$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143079.roa File: AS143079.roa (raw, json) Hash identifier: /5GvudojfWBNubrrKrMCfv7LwK5BSwzoUoZdc4VdLcs= Subject key identifier: C8:34:7A:DB:EC:44:F3:E5:62:11:CB:E6:1F:8C:40:CE:7D:D1:0D:89 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1B6161AB3AE0FEE004FF0D75A61457C876240155 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143079.roa Signing time: Wed 04 Mar 2026 06:05:12 +0000 ROA not before: Wed 04 Mar 2026 06:00:12 +0000 ROA not after: Wed 03 Mar 2027 06:05:12 +0000 asID: 143079 IP address blocks: 240a:a1ad::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:61:61:ab:3a:e0:fe:e0:04:ff:0d:75:a6:14:57:c8:76:24:01:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:12 2026 GMT Not After : Mar 3 06:05:12 2027 GMT Subject: CN=C8347ADBEC44F3E56211CBE61F8C40CE7DD10D89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2b:4f:39:db:3e:4c:42:43:b8:86:96:e4:7d: de:f2:d6:43:20:2b:15:f9:36:ee:d0:a4:62:40:bb: 76:b7:19:46:b1:e9:dc:2a:b5:8d:42:6a:94:dc:5c: fc:2c:40:e9:54:e8:ac:3c:33:4a:13:11:75:41:4d: c4:6b:d9:71:3c:3a:ca:e1:fa:d5:1f:67:4c:f9:47: 01:94:5a:4b:b5:cd:d7:09:20:8d:7e:b9:c0:3e:88: 22:ef:3e:3c:e1:26:50:63:a1:c0:1f:4f:19:f6:c4: 21:33:83:e1:ed:ce:9e:40:a6:2d:24:f3:ea:49:30: fb:73:22:82:55:e6:96:ba:ba:30:96:b0:3d:ad:d6: 58:0a:1b:17:1e:21:8c:32:0a:4e:62:5e:d5:91:8c: cb:ce:15:c7:09:6b:7f:16:a4:d8:56:d8:82:8f:de: 45:db:bf:8d:69:64:d1:68:d6:4f:3a:ff:47:15:fb: fc:61:e3:ed:0e:9c:6f:7f:e9:31:56:d2:71:4d:19: ef:10:89:6d:f1:fe:d2:92:14:d7:cc:a8:96:85:54: 1e:d5:94:24:44:fe:05:78:81:68:2e:d9:41:c2:8c: a6:8c:51:18:46:73:42:1b:11:8f:df:1d:07:ee:f0: ad:0e:90:c5:55:59:6a:c8:45:5f:c1:a0:2e:f7:b9: d0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:34:7A:DB:EC:44:F3:E5:62:11:CB:E6:1F:8C:40:CE:7D:D1:0D:89 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a1ad::/32 Signature Algorithm: sha256WithRSAEncryption 12:f2:2f:f8:d5:73:7f:fe:03:2d:d5:e2:62:8b:77:c0:f1:9c: e8:5d:61:13:11:f9:c5:c3:3e:57:da:79:48:18:87:89:db:51: 0b:8a:eb:b5:9e:df:3f:dc:85:09:f1:da:d5:db:09:5a:54:36: 69:4f:55:74:c6:10:9c:ab:57:3c:26:86:e5:3c:70:13:84:6b: 1a:99:1b:cd:71:75:da:15:d1:15:3e:77:18:72:7b:c5:fd:ec: 83:d4:45:ca:24:d3:14:4b:a2:c2:9d:54:1b:f5:5e:fc:fe:8d: 31:d8:6a:5a:c1:dc:97:da:fb:e3:d6:62:36:89:df:c4:19:cc: 1f:6f:b9:67:ea:a3:9b:74:0a:cc:65:71:aa:7e:46:c8:85:d0: da:e0:2e:25:d5:7d:02:3d:7b:a1:c5:7e:de:10:bf:b2:f9:e1: c3:29:f4:68:1d:e7:f1:85:38:40:f0:d3:9e:42:f8:58:bc:bd: 6d:fe:4c:69:2b:d6:ba:62:63:73:d2:bb:2e:71:8d:4f:3a:57: 71:fe:39:0b:0e:8a:4f:83:ee:17:d4:26:cd:63:fc:2f:d0:3f: ee:a6:99:0b:54:5f:15:0a:ae:37:1d:f1:17:57:38:91:05:ab: a7:ec:94:01:bb:41:c3:61:4c:27:08:36:4a:be:6c:d5:8d:bf: a8:07:e0:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUG2Fhqzrg/uAE/w11phRXyHYkAVUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAxMloX DTI3MDMwMzA2MDUxMlowMzExMC8GA1UEAxMoQzgzNDdBREJFQzQ0RjNFNTYyMTFD QkU2MUY4QzQwQ0U3REQxMEQ4OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQrTznbPkxCQ7iGluR93vLWQyArFfk27tCkYkC7drcZRrHp3Cq1jUJqlNxc /CxA6VTorDwzShMRdUFNxGvZcTw6yuH61R9nTPlHAZRaS7XN1wkgjX65wD6IIu8+ POEmUGOhwB9PGfbEITOD4e3OnkCmLSTz6kkw+3MiglXmlrq6MJawPa3WWAobFx4h jDIKTmJe1ZGMy84Vxwlrfxak2FbYgo/eRdu/jWlk0WjWTzr/RxX7/GHj7Q6cb3/p MVbScU0Z7xCJbfH+0pIU18yoloVUHtWUJET+BXiBaC7ZQcKMpoxRGEZzQhsRj98d B+7wrQ6QxVVZashFX8GgLve50OsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTINHrb 7ETz5WIRy+YfjEDOfdENiTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzA3OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oa0wDQYJKoZIhvcNAQELBQADggEBABLyL/jVc3/+Ay3V4mKLd8DxnOhdYRMR+cXD PlfaeUgYh4nbUQuK67We3z/chQnx2tXbCVpUNmlPVXTGEJyrVzwmhuU8cBOEaxqZ G81xddoV0RU+dxhye8X97IPURcok0xRLosKdVBv1Xvz+jTHYalrB3Jfa++PWYjaJ 38QZzB9vuWfqo5t0Csxlcap+RsiF0NrgLiXVfQI9e6HFft4Qv7L54cMp9Ggd5/GF OEDw055C+Fi8vW3+TGkr1rpiY3PSuy5xjU86V3H+OQsOik+D7hfUJs1j/C/QP+6m mQtUXxUKrjcd8RdXOJEFq6fslAG7QcNhTCcINkq+bNWNv6gH4EU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:49 2026 by rpki-client