$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143134.roa File: AS143134.roa (raw, json) Hash identifier: BnY+gjElONgRZx2yCCDu8Q81xBADMp1tXJh6RX7Ef1M= Subject key identifier: 79:EB:77:0F:E7:96:73:84:44:27:4B:62:5C:AC:CA:71:37:5A:4B:5F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6A11FEE04EBFBF90EF9DEF84250BB34F854C967C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143134.roa Signing time: Wed 04 Mar 2026 06:05:26 +0000 ROA not before: Wed 04 Mar 2026 06:00:26 +0000 ROA not after: Wed 03 Mar 2027 06:05:26 +0000 asID: 143134 IP address blocks: 240a:a1e4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:11:fe:e0:4e:bf:bf:90:ef:9d:ef:84:25:0b:b3:4f:85:4c:96:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:26 2026 GMT Not After : Mar 3 06:05:26 2027 GMT Subject: CN=79EB770FE796738444274B625CACCA71375A4B5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:74:79:21:6d:ea:e3:42:61:8c:33:ac:39:cb: e6:7e:30:97:fb:8a:ba:46:d6:5a:b4:1a:c9:f3:c9: 7d:60:5c:25:7a:ee:78:de:91:d0:6c:ce:bb:21:70: 3d:63:14:e9:8e:e6:0d:49:69:f2:18:ed:5a:c6:7a: 39:db:0f:be:13:c4:cc:b1:09:63:1b:7a:6a:93:29: ec:80:c5:e1:2e:6c:20:94:64:13:0b:50:06:02:de: ec:ba:dc:83:95:86:bb:4c:c3:bc:dc:12:5f:14:e1: 82:8e:c0:fe:40:6f:1f:4b:1d:d1:3d:be:35:5b:29: 2c:d4:a5:a1:48:c2:03:5d:16:5a:b7:b4:44:a9:46: d0:82:ad:fe:55:18:72:da:87:cb:9b:20:f2:b2:eb: 53:a3:c1:8d:ae:46:e4:a2:7f:08:24:34:eb:6e:99: cc:30:7b:cb:16:9a:a4:4f:1c:11:67:52:5b:04:58: b3:17:44:db:a1:2b:5c:60:14:2d:a9:4e:b6:a6:30: c5:76:a0:8e:c9:8f:1f:70:08:07:2d:e0:65:81:e6: eb:c4:30:ce:52:a6:55:63:eb:01:2f:91:61:f1:b6: 1d:05:60:e4:93:ad:af:b0:c6:ea:35:5a:75:7c:0d: c8:75:0d:05:26:73:c5:39:1b:57:58:3c:3f:8d:87: 14:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:EB:77:0F:E7:96:73:84:44:27:4B:62:5C:AC:CA:71:37:5A:4B:5F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a1e4::/32 Signature Algorithm: sha256WithRSAEncryption c6:81:b6:ce:6e:2d:5a:4a:88:a0:ef:ba:82:14:41:59:d7:a3: 78:f6:b3:62:5b:41:9e:d7:8e:7f:94:e2:32:6f:aa:a7:a9:25: df:1a:ac:ae:35:7f:45:2a:d6:c8:08:85:45:92:3d:29:2c:58: e4:b7:79:c9:e6:d5:a1:d8:3b:21:6d:7c:b1:2c:bd:6d:1e:66: 78:62:6d:0c:55:5f:eb:61:57:69:dd:ea:f4:65:1f:f8:5a:2b: c1:2f:18:ae:47:a8:b6:4f:90:37:37:cf:43:b3:15:7f:cc:82: e1:1a:f1:16:9b:38:77:01:d1:86:3e:d1:25:c3:24:3e:57:e8: 9a:62:f6:ea:98:97:95:9d:be:72:0f:e8:55:c7:9c:6c:4f:43: 67:93:43:6d:34:c0:b7:31:5e:0c:7c:50:66:b2:eb:6e:68:84: bf:7d:83:96:32:d0:0e:0c:15:a3:25:7f:61:1c:ac:9a:c3:02: 4c:ed:e3:f6:61:f5:fd:64:e2:02:01:d7:2d:62:a3:20:bb:a8: bc:ef:d9:64:8d:55:b4:cf:fb:63:4d:b5:76:b0:37:65:ee:1a: ba:dd:70:0e:5b:49:89:3f:02:36:e8:0b:9b:af:34:c2:28:07: 58:77:71:d3:04:61:8a:cb:ac:93:c9:10:9b:0f:b0:ff:06:a7: bb:d3:71:26 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUahH+4E6/v5Dvne+EJQuzT4VMlnwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAyNloX DTI3MDMwMzA2MDUyNlowMzExMC8GA1UEAxMoNzlFQjc3MEZFNzk2NzM4NDQ0Mjc0 QjYyNUNBQ0NBNzEzNzVBNEI1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK10eSFt6uNCYYwzrDnL5n4wl/uKukbWWrQayfPJfWBcJXrueN6R0GzOuyFw PWMU6Y7mDUlp8hjtWsZ6OdsPvhPEzLEJYxt6apMp7IDF4S5sIJRkEwtQBgLe7Lrc g5WGu0zDvNwSXxThgo7A/kBvH0sd0T2+NVspLNSloUjCA10WWre0RKlG0IKt/lUY ctqHy5sg8rLrU6PBja5G5KJ/CCQ0626ZzDB7yxaapE8cEWdSWwRYsxdE26ErXGAU LalOtqYwxXagjsmPH3AIBy3gZYHm68QwzlKmVWPrAS+RYfG2HQVg5JOtr7DG6jVa dXwNyHUNBSZzxTkbV1g8P42HFL0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR563cP 55ZzhEQnS2JcrMpxN1pLXzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzEzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oeQwDQYJKoZIhvcNAQELBQADggEBAMaBts5uLVpKiKDvuoIUQVnXo3j2s2JbQZ7X jn+U4jJvqqepJd8arK41f0Uq1sgIhUWSPSksWOS3ecnm1aHYOyFtfLEsvW0eZnhi bQxVX+thV2nd6vRlH/haK8EvGK5HqLZPkDc3z0OzFX/MguEa8RabOHcB0YY+0SXD JD5X6Jpi9uqYl5WdvnIP6FXHnGxPQ2eTQ200wLcxXgx8UGay625ohL99g5Yy0A4M FaMlf2EcrJrDAkzt4/Zh9f1k4gIB1y1ioyC7qLzv2WSNVbTP+2NNtXawN2XuGrrd cA5bSYk/AjboC5uvNMIoB1h3cdMEYYrLrJPJEJsPsP8Gp7vTcSY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:01 2026 by rpki-client