$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144991.roa File: AS144991.roa (raw, json) Hash identifier: 9qg62EW7Pm3Nu7HHqQCrlQY8BR8XvS7uCv4tJVKi/Rc= Subject key identifier: 0B:45:02:15:52:83:9A:0B:FE:3D:E4:29:06:70:84:96:93:E7:FC:E7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 264DC15F3B83484B32C6BB69586E235364FA56CE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144991.roa Signing time: Wed 04 Mar 2026 06:21:57 +0000 ROA not before: Wed 04 Mar 2026 06:16:57 +0000 ROA not after: Wed 03 Mar 2027 06:21:57 +0000 asID: 144991 IP address blocks: 240a:a925::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4d:c1:5f:3b:83:48:4b:32:c6:bb:69:58:6e:23:53:64:fa:56:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:57 2026 GMT Not After : Mar 3 06:21:57 2027 GMT Subject: CN=0B45021552839A0BFE3DE4290670849693E7FCE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:03:50:78:51:f8:f0:38:7b:3c:2b:cc:2e:d9: 71:4b:15:46:40:14:5a:3a:8c:f2:6b:c2:05:71:ec: 93:d8:69:3a:4f:93:b9:1b:20:76:b6:ee:d3:e0:a2: 01:bd:5b:ed:a8:ab:fb:5d:33:db:bf:e4:af:0f:0e: 8d:d1:de:9c:47:c7:87:92:d5:3e:15:f1:29:f0:5e: a9:a4:7a:5f:7d:cc:48:c4:b8:d6:0f:7a:e7:5e:c6: 5f:a8:f8:77:1a:c7:5e:0d:b0:c8:71:41:39:35:37: 62:92:f6:fd:68:73:56:67:2d:ef:b1:08:cf:55:f6: b3:49:90:e4:3b:ac:ce:f1:b1:69:e9:a4:66:88:68: 68:d8:0f:a9:aa:3c:b8:bf:23:94:88:61:5c:26:4d: 19:dc:d6:17:56:98:c0:13:66:ea:63:57:28:27:37: a3:92:f5:3c:ea:68:92:4e:81:be:ed:d4:3e:a5:11: 13:51:6d:d9:8e:32:6a:b2:3e:2b:b2:5f:fa:d2:81: 6a:4c:22:e7:5a:1c:aa:08:2f:74:b8:cd:2b:cd:8b: 36:2b:b2:39:4e:07:6f:58:f3:9d:dc:f0:7f:a7:4d: 7a:e6:50:5f:82:13:b7:d8:64:47:a3:47:9c:27:70: ce:0c:3f:51:6a:a7:6b:77:38:d1:5d:9f:76:25:3b: 7f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:45:02:15:52:83:9A:0B:FE:3D:E4:29:06:70:84:96:93:E7:FC:E7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144991.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a925::/32 Signature Algorithm: sha256WithRSAEncryption 27:03:a2:58:89:72:4c:3c:e5:0d:39:8c:15:1e:e9:ae:1a:08: ef:f3:27:05:8b:52:b8:6f:ee:4c:dd:6d:78:ab:8b:a1:67:0a: 19:f2:30:e1:0c:cb:ea:6b:76:43:2f:ce:d5:92:b0:da:23:b1: 24:b2:54:6f:a1:ca:a8:b5:3d:50:f1:eb:51:d9:ac:89:33:34: af:2d:18:92:82:eb:56:ac:33:7c:e8:58:55:ec:a5:b7:d7:62: 2a:fa:25:54:63:f0:13:81:ae:06:77:6a:32:1e:81:f0:01:1c: 08:e7:39:6e:ff:63:f0:2f:e1:bb:d9:09:60:31:22:8b:bd:db: 19:8b:37:d0:42:6c:4a:aa:82:46:ec:46:21:ae:47:19:07:4d: b4:78:6f:39:20:75:b0:74:0d:74:d1:4b:8b:d6:df:eb:3a:f0: 6b:fa:7d:ec:f5:32:3a:21:a4:48:5f:74:af:2e:c7:26:92:13: 69:06:9d:e8:97:8d:ba:9c:ce:37:eb:b8:6a:d9:73:bc:75:1e: 97:92:46:6c:94:0b:25:e4:3c:54:fe:96:f1:a6:c6:04:56:72: 1f:06:c6:06:4c:39:34:68:58:14:9b:ba:f1:ca:e4:3f:ca:ae: 92:21:70:70:9c:40:b9:ba:67:b1:d9:43:9f:95:1b:69:9b:fd: 07:09:d6:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJk3BXzuDSEsyxrtpWG4jU2T6Vs4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1N1oX DTI3MDMwMzA2MjE1N1owMzExMC8GA1UEAxMoMEI0NTAyMTU1MjgzOUEwQkZFM0RF NDI5MDY3MDg0OTY5M0U3RkNFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOcDUHhR+PA4ezwrzC7ZcUsVRkAUWjqM8mvCBXHsk9hpOk+TuRsgdrbu0+Ci Ab1b7air+10z27/krw8OjdHenEfHh5LVPhXxKfBeqaR6X33MSMS41g96517GX6j4 dxrHXg2wyHFBOTU3YpL2/WhzVmct77EIz1X2s0mQ5DuszvGxaemkZohoaNgPqao8 uL8jlIhhXCZNGdzWF1aYwBNm6mNXKCc3o5L1POpokk6Bvu3UPqURE1Ft2Y4yarI+ K7Jf+tKBakwi51ocqggvdLjNK82LNiuyOU4Hb1jzndzwf6dNeuZQX4ITt9hkR6NH nCdwzgw/UWqna3c40V2fdiU7f/0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQLRQIV UoOaC/495CkGcISWk+f85zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDk5MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qSUwDQYJKoZIhvcNAQELBQADggEBACcDoliJckw85Q05jBUe6a4aCO/zJwWLUrhv 7kzdbXiri6FnChnyMOEMy+prdkMvztWSsNojsSSyVG+hyqi1PVDx61HZrIkzNK8t GJKC61asM3zoWFXspbfXYir6JVRj8BOBrgZ3ajIegfABHAjnOW7/Y/Av4bvZCWAx Iou92xmLN9BCbEqqgkbsRiGuRxkHTbR4bzkgdbB0DXTRS4vW3+s68Gv6fez1Mjoh pEhfdK8uxyaSE2kGneiXjbqczjfruGrZc7x1HpeSRmyUCyXkPFT+lvGmxgRWch8G xgZMOTRoWBSbuvHK5D/KrpIhcHCcQLm6Z7HZQ5+VG2mb/QcJ1kI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:21 2026 by rpki-client