$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144980.roa File: AS144980.roa (raw, json) Hash identifier: sYIxpDm/fjsRArYGYy53nvvJFjxQh+ouON5f8cPVVZI= Subject key identifier: 68:77:45:79:D6:FE:69:2E:B0:AC:D5:AB:D0:C2:73:CC:0D:A9:EF:7D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3979362B5CAFD135B15D7D8F57EFAA7798E64D5D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144980.roa Signing time: Wed 04 Mar 2026 06:21:53 +0000 ROA not before: Wed 04 Mar 2026 06:16:53 +0000 ROA not after: Wed 03 Mar 2027 06:21:53 +0000 asID: 144980 IP address blocks: 240a:a91a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:79:36:2b:5c:af:d1:35:b1:5d:7d:8f:57:ef:aa:77:98:e6:4d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:53 2026 GMT Not After : Mar 3 06:21:53 2027 GMT Subject: CN=68774579D6FE692EB0ACD5ABD0C273CC0DA9EF7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ef:6e:ab:6c:07:54:de:ce:39:2d:43:5d:36: f5:c7:ad:f4:a9:d5:66:ca:50:f8:13:c2:95:97:26: a3:dc:fb:fa:9f:7d:6a:8d:43:7b:71:3d:c6:a5:6a: 19:2f:8d:81:32:2f:66:4c:92:26:76:32:97:e0:96: b2:90:5c:e9:db:b1:d2:42:c9:28:c7:67:f5:cd:01: ac:1e:df:46:c9:5e:6c:0f:4f:6c:a5:10:4a:3f:b3: ac:13:3d:f5:c1:fc:1e:bf:1d:d9:45:06:c4:a1:f4: d6:7f:97:8f:f8:db:d3:45:e7:91:95:0b:50:47:a8: 45:8b:03:a1:14:cd:aa:f0:3d:d0:a9:d6:fa:2c:26: 5f:a8:2c:1a:7d:d9:90:5c:a5:9c:dc:36:55:af:27: aa:e8:3e:d9:a4:66:01:f1:d2:36:61:6c:db:42:ae: 4b:3d:84:f8:7b:7b:ea:d9:f6:54:3f:42:08:c4:94: f5:e6:8d:3d:3b:df:3d:d9:ca:e4:1a:48:2e:45:69: 3d:43:d0:62:52:fd:a4:61:8c:fe:90:c9:90:7d:86: 8e:f4:3b:d0:9a:30:ce:c8:99:e1:67:3b:96:5e:1b: 66:f1:69:48:dd:07:37:b4:48:61:59:f4:c6:c6:d9: da:f8:d0:88:8d:7d:87:15:fd:43:6b:36:80:e2:5a: ba:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:77:45:79:D6:FE:69:2E:B0:AC:D5:AB:D0:C2:73:CC:0D:A9:EF:7D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144980.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a91a::/32 Signature Algorithm: sha256WithRSAEncryption 6e:cd:55:99:98:f2:30:2c:52:fe:5d:34:10:be:4f:ae:76:7c: 34:0d:5d:29:87:69:bb:c7:e1:10:94:b4:35:69:04:db:fc:1f: 21:e7:fd:58:f5:8e:02:d7:29:fd:bb:1e:b0:bf:19:7f:12:6b: 1d:29:28:a8:0f:23:c1:6c:02:74:fe:e8:73:2d:0b:8e:55:42: 3d:8e:e3:9a:21:2f:56:49:8a:5d:ec:85:4b:49:03:4f:29:ce: 37:75:58:fd:8c:a1:46:c7:f5:bb:da:97:75:17:97:e1:14:b8: 9f:bf:fb:6b:69:3f:ef:4f:84:a1:cf:71:96:91:63:5e:aa:3c: 76:78:15:e4:6e:17:5a:33:e4:06:56:2c:eb:eb:f8:38:9b:77: ad:90:8b:c2:62:40:79:58:b8:0a:c5:13:d8:a4:38:7f:1c:b0: eb:22:d3:78:32:5a:a5:8b:b4:9e:2e:2a:fb:19:71:f5:ad:03: b9:42:3b:a9:70:27:e9:c0:d1:b9:71:b4:13:4b:62:22:ce:ec: 1f:c4:b8:be:8f:ba:de:d9:2e:7c:80:23:c6:09:ed:c0:2d:ed: a3:21:00:98:8d:a4:51:bc:c7:cb:84:9a:cf:03:72:4d:c6:8e: f3:75:5b:e9:fd:86:37:2c:5a:5b:99:3b:f2:03:6e:26:1f:2f: 30:7f:38:e6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOXk2K1yv0TWxXX2PV++qd5jmTV0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1M1oX DTI3MDMwMzA2MjE1M1owMzExMC8GA1UEAxMoNjg3NzQ1NzlENkZFNjkyRUIwQUNE NUFCRDBDMjczQ0MwREE5RUY3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTvbqtsB1TezjktQ1029cet9KnVZspQ+BPClZcmo9z7+p99ao1De3E9xqVq GS+NgTIvZkySJnYyl+CWspBc6dux0kLJKMdn9c0BrB7fRslebA9PbKUQSj+zrBM9 9cH8Hr8d2UUGxKH01n+Xj/jb00XnkZULUEeoRYsDoRTNqvA90KnW+iwmX6gsGn3Z kFylnNw2Va8nqug+2aRmAfHSNmFs20KuSz2E+Ht76tn2VD9CCMSU9eaNPTvfPdnK 5BpILkVpPUPQYlL9pGGM/pDJkH2GjvQ70JowzsiZ4Wc7ll4bZvFpSN0HN7RIYVn0 xsbZ2vjQiI19hxX9Q2s2gOJauvMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRod0V5 1v5pLrCs1avQwnPMDanvfTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDk4MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qRowDQYJKoZIhvcNAQELBQADggEBAG7NVZmY8jAsUv5dNBC+T652fDQNXSmHabvH 4RCUtDVpBNv8HyHn/Vj1jgLXKf27HrC/GX8Sax0pKKgPI8FsAnT+6HMtC45VQj2O 45ohL1ZJil3shUtJA08pzjd1WP2MoUbH9bval3UXl+EUuJ+/+2tpP+9PhKHPcZaR Y16qPHZ4FeRuF1oz5AZWLOvr+Dibd62Qi8JiQHlYuArFE9ikOH8csOsi03gyWqWL tJ4uKvsZcfWtA7lCO6lwJ+nA0blxtBNLYiLO7B/EuL6Put7ZLnyAI8YJ7cAt7aMh AJiNpFG8x8uEms8Dck3GjvN1W+n9hjcsWluZO/IDbiYfLzB/OOY= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:38 2026 by rpki-client