$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143041.roa File: AS143041.roa (raw, json) Hash identifier: CiYArDzgAp0rPzyGRDPNYKtPDS9B4YcZYLkuerE4E8Q= Subject key identifier: 2C:0B:A2:47:6F:28:03:3B:6A:19:52:8B:15:70:1D:C2:DC:21:4B:72 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 13848072D3CC2978CDB9D414F613415E8D0C3D4D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143041.roa Signing time: Wed 04 Mar 2026 06:07:51 +0000 ROA not before: Wed 04 Mar 2026 06:02:51 +0000 ROA not after: Wed 03 Mar 2027 06:07:51 +0000 asID: 143041 IP address blocks: 240a:a187::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:84:80:72:d3:cc:29:78:cd:b9:d4:14:f6:13:41:5e:8d:0c:3d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:51 2026 GMT Not After : Mar 3 06:07:51 2027 GMT Subject: CN=2C0BA2476F28033B6A19528B15701DC2DC214B72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:05:31:e9:30:18:96:89:33:98:b8:49:14:e8: 04:5d:79:bd:e3:12:24:cd:85:a9:f1:88:9b:01:2a: 92:51:bd:e8:55:7f:77:77:e9:32:84:d9:e3:04:d1: 40:09:e7:78:63:ba:41:14:e9:63:ce:fb:66:32:02: 89:c8:43:1c:ea:25:4e:4d:91:86:ae:06:c7:60:f3: 0a:67:e2:6d:db:b2:e6:87:7e:86:69:c3:4a:50:ae: f2:42:9f:46:e4:df:67:a7:15:9e:a2:aa:0b:60:92: 90:6b:fe:7a:47:02:3a:b9:7e:b9:fe:20:d8:df:5c: 1e:aa:48:29:b9:6c:6a:3e:ab:fa:f0:e9:c0:9f:2e: a6:3b:16:4c:a6:06:c9:0a:d5:4b:36:3e:0b:39:89: 89:ab:8d:37:ca:d3:cc:fa:f9:45:38:1c:fb:30:0c: 68:90:d6:cf:1a:70:15:4a:18:79:c5:93:2c:15:18: 02:84:41:0d:63:37:91:9b:b8:bc:99:93:82:ca:fe: 27:86:f9:69:19:ff:6b:5f:3a:ab:36:ab:21:27:c7: b6:39:76:1f:e0:33:1e:36:98:39:f8:71:22:a9:ad: f0:dc:e8:07:06:ae:35:56:9d:e0:7a:e1:79:65:80: 97:64:31:e8:58:26:d3:42:ca:54:1b:6d:1a:0e:43: 0b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0B:A2:47:6F:28:03:3B:6A:19:52:8B:15:70:1D:C2:DC:21:4B:72 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143041.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a187::/32 Signature Algorithm: sha256WithRSAEncryption 35:92:25:2c:a8:15:fe:a1:2e:5c:f8:b2:bd:d5:e9:39:73:04: ba:1e:50:12:bb:1c:1a:07:fd:94:5c:d7:61:4c:0f:fa:b7:50: 6d:18:08:ca:79:e4:cc:00:85:77:1d:7f:7d:d9:d5:41:e8:aa: dc:0d:1a:dd:c1:d3:78:a3:f5:fe:d6:4f:7c:32:87:07:4f:53: d0:a0:56:e1:26:01:c0:02:ea:92:ea:70:b7:8f:e8:66:fb:da: cc:28:24:40:e3:05:52:06:45:23:56:8d:55:ea:9d:7f:6f:74: 95:62:84:74:8c:04:70:ef:21:58:62:d8:da:61:14:88:b1:7d: a8:68:9b:ae:37:52:04:95:66:8b:e5:ee:ef:88:5b:1a:21:d7: 5b:7c:bf:20:a0:43:ec:2a:f1:53:43:fd:ce:4d:02:36:af:e3: 7b:53:35:d5:75:b3:3c:5e:b6:1f:01:bf:95:d2:fd:94:77:14: 1f:f2:24:0c:a2:4c:e0:6c:da:46:84:68:74:c6:a3:cd:4d:90: 83:6a:de:24:f7:7e:d1:2a:49:d2:c7:6e:f9:9d:9a:a7:d7:60: 68:95:b6:12:06:ca:c1:17:0b:29:ee:7e:38:d2:e3:b1:53:ac: ff:e3:65:b8:28:b2:ed:4c:1d:53:8c:4a:e4:03:ff:10:8c:44: b1:cd:98:f6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUE4SActPMKXjNudQU9hNBXo0MPU0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDI1MVoX DTI3MDMwMzA2MDc1MVowMzExMC8GA1UEAxMoMkMwQkEyNDc2RjI4MDMzQjZBMTk1 MjhCMTU3MDFEQzJEQzIxNEI3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEFMekwGJaJM5i4SRToBF15veMSJM2FqfGImwEqklG96FV/d3fpMoTZ4wTR QAnneGO6QRTpY877ZjICichDHOolTk2Rhq4Gx2DzCmfibduy5od+hmnDSlCu8kKf RuTfZ6cVnqKqC2CSkGv+ekcCOrl+uf4g2N9cHqpIKblsaj6r+vDpwJ8upjsWTKYG yQrVSzY+CzmJiauNN8rTzPr5RTgc+zAMaJDWzxpwFUoYecWTLBUYAoRBDWM3kZu4 vJmTgsr+J4b5aRn/a186qzarISfHtjl2H+AzHjaYOfhxIqmt8NzoBwauNVad4Hrh eWWAl2Qx6Fgm00LKVBttGg5DC1kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQsC6JH bygDO2oZUosVcB3C3CFLcjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzA0MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oYcwDQYJKoZIhvcNAQELBQADggEBADWSJSyoFf6hLlz4sr3V6TlzBLoeUBK7HBoH /ZRc12FMD/q3UG0YCMp55MwAhXcdf33Z1UHoqtwNGt3B03ij9f7WT3wyhwdPU9Cg VuEmAcAC6pLqcLeP6Gb72swoJEDjBVIGRSNWjVXqnX9vdJVihHSMBHDvIVhi2Nph FIixfahom643UgSVZovl7u+IWxoh11t8vyCgQ+wq8VND/c5NAjav43tTNdV1szxe th8Bv5XS/ZR3FB/yJAyiTOBs2kaEaHTGo81NkINq3iT3ftEqSdLHbvmdmqfXYGiV thIGysEXCynufjjS47FTrP/jZbgosu1MHVOMSuQD/xCMRLHNmPY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:38 2026 by rpki-client