$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143274.roa File: AS143274.roa (raw, json) Hash identifier: ZTWa2NRFZMGoN56rMd/uwx1cWtRf3NJvm31jdisPaj0= Subject key identifier: 64:00:D0:0F:88:C1:0B:50:64:F8:DD:52:43:E7:F3:89:A5:EA:E2:DA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7BBD293836AEE6041228438A7587B42746CBBEA5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143274.roa Signing time: Wed 04 Mar 2026 06:06:31 +0000 ROA not before: Wed 04 Mar 2026 06:01:31 +0000 ROA not after: Wed 03 Mar 2027 06:06:31 +0000 asID: 143274 IP address blocks: 240a:a270::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:bd:29:38:36:ae:e6:04:12:28:43:8a:75:87:b4:27:46:cb:be:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:31 2026 GMT Not After : Mar 3 06:06:31 2027 GMT Subject: CN=6400D00F88C10B5064F8DD5243E7F389A5EAE2DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6b:d3:de:07:fe:cb:e9:5c:87:05:a3:8d:ce: e9:d3:47:0f:19:ec:cd:9c:c6:13:69:cd:b0:41:23: 26:a1:15:bf:9c:ec:11:a2:4d:e9:92:21:f0:2a:90: 7e:1d:85:e9:59:68:b5:4c:c8:10:84:dd:23:e6:52: 2e:f2:85:97:a9:cf:b1:63:2d:55:a8:db:60:e0:07: db:b7:c3:c7:48:37:4b:d8:81:5d:45:87:85:13:c3: c0:4a:7f:4d:38:ec:27:8a:01:b3:a0:c6:4c:a4:9f: 11:2c:83:b9:2e:ea:63:45:0e:8a:61:28:24:cd:76: 38:0d:9e:8e:4d:55:a4:be:55:ae:2b:66:32:ae:bb: 8d:a3:d5:5d:5c:69:d9:8d:39:b4:dd:08:cf:ea:02: a1:9c:50:99:32:5d:d8:e1:d8:8a:49:ff:41:9d:32: 52:15:25:0e:dd:80:e6:2c:2f:68:4d:48:e5:b1:42: ba:3d:dc:fa:7a:33:b5:43:ae:49:98:4f:cf:3c:b8: c7:ee:00:fb:32:a6:b8:c2:34:8a:23:9b:ca:14:8b: 09:60:15:b7:a7:68:22:79:2b:04:c5:7a:fd:17:9f: 24:83:c8:2c:d3:c8:15:73:73:8c:00:57:bc:eb:9f: 3b:53:db:d7:67:84:d6:33:d3:ee:5c:32:ed:90:80: a2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:00:D0:0F:88:C1:0B:50:64:F8:DD:52:43:E7:F3:89:A5:EA:E2:DA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143274.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a270::/32 Signature Algorithm: sha256WithRSAEncryption a4:b0:70:c6:aa:74:f1:08:52:48:fa:d5:34:ee:a4:e2:76:26: c3:19:7d:f9:af:7d:c5:4a:70:79:79:2d:a8:b0:a7:53:59:bd: 3d:3c:4e:11:6a:20:69:ce:bc:ce:b6:5c:8e:8a:61:7a:77:61: e7:3b:d3:47:45:b6:20:8e:16:5a:8c:24:d7:77:b2:e7:b0:10: 2f:d8:34:cc:73:4d:d3:a7:ed:df:80:96:f3:cc:0b:61:e0:67: 39:47:25:41:3c:32:fc:d5:dd:f5:f0:8b:1a:7e:c2:64:8a:0b: e1:13:2b:8e:08:f3:00:26:03:0f:f7:e6:e2:f2:aa:81:41:0f: 5b:ed:ef:36:ec:f1:f1:f2:a3:b5:f8:b8:d6:b8:ea:c0:41:78: db:c6:82:7b:62:0f:7e:f3:d5:29:3f:d5:50:43:68:be:ac:a6: 6c:64:70:e7:31:a1:ae:d9:1f:17:b9:4d:b0:04:dd:ea:09:2a: 54:f3:32:15:56:b0:61:82:9a:7a:c6:3d:62:cc:1b:67:8f:c6: c9:b3:60:4e:b2:1b:7a:f3:b4:da:45:ea:21:28:27:2b:3a:91: e1:88:35:4a:c9:7e:11:a3:bf:2b:a7:9e:6b:d7:09:34:6b:0a: b7:19:18:0d:44:ed:e0:ff:fe:7a:43:03:e6:27:8d:72:9e:53: 3b:a4:1f:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUe70pODau5gQSKEOKdYe0J0bLvqUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDEzMVoX DTI3MDMwMzA2MDYzMVowMzExMC8GA1UEAxMoNjQwMEQwMEY4OEMxMEI1MDY0RjhE RDUyNDNFN0YzODlBNUVBRTJEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNr094H/svpXIcFo43O6dNHDxnszZzGE2nNsEEjJqEVv5zsEaJN6ZIh8CqQ fh2F6VlotUzIEITdI+ZSLvKFl6nPsWMtVajbYOAH27fDx0g3S9iBXUWHhRPDwEp/ TTjsJ4oBs6DGTKSfESyDuS7qY0UOimEoJM12OA2ejk1VpL5VritmMq67jaPVXVxp 2Y05tN0Iz+oCoZxQmTJd2OHYikn/QZ0yUhUlDt2A5iwvaE1I5bFCuj3c+noztUOu SZhPzzy4x+4A+zKmuMI0iiObyhSLCWAVt6doInkrBMV6/RefJIPILNPIFXNzjABX vOufO1Pb12eE1jPT7lwy7ZCAooUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRkANAP iMELUGT43VJD5/OJperi2jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzI3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK onAwDQYJKoZIhvcNAQELBQADggEBAKSwcMaqdPEIUkj61TTupOJ2JsMZffmvfcVK cHl5Laiwp1NZvT08ThFqIGnOvM62XI6KYXp3Yec700dFtiCOFlqMJNd3suewEC/Y NMxzTdOn7d+AlvPMC2HgZzlHJUE8MvzV3fXwixp+wmSKC+ETK44I8wAmAw/35uLy qoFBD1vt7zbs8fHyo7X4uNa46sBBeNvGgntiD37z1Sk/1VBDaL6spmxkcOcxoa7Z Hxe5TbAE3eoJKlTzMhVWsGGCmnrGPWLMG2ePxsmzYE6yG3rztNpF6iEoJys6keGI NUrJfhGjvyunnmvXCTRrCrcZGA1E7eD//npDA+YnjXKeUzukH1w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:58 2026 by rpki-client