$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143169.roa File: AS143169.roa (raw, json) Hash identifier: EShEYMo4RqHX8ZZpIwpzUym7NYBaolX2t3WvIcofBuU= Subject key identifier: 4C:EA:CE:D5:33:03:FB:A8:61:B4:F9:B1:87:75:DE:25:18:73:76:99 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 158ABA4AB6A4C4293FA1859CFEDF7A8037F56DA4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143169.roa Signing time: Wed 04 Mar 2026 06:05:58 +0000 ROA not before: Wed 04 Mar 2026 06:00:58 +0000 ROA not after: Wed 03 Mar 2027 06:05:58 +0000 asID: 143169 IP address blocks: 240a:a207::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:8a:ba:4a:b6:a4:c4:29:3f:a1:85:9c:fe:df:7a:80:37:f5:6d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:58 2026 GMT Not After : Mar 3 06:05:58 2027 GMT Subject: CN=4CEACED53303FBA861B4F9B18775DE2518737699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a5:16:4e:34:f6:2f:6b:d1:10:fc:3b:17:83: f6:d9:d5:24:51:6a:d5:60:8e:09:51:e7:c7:a0:a6: 4e:05:f8:ea:1c:0f:74:9f:d2:9f:2f:27:3e:ed:45: 49:3f:e7:27:c4:88:a6:12:50:e1:4b:6c:fb:ee:07: 07:03:51:78:3f:da:d1:e7:44:8b:bb:a7:9d:e3:a3: 7a:dc:3e:c4:cd:1c:e4:16:d3:1c:f2:09:ae:dc:b0: 8c:46:b7:09:85:59:5d:a8:41:e0:4e:54:99:13:a0: c1:94:4f:f2:2e:2d:e8:ce:64:31:2e:0f:7c:f4:30: c7:83:11:6b:23:bc:79:f3:d7:38:c6:ad:9b:44:90: e8:88:29:b9:ac:78:66:6f:ce:9c:e3:28:26:3d:d2: 4c:fa:f4:9b:f9:20:18:28:2e:1b:59:55:b7:c7:ea: 93:c8:f6:c4:02:e7:c6:1c:68:bb:71:91:2f:8a:4a: bc:8a:90:fb:05:1a:e3:ad:9c:69:96:aa:53:a3:34: e3:48:19:d3:09:00:cc:fc:6c:b8:f3:f3:3c:66:91: ed:2c:94:d9:7e:e7:f3:f1:79:aa:3b:0b:3b:1b:bc: 6b:ae:64:b7:b3:cc:6b:9a:d7:6b:71:fe:e0:5d:ec: cd:9e:91:e1:28:7f:1a:f8:84:72:74:89:79:87:69: 0f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EA:CE:D5:33:03:FB:A8:61:B4:F9:B1:87:75:DE:25:18:73:76:99 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143169.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a207::/32 Signature Algorithm: sha256WithRSAEncryption 60:2f:a5:ad:7c:ce:2a:81:81:b2:a2:57:f8:f0:31:75:ee:51: 16:d9:5c:6d:a5:82:a7:e6:8f:1e:50:a2:98:68:6e:7c:32:07: 61:e7:7b:11:eb:77:75:59:5f:4e:2d:db:4f:71:c2:51:8b:f0: 7e:66:29:6d:8c:2d:44:5b:c6:a8:27:84:bc:1c:05:e3:dd:41: e4:76:14:7f:34:4c:61:9d:46:82:3c:e5:b0:63:11:aa:13:1f: e3:a1:c4:74:82:39:de:63:18:f2:c0:05:f0:5f:71:df:6e:7f: cc:54:99:15:8d:b1:35:5c:bd:4c:80:a2:02:bb:06:99:a3:d7: 80:79:52:b7:f8:76:a1:64:0e:66:83:31:48:e1:23:4d:05:48: f5:f5:5c:78:21:dd:9c:f1:f3:2e:01:a2:b1:5f:8e:4a:89:02: a9:e7:b9:23:46:9d:82:79:17:e3:3a:9e:40:4b:b6:1c:bd:45: 70:1a:48:3b:90:fc:81:39:b1:60:27:e6:7b:f4:7f:4c:55:27: 77:99:df:f7:6f:a9:ad:a1:3f:75:40:e6:32:bf:6e:30:eb:f4: 18:9c:3b:f6:7c:71:3a:e1:4f:a1:c8:bf:e4:18:ee:58:a5:12: 83:fb:99:89:79:47:7e:3c:7d:e8:1f:d1:0a:83:0e:16:29:b7: 70:95:2f:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFYq6SrakxCk/oYWc/t96gDf1baQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA1OFoX DTI3MDMwMzA2MDU1OFowMzExMC8GA1UEAxMoNENFQUNFRDUzMzAzRkJBODYxQjRG OUIxODc3NURFMjUxODczNzY5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMClFk409i9r0RD8OxeD9tnVJFFq1WCOCVHnx6CmTgX46hwPdJ/Sny8nPu1F ST/nJ8SIphJQ4Uts++4HBwNReD/a0edEi7unneOjetw+xM0c5BbTHPIJrtywjEa3 CYVZXahB4E5UmROgwZRP8i4t6M5kMS4PfPQwx4MRayO8efPXOMatm0SQ6Igpuax4 Zm/OnOMoJj3STPr0m/kgGCguG1lVt8fqk8j2xALnxhxou3GRL4pKvIqQ+wUa462c aZaqU6M040gZ0wkAzPxsuPPzPGaR7SyU2X7n8/F5qjsLOxu8a65kt7PMa5rXa3H+ 4F3szZ6R4Sh/GviEcnSJeYdpDzUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRM6s7V MwP7qGG0+bGHdd4lGHN2mTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzE2OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ogcwDQYJKoZIhvcNAQELBQADggEBAGAvpa18ziqBgbKiV/jwMXXuURbZXG2lgqfm jx5QophobnwyB2HnexHrd3VZX04t209xwlGL8H5mKW2MLURbxqgnhLwcBePdQeR2 FH80TGGdRoI85bBjEaoTH+OhxHSCOd5jGPLABfBfcd9uf8xUmRWNsTVcvUyAogK7 Bpmj14B5Urf4dqFkDmaDMUjhI00FSPX1XHgh3Zzx8y4BorFfjkqJAqnnuSNGnYJ5 F+M6nkBLthy9RXAaSDuQ/IE5sWAn5nv0f0xVJ3eZ3/dvqa2hP3VA5jK/bjDr9Bic O/Z8cTrhT6HIv+QY7lilEoP7mYl5R348fegf0QqDDhYpt3CVLxI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:55 2026 by rpki-client