$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143031.roa File: AS143031.roa (raw, json) Hash identifier: w/4w+o9aJDKVe8HkFQH7u8Qti6/ahuN5PkgNZ0wd3Jc= Subject key identifier: 31:66:41:82:27:9C:02:0E:B8:67:24:A9:E7:F0:8D:CF:91:63:FC:B7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 05D7264A565A0EBAD13EBB320A147DE23B2C8778 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143031.roa Signing time: Wed 04 Mar 2026 06:06:32 +0000 ROA not before: Wed 04 Mar 2026 06:01:32 +0000 ROA not after: Wed 03 Mar 2027 06:06:32 +0000 asID: 143031 IP address blocks: 240a:a17d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d7:26:4a:56:5a:0e:ba:d1:3e:bb:32:0a:14:7d:e2:3b:2c:87:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:32 2026 GMT Not After : Mar 3 06:06:32 2027 GMT Subject: CN=31664182279C020EB86724A9E7F08DCF9163FCB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c1:0e:f6:89:ab:ad:52:37:75:ac:7d:d4:33: fd:5b:ac:44:18:6f:9a:42:de:d0:69:97:62:95:bc: 97:df:68:e6:ff:6a:44:9e:ff:d8:ab:7c:fd:58:aa: 10:23:23:f1:b4:be:61:d1:81:9e:06:dd:44:02:34: e4:72:04:45:96:b9:8d:9f:c1:28:27:1a:96:fc:5f: 6b:52:eb:fa:9b:4a:49:67:e1:8c:9e:0a:f2:58:86: bb:5b:c7:c1:f8:50:aa:da:18:02:8b:eb:fd:73:e7: c6:32:6f:74:0e:10:1e:06:37:3d:39:d5:61:e8:65: 43:02:83:17:5c:65:f0:cc:f6:75:06:d6:4c:ed:89: c8:84:a2:1d:45:85:91:b9:2b:a0:ff:38:5c:be:1e: 72:ce:a7:fe:bf:4b:f0:66:a7:65:7a:a8:05:60:19: 8f:e3:a1:80:d2:e1:09:e7:10:c5:84:57:b5:ec:ff: 6a:25:3c:20:77:80:2b:fc:33:f0:76:aa:de:97:01: 8e:69:e0:3d:d4:ce:c9:c4:4a:15:b7:1a:a4:9f:3f: 15:f6:af:f9:42:df:af:db:f0:cb:2a:31:fe:be:08: 5e:06:2d:65:4d:2e:20:aa:69:99:3a:63:c4:b0:99: 98:52:e0:c7:a1:96:ce:b4:69:ed:c6:4f:de:27:15: df:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:66:41:82:27:9C:02:0E:B8:67:24:A9:E7:F0:8D:CF:91:63:FC:B7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a17d::/32 Signature Algorithm: sha256WithRSAEncryption 37:ee:48:33:af:28:d1:f7:dc:de:a5:97:ac:c0:71:78:5e:3f: e1:84:d0:1a:f0:21:1b:5c:24:ca:35:8b:66:46:41:ac:5f:c6: 54:a8:52:35:9c:b8:02:8a:bf:00:8f:25:ef:22:26:38:c3:62: c6:53:ee:fd:c1:8a:c3:cc:62:92:02:2c:22:7e:dd:23:86:1c: 65:58:8b:f2:be:a9:59:bb:94:e6:3f:28:68:78:ed:0c:35:67: 1b:0d:51:68:48:db:3c:f1:c7:ec:ca:32:e3:31:71:81:fc:f5: 3d:72:7c:d7:b7:45:a7:82:0a:9a:00:90:50:68:65:65:06:0d: 4d:a2:5b:8d:71:08:16:d1:b8:66:80:e6:05:57:79:a9:6e:c0: f3:0b:9f:c0:f4:3f:4a:a7:0b:ea:07:ee:6c:a6:a5:34:6f:b7: 06:fa:0f:3f:f5:00:0c:36:ea:5d:50:fc:78:e2:cb:76:c0:07: 59:27:ce:0a:20:43:a0:b8:c3:cd:eb:0d:24:2a:18:d2:c1:e7: 93:71:4b:cd:94:27:7c:80:c7:08:5f:0e:1b:b0:94:e5:37:57: 29:9d:fc:26:a9:f2:87:b7:6d:f3:8d:71:bc:16:5e:d9:6f:a3: ef:bc:a9:0d:e2:db:65:2e:84:4b:cd:45:c2:69:c2:f6:37:e5: 4c:e3:41:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBdcmSlZaDrrRPrsyChR94jssh3gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDEzMloX DTI3MDMwMzA2MDYzMlowMzExMC8GA1UEAxMoMzE2NjQxODIyNzlDMDIwRUI4Njcy NEE5RTdGMDhEQ0Y5MTYzRkNCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfBDvaJq61SN3WsfdQz/VusRBhvmkLe0GmXYpW8l99o5v9qRJ7/2Kt8/Viq ECMj8bS+YdGBngbdRAI05HIERZa5jZ/BKCcalvxfa1Lr+ptKSWfhjJ4K8liGu1vH wfhQqtoYAovr/XPnxjJvdA4QHgY3PTnVYehlQwKDF1xl8Mz2dQbWTO2JyISiHUWF kbkroP84XL4ecs6n/r9L8GanZXqoBWAZj+OhgNLhCecQxYRXtez/aiU8IHeAK/wz 8Haq3pcBjmngPdTOycRKFbcapJ8/Ffav+ULfr9vwyyox/r4IXgYtZU0uIKppmTpj xLCZmFLgx6GWzrRp7cZP3icV3w8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQxZkGC J5wCDrhnJKnn8I3PkWP8tzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzAzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oX0wDQYJKoZIhvcNAQELBQADggEBADfuSDOvKNH33N6ll6zAcXheP+GE0BrwIRtc JMo1i2ZGQaxfxlSoUjWcuAKKvwCPJe8iJjjDYsZT7v3BisPMYpICLCJ+3SOGHGVY i/K+qVm7lOY/KGh47Qw1ZxsNUWhI2zzxx+zKMuMxcYH89T1yfNe3RaeCCpoAkFBo ZWUGDU2iW41xCBbRuGaA5gVXealuwPMLn8D0P0qnC+oH7mympTRvtwb6Dz/1AAw2 6l1Q/Hjiy3bAB1knzgogQ6C4w83rDSQqGNLB55NxS82UJ3yAxwhfDhuwlOU3Vymd /Cap8oe3bfONcbwWXtlvo++8qQ3i22UuhEvNRcJpwvY35UzjQZ8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:13 2026 by rpki-client