$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143024.roa File: AS143024.roa (raw, json) Hash identifier: sYU1E0meTUq1FEf/bbH7ZfG6tw63IwCFJPs9imjtUII= Subject key identifier: B9:96:53:D5:A8:16:6F:9C:F6:FA:E7:2A:13:45:49:BB:41:4A:F6:C9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2AC8B5E349CA5663D70B8467BAC7DEDCA1B12063 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143024.roa Signing time: Wed 04 Mar 2026 06:05:43 +0000 ROA not before: Wed 04 Mar 2026 06:00:43 +0000 ROA not after: Wed 03 Mar 2027 06:05:43 +0000 asID: 143024 IP address blocks: 240a:a176::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c8:b5:e3:49:ca:56:63:d7:0b:84:67:ba:c7:de:dc:a1:b1:20:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:43 2026 GMT Not After : Mar 3 06:05:43 2027 GMT Subject: CN=B99653D5A8166F9CF6FAE72A134549BB414AF6C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0a:f8:c2:91:5f:9c:3c:24:84:56:8d:3e:00: c9:33:4c:29:17:e5:59:e9:28:66:4e:51:ec:59:a2: d8:21:cd:cb:c3:ea:00:09:1f:b0:25:22:24:ea:26: 8a:53:a5:6b:54:d5:38:85:d3:d3:30:29:fe:70:82: 50:99:ef:99:80:33:41:18:55:08:69:0b:9d:95:7c: 44:ba:71:08:f1:5d:b6:af:3e:81:80:a4:30:2b:a0: 98:05:c1:a8:5f:bc:35:29:0a:c5:68:cc:1f:75:90: f9:42:f0:c1:c8:c2:2b:16:e7:32:ff:25:1a:5b:c0: 53:1d:b2:ed:07:e7:78:c2:40:68:7c:1d:68:bd:c1: da:0d:63:88:c4:76:67:25:d2:5f:2f:77:49:a7:50: b6:16:8e:da:65:89:5f:c9:74:af:a7:91:c2:53:aa: f0:9b:6f:b5:ce:90:6a:1b:33:76:35:95:5e:aa:5b: 98:b1:ca:5c:dc:32:03:5d:3c:1b:d2:13:7f:1e:60: 03:77:f0:e9:b4:e8:86:d5:52:e9:3e:db:51:64:80: 10:e6:25:f1:3d:00:31:96:30:69:aa:0e:e7:b2:89: 7e:da:77:9a:e4:8f:08:98:00:5e:2f:91:c5:bb:ac: a6:0b:9f:27:1a:c4:ab:54:41:0d:a9:09:d6:a8:72: 29:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:96:53:D5:A8:16:6F:9C:F6:FA:E7:2A:13:45:49:BB:41:4A:F6:C9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143024.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a176::/32 Signature Algorithm: sha256WithRSAEncryption 7b:98:e1:f1:f2:04:20:c0:7a:96:2a:b8:ff:c8:fa:a3:4e:56: 7f:66:c3:ac:4d:89:79:34:fc:62:c0:02:f7:ce:39:1f:1c:c0: 05:8a:af:53:62:27:fe:e8:61:31:87:58:47:f5:7b:25:4b:22: b6:1d:04:de:7b:6e:3e:73:fe:60:bd:fb:b8:40:ad:e6:cc:a7: 7a:69:5c:2d:18:15:4f:f8:27:c6:e9:20:33:98:ca:b7:f1:88: 0d:a8:3e:89:b1:e8:9d:a0:71:87:15:ad:0d:38:95:6a:0f:8d: 5d:9b:e7:28:f7:6d:27:10:55:24:ae:c6:98:08:3f:03:6d:2d: 7a:79:20:d4:91:86:d8:e9:2c:14:96:d2:8d:91:24:71:78:c2: 0c:df:16:fd:92:f8:75:32:2a:93:3f:0e:01:4b:e3:53:7c:43: 3b:f5:32:00:ce:a3:22:43:22:e8:6a:6d:b4:c7:2b:55:a2:cc: 1a:26:0a:42:a9:d4:28:a4:51:c4:3d:cc:47:0b:b8:a6:c5:d4: c9:27:0b:c6:ab:89:25:81:c7:b0:13:44:86:94:dc:c8:c0:ad: 26:04:9d:81:03:e4:4f:34:8e:36:7b:dd:4d:cb:72:2c:a5:e0: 6c:fb:64:dc:fc:83:b1:8a:aa:d8:5a:ac:7e:e2:00:4f:f3:23: 81:df:3f:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKsi140nKVmPXC4Rnusfe3KGxIGMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA0M1oX DTI3MDMwMzA2MDU0M1owMzExMC8GA1UEAxMoQjk5NjUzRDVBODE2NkY5Q0Y2RkFF NzJBMTM0NTQ5QkI0MTRBRjZDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0K+MKRX5w8JIRWjT4AyTNMKRflWekoZk5R7Fmi2CHNy8PqAAkfsCUiJOom ilOla1TVOIXT0zAp/nCCUJnvmYAzQRhVCGkLnZV8RLpxCPFdtq8+gYCkMCugmAXB qF+8NSkKxWjMH3WQ+ULwwcjCKxbnMv8lGlvAUx2y7QfneMJAaHwdaL3B2g1jiMR2 ZyXSXy93SadQthaO2mWJX8l0r6eRwlOq8Jtvtc6QahszdjWVXqpbmLHKXNwyA108 G9ITfx5gA3fw6bTohtVS6T7bUWSAEOYl8T0AMZYwaaoO57KJftp3muSPCJgAXi+R xbuspgufJxrEq1RBDakJ1qhyKakCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS5llPV qBZvnPb65yoTRUm7QUr2yTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzAyNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oXYwDQYJKoZIhvcNAQELBQADggEBAHuY4fHyBCDAepYquP/I+qNOVn9mw6xNiXk0 /GLAAvfOOR8cwAWKr1NiJ/7oYTGHWEf1eyVLIrYdBN57bj5z/mC9+7hArebMp3pp XC0YFU/4J8bpIDOYyrfxiA2oPomx6J2gcYcVrQ04lWoPjV2b5yj3bScQVSSuxpgI PwNtLXp5INSRhtjpLBSW0o2RJHF4wgzfFv2S+HUyKpM/DgFL41N8Qzv1MgDOoyJD IuhqbbTHK1WizBomCkKp1CikUcQ9zEcLuKbF1MknC8ariSWBx7ATRIaU3MjArSYE nYED5E80jjZ73U3Lciyl4Gz7ZNz8g7GKqtharH7iAE/zI4HfP3I= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:04 2026 by rpki-client