$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143269.roa File: AS143269.roa (raw, json) Hash identifier: 0fc2MViAmx8C4EqNbdMnvaSxI/0hxdzcPKObZfQ3erk= Subject key identifier: 77:7F:C6:50:AB:E7:86:0D:D3:A2:5A:96:3A:99:F6:0C:07:B0:80:DD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2B99EC0D81820E31041490906BC849348FC840DB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143269.roa Signing time: Wed 04 Mar 2026 06:05:34 +0000 ROA not before: Wed 04 Mar 2026 06:00:34 +0000 ROA not after: Wed 03 Mar 2027 06:05:34 +0000 asID: 143269 IP address blocks: 240a:a26b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:99:ec:0d:81:82:0e:31:04:14:90:90:6b:c8:49:34:8f:c8:40:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:34 2026 GMT Not After : Mar 3 06:05:34 2027 GMT Subject: CN=777FC650ABE7860DD3A25A963A99F60C07B080DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d6:fc:cd:43:76:ef:bf:a7:92:08:81:cf:13: 0f:3e:52:cd:36:a2:c0:fc:01:c4:da:38:38:8a:e5: 6a:05:81:a1:37:3f:40:87:06:36:bf:30:d1:9c:ee: f1:95:95:e5:8b:12:81:05:d5:4e:5c:59:fb:11:b5: 08:1b:ff:82:1e:a0:b4:6a:ee:cd:b5:43:4f:46:95: ac:8d:62:6f:d2:7b:02:1f:9a:c9:56:a9:0d:cc:bf: 59:2d:dd:28:bb:a7:84:60:4c:1c:f6:b1:f1:ae:ef: d0:00:30:8b:f7:cc:71:07:4e:fb:70:cf:07:13:5c: f5:0a:56:09:4e:56:0a:d8:f2:90:2d:fd:82:19:3d: 54:c7:6a:f1:57:dc:b5:85:c8:f6:24:68:cd:7a:93: ae:e3:59:74:b9:05:6f:d8:bc:8d:87:c4:d8:4d:08: 9e:d3:99:6b:d6:74:ee:75:2c:95:1b:3c:89:76:fe: 75:bf:d0:96:21:3a:d7:b7:94:90:b1:7b:13:6c:35: dc:d9:f3:fb:97:cf:8e:f8:f4:1b:fd:34:9d:c3:83: c6:ba:f5:cd:df:05:59:62:6a:87:66:d1:cb:49:48: c7:9e:d9:22:0d:8a:f4:36:02:af:eb:f8:bb:13:ab: a1:df:37:51:7d:a6:74:a1:b0:dd:32:07:12:23:f9: 9a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7F:C6:50:AB:E7:86:0D:D3:A2:5A:96:3A:99:F6:0C:07:B0:80:DD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143269.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a26b::/32 Signature Algorithm: sha256WithRSAEncryption 5e:6f:1a:67:94:60:d1:42:98:e7:c4:28:86:e7:e6:a9:97:7a: 78:75:39:cd:33:37:bb:db:eb:a9:e1:5d:03:8b:85:be:25:b3: e9:8e:65:59:23:58:f0:53:bc:60:15:bb:e6:07:60:c0:8c:17: c8:a9:8b:71:4f:7d:32:b7:29:21:52:aa:b6:7b:c5:68:2c:01: be:2b:b6:c1:5f:9b:5a:a2:d7:01:52:e3:28:f6:44:b6:c1:33: fe:37:1a:8f:3c:fb:2e:00:40:9b:3d:1b:44:79:26:19:0a:17: d7:74:1f:b8:98:cc:34:38:89:82:a9:b8:27:12:a3:3c:03:91: fd:7b:9f:0c:70:01:a7:fd:cf:fa:43:9e:1e:57:05:66:8d:56: 24:db:ff:04:59:cb:a5:3a:6f:34:0c:88:e4:28:38:7f:34:d2: dc:8d:68:f9:7c:66:09:fb:bd:94:14:71:03:fb:6f:d9:33:64: 10:92:80:d4:fc:bf:b5:eb:4a:c8:d2:86:da:06:42:43:f3:71: 50:8c:6c:e1:47:7d:60:b2:9d:37:98:ea:64:3b:d8:39:90:2c: e1:a3:64:ed:af:f7:b0:0d:57:b8:28:fc:88:07:d0:ff:34:f1: 06:4b:47:3f:e6:51:c2:7c:94:0f:31:4d:d6:90:c2:5c:bb:91: 9a:f0:7a:bb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUK5nsDYGCDjEEFJCQa8hJNI/IQNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAzNFoX DTI3MDMwMzA2MDUzNFowMzExMC8GA1UEAxMoNzc3RkM2NTBBQkU3ODYwREQzQTI1 QTk2M0E5OUY2MEMwN0IwODBERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOLW/M1Ddu+/p5IIgc8TDz5SzTaiwPwBxNo4OIrlagWBoTc/QIcGNr8w0Zzu 8ZWV5YsSgQXVTlxZ+xG1CBv/gh6gtGruzbVDT0aVrI1ib9J7Ah+ayVapDcy/WS3d KLunhGBMHPax8a7v0AAwi/fMcQdO+3DPBxNc9QpWCU5WCtjykC39ghk9VMdq8Vfc tYXI9iRozXqTruNZdLkFb9i8jYfE2E0IntOZa9Z07nUslRs8iXb+db/QliE617eU kLF7E2w13Nnz+5fPjvj0G/00ncODxrr1zd8FWWJqh2bRy0lIx57ZIg2K9DYCr+v4 uxOrod83UX2mdKGw3TIHEiP5mi8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR3f8ZQ q+eGDdOiWpY6mfYMB7CA3TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzI2OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK omswDQYJKoZIhvcNAQELBQADggEBAF5vGmeUYNFCmOfEKIbn5qmXenh1Oc0zN7vb 66nhXQOLhb4ls+mOZVkjWPBTvGAVu+YHYMCMF8ipi3FPfTK3KSFSqrZ7xWgsAb4r tsFfm1qi1wFS4yj2RLbBM/43Go88+y4AQJs9G0R5JhkKF9d0H7iYzDQ4iYKpuCcS ozwDkf17nwxwAaf9z/pDnh5XBWaNViTb/wRZy6U6bzQMiOQoOH800tyNaPl8Zgn7 vZQUcQP7b9kzZBCSgNT8v7XrSsjShtoGQkPzcVCMbOFHfWCynTeY6mQ72DmQLOGj ZO2v97ANV7go/IgH0P808QZLRz/mUcJ8lA8xTdaQwly7kZrwers= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:56 2026 by rpki-client