$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143196.roa File: AS143196.roa (raw, json) Hash identifier: uQGkrDRhkpUq2syZiFezAyAkQO/G048tX/vHN536q7k= Subject key identifier: 6A:66:34:99:7F:90:FA:9B:49:DE:73:56:F4:EC:6C:5C:DD:2A:B2:26 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4B587BA4529AC1D3FB024A9DDEC845FA27DA5B4C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143196.roa Signing time: Wed 04 Mar 2026 06:06:54 +0000 ROA not before: Wed 04 Mar 2026 06:01:54 +0000 ROA not after: Wed 03 Mar 2027 06:06:54 +0000 asID: 143196 IP address blocks: 240a:a222::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:58:7b:a4:52:9a:c1:d3:fb:02:4a:9d:de:c8:45:fa:27:da:5b:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:54 2026 GMT Not After : Mar 3 06:06:54 2027 GMT Subject: CN=6A6634997F90FA9B49DE7356F4EC6C5CDD2AB226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:29:68:37:fa:89:cd:17:33:2c:ea:88:f0:79: 49:0f:85:10:9f:13:55:c7:a9:4b:cb:b5:99:41:be: ef:e2:d3:ac:e2:64:29:18:41:a7:93:17:3f:7a:0a: 43:a5:70:56:e7:b9:38:47:e9:04:c1:3a:71:da:fd: 4a:3f:47:29:5e:a4:96:f8:ac:3d:91:7d:19:40:36: e4:cc:53:35:6b:0e:d9:fc:68:fc:52:03:a3:a0:0e: 05:91:49:a4:20:bd:f4:6a:0d:7d:ad:43:76:8d:ff: 76:f3:84:7f:1e:de:74:b9:10:e3:0e:9e:47:a1:de: 9a:01:0d:e5:8a:55:5e:75:9d:2a:c7:b4:30:c7:20: e0:6f:e5:1a:46:16:af:f3:9f:1c:ec:c2:f0:d7:61: 8a:e8:d7:73:3e:5c:c8:d7:69:8d:8f:ea:45:2c:db: db:61:20:cd:66:a1:5c:9e:9d:f7:bc:a4:d7:23:b5: 2d:0c:74:eb:c4:da:39:a6:27:53:9c:e8:b9:10:58: 3a:11:f9:f9:66:f6:e9:bb:ba:3a:93:ce:b1:f6:d5: a1:33:c3:b4:21:1f:fb:3b:cb:25:88:52:6f:59:c1: 3c:55:aa:9a:1d:d2:51:5d:10:53:92:ff:c3:dc:e8: 24:89:61:c8:ca:f0:df:03:7c:67:02:3f:39:ac:dd: 26:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:66:34:99:7F:90:FA:9B:49:DE:73:56:F4:EC:6C:5C:DD:2A:B2:26 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143196.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a222::/32 Signature Algorithm: sha256WithRSAEncryption 29:48:ac:fa:04:87:33:a2:8b:42:f5:be:88:7b:ba:13:7a:ca: 4f:50:b7:e6:be:34:47:ed:3d:88:36:0a:65:5b:66:f6:e1:ea: 6a:91:32:c5:c9:e9:77:a3:8c:18:b1:95:c5:ef:b5:64:a1:ce: 89:cf:87:dd:aa:15:13:9a:9f:5f:60:39:e6:0a:2c:10:fe:10: 07:1c:b2:da:9f:ad:53:8a:d0:48:6a:bd:7f:b5:41:93:81:aa: 88:8c:49:a9:a2:48:86:b5:61:7d:e7:14:b5:81:d4:85:ee:a4: ff:11:e0:63:cb:f9:8c:b7:e3:ec:5d:93:1a:8b:d5:45:b7:10: 04:32:68:21:e7:81:f5:ff:d5:5c:ae:44:b9:46:a1:98:2b:ce: d1:de:3a:ca:26:59:3a:22:78:08:47:4a:48:39:f4:ee:19:75: 78:ae:ce:53:b8:7a:07:cd:fb:6f:4f:aa:af:2a:80:15:7b:e9: 2c:99:55:97:17:8f:72:c5:e1:c9:8d:db:9e:b5:1f:3c:fd:57: eb:0a:20:4d:bf:e1:79:55:71:fc:37:84:9d:4a:ce:04:1f:1d: 70:f2:d9:46:3b:07:0f:ca:94:09:e8:c1:02:48:9d:64:fa:e0: 20:5d:bc:5c:14:32:c9:49:e6:a3:91:03:d5:3c:48:3a:2a:07: f5:9a:e6:a1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUS1h7pFKawdP7Akqd3shF+ifaW0wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE1NFoX DTI3MDMwMzA2MDY1NFowMzExMC8GA1UEAxMoNkE2NjM0OTk3RjkwRkE5QjQ5REU3 MzU2RjRFQzZDNUNERDJBQjIyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANApaDf6ic0XMyzqiPB5SQ+FEJ8TVcepS8u1mUG+7+LTrOJkKRhBp5MXP3oK Q6VwVue5OEfpBME6cdr9Sj9HKV6klvisPZF9GUA25MxTNWsO2fxo/FIDo6AOBZFJ pCC99GoNfa1Ddo3/dvOEfx7edLkQ4w6eR6HemgEN5YpVXnWdKse0MMcg4G/lGkYW r/OfHOzC8NdhiujXcz5cyNdpjY/qRSzb22EgzWahXJ6d97yk1yO1LQx068TaOaYn U5zouRBYOhH5+Wb26bu6OpPOsfbVoTPDtCEf+zvLJYhSb1nBPFWqmh3SUV0QU5L/ w9zoJIlhyMrw3wN8ZwI/OazdJjkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRqZjSZ f5D6m0nec1b07Gxc3SqyJjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzE5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oiIwDQYJKoZIhvcNAQELBQADggEBAClIrPoEhzOii0L1voh7uhN6yk9Qt+a+NEft PYg2CmVbZvbh6mqRMsXJ6XejjBixlcXvtWShzonPh92qFROan19gOeYKLBD+EAcc stqfrVOK0EhqvX+1QZOBqoiMSamiSIa1YX3nFLWB1IXupP8R4GPL+Yy34+xdkxqL 1UW3EAQyaCHngfX/1VyuRLlGoZgrztHeOsomWToieAhHSkg59O4ZdXiuzlO4egfN +29Pqq8qgBV76SyZVZcXj3LF4cmN2561Hzz9V+sKIE2/4XlVcfw3hJ1KzgQfHXDy 2UY7Bw/KlAnowQJInWT64CBdvFwUMslJ5qORA9U8SDoqB/Wa5qE= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:35 2026 by rpki-client