:a2:bd:ca: 07:e9:1a:25:cb:c4:a1:56:4b:59:98:ff:de:fc:5a:c7:c1:6c: 68:d6:d0:51:76:78:76:37:e3:b1:e8:7c:62:36:6d:65:10:6f: 12:2b:2c:1d:bb:b2:24:3c:cb:12:c5:a2:1e:3d:3d:8e:b6:33: 86:d9:ce:65:a8:ed:ca:04:39:d5:72:20:27:ed:2e:01:75:a8: 6f:e8:db:29:f8:d0:35:97:13:bd:de:e3:41:04:19:f2:f6:52: 21:8c:5c:28:85:32:63:98:1f:b0:d1:3b:2b:ce:8f:fa:fe:40: 6f:e1:d9:60:f5:7b:a9:6b:b7:b3:65:64:dd:25:1c:6c:0d:6f: 33:4e:04:20:95:e0:c0:e7:74:69:14:da:53:63:30:98:4e:22: 45:51:56:50:fb:25:d8:b7:4a:e5:86:f9:a5:8d:16:34:95:01: bb:2a:14:ca:88:20:6b:82:6a:7f:94:0e:f2:6b:44:60:6c:26: 63:0a:ba:c1:a7:9c:b6:6f:36:f2:6a:6d:18:da:6f:33:d0:3a: c5:60:67:cb:39:12:91:1d:47:25:8c:aa:bb:e2:6e:fa:ac:13: 82:e2:a2:c2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUAa0rancaQBSYmNGRbMdowGWpgp4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcxNFoX DTI3MDMwMzA2MjIxNFowMzExMC8GA1UEAxMoOTg2MjE5MTE5M0MzMjUzNDJGODhF RTJBNjQzODc5OUQ0MzAxMzJDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/AxiD/CKzoxu80sOT+E0O6S4dl4Ns1OOqpB0IrLdNCHpQlJDGAPRske1u5 UjjFhKXy0/+ysWxwgVw7lotV1UVLiLZmh0rOlcXY9PImJaJqOWTXJNj33Lq+UErA K2HRKNtDaKyPFd9OlQROsCzOZFXd37SQMlGp6sG0Z1OmSXDRrRRBB18e4EBmRmFc zGIXI7rQEbqiU13BYnHAjAkkC+dXyLT8kfvLVmTvyCHTvD0jwT2fvUFjn0niwSAh l3hTh8a2bAjvdLNk688RtWzGigPJN1BMQoyRI8cePJUz+Wf52J2sgyNXphtDvufF ngYz4fEAL7ibP4Zz9kkP5pJkw+MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSYYhkR k8MlNC+I7ipkOHmdQwEyzDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDkxMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qNcwDQYJKoZIhvcNAQELBQADggEBADPdAvLJYY80rBIIQk9Z96KWMPOlSm9rZY8s FEbAshl/8qK9ygfpGiXLxKFWS1mY/978WsfBbGjW0FF2eHY347HofGI2bWUQbxIr LB27siQ8yxLFoh49PY62M4bZzmWo7coEOdVyICftLgF1qG/o2yn40DWXE73e40EE GfL2UiGMXCiFMmOYH7DROyvOj/r+QG/h2WD1e6lrt7NlZN0lHGwNbzNOBCCV4MDn dGkU2lNjMJhOIkVRVlD7Jdi3SuWG+aWNFjSVAbsqFMqIIGuCan+UDvJrRGBsJmMK usGnnLZvNvJqbRjabzPQOsVgZ8s5EpEdRyWMqrvibvqsE4LiosI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:04 2026 by rpki-client