$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143093.roa File: AS143093.roa (raw, json) Hash identifier: aWcPDGzd7jAurKEkKYvTRB/jXX+ZeLO1pkyc9x5wt9s= Subject key identifier: E6:33:87:44:87:04:79:86:8C:84:BE:85:92:B4:B9:D6:35:0F:C1:FB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5B43273FE41B2267EA1C22A96307750AF2B9F99A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143093.roa Signing time: Wed 04 Mar 2026 06:06:53 +0000 ROA not before: Wed 04 Mar 2026 06:01:53 +0000 ROA not after: Wed 03 Mar 2027 06:06:53 +0000 asID: 143093 IP address blocks: 240a:a1bb::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:43:27:3f:e4:1b:22:67:ea:1c:22:a9:63:07:75:0a:f2:b9:f9:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:53 2026 GMT Not After : Mar 3 06:06:53 2027 GMT Subject: CN=E6338744870479868C84BE8592B4B9D6350FC1FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c9:1c:aa:8f:ff:24:c6:d4:68:21:ad:ca:12: 78:bb:94:2c:b0:19:54:25:dc:d8:33:d7:e7:0f:24: 74:9a:c0:22:de:a4:bf:88:3b:55:ab:fb:01:43:56: 50:97:eb:4e:bf:97:45:e9:e0:63:ec:ac:bd:79:98: 22:6e:6b:a4:fd:34:f6:89:00:19:00:9a:bd:1c:0c: dc:67:e6:20:b4:f3:10:c2:17:79:57:a0:d2:2b:75: d2:74:d7:ca:4a:02:f5:1a:27:14:b4:31:63:86:d1: 8b:03:64:72:43:66:c7:4a:39:70:52:2c:21:74:b9: 5e:e1:4b:ca:35:bd:d9:f3:b6:bd:82:06:4e:8e:9c: 7a:95:70:68:2e:27:0c:5c:f8:65:6a:49:de:30:39: c2:23:08:ea:fe:92:d5:0d:1b:c5:8d:06:4a:f0:43: e7:56:2c:65:6c:b6:43:4b:c9:85:d0:1f:5b:01:30: b1:e5:fb:57:48:aa:7c:7f:55:f1:9b:cf:e3:02:40: c3:b6:f4:c9:00:9d:80:30:ea:33:87:64:e7:eb:c6: 3c:b7:eb:6c:13:e8:c4:7e:c9:8f:11:64:30:47:0e: fe:50:38:d8:95:94:30:dd:a3:b5:47:88:24:94:d7: 27:2d:79:61:3d:bf:3c:f1:d6:6b:1f:9a:07:76:55: 89:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:33:87:44:87:04:79:86:8C:84:BE:85:92:B4:B9:D6:35:0F:C1:FB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143093.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a1bb::/32 Signature Algorithm: sha256WithRSAEncryption d0:11:ce:8f:4e:d0:67:5c:69:11:4e:30:80:36:1a:17:6c:7b: 36:d8:ec:79:dd:d6:69:d9:df:b6:f1:79:f4:10:46:c0:df:7e: bf:73:0e:39:75:9c:dd:75:37:e8:b9:47:c6:15:b3:96:a9:cf: 9b:87:30:5c:db:18:d6:84:51:1e:48:0e:4b:12:6a:67:3f:d1: 90:ce:2a:3b:bc:63:1d:5e:15:b1:da:24:2b:ee:ce:c7:16:37: 93:6a:84:2b:ab:02:15:69:b4:a4:5b:68:1c:27:99:de:6c:9b: 6e:aa:c5:64:53:ca:e2:b1:cc:b6:9f:d8:15:49:0a:79:ed:3a: 4e:65:ac:79:a9:35:e5:1b:51:3e:35:ea:bf:3b:4f:42:e6:25: ec:2a:df:e0:6f:67:bf:1c:4e:09:b5:24:2d:62:c4:ed:d9:8b: 67:f8:a1:93:23:37:88:10:5e:63:23:48:05:43:28:09:46:95: 26:2d:db:15:1f:bf:96:ba:bf:9c:7b:99:9e:89:bd:95:bb:fa: 82:b5:12:ea:5b:23:97:0d:4b:7f:7b:ed:ba:d4:5f:12:cd:3e: 28:33:ca:30:8e:e0:9c:78:1c:a9:36:30:e1:83:37:ca:e1:d3: 3c:16:9a:22:4d:36:49:93:1a:a2:2e:da:84:79:52:2d:70:6e: 51:54:45:1a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUW0MnP+QbImfqHCKpYwd1CvK5+ZowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE1M1oX DTI3MDMwMzA2MDY1M1owMzExMC8GA1UEAxMoRTYzMzg3NDQ4NzA0Nzk4NjhDODRC RTg1OTJCNEI5RDYzNTBGQzFGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXJHKqP/yTG1GghrcoSeLuULLAZVCXc2DPX5w8kdJrAIt6kv4g7Vav7AUNW UJfrTr+XRengY+ysvXmYIm5rpP009okAGQCavRwM3GfmILTzEMIXeVeg0it10nTX ykoC9RonFLQxY4bRiwNkckNmx0o5cFIsIXS5XuFLyjW92fO2vYIGTo6cepVwaC4n DFz4ZWpJ3jA5wiMI6v6S1Q0bxY0GSvBD51YsZWy2Q0vJhdAfWwEwseX7V0iqfH9V 8ZvP4wJAw7b0yQCdgDDqM4dk5+vGPLfrbBPoxH7JjxFkMEcO/lA42JWUMN2jtUeI JJTXJy15YT2/PPHWax+aB3ZViacCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTmM4dE hwR5hoyEvoWStLnWNQ/B+zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzA5My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK obswDQYJKoZIhvcNAQELBQADggEBANARzo9O0GdcaRFOMIA2GhdsezbY7Hnd1mnZ 37bxefQQRsDffr9zDjl1nN11N+i5R8YVs5apz5uHMFzbGNaEUR5IDksSamc/0ZDO Kju8Yx1eFbHaJCvuzscWN5NqhCurAhVptKRbaBwnmd5sm26qxWRTyuKxzLaf2BVJ CnntOk5lrHmpNeUbUT416r87T0LmJewq3+BvZ78cTgm1JC1ixO3Zi2f4oZMjN4gQ XmMjSAVDKAlGlSYt2xUfv5a6v5x7mZ6JvZW7+oK1EupbI5cNS3977brUXxLNPigz yjCO4Jx4HKk2MOGDN8rh0zwWmiJNNkmTGqIu2oR5Ui1wblFURRo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:06 2026 by rpki-client