$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144994.roa File: AS144994.roa (raw, json) Hash identifier: 2KoS+fHIpGoQ14sfCnqiUnaE+RZa22eEITZ1V4iLrVc= Subject key identifier: E1:5A:2B:DB:26:0B:B7:6C:5D:0F:58:DE:D0:6E:63:E4:36:83:49:4C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0115629CD9F74727F694D5970B5099C7B2163F53 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144994.roa Signing time: Wed 04 Mar 2026 06:21:52 +0000 ROA not before: Wed 04 Mar 2026 06:16:52 +0000 ROA not after: Wed 03 Mar 2027 06:21:52 +0000 asID: 144994 IP address blocks: 240a:a928::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:15:62:9c:d9:f7:47:27:f6:94:d5:97:0b:50:99:c7:b2:16:3f:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:16:52 2026 GMT Not After : Mar 3 06:21:52 2027 GMT Subject: CN=E15A2BDB260BB76C5D0F58DED06E63E43683494C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0f:3f:41:9f:13:55:2e:2a:dc:5b:40:f0:02: cb:83:18:e6:84:19:f1:e2:c5:80:90:b4:a7:cf:7e: b0:40:ea:48:2a:54:cf:3b:66:79:8b:0f:93:ff:f4: 5a:15:de:15:48:61:03:13:4d:f6:cb:98:45:17:62: c2:da:85:40:bd:06:3f:c2:cc:ca:78:c4:57:16:05: b3:a7:cf:6c:9b:1c:44:62:5b:ab:60:b6:ff:58:f6: b7:f9:33:38:7d:96:aa:3e:a3:6a:fc:bb:f7:bb:61: 22:d1:ba:4c:12:90:86:18:6c:bd:88:a5:45:de:e5: b6:bb:2a:a6:b5:d3:cb:f0:ad:9d:30:3c:73:87:34: ab:49:07:10:d7:96:10:04:b3:c6:62:c4:fc:d7:c1: 45:6c:05:e2:6b:29:be:03:2f:82:0e:06:2e:7d:4b: b4:a7:d6:f3:e4:10:b1:4c:ab:82:ec:38:c5:23:fb: b0:a3:2f:f9:1c:db:e8:51:0c:8b:e9:0a:01:8c:71: 35:90:00:0c:12:eb:34:7d:d8:6e:a0:bc:8d:3e:51: 07:c9:d7:80:2a:4d:fa:7e:ab:2a:38:a3:28:89:e9: 6a:8e:65:f4:fe:55:d4:28:f2:1d:ad:21:ce:42:8c: cd:18:fa:51:78:46:88:04:a2:07:bf:a0:04:12:5e: 43:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:5A:2B:DB:26:0B:B7:6C:5D:0F:58:DE:D0:6E:63:E4:36:83:49:4C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144994.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a928::/32 Signature Algorithm: sha256WithRSAEncryption a3:fb:4f:80:17:28:b1:58:23:9e:c9:f4:30:e2:be:eb:c5:e8: 1f:11:c7:fe:ac:b1:38:20:cf:76:4c:d3:06:0d:eb:75:3e:14: 3e:df:4a:a9:42:ac:00:e4:78:5e:2b:bc:52:09:35:d9:b5:84: 34:e9:d3:1c:33:30:35:ec:f0:d3:13:1c:a5:eb:8e:3e:3e:46: c4:a8:3f:e2:55:0d:fa:ea:89:7e:ff:6d:79:95:35:b9:35:e2: ad:5b:53:89:92:55:93:34:c3:ae:21:c7:00:2b:76:61:7d:9e: 14:58:85:ea:92:36:92:f0:1b:cf:2d:2a:49:e8:c1:ad:7b:6c: 13:d8:a2:3a:bf:d6:17:92:fd:0f:2f:65:39:ba:a0:f3:36:97: ef:25:16:a0:a9:22:4a:bc:12:8d:82:e1:77:aa:7c:d9:3e:45: 61:44:50:2b:fc:df:1b:a3:41:93:ca:c5:3b:32:b4:2b:e6:9f: 40:8e:4e:b6:ae:a2:08:63:14:a4:05:2b:db:14:f2:d3:c2:13: 5d:96:ea:c3:24:f8:60:a1:a5:34:93:25:b2:75:01:5c:18:75: 88:b8:ca:b0:62:d8:0f:39:c0:5f:81:74:eb:20:b5:20:0c:40: 00:4f:ca:27:65:70:1d:ff:fe:eb:50:9b:bc:f4:9d:6f:b0:af: 62:f2:0e:03 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUARVinNn3Ryf2lNWXC1CZx7IWP1MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTY1MloX DTI3MDMwMzA2MjE1MlowMzExMC8GA1UEAxMoRTE1QTJCREIyNjBCQjc2QzVEMEY1 OERFRDA2RTYzRTQzNjgzNDk0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwPP0GfE1UuKtxbQPACy4MY5oQZ8eLFgJC0p89+sEDqSCpUzztmeYsPk//0 WhXeFUhhAxNN9suYRRdiwtqFQL0GP8LMynjEVxYFs6fPbJscRGJbq2C2/1j2t/kz OH2Wqj6javy797thItG6TBKQhhhsvYilRd7ltrsqprXTy/CtnTA8c4c0q0kHENeW EASzxmLE/NfBRWwF4mspvgMvgg4GLn1LtKfW8+QQsUyrguw4xSP7sKMv+Rzb6FEM i+kKAYxxNZAADBLrNH3YbqC8jT5RB8nXgCpN+n6rKjijKInpao5l9P5V1CjyHa0h zkKMzRj6UXhGiASiB7+gBBJeQ9MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBThWivb Jgu3bF0PWN7QbmPkNoNJTDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDk5NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qSgwDQYJKoZIhvcNAQELBQADggEBAKP7T4AXKLFYI57J9DDivuvF6B8Rx/6ssTgg z3ZM0wYN63U+FD7fSqlCrADkeF4rvFIJNdm1hDTp0xwzMDXs8NMTHKXrjj4+RsSo P+JVDfrqiX7/bXmVNbk14q1bU4mSVZM0w64hxwArdmF9nhRYheqSNpLwG88tKkno wa17bBPYojq/1heS/Q8vZTm6oPM2l+8lFqCpIkq8Eo2C4XeqfNk+RWFEUCv83xuj QZPKxTsytCvmn0COTrauoghjFKQFK9sU8tPCE12W6sMk+GChpTSTJbJ1AVwYdYi4 yrBi2A85wF+BdOsgtSAMQABPyidlcB3//utQm7z0nW+wr2LyDgM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:50 2026 by rpki-client