$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144936.roa File: AS144936.roa (raw, json) Hash identifier: sluTstldjzElPjIJ0qP6P83A8uIWyZn5aTvDQy9gXew= Subject key identifier: 82:5B:94:8D:12:B0:4E:3F:ED:EF:BA:6E:6C:23:1B:29:BF:F6:DF:E4 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4E5942085805C1C559FF46D07F3719F8ACF8CA34 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144936.roa Signing time: Wed 04 Mar 2026 06:21:35 +0000 ROA not before: Wed 04 Mar 2026 06:16:35 +0000 ROA not after: Wed 03 Mar 2027 06:21:35 +0000 asID: 144936 IP address blocks: 240a:a8ee::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:59:42:08:58:05:c1:c5:59:ff:46:d0:7f:37:19:f8:ac:f8:ca:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:35 2026 GMT Not After : Mar 3 06:21:35 2027 GMT Subject: CN=825B948D12B04E3FEDEFBA6E6C231B29BFF6DFE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d9:87:16:a0:60:54:4c:7e:93:58:d0:8a:72: 12:8b:40:1e:2a:fb:3e:82:25:11:fe:c7:d9:28:b1: 37:ce:48:2f:14:54:6a:f5:e7:83:4c:b4:31:2c:32: 66:96:fe:fb:0f:c8:f6:4b:21:2a:10:7c:a2:17:5d: 25:54:e3:e4:44:92:86:ba:e4:2c:da:57:60:72:99: bf:18:0f:17:a3:cb:83:db:60:b8:18:fa:98:e1:7f: ae:ec:ad:15:b5:2a:a8:2c:a3:7c:ff:3e:61:bb:3f: 73:f2:cf:cb:7b:7d:b6:83:74:20:0c:9c:20:12:b0: 26:5b:92:06:d6:88:c9:9c:be:48:7f:b5:a8:b1:57: a3:bb:db:0a:84:01:6a:35:32:48:b2:1e:2e:c6:c1: 7c:6c:81:ad:2a:ff:79:f8:47:12:d2:cc:ad:5d:d6: 25:7d:b6:ec:7f:89:44:19:b8:a6:ea:e5:d3:1e:ae: 39:5a:ce:cb:45:c3:59:fd:3a:c4:d5:66:39:23:61: 83:6e:db:a9:e1:c4:09:fd:fb:84:81:5f:46:f7:81: 9a:bc:58:a5:11:5f:32:8f:54:aa:e4:7e:cc:10:42: c6:fe:04:24:cb:8f:56:18:ca:31:36:8f:20:76:84: c2:39:2f:3a:83:ac:4c:a3:ee:36:15:4f:66:83:61: a6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5B:94:8D:12:B0:4E:3F:ED:EF:BA:6E:6C:23:1B:29:BF:F6:DF:E4 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a8ee::/32 Signature Algorithm: sha256WithRSAEncryption 24:4e:e9:1e:ba:2c:13:a8:cb:9a:0a:fe:90:ed:d5:95:52:6f: 3f:c1:fb:57:aa:31:7d:4f:28:5b:ed:8e:8c:d2:00:8e:36:08: 1a:07:ca:50:29:91:0e:40:a0:3a:17:52:aa:41:07:74:dd:a0: 23:93:14:a8:a1:36:3e:a5:1c:66:3f:7b:f3:d7:26:2b:d3:99: e9:c4:0f:a0:3e:0b:a2:f5:6b:1b:c9:38:81:48:14:c3:16:ce: ec:8d:65:2c:23:63:4f:c0:57:41:10:31:61:40:42:1e:2b:1a: 2e:57:29:25:37:f0:ff:5d:84:3a:38:2a:e6:ab:1c:48:43:31: 7c:00:94:7c:34:d5:fb:eb:12:bb:c6:a8:25:eb:00:17:86:cf: f5:28:6a:e5:a7:44:03:a4:66:b3:1f:7b:e3:cc:03:20:d0:8e: a8:8c:91:45:6a:a5:5c:3c:85:f5:02:07:3f:96:43:4c:7a:92: f3:1a:6c:34:88:cf:33:5e:2b:2b:29:30:7f:91:01:b5:99:92: 6d:45:aa:0e:9e:d3:94:97:33:9b:3c:db:75:90:0c:5c:de:33: b9:9e:62:92:3b:ed:df:b1:4b:c1:08:1d:55:1f:17:7d:08:08: 26:e4:ca:cd:b2:a5:8e:bd:38:cf:b0:fa:17:76:e1:34:45:f6: 8b:a7:86:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTllCCFgFwcVZ/0bQfzcZ+Kz4yjQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTYzNVoX DTI3MDMwMzA2MjEzNVowMzExMC8GA1UEAxMoODI1Qjk0OEQxMkIwNEUzRkVERUZC QTZFNkMyMzFCMjlCRkY2REZFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXZhxagYFRMfpNY0IpyEotAHir7PoIlEf7H2SixN85ILxRUavXng0y0MSwy Zpb++w/I9kshKhB8ohddJVTj5ESShrrkLNpXYHKZvxgPF6PLg9tguBj6mOF/ruyt FbUqqCyjfP8+Ybs/c/LPy3t9toN0IAycIBKwJluSBtaIyZy+SH+1qLFXo7vbCoQB ajUySLIeLsbBfGyBrSr/efhHEtLMrV3WJX227H+JRBm4purl0x6uOVrOy0XDWf06 xNVmOSNhg27bqeHECf37hIFfRveBmrxYpRFfMo9UquR+zBBCxv4EJMuPVhjKMTaP IHaEwjkvOoOsTKPuNhVPZoNhpt0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSCW5SN ErBOP+3vum5sIxspv/bf5DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDkzNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qO4wDQYJKoZIhvcNAQELBQADggEBACRO6R66LBOoy5oK/pDt1ZVSbz/B+1eqMX1P KFvtjozSAI42CBoHylApkQ5AoDoXUqpBB3TdoCOTFKihNj6lHGY/e/PXJivTmenE D6A+C6L1axvJOIFIFMMWzuyNZSwjY0/AV0EQMWFAQh4rGi5XKSU38P9dhDo4Kuar HEhDMXwAlHw01fvrErvGqCXrABeGz/UoauWnRAOkZrMfe+PMAyDQjqiMkUVqpVw8 hfUCBz+WQ0x6kvMabDSIzzNeKyspMH+RAbWZkm1Fqg6e05SXM5s823WQDFzeM7me YpI77d+xS8EIHVUfF30ICCbkys2ypY69OM+w+hd24TRF9ounhto= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:22 2026 by rpki-client