$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144998.roa File: AS144998.roa (raw, json) Hash identifier: yPew0OwwmrgprrujP6hzPO9ccwsf9IUaTJirSB9rfUI= Subject key identifier: E7:58:EB:66:9D:3D:9B:37:44:08:97:EA:DC:03:95:43:DE:0B:38:69 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 36A05D8FFA7D5F6271345B8A178FC7F3540C7749 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144998.roa Signing time: Wed 04 Mar 2026 06:22:20 +0000 ROA not before: Wed 04 Mar 2026 06:17:20 +0000 ROA not after: Wed 03 Mar 2027 06:22:20 +0000 asID: 144998 IP address blocks: 240a:a92c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:a0:5d:8f:fa:7d:5f:62:71:34:5b:8a:17:8f:c7:f3:54:0c:77:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:17:20 2026 GMT Not After : Mar 3 06:22:20 2027 GMT Subject: CN=E758EB669D3D9B37440897EADC039543DE0B3869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:79:52:8a:f3:9e:3b:1f:dd:25:a9:f7:0b:8d: 87:3a:9b:e4:2e:33:7a:50:6c:fa:85:bd:88:6b:1b: 19:d7:b9:9a:bc:ac:c9:c0:a4:ec:1f:b5:6c:d4:85: 08:c9:f4:2f:10:31:b7:46:7c:04:78:b5:c3:e7:c1: f5:d5:a8:39:dc:98:69:5f:03:86:38:95:18:e6:15: 1c:73:de:95:94:b6:1d:68:d0:44:3f:06:70:26:1b: 54:cb:98:23:3d:2d:67:b5:78:88:5a:79:b7:82:54: b7:c3:85:86:ef:58:d1:fd:45:6b:91:09:30:58:a9: 88:0e:96:13:ba:26:4f:f0:77:c3:b6:40:cc:38:4d: d8:a0:aa:c7:55:be:fa:00:dd:0e:d0:6f:85:73:c8: bd:68:86:aa:f1:2a:3a:fb:57:ff:f1:1e:37:e1:39: e2:00:c6:88:54:4e:1b:a5:1d:57:7c:b9:f3:af:63: c3:33:4a:1f:d2:14:b7:4c:8b:b2:0e:80:d1:c5:64: 22:b8:12:e2:2f:44:55:31:2f:e0:bc:34:8b:ce:c5: c9:49:af:5c:9f:32:d8:05:22:43:2d:38:57:5d:63: 30:1e:1d:34:5e:27:c9:79:d7:c4:2a:9b:38:0d:bc: 43:b7:99:3f:c3:cd:1e:50:92:4d:9b:3b:ae:a9:d7: 07:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:58:EB:66:9D:3D:9B:37:44:08:97:EA:DC:03:95:43:DE:0B:38:69 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144998.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a92c::/32 Signature Algorithm: sha256WithRSAEncryption 38:86:04:87:04:0d:6c:7b:73:ed:f1:0b:a3:ab:fd:7a:ba:df: bd:b3:07:ae:fc:6f:26:2b:06:17:fe:3b:64:d0:cd:74:0d:0e: 05:7f:4a:9a:bd:89:e1:de:29:46:ad:79:cd:45:f3:1d:c5:73: b7:92:47:92:b8:34:ba:1c:f1:d2:b7:50:a1:4b:b5:ab:c4:8f: a7:09:20:91:0f:0f:88:fa:5b:91:bc:a0:15:f7:54:08:b1:56: c8:0d:99:50:97:62:02:e3:6b:0d:95:f8:c4:89:cb:d4:56:61: 3c:e1:da:29:93:50:67:e8:16:58:7e:08:cd:c4:6b:d4:57:63: e9:fc:c0:44:7f:fd:b6:3c:cb:f6:7a:d6:56:cd:b4:f8:90:aa: 02:16:05:3b:48:84:a3:c9:e7:33:12:e2:13:a5:43:37:fa:2d: 54:c0:5d:6c:03:52:7c:4b:2b:5b:ef:7a:9c:a8:7b:a9:b6:b8: 3a:fd:ae:b7:9e:37:fe:af:54:29:58:ff:e7:28:04:b0:59:33: fe:53:fa:1e:d9:83:bc:5d:4f:3c:b2:da:22:0c:67:e3:fc:39: 73:bb:aa:37:b6:2c:75:02:33:4d:94:74:3d:e9:7a:e6:04:2f: 34:d4:c3:c0:e6:21:4a:39:d4:7f:ac:8e:87:96:7e:3f:a7:3f: ea:48:8f:f1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNqBdj/p9X2JxNFuKF4/H81QMd0kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTcyMFoX DTI3MDMwMzA2MjIyMFowMzExMC8GA1UEAxMoRTc1OEVCNjY5RDNEOUIzNzQ0MDg5 N0VBREMwMzk1NDNERTBCMzg2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZ5Uorznjsf3SWp9wuNhzqb5C4zelBs+oW9iGsbGde5mrysycCk7B+1bNSF CMn0LxAxt0Z8BHi1w+fB9dWoOdyYaV8DhjiVGOYVHHPelZS2HWjQRD8GcCYbVMuY Iz0tZ7V4iFp5t4JUt8OFhu9Y0f1Fa5EJMFipiA6WE7omT/B3w7ZAzDhN2KCqx1W+ +gDdDtBvhXPIvWiGqvEqOvtX//EeN+E54gDGiFROG6UdV3y5869jwzNKH9IUt0yL sg6A0cVkIrgS4i9EVTEv4Lw0i87FyUmvXJ8y2AUiQy04V11jMB4dNF4nyXnXxCqb OA28Q7eZP8PNHlCSTZs7rqnXB+cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTnWOtm nT2bN0QIl+rcA5VD3gs4aTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDk5OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qSwwDQYJKoZIhvcNAQELBQADggEBADiGBIcEDWx7c+3xC6Or/Xq6372zB678byYr Bhf+O2TQzXQNDgV/Spq9ieHeKUatec1F8x3Fc7eSR5K4NLoc8dK3UKFLtavEj6cJ IJEPD4j6W5G8oBX3VAixVsgNmVCXYgLjaw2V+MSJy9RWYTzh2imTUGfoFlh+CM3E a9RXY+n8wER//bY8y/Z61lbNtPiQqgIWBTtIhKPJ5zMS4hOlQzf6LVTAXWwDUnxL K1vvepyoe6m2uDr9rreeN/6vVClY/+coBLBZM/5T+h7Zg7xdTzyy2iIMZ+P8OXO7 qje2LHUCM02UdD3peuYELzTUw8DmIUo51H+sjoeWfj+nP+pIj/E= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:51 2026 by rpki-client