$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144914.roa File: AS144914.roa (raw, json) Hash identifier: /1jE4bU4W5UFoVtK0vLUxmo296Je/PqS9+bYJZP9/TM= Subject key identifier: 48:E3:A9:44:B0:05:4B:6C:F9:07:31:62:5F:94:BF:CD:88:4C:4B:7C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 14FB800D90EE0B52A9C0ACA010C4BFA4BF6D8385 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144914.roa Signing time: Wed 04 Mar 2026 06:19:36 +0000 ROA not before: Wed 04 Mar 2026 06:14:36 +0000 ROA not after: Wed 03 Mar 2027 06:19:36 +0000 asID: 144914 IP address blocks: 240a:a8d8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fb:80:0d:90:ee:0b:52:a9:c0:ac:a0:10:c4:bf:a4:bf:6d:83:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:14:36 2026 GMT Not After : Mar 3 06:19:36 2027 GMT Subject: CN=48E3A944B0054B6CF90731625F94BFCD884C4B7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:8e:c3:5a:32:f6:a5:10:fb:cc:74:b2:1b: 69:b9:ae:15:8f:93:16:03:57:6b:2c:b7:fe:82:bd: 7e:92:6d:cd:30:99:0e:db:06:cf:4a:39:7b:35:1c: eb:9f:d7:5b:7b:dd:c2:70:2e:12:ba:90:e4:a0:5b: 4b:88:c8:a1:26:e8:43:12:ba:8a:e7:1e:cc:14:ab: c0:5f:16:53:a6:f9:2e:5b:ba:e5:e4:0e:cc:f0:9f: 72:3d:b0:97:a5:57:8d:c1:f9:fb:a2:25:cc:8d:a8: 09:25:f6:b1:4f:92:be:67:13:a7:1a:ba:3d:22:35: 84:6d:c5:db:35:4f:fa:8f:1c:0a:52:72:6f:79:68: ee:b1:28:70:7b:cf:5c:67:50:b4:e7:dd:0b:c5:06: 7d:0f:b2:77:03:3b:cd:86:39:b8:18:bd:0c:01:65: 73:5b:fb:48:2d:5f:13:52:eb:94:c5:ea:60:8a:75: bb:a0:27:36:70:95:23:e1:84:1b:24:2b:09:46:b3: 79:53:ad:04:aa:a6:60:cf:b4:14:22:14:3e:34:7e: 5b:a1:01:dc:1e:57:1c:a4:d8:9b:22:ea:a0:78:07: fe:09:b7:ca:84:75:88:5b:a3:8b:06:89:df:59:e9: b7:0b:84:81:33:f6:14:79:32:31:3b:d6:74:a9:64: c3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E3:A9:44:B0:05:4B:6C:F9:07:31:62:5F:94:BF:CD:88:4C:4B:7C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144914.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a8d8::/32 Signature Algorithm: sha256WithRSAEncryption 6d:08:3b:6c:84:8b:8c:85:66:b5:8e:c2:93:34:91:f4:cc:3b: 81:9d:d7:d5:80:bb:6b:97:e1:0b:e1:20:65:60:d9:ef:b5:9c: 92:99:46:51:2c:9d:e5:dc:5b:d1:22:c3:3e:d8:60:67:33:de: 41:5b:d4:7b:db:b7:ea:f2:f8:c1:3b:65:aa:c3:87:26:1e:b3: de:f1:b3:26:8f:52:4e:ff:e5:25:cb:99:62:19:3e:67:e1:02: 0c:40:7b:98:e8:f4:b1:06:3c:24:5b:21:18:92:3c:b1:f0:92: ce:10:9c:1f:ca:7b:c8:65:8c:e0:58:d6:e9:73:15:49:65:b1: 3f:de:c9:85:8b:6d:06:5e:be:f7:de:b0:7e:4b:2b:5f:95:7d: 11:c8:43:3c:aa:dc:6b:31:3f:e7:4e:a3:45:39:cc:84:ad:73: 1d:3a:4c:d9:a8:ba:74:87:cc:95:bc:b7:0e:c5:8a:97:70:b7: 38:14:b6:ba:b4:08:66:88:92:08:a2:ff:35:94:9b:5a:fc:95: 35:0d:f8:a1:ed:a8:48:d9:2b:89:f6:fb:de:e1:45:aa:ad:b8: 53:16:57:4c:87:c8:b2:42:d2:36:b6:0e:37:e2:58:ed:ba:19: 63:87:a0:2e:94:8b:c6:ae:4f:cb:b8:f7:69:5c:2c:e5:19:94: ef:06:81:cf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFPuADZDuC1KpwKygEMS/pL9tg4UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTQzNloX DTI3MDMwMzA2MTkzNlowMzExMC8GA1UEAxMoNDhFM0E5NDRCMDA1NEI2Q0Y5MDcz MTYyNUY5NEJGQ0Q4ODRDNEI3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjRjsNaMvalEPvMdLIbabmuFY+TFgNXayy3/oK9fpJtzTCZDtsGz0o5ezUc 65/XW3vdwnAuErqQ5KBbS4jIoSboQxK6iucezBSrwF8WU6b5Llu65eQOzPCfcj2w l6VXjcH5+6IlzI2oCSX2sU+SvmcTpxq6PSI1hG3F2zVP+o8cClJyb3lo7rEocHvP XGdQtOfdC8UGfQ+ydwM7zYY5uBi9DAFlc1v7SC1fE1LrlMXqYIp1u6AnNnCVI+GE GyQrCUazeVOtBKqmYM+0FCIUPjR+W6EB3B5XHKTYmyLqoHgH/gm3yoR1iFujiwaJ 31nptwuEgTP2FHkyMTvWdKlkwyUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRI46lE sAVLbPkHMWJflL/NiExLfDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDkxNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qNgwDQYJKoZIhvcNAQELBQADggEBAG0IO2yEi4yFZrWOwpM0kfTMO4Gd19WAu2uX 4QvhIGVg2e+1nJKZRlEsneXcW9Eiwz7YYGcz3kFb1Hvbt+ry+ME7ZarDhyYes97x syaPUk7/5SXLmWIZPmfhAgxAe5jo9LEGPCRbIRiSPLHwks4QnB/Ke8hljOBY1ulz FUllsT/eyYWLbQZevvfesH5LK1+VfRHIQzyq3GsxP+dOo0U5zIStcx06TNmounSH zJW8tw7FipdwtzgUtrq0CGaIkgii/zWUm1r8lTUN+KHtqEjZK4n2+97hRaqtuFMW V0yHyLJC0ja2DjfiWO26GWOHoC6Ui8auT8u492lcLOUZlO8Ggc8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:46 2026 by rpki-client