$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143164.roa File: AS143164.roa (raw, json) Hash identifier: j2M0qxNp69lUqM8qfjxNU7rlWYfGWgisyRUfaZX1uws= Subject key identifier: 30:FA:48:73:1C:1A:7D:1A:51:19:29:0C:46:6D:1A:BD:2C:C8:D2:84 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 64C79E5D3254CAAA86F088B98697C5CED14447DC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143164.roa Signing time: Wed 04 Mar 2026 06:06:15 +0000 ROA not before: Wed 04 Mar 2026 06:01:15 +0000 ROA not after: Wed 03 Mar 2027 06:06:15 +0000 asID: 143164 IP address blocks: 240a:a202::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c7:9e:5d:32:54:ca:aa:86:f0:88:b9:86:97:c5:ce:d1:44:47:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:15 2026 GMT Not After : Mar 3 06:06:15 2027 GMT Subject: CN=30FA48731C1A7D1A5119290C466D1ABD2CC8D284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f9:a8:57:34:65:74:95:4a:6c:c9:b7:8f:fe: 62:1c:49:28:e8:c2:e9:c5:ce:9f:82:ea:ce:e6:c9: a2:14:4f:5c:6f:8d:83:22:bd:81:ad:44:29:e2:1d: a2:e7:9e:21:6e:84:42:a5:db:19:e6:b6:36:4a:13: 4e:da:8f:20:e9:12:10:45:41:fd:8b:c6:be:3e:ab: 1e:30:94:e5:a3:6c:01:9a:0b:d0:1b:b3:c4:0c:f4: c9:4b:5f:99:de:e6:af:b0:db:17:99:50:39:ce:d2: 55:4f:4d:13:5f:3d:7b:10:77:c3:85:dd:dd:96:f3: 2f:0a:31:d0:cb:16:af:49:06:01:52:58:10:c2:c3: 48:39:61:44:e7:8a:7b:d7:6c:32:87:87:bd:13:df: 6e:96:cf:30:2b:3d:c0:d4:3f:85:03:7b:a9:27:a4: 57:2c:ec:5c:86:7e:4c:88:d7:40:a9:15:5c:20:1a: d0:01:cc:63:ed:65:14:ff:06:24:a5:a3:fa:43:3e: c2:f8:60:85:ab:95:3e:37:a1:9c:6a:6e:12:06:87: 60:a4:af:dd:9b:5f:a2:dc:63:ba:9f:99:1a:6e:2d: 16:04:78:3c:c8:91:66:cb:ca:55:54:43:88:98:de: a2:94:2f:41:d5:02:ca:89:a8:10:13:a5:f8:45:30: d5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FA:48:73:1C:1A:7D:1A:51:19:29:0C:46:6D:1A:BD:2C:C8:D2:84 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143164.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a202::/32 Signature Algorithm: sha256WithRSAEncryption 08:9b:db:23:21:91:3e:50:4a:2f:b5:d6:e7:c7:a9:7a:85:96: 3d:0c:1f:51:49:81:e8:45:b9:dd:b4:d0:a1:f1:7e:7c:ae:69: 0d:c8:e6:8f:5b:1b:4c:65:cb:45:16:00:68:c4:93:90:80:f6: 95:f1:ba:25:21:dc:46:4d:ae:4e:bb:e2:a7:d3:8d:8b:85:7f: cc:95:35:e9:8d:d8:5d:ef:f8:c4:d9:fe:9f:73:fe:5d:ed:cd: f9:ff:67:85:c8:af:d4:ac:d5:85:17:3e:68:21:10:e4:61:30: a9:66:94:b7:33:1d:21:5c:1c:35:d4:db:b5:20:d7:15:8f:9a: e0:3a:a4:86:d3:7b:5c:09:fc:f5:be:ff:92:6d:aa:b3:78:ff: bb:24:af:94:19:e6:d8:72:a4:24:81:4b:27:9d:98:39:b2:e4: 12:4e:1d:ab:60:70:e7:57:a5:7b:df:54:be:bb:2d:39:2c:4b: 1d:b6:3e:bb:1f:cd:39:95:4d:7b:61:dc:80:8c:c8:2e:21:8d: b5:4b:a0:5b:ff:cf:cb:80:2a:fc:14:26:13:cc:a6:21:8b:7c: 41:0a:0f:a8:fd:39:85:dc:0d:c4:44:24:16:fc:c8:e2:40:41: 3a:b9:00:46:54:03:a7:3c:3c:46:c2:dd:96:f5:a2:01:4e:ae: f2:4f:dd:62 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUZMeeXTJUyqqG8Ii5hpfFztFER9wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDExNVoX DTI3MDMwMzA2MDYxNVowMzExMC8GA1UEAxMoMzBGQTQ4NzMxQzFBN0QxQTUxMTky OTBDNDY2RDFBQkQyQ0M4RDI4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL35qFc0ZXSVSmzJt4/+YhxJKOjC6cXOn4LqzubJohRPXG+NgyK9ga1EKeId oueeIW6EQqXbGea2NkoTTtqPIOkSEEVB/YvGvj6rHjCU5aNsAZoL0BuzxAz0yUtf md7mr7DbF5lQOc7SVU9NE189exB3w4Xd3ZbzLwox0MsWr0kGAVJYEMLDSDlhROeK e9dsMoeHvRPfbpbPMCs9wNQ/hQN7qSekVyzsXIZ+TIjXQKkVXCAa0AHMY+1lFP8G JKWj+kM+wvhghauVPjehnGpuEgaHYKSv3Ztfotxjup+ZGm4tFgR4PMiRZsvKVVRD iJjeopQvQdUCyomoEBOl+EUw1R0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQw+khz HBp9GlEZKQxGbRq9LMjShDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzE2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ogIwDQYJKoZIhvcNAQELBQADggEBAAib2yMhkT5QSi+11ufHqXqFlj0MH1FJgehF ud200KHxfnyuaQ3I5o9bG0xly0UWAGjEk5CA9pXxuiUh3EZNrk674qfTjYuFf8yV NemN2F3v+MTZ/p9z/l3tzfn/Z4XIr9Ss1YUXPmghEORhMKlmlLczHSFcHDXU27Ug 1xWPmuA6pIbTe1wJ/PW+/5JtqrN4/7skr5QZ5thypCSBSyedmDmy5BJOHatgcOdX pXvfVL67LTksSx22PrsfzTmVTXth3ICMyC4hjbVLoFv/z8uAKvwUJhPMpiGLfEEK D6j9OYXcDcREJBb8yOJAQTq5AEZUA6c8PEbC3Zb1ogFOrvJP3WI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:06 2026 by rpki-client