$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143230.roa File: AS143230.roa (raw, json) Hash identifier: Uw18u87ff9ZZ4KrPrWlNYx3JjUBE8XZyOPQxE2OQsYg= Subject key identifier: 82:61:AD:81:BA:A3:4A:71:E8:19:51:8A:62:80:7B:1D:CE:7C:4F:18 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 295623E523DC7833FD30E70BA9868ADD348EEEB6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143230.roa Signing time: Wed 04 Mar 2026 06:07:24 +0000 ROA not before: Wed 04 Mar 2026 06:02:24 +0000 ROA not after: Wed 03 Mar 2027 06:07:24 +0000 asID: 143230 IP address blocks: 240a:a244::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:56:23:e5:23:dc:78:33:fd:30:e7:0b:a9:86:8a:dd:34:8e:ee:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:24 2026 GMT Not After : Mar 3 06:07:24 2027 GMT Subject: CN=8261AD81BAA34A71E819518A62807B1DCE7C4F18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b6:f7:80:db:2e:90:45:41:ce:21:69:94:f7: 26:65:fd:f8:a9:ac:8b:37:2f:f1:09:30:be:0f:9b: d4:b6:a0:aa:9d:f0:6e:18:0e:43:46:f9:89:03:41: e5:5f:a2:26:0a:30:30:b4:b8:c9:f8:1f:49:60:9e: d1:2b:e4:a5:4a:5f:84:01:91:41:74:aa:f4:53:44: 31:68:7b:82:9e:45:4e:4a:29:94:2c:5e:02:8b:c1: 28:fc:5e:49:e7:b5:c7:81:a5:36:46:22:44:f0:71: 81:be:ea:24:c4:a3:e4:09:d4:54:0d:c8:9c:85:ba: f6:46:cb:9b:3c:69:ce:b5:11:8b:05:c7:7c:69:c3: 54:93:34:33:af:f3:10:1b:cd:94:43:3d:23:d9:ff: 9e:92:1d:d3:c9:6d:fc:60:04:c2:4f:7b:45:5f:2b: 74:4e:de:a8:25:8d:dd:61:f0:09:98:20:e8:0f:53: 88:d2:ec:91:fe:2d:88:17:bf:1d:69:ff:89:d0:4f: 87:b0:d3:3a:29:a7:c1:c1:8a:e8:be:e5:7f:0b:65: 0a:20:bc:47:eb:50:a1:6c:61:e8:f3:87:24:10:b4: b3:a6:09:8c:49:09:31:e1:d2:7c:2d:bc:5d:19:68: ec:76:cf:49:0f:8b:1c:8f:b5:e9:e9:0f:ee:6e:67: 6a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:61:AD:81:BA:A3:4A:71:E8:19:51:8A:62:80:7B:1D:CE:7C:4F:18 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a244::/32 Signature Algorithm: sha256WithRSAEncryption 5b:72:78:3c:86:56:3c:38:77:1f:03:ff:bc:23:a8:90:19:ab: c6:50:be:20:15:77:f2:4d:21:1f:ba:68:b9:3b:ef:bb:d7:5d: 6d:d3:21:12:9b:63:7f:ea:a5:cb:fe:bf:6a:d9:6e:5f:2f:f0: 8a:fa:f4:a3:7f:30:40:76:d4:80:3d:08:f1:6c:2f:a0:c6:c3: 9a:4f:61:bc:2e:5a:6d:55:af:77:23:e2:20:8a:54:46:a6:35: 3d:e7:fc:c7:93:9e:55:96:ac:f6:d5:0b:fc:d9:85:b4:c3:de: 30:e8:45:ea:25:11:d5:dc:05:8e:7e:a3:f3:97:7a:49:57:31: 07:0b:ac:19:da:3d:d2:4b:0e:5e:a8:48:42:c6:ca:4f:60:83: 16:22:88:d5:08:9d:a7:36:1f:34:bb:3b:24:79:7c:f1:74:0a: ef:58:d4:ec:2b:3f:a9:1b:5c:2c:f0:0f:8f:f2:bc:7a:3b:80: 57:08:65:c0:02:66:c0:7c:b9:fc:c9:67:7b:95:91:0e:ca:30: 8c:5a:87:15:68:61:1f:1f:bc:b1:ad:43:ed:30:e5:18:4d:97: b1:16:b6:33:17:5d:78:3c:bf:2d:ab:67:f0:19:a5:97:ce:f7: 18:0f:21:a3:65:72:a3:45:6c:5a:11:50:ca:4f:1a:24:af:32: 97:49:52:65 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKVYj5SPceDP9MOcLqYaK3TSO7rYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIyNFoX DTI3MDMwMzA2MDcyNFowMzExMC8GA1UEAxMoODI2MUFEODFCQUEzNEE3MUU4MTk1 MThBNjI4MDdCMURDRTdDNEYxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKi294DbLpBFQc4haZT3JmX9+Kmsizcv8Qkwvg+b1Lagqp3wbhgOQ0b5iQNB 5V+iJgowMLS4yfgfSWCe0SvkpUpfhAGRQXSq9FNEMWh7gp5FTkoplCxeAovBKPxe See1x4GlNkYiRPBxgb7qJMSj5AnUVA3InIW69kbLmzxpzrURiwXHfGnDVJM0M6/z EBvNlEM9I9n/npId08lt/GAEwk97RV8rdE7eqCWN3WHwCZgg6A9TiNLskf4tiBe/ HWn/idBPh7DTOimnwcGK6L7lfwtlCiC8R+tQoWxh6POHJBC0s6YJjEkJMeHSfC28 XRlo7HbPSQ+LHI+16ekP7m5nag0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSCYa2B uqNKcegZUYpigHsdznxPGDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzIzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK okQwDQYJKoZIhvcNAQELBQADggEBAFtyeDyGVjw4dx8D/7wjqJAZq8ZQviAVd/JN IR+6aLk777vXXW3TIRKbY3/qpcv+v2rZbl8v8Ir69KN/MEB21IA9CPFsL6DGw5pP YbwuWm1Vr3cj4iCKVEamNT3n/MeTnlWWrPbVC/zZhbTD3jDoReolEdXcBY5+o/OX eklXMQcLrBnaPdJLDl6oSELGyk9ggxYiiNUInac2HzS7OyR5fPF0Cu9Y1OwrP6kb XCzwD4/yvHo7gFcIZcACZsB8ufzJZ3uVkQ7KMIxahxVoYR8fvLGtQ+0w5RhNl7EW tjMXXXg8vy2rZ/AZpZfO9xgPIaNlcqNFbFoRUMpPGiSvMpdJUmU= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:15 2026 by rpki-client