$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143016.roa File: AS143016.roa (raw, json) Hash identifier: 6cI6z7FVCybIN901qlya0y9i9m8brUfYBvbMS5Kr+L0= Subject key identifier: 7E:F2:7D:11:82:97:5E:E5:B9:1C:5B:80:3B:82:79:EB:50:95:04:E1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 758684971EDDF90FD3066DBDC572C9CA3570B98E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143016.roa Signing time: Wed 04 Mar 2026 06:07:15 +0000 ROA not before: Wed 04 Mar 2026 06:02:15 +0000 ROA not after: Wed 03 Mar 2027 06:07:15 +0000 asID: 143016 IP address blocks: 240a:a16e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:86:84:97:1e:dd:f9:0f:d3:06:6d:bd:c5:72:c9:ca:35:70:b9:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:15 2026 GMT Not After : Mar 3 06:07:15 2027 GMT Subject: CN=7EF27D1182975EE5B91C5B803B8279EB509504E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3c:c6:1c:61:90:00:13:19:62:fb:fc:9c:18: 8f:5b:52:b7:73:09:67:87:80:ca:8c:8f:b9:7a:b6: 49:62:0f:12:e1:3c:e5:0e:09:0f:34:1e:96:65:37: 4e:3e:8d:7b:cb:4e:36:36:0c:61:fd:c4:d7:69:69: 1f:39:63:e3:94:48:4a:ce:37:0b:97:24:8d:cc:67: 4f:0c:28:de:22:f8:b0:51:2d:79:df:ed:d5:2d:a8: 00:5c:80:13:46:34:fe:a2:22:87:e4:7e:59:69:8f: 93:1b:b4:72:41:31:7c:56:ed:2c:c7:bc:6e:16:96: 2e:b3:7c:40:44:a5:cf:c8:5d:67:e4:8b:54:4a:71: 34:a8:8a:d8:f1:a7:8e:79:6f:0a:65:eb:e3:1f:a9: cf:3a:d9:14:0e:f9:87:c8:95:c0:ff:1b:2c:b9:6a: c4:05:e7:20:94:fa:76:b4:27:d5:19:a9:4a:4a:dd: 8d:b8:93:27:08:34:00:01:85:60:67:d3:c1:65:05: 85:a4:33:a4:07:f7:8e:2d:30:45:8a:dc:c9:bf:d2: b4:f7:22:fc:2e:02:19:3a:ca:b9:7a:cd:a2:c8:9a: 08:49:e4:05:58:61:e6:93:3d:50:e3:13:f9:21:1d: bf:8b:16:c4:42:87:3c:53:14:80:bf:95:10:a9:4d: fa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F2:7D:11:82:97:5E:E5:B9:1C:5B:80:3B:82:79:EB:50:95:04:E1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a16e::/32 Signature Algorithm: sha256WithRSAEncryption c1:05:ae:b3:10:61:74:39:e9:3d:e9:eb:d7:93:49:66:af:46: 33:67:69:78:e8:1f:7e:6b:1d:d6:2a:19:9d:38:34:97:1e:22: 64:20:0b:b4:eb:e3:97:9e:45:0f:47:45:13:59:e4:a0:b7:13: a7:5b:af:96:02:32:c8:81:14:f3:77:95:21:19:52:d8:ef:a6: a8:d1:49:6e:51:8d:cf:8d:df:a1:7b:5a:6c:77:b1:1f:db:6a: 65:9d:b2:6f:8f:f7:3a:bb:ac:56:72:a6:59:55:94:cf:f1:03: 15:c8:a9:e0:ed:07:d4:23:c0:50:d2:ed:6c:10:5f:40:59:6b: f7:0f:01:ff:c8:56:6b:c9:aa:43:92:45:d1:4f:d1:12:dd:7b: 8b:b9:7f:d0:3f:c2:e9:d4:66:07:fa:e6:4b:b3:e7:73:ad:38: 23:11:b5:6c:73:45:3f:d3:f1:cf:bb:4f:17:95:df:5f:c3:f0: 7b:e6:c3:84:aa:ae:17:31:61:5c:ae:69:df:ae:34:e7:62:d8: 32:42:95:0f:74:0f:c7:f1:f9:2d:be:1e:e3:0e:74:f9:81:a7: 03:ea:ec:90:d2:ad:7e:85:ee:24:41:85:4c:3a:5f:45:c2:4d: 3f:71:c2:48:4c:71:5e:cb:22:d7:51:3a:99:34:64:71:35:ca: db:ac:4f:be -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdYaElx7d+Q/TBm29xXLJyjVwuY4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIxNVoX DTI3MDMwMzA2MDcxNVowMzExMC8GA1UEAxMoN0VGMjdEMTE4Mjk3NUVFNUI5MUM1 QjgwM0I4Mjc5RUI1MDk1MDRFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKE8xhxhkAATGWL7/JwYj1tSt3MJZ4eAyoyPuXq2SWIPEuE85Q4JDzQelmU3 Tj6Ne8tONjYMYf3E12lpHzlj45RISs43C5ckjcxnTwwo3iL4sFEted/t1S2oAFyA E0Y0/qIih+R+WWmPkxu0ckExfFbtLMe8bhaWLrN8QESlz8hdZ+SLVEpxNKiK2PGn jnlvCmXr4x+pzzrZFA75h8iVwP8bLLlqxAXnIJT6drQn1RmpSkrdjbiTJwg0AAGF YGfTwWUFhaQzpAf3ji0wRYrcyb/StPci/C4CGTrKuXrNosiaCEnkBVhh5pM9UOMT +SEdv4sWxEKHPFMUgL+VEKlN+pECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR+8n0R gpde5bkcW4A7gnnrUJUE4TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzAxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oW4wDQYJKoZIhvcNAQELBQADggEBAMEFrrMQYXQ56T3p69eTSWavRjNnaXjoH35r HdYqGZ04NJceImQgC7Tr45eeRQ9HRRNZ5KC3E6dbr5YCMsiBFPN3lSEZUtjvpqjR SW5Rjc+N36F7Wmx3sR/bamWdsm+P9zq7rFZypllVlM/xAxXIqeDtB9QjwFDS7WwQ X0BZa/cPAf/IVmvJqkOSRdFP0RLde4u5f9A/wunUZgf65kuz53OtOCMRtWxzRT/T 8c+7TxeV31/D8Hvmw4SqrhcxYVyuad+uNOdi2DJClQ90D8fx+S2+HuMOdPmBpwPq 7JDSrX6F7iRBhUw6X0XCTT9xwkhMcV7LItdROpk0ZHE1ytusT74= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:16 2026 by rpki-client