$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143046.roa File: AS143046.roa (raw, json) Hash identifier: WT+EXCBt250m8d/GyLWRnrxzpXZ73rbRI8aGGNfjB5k= Subject key identifier: E2:23:D6:CF:B8:09:AA:C5:C1:47:56:48:73:D2:F5:BD:9B:98:EF:E7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0AB4DF00015075EBF83CAF9D2FC71BC329FC6079 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143046.roa Signing time: Wed 04 Mar 2026 06:05:42 +0000 ROA not before: Wed 04 Mar 2026 06:00:42 +0000 ROA not after: Wed 03 Mar 2027 06:05:42 +0000 asID: 143046 IP address blocks: 240a:a18c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b4:df:00:01:50:75:eb:f8:3c:af:9d:2f:c7:1b:c3:29:fc:60:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:42 2026 GMT Not After : Mar 3 06:05:42 2027 GMT Subject: CN=E223D6CFB809AAC5C147564873D2F5BD9B98EFE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e1:3f:80:c4:be:ce:b2:c8:18:9e:45:e7:0c: 8c:4c:fe:22:56:b3:79:61:b8:7e:1d:58:0d:32:6f: 46:e7:bc:dd:fe:97:a4:18:be:a8:52:8c:50:ef:6f: 80:13:53:f8:50:b6:82:ed:4a:f0:6c:68:66:cd:26: 61:63:db:26:95:9e:78:c5:3d:32:f5:8c:60:7b:2f: 08:f3:f9:e7:14:2b:33:d6:ee:e1:51:fb:5b:e5:62: 92:ac:2e:02:e3:f1:c5:9a:74:33:e0:95:e1:21:8c: 43:20:9a:84:de:be:2e:b6:fb:26:2b:24:bc:32:4e: 52:5a:d8:43:d1:37:50:fc:f7:91:41:d0:b4:cf:46: 85:ac:f8:ce:6b:70:64:98:eb:ab:05:dc:d3:be:06: 94:4a:86:29:f0:0b:f2:48:e7:04:8a:09:78:d9:8b: bb:88:36:70:6e:a8:c7:d2:fb:9f:25:47:f7:fa:91: 01:4a:85:cf:65:0c:b6:7b:04:ae:48:7e:bb:9d:43: 04:0f:fb:84:c2:38:d6:1b:26:a1:26:df:31:dd:41: ec:e4:f1:14:fa:92:e7:5e:e9:c7:2b:2e:97:69:33: b9:cf:49:e8:ee:64:85:fc:00:99:1e:b7:c3:31:b3: 7e:3f:c9:fb:2f:f1:1a:31:91:f2:cf:4b:6e:ba:1c: d2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:23:D6:CF:B8:09:AA:C5:C1:47:56:48:73:D2:F5:BD:9B:98:EF:E7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143046.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a18c::/32 Signature Algorithm: sha256WithRSAEncryption 14:09:07:ba:61:fb:b1:b8:7a:a7:d4:51:a8:77:55:21:61:e8: ce:31:10:58:fd:16:e3:5e:d3:e1:3d:01:90:b1:8b:03:07:94: dc:da:6a:66:3e:48:f1:fe:69:01:e9:d9:20:db:f6:7f:3f:6c: 1e:97:32:a0:7f:56:17:b3:0e:d2:96:d2:00:85:96:57:59:ff: d5:62:2c:17:84:00:54:5e:80:92:dc:69:6d:c4:27:e3:41:ad: 7f:46:06:fc:f6:16:d6:e2:ec:a8:82:2b:43:71:36:71:d9:0d: 78:7f:72:6d:93:c7:6e:17:f4:a0:2d:df:25:06:f5:b4:81:3a: fd:f2:42:e7:78:8b:c6:5e:8c:e7:8c:50:06:88:09:e0:c6:7a: 47:70:c3:cb:96:de:e1:73:7c:ab:a6:6c:7f:26:01:ca:78:94: 47:18:7c:2b:0e:9e:28:9e:ab:1d:ee:ed:46:46:cb:6e:80:75: 24:5d:56:2a:cd:41:2d:46:4d:fd:c6:55:55:8e:0e:3f:a8:a3: 4a:0b:55:2e:60:2b:f6:d1:a9:9a:8e:55:03:dd:90:bf:b0:05: 12:e7:5a:b5:32:02:0b:6f:5d:d8:7f:34:48:6a:7a:e4:2f:b8: 34:9e:b9:01:56:56:73:a4:84:31:c5:0e:c8:8e:24:f6:a1:68: c0:82:76:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCrTfAAFQdev4PK+dL8cbwyn8YHkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA0MloX DTI3MDMwMzA2MDU0MlowMzExMC8GA1UEAxMoRTIyM0Q2Q0ZCODA5QUFDNUMxNDc1 NjQ4NzNEMkY1QkQ5Qjk4RUZFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANrhP4DEvs6yyBieRecMjEz+IlazeWG4fh1YDTJvRue83f6XpBi+qFKMUO9v gBNT+FC2gu1K8GxoZs0mYWPbJpWeeMU9MvWMYHsvCPP55xQrM9bu4VH7W+Vikqwu AuPxxZp0M+CV4SGMQyCahN6+Lrb7JiskvDJOUlrYQ9E3UPz3kUHQtM9Ghaz4zmtw ZJjrqwXc074GlEqGKfAL8kjnBIoJeNmLu4g2cG6ox9L7nyVH9/qRAUqFz2UMtnsE rkh+u51DBA/7hMI41hsmoSbfMd1B7OTxFPqS517pxysul2kzuc9J6O5khfwAmR63 wzGzfj/J+y/xGjGR8s9Lbroc0t8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTiI9bP uAmqxcFHVkhz0vW9m5jv5zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzA0Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oYwwDQYJKoZIhvcNAQELBQADggEBABQJB7ph+7G4eqfUUah3VSFh6M4xEFj9FuNe 0+E9AZCxiwMHlNzaamY+SPH+aQHp2SDb9n8/bB6XMqB/VhezDtKW0gCFlldZ/9Vi LBeEAFRegJLcaW3EJ+NBrX9GBvz2Ftbi7KiCK0NxNnHZDXh/cm2Tx24X9KAt3yUG 9bSBOv3yQud4i8ZejOeMUAaICeDGekdww8uW3uFzfKumbH8mAcp4lEcYfCsOniie qx3u7UZGy26AdSRdVirNQS1GTf3GVVWODj+oo0oLVS5gK/bRqZqOVQPdkL+wBRLn WrUyAgtvXdh/NEhqeuQvuDSeuQFWVnOkhDHFDsiOJPahaMCCdoo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:50 2026 by rpki-client