$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143216.roa File: AS143216.roa (raw, json) Hash identifier: Hc4Cp10/kJRb73a/IlHR6dSr5XLNOZiYlcF80GlegSE= Subject key identifier: 90:7A:70:87:4D:37:E8:4B:D0:CD:EB:31:44:9E:A9:D4:63:CA:A8:4E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 33FAF905E71189DE878257C04A2BA86F4F9DDCE5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143216.roa Signing time: Wed 04 Mar 2026 06:05:35 +0000 ROA not before: Wed 04 Mar 2026 06:00:35 +0000 ROA not after: Wed 03 Mar 2027 06:05:35 +0000 asID: 143216 IP address blocks: 240a:a236::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fa:f9:05:e7:11:89:de:87:82:57:c0:4a:2b:a8:6f:4f:9d:dc:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:35 2026 GMT Not After : Mar 3 06:05:35 2027 GMT Subject: CN=907A70874D37E84BD0CDEB31449EA9D463CAA84E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:5b:7a:99:e2:f4:c3:9c:db:73:8e:03:ef:a8: 29:7d:23:fc:a7:99:9f:ea:ae:6d:53:51:24:15:2d: ba:51:06:d2:f0:8b:95:0a:9a:f8:f2:93:16:fe:67: 27:1b:4b:76:0d:b1:20:39:26:4c:5a:87:c5:59:9e: 53:b0:7e:f0:ef:0e:8d:57:4b:d1:12:e0:36:08:22: 5a:1a:4c:06:81:18:f9:a7:72:37:e4:98:1f:e6:8d: df:19:56:22:2f:c8:ba:bc:e0:5b:18:d2:9c:63:fd: 72:93:6d:f2:b7:34:4a:e4:ac:b0:b8:d6:33:68:1a: 9d:ba:3c:87:e6:17:4e:30:72:50:03:13:13:71:f1: 7b:fb:cf:85:c4:04:3d:d6:55:d4:a5:51:11:c3:f1: 71:97:d1:69:4e:19:fe:b3:69:16:49:6c:fe:a8:6a: d8:d7:83:af:d4:e6:39:30:52:b1:ec:42:d2:b6:42: b8:0b:eb:9a:eb:4f:4c:67:fb:13:cc:1b:1c:8c:82: 82:c0:0e:d0:7c:1d:09:02:31:61:ea:17:fb:b8:c4: fe:9b:ca:56:eb:e4:a7:ad:96:41:bf:6b:32:4f:07: ad:b6:9c:86:c5:5b:b7:ec:a4:41:29:c5:45:5c:67: 98:f8:ee:6d:6e:91:51:cd:ff:80:fe:49:03:de:22: a3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7A:70:87:4D:37:E8:4B:D0:CD:EB:31:44:9E:A9:D4:63:CA:A8:4E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143216.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a236::/32 Signature Algorithm: sha256WithRSAEncryption 3c:87:54:fb:53:2d:71:ab:5b:c0:ad:23:b4:9c:82:bb:70:d8: 81:e3:29:6f:2e:3f:46:20:88:30:a8:86:b1:35:83:93:64:bc: 50:08:90:67:47:3d:65:31:a9:be:3d:33:db:44:94:58:e8:5a: f7:df:26:3a:26:ea:29:d1:52:42:ad:80:ab:20:55:1f:90:e4: c1:64:e0:45:32:7d:31:0e:93:b6:4c:59:ae:ca:18:e2:3b:68: 63:89:df:e6:b8:3b:22:df:00:62:6c:53:c7:e8:c5:52:31:3c: 61:ae:48:b0:19:9b:11:6c:0f:3a:25:28:19:63:39:26:75:00: 97:da:7a:50:29:80:f5:67:5f:86:46:c6:29:8b:e9:cc:0c:5c: 07:a3:ab:39:05:56:42:fd:8b:be:2c:6b:2e:94:58:1e:f7:51: ba:99:d7:6c:8e:ef:27:ce:93:eb:6e:89:e7:a1:3e:a2:dc:2d: fc:b5:77:6d:05:33:fe:78:aa:20:93:33:af:50:4a:60:04:11: d1:58:a1:3f:11:f0:a3:dc:0e:71:e6:75:e2:87:c3:ad:d5:a6: 12:8d:01:6c:52:64:bc:15:c8:26:55:28:08:fe:70:b2:d5:2d: 81:48:fc:81:ca:bc:72:f5:50:de:61:d2:78:0e:6a:e2:00:72: be:a4:3e:a6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUM/r5BecRid6HglfASiuob0+d3OUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAzNVoX DTI3MDMwMzA2MDUzNVowMzExMC8GA1UEAxMoOTA3QTcwODc0RDM3RTg0QkQwQ0RF QjMxNDQ5RUE5RDQ2M0NBQTg0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJJbepni9MOc23OOA++oKX0j/KeZn+qubVNRJBUtulEG0vCLlQqa+PKTFv5n JxtLdg2xIDkmTFqHxVmeU7B+8O8OjVdL0RLgNggiWhpMBoEY+adyN+SYH+aN3xlW Ii/IurzgWxjSnGP9cpNt8rc0SuSssLjWM2ganbo8h+YXTjByUAMTE3Hxe/vPhcQE PdZV1KVREcPxcZfRaU4Z/rNpFkls/qhq2NeDr9TmOTBSsexC0rZCuAvrmutPTGf7 E8wbHIyCgsAO0HwdCQIxYeoX+7jE/pvKVuvkp62WQb9rMk8HrbachsVbt+ykQSnF RVxnmPjubW6RUc3/gP5JA94io+kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSQenCH TTfoS9DN6zFEnqnUY8qoTjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzIxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ojYwDQYJKoZIhvcNAQELBQADggEBADyHVPtTLXGrW8CtI7Scgrtw2IHjKW8uP0Yg iDCohrE1g5NkvFAIkGdHPWUxqb49M9tElFjoWvffJjom6inRUkKtgKsgVR+Q5MFk 4EUyfTEOk7ZMWa7KGOI7aGOJ3+a4OyLfAGJsU8foxVIxPGGuSLAZmxFsDzolKBlj OSZ1AJfaelApgPVnX4ZGximL6cwMXAejqzkFVkL9i74say6UWB73UbqZ12yO7yfO k+tuieehPqLcLfy1d20FM/54qiCTM69QSmAEEdFYoT8R8KPcDnHmdeKHw63VphKN AWxSZLwVyCZVKAj+cLLVLYFI/IHKvHL1UN5h0ngOauIAcr6kPqY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:02 2026 by rpki-client