$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143184.roa File: AS143184.roa (raw, json) Hash identifier: muHGb8vUr92tXZIDILoiVKgnzZuHycQAtZCujL6k0os= Subject key identifier: 69:4B:FE:A6:4B:36:7A:A9:55:9C:03:F8:53:7B:8B:09:04:E4:95:D6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3A1077A6FA066DF2051FF1B839ACE9C9CABD2CD9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143184.roa Signing time: Wed 04 Mar 2026 06:07:31 +0000 ROA not before: Wed 04 Mar 2026 06:02:31 +0000 ROA not after: Wed 03 Mar 2027 06:07:31 +0000 asID: 143184 IP address blocks: 240a:a216::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:10:77:a6:fa:06:6d:f2:05:1f:f1:b8:39:ac:e9:c9:ca:bd:2c:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:31 2026 GMT Not After : Mar 3 06:07:31 2027 GMT Subject: CN=694BFEA64B367AA9559C03F8537B8B0904E495D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:43:76:92:8d:1c:d0:bb:5e:43:a1:e1:81:fb: af:db:2c:cc:a6:d5:71:c8:5f:e9:5d:9f:5c:72:cd: 40:a2:65:ff:69:ea:84:d3:c1:48:e7:50:e3:f0:4b: 99:f7:44:99:4a:d2:9c:17:d5:57:da:f1:52:a2:74: 0e:35:fe:df:30:c3:4a:77:e9:96:7b:68:f4:ee:30: 6e:bd:36:5f:a9:aa:8c:48:35:79:43:3d:8e:49:58: 89:5a:94:87:05:84:45:3b:cc:f7:ee:cb:9f:82:13: 65:86:80:f7:71:1c:ba:78:1e:78:e1:a9:ce:a0:c4: ef:bc:43:dd:50:fd:b5:67:ce:2d:50:af:1a:50:52: f2:f3:b8:63:af:d0:a1:dc:6f:35:1a:64:26:df:ef: 31:4d:c7:0c:ff:a5:23:9d:01:e2:fc:b4:db:b7:85: 59:fc:06:d4:c6:28:ec:96:a7:94:52:b4:18:e4:e6: 66:50:e8:35:7d:15:84:40:8f:83:a7:a4:c4:e9:59: c6:36:b2:5c:c1:70:2a:60:b1:4a:9a:bf:a8:8c:3f: 21:d2:bf:1d:32:a2:9d:fc:20:e1:2b:98:a3:b2:27: d0:8f:27:5e:a9:ba:50:d9:d1:e6:27:11:b1:42:54: 38:1a:80:17:ec:f7:9f:4c:0d:61:6b:04:54:f5:51: 80:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:4B:FE:A6:4B:36:7A:A9:55:9C:03:F8:53:7B:8B:09:04:E4:95:D6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143184.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a216::/32 Signature Algorithm: sha256WithRSAEncryption d1:8e:89:53:96:02:de:1f:ce:74:d9:fb:d7:d7:65:38:f2:17: c3:a7:07:6f:b6:44:4b:fa:e6:33:5f:62:aa:1c:e5:67:f1:88: 55:a0:d6:1a:56:a2:c0:7e:10:12:15:b4:4b:7b:f1:49:3c:f4: 93:a8:58:78:d4:5d:de:91:03:d4:24:61:38:db:29:e9:21:f6: 11:c0:6d:52:f2:ad:bd:27:80:56:fb:71:57:06:1e:c1:28:70: dd:9d:49:fd:46:80:5f:59:58:31:b5:15:9b:b1:7a:47:cd:69: ac:b8:52:f0:90:ef:7b:ec:6f:75:93:64:5f:8e:65:0e:55:27: a0:c5:ef:fd:b2:6e:29:e7:17:6b:fb:09:d3:c4:53:d4:8b:d3: 98:a6:00:cf:d1:a7:f5:f2:52:39:03:be:57:09:e2:a3:9b:e3: 54:c5:53:f7:fe:de:3c:15:db:4c:71:51:54:8d:20:97:3e:42: 71:eb:3c:6c:35:a9:3d:34:6a:1d:6f:97:3d:74:85:5c:90:e2: ea:79:bc:27:aa:3e:b3:ba:68:23:3f:32:ea:b8:37:e1:28:d0: 79:fc:c7:54:42:ec:c1:27:43:7e:cc:14:b4:0e:50:db:a7:c4: c8:14:a1:24:2c:18:b7:13:b4:ac:82:03:51:f1:e1:32:9e:6c: 48:61:12:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOhB3pvoGbfIFH/G4Oazpycq9LNkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIzMVoX DTI3MDMwMzA2MDczMVowMzExMC8GA1UEAxMoNjk0QkZFQTY0QjM2N0FBOTU1OUMw M0Y4NTM3QjhCMDkwNEU0OTVENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9DdpKNHNC7XkOh4YH7r9sszKbVcchf6V2fXHLNQKJl/2nqhNPBSOdQ4/BL mfdEmUrSnBfVV9rxUqJ0DjX+3zDDSnfplnto9O4wbr02X6mqjEg1eUM9jklYiVqU hwWERTvM9+7Ln4ITZYaA93EcungeeOGpzqDE77xD3VD9tWfOLVCvGlBS8vO4Y6/Q odxvNRpkJt/vMU3HDP+lI50B4vy027eFWfwG1MYo7JanlFK0GOTmZlDoNX0VhECP g6ekxOlZxjayXMFwKmCxSpq/qIw/IdK/HTKinfwg4SuYo7In0I8nXqm6UNnR5icR sUJUOBqAF+z3n0wNYWsEVPVRgHkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRpS/6m SzZ6qVWcA/hTe4sJBOSV1jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzE4NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ohYwDQYJKoZIhvcNAQELBQADggEBANGOiVOWAt4fznTZ+9fXZTjyF8OnB2+2REv6 5jNfYqoc5WfxiFWg1hpWosB+EBIVtEt78Uk89JOoWHjUXd6RA9QkYTjbKekh9hHA bVLyrb0ngFb7cVcGHsEocN2dSf1GgF9ZWDG1FZuxekfNaay4UvCQ73vsb3WTZF+O ZQ5VJ6DF7/2ybinnF2v7CdPEU9SL05imAM/Rp/XyUjkDvlcJ4qOb41TFU/f+3jwV 20xxUVSNIJc+QnHrPGw1qT00ah1vlz10hVyQ4up5vCeqPrO6aCM/Muq4N+Eo0Hn8 x1RC7MEnQ37MFLQOUNunxMgUoSQsGLcTtKyCA1Hx4TKebEhhElw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:28 2026 by rpki-client