$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143264.roa File: AS143264.roa (raw, json) Hash identifier: hp+mAIGwYy4B2vxnVOtJO1k0FDL2WjIL+qPjRn7WQKU= Subject key identifier: F5:39:E9:96:1F:D2:E1:D4:7D:AF:1B:36:AF:2A:F0:47:08:0A:B5:4F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 16823C33047CB3711DE0DC44B34D17DAC2B561CB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143264.roa Signing time: Wed 04 Mar 2026 06:05:33 +0000 ROA not before: Wed 04 Mar 2026 06:00:33 +0000 ROA not after: Wed 03 Mar 2027 06:05:33 +0000 asID: 143264 IP address blocks: 240a:a266::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:82:3c:33:04:7c:b3:71:1d:e0:dc:44:b3:4d:17:da:c2:b5:61:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:33 2026 GMT Not After : Mar 3 06:05:33 2027 GMT Subject: CN=F539E9961FD2E1D47DAF1B36AF2AF047080AB54F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:90:04:9c:d7:b1:b4:d1:aa:89:10:02:60:6b: a8:96:57:f9:f0:33:34:a9:7d:af:3d:1d:58:e5:6a: ef:c1:f4:bd:c7:be:aa:ff:37:64:c9:b6:c0:9a:00: 6a:d1:36:bc:d1:f2:ff:e2:ed:76:f6:9b:97:e0:fe: 8d:31:81:27:f3:64:c5:e4:c1:24:2b:f3:4e:31:1b: 40:a8:c8:68:82:ee:b5:87:4f:57:a1:e6:f0:de:78: 4e:08:e8:5f:ad:a1:71:b9:29:78:55:0d:38:9f:1a: 5a:89:a2:64:1f:06:01:ba:92:8e:9a:55:6b:ba:81: ab:0f:22:33:63:31:23:c8:47:04:db:03:45:98:59: 04:6f:ff:f0:d3:c4:b6:57:a7:5d:ec:77:94:02:fd: 2d:a7:77:c8:06:5f:fc:3c:8a:da:0e:36:a9:45:4e: 6c:c7:b2:96:8a:0b:60:05:54:93:30:f2:93:3b:a8: 97:a2:c7:34:09:30:63:6a:d9:10:49:09:de:82:ab: b0:90:dd:9f:96:59:f0:79:0b:81:c2:f8:af:f2:31: 3f:e8:ab:38:2b:16:ee:3a:3f:9f:b3:c0:2a:4a:3e: 84:32:88:10:4a:c2:fc:86:78:a0:1c:0d:05:7f:ed: a7:6f:18:0a:ab:0c:53:ef:6a:a9:20:86:62:24:10: 1e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:39:E9:96:1F:D2:E1:D4:7D:AF:1B:36:AF:2A:F0:47:08:0A:B5:4F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143264.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a266::/32 Signature Algorithm: sha256WithRSAEncryption 61:ee:08:09:ad:65:ca:66:96:34:bf:14:9b:1f:9b:3c:e2:82: 65:4e:5b:5d:12:60:76:26:13:6a:b5:65:9a:b7:f0:04:c6:b0: fc:1a:00:dd:e7:a3:15:d5:3d:14:8e:32:ec:2e:e3:af:fd:8c: c2:57:c6:90:9b:06:29:1b:18:16:c2:02:7e:55:b0:bb:8e:f0: b9:71:f3:ab:63:96:5c:9a:12:2c:2e:0a:c5:df:38:59:b0:d5: 54:81:20:a9:7c:5f:f9:ae:c3:68:25:76:14:84:85:42:4d:c8: d8:5d:02:83:06:15:9f:dc:1b:0a:c4:d5:2a:cc:4b:9f:ce:72: 09:35:88:75:80:6c:95:39:b1:78:c2:c8:6d:7d:99:ee:e4:62: 72:c3:39:c7:51:df:a3:89:62:3d:13:57:c7:ad:16:eb:40:f9: 54:94:d7:ba:2f:81:65:20:c7:32:2a:76:09:ac:8c:ed:14:40: 76:75:96:47:5b:e0:2a:30:7f:24:82:30:2b:11:22:39:df:c5: 75:87:5b:a1:eb:42:ad:9f:8c:f5:aa:71:ce:d1:ad:b0:61:95: 95:40:b2:a8:83:3f:34:62:8a:7a:25:1c:fd:63:48:79:38:bb: 32:18:a8:5a:76:42:e9:46:05:ec:02:eb:14:17:73:d7:02:bb: 99:3a:74:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFoI8MwR8s3Ed4NxEs00X2sK1YcswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAzM1oX DTI3MDMwMzA2MDUzM1owMzExMC8GA1UEAxMoRjUzOUU5OTYxRkQyRTFENDdEQUYx QjM2QUYyQUYwNDcwODBBQjU0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaQBJzXsbTRqokQAmBrqJZX+fAzNKl9rz0dWOVq78H0vce+qv83ZMm2wJoA atE2vNHy/+Ltdvabl+D+jTGBJ/NkxeTBJCvzTjEbQKjIaILutYdPV6Hm8N54Tgjo X62hcbkpeFUNOJ8aWomiZB8GAbqSjppVa7qBqw8iM2MxI8hHBNsDRZhZBG//8NPE tlenXex3lAL9Lad3yAZf/DyK2g42qUVObMeylooLYAVUkzDykzuol6LHNAkwY2rZ EEkJ3oKrsJDdn5ZZ8HkLgcL4r/IxP+irOCsW7jo/n7PAKko+hDKIEErC/IZ4oBwN BX/tp28YCqsMU+9qqSCGYiQQHu8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT1OemW H9Lh1H2vGzavKvBHCAq1TzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzI2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK omYwDQYJKoZIhvcNAQELBQADggEBAGHuCAmtZcpmljS/FJsfmzzigmVOW10SYHYm E2q1ZZq38ATGsPwaAN3noxXVPRSOMuwu46/9jMJXxpCbBikbGBbCAn5VsLuO8Llx 86tjllyaEiwuCsXfOFmw1VSBIKl8X/muw2gldhSEhUJNyNhdAoMGFZ/cGwrE1SrM S5/Ocgk1iHWAbJU5sXjCyG19me7kYnLDOcdR36OJYj0TV8etFutA+VSU17ovgWUg xzIqdgmsjO0UQHZ1lkdb4CowfySCMCsRIjnfxXWHW6HrQq2fjPWqcc7RrbBhlZVA sqiDPzRiinolHP1jSHk4uzIYqFp2QulGBewC6xQXc9cCu5k6dK8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:51 2026 by rpki-client