$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143210.roa File: AS143210.roa (raw, json) Hash identifier: iEoTu7uK7DfQI6oeWtzKjlyZCLNUA+e/lY/jS208+/M= Subject key identifier: E7:6B:77:31:21:0A:BE:77:72:CB:7A:3E:1E:FC:8B:EB:2D:EA:ED:6F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 129CCE3BD8B3959E63CF82DBD1E8639C636F03C6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143210.roa Signing time: Wed 04 Mar 2026 06:07:52 +0000 ROA not before: Wed 04 Mar 2026 06:02:52 +0000 ROA not after: Wed 03 Mar 2027 06:07:52 +0000 asID: 143210 IP address blocks: 240a:a230::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:9c:ce:3b:d8:b3:95:9e:63:cf:82:db:d1:e8:63:9c:63:6f:03:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:52 2026 GMT Not After : Mar 3 06:07:52 2027 GMT Subject: CN=E76B7731210ABE7772CB7A3E1EFC8BEB2DEAED6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:a9:f4:a2:58:8b:99:bf:18:ce:3e:43:40:c0: 58:32:53:fb:48:aa:96:d9:f3:b1:34:44:a8:ef:aa: f2:c6:1d:a0:3d:2e:43:a0:91:42:9f:12:b2:bd:1b: ff:ab:34:b0:a9:24:77:0b:e8:e6:bb:14:c2:2e:61: e8:73:11:6a:eb:b0:3c:40:50:56:81:7f:7c:8f:91: 18:05:81:97:7d:17:01:1c:5d:63:65:0d:96:6f:c9: fc:d8:9f:f9:d8:f4:92:a0:d7:55:19:9d:1e:bd:b0: 82:88:f0:93:a0:be:57:57:69:b1:7c:9b:5c:41:78: 17:10:80:6f:20:1d:1e:a2:8a:cc:22:d8:ba:65:9b: bd:51:eb:c1:d5:76:22:a5:72:c2:78:12:7a:c1:cc: ec:66:5c:fc:f3:f0:09:cd:87:21:50:5b:a7:db:ba: 76:ad:d3:4e:d9:2f:cf:46:d7:2b:fd:ea:c5:02:7e: 9d:03:1c:f3:03:ec:d3:5e:40:a7:e0:1d:50:22:15: f2:11:03:01:e5:e9:11:82:74:ed:0b:de:f7:a9:76: 9c:75:00:48:1f:68:1d:55:f4:7d:4d:c9:2f:73:6f: 2c:99:ab:dd:83:fb:aa:78:ad:24:db:87:f6:ff:c2: bb:12:b6:c3:60:98:68:2f:5a:b2:50:fb:0a:eb:3a: 3c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:6B:77:31:21:0A:BE:77:72:CB:7A:3E:1E:FC:8B:EB:2D:EA:ED:6F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a230::/32 Signature Algorithm: sha256WithRSAEncryption bf:94:2a:2d:2c:2b:9d:a7:30:13:e2:67:25:7f:88:3f:d8:12: f1:d8:f6:b4:cb:d3:6f:25:a9:0f:9f:47:06:b9:aa:9c:d6:cd: 02:a6:67:00:dc:d1:19:86:6e:70:00:4b:91:b0:f4:4d:5d:35: a4:87:e7:4e:68:96:1b:13:ae:a4:ab:92:67:87:d6:c6:ac:bc: 36:33:f7:bf:93:b8:2b:31:05:2d:d1:51:0b:eb:26:0f:3f:f9: b5:a6:5a:da:49:69:92:a8:5d:98:e2:c0:29:17:ea:61:b1:5e: 01:f9:60:08:7c:85:16:e3:d6:b4:d3:d6:78:1c:d1:4d:54:65: ab:9b:42:8b:61:44:1c:c3:52:93:9b:fc:71:ba:ec:26:74:68: 33:e2:13:51:25:f2:35:7b:62:2d:37:1f:ea:f0:a4:f3:8e:eb: 8c:ac:e7:f2:87:38:31:53:58:3f:82:db:ad:92:e5:56:f7:bf: 33:9d:98:d5:8e:ef:2e:30:21:5a:ff:45:2b:d4:07:f6:13:6c: 06:32:bd:a9:71:db:dc:e5:cb:50:b1:06:65:36:d8:b1:83:22: b6:7d:94:3b:ba:c2:18:9b:ae:32:45:e8:4f:b2:73:eb:53:01: ff:69:96:f3:21:45:9b:64:22:91:da:29:87:fc:c8:19:ab:71: bb:b7:35:f6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUEpzOO9izlZ5jz4Lb0ehjnGNvA8YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDI1MloX DTI3MDMwMzA2MDc1MlowMzExMC8GA1UEAxMoRTc2Qjc3MzEyMTBBQkU3NzcyQ0I3 QTNFMUVGQzhCRUIyREVBRUQ2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIep9KJYi5m/GM4+Q0DAWDJT+0iqltnzsTREqO+q8sYdoD0uQ6CRQp8Ssr0b /6s0sKkkdwvo5rsUwi5h6HMRauuwPEBQVoF/fI+RGAWBl30XARxdY2UNlm/J/Nif +dj0kqDXVRmdHr2wgojwk6C+V1dpsXybXEF4FxCAbyAdHqKKzCLYumWbvVHrwdV2 IqVywngSesHM7GZc/PPwCc2HIVBbp9u6dq3TTtkvz0bXK/3qxQJ+nQMc8wPs015A p+AdUCIV8hEDAeXpEYJ07Qve96l2nHUASB9oHVX0fU3JL3NvLJmr3YP7qnitJNuH 9v/CuxK2w2CYaC9aslD7Cus6PGECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTna3cx IQq+d3LLej4e/IvrLertbzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzIxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ojAwDQYJKoZIhvcNAQELBQADggEBAL+UKi0sK52nMBPiZyV/iD/YEvHY9rTL028l qQ+fRwa5qpzWzQKmZwDc0RmGbnAAS5Gw9E1dNaSH505olhsTrqSrkmeH1sasvDYz 97+TuCsxBS3RUQvrJg8/+bWmWtpJaZKoXZjiwCkX6mGxXgH5YAh8hRbj1rTT1ngc 0U1UZaubQothRBzDUpOb/HG67CZ0aDPiE1El8jV7Yi03H+rwpPOO64ys5/KHODFT WD+C262S5Vb3vzOdmNWO7y4wIVr/RSvUB/YTbAYyvalx29zly1CxBmU22LGDIrZ9 lDu6whibrjJF6E+yc+tTAf9plvMhRZtkIpHaKYf8yBmrcbu3NfY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:51 2026 by rpki-client