$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143276.roa File: AS143276.roa (raw, json) Hash identifier: dLbP6vHHeLI8zEq/4QcGykkvuzChFuB7Yduih+JNVrs= Subject key identifier: AB:6F:39:3A:E5:25:51:D4:F2:F4:37:60:69:4D:A0:D9:78:78:85:81 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 17B0EB97BB2C21B04641EFAC2F8BB0E55FFDADFA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143276.roa Signing time: Wed 04 Mar 2026 06:06:38 +0000 ROA not before: Wed 04 Mar 2026 06:01:38 +0000 ROA not after: Wed 03 Mar 2027 06:06:38 +0000 asID: 143276 IP address blocks: 240a:a272::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:b0:eb:97:bb:2c:21:b0:46:41:ef:ac:2f:8b:b0:e5:5f:fd:ad:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:38 2026 GMT Not After : Mar 3 06:06:38 2027 GMT Subject: CN=AB6F393AE52551D4F2F43760694DA0D978788581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:06:9c:15:17:83:cd:3b:0a:22:2b:14:a8:fc: ba:45:b0:f0:b1:93:f1:d2:f5:e6:30:d5:53:01:4c: 03:15:39:c1:31:48:27:70:04:c0:66:fb:c6:eb:47: ce:8f:19:3e:c6:4b:cc:88:9d:9a:c3:b3:ef:c0:c9: 4f:7d:74:87:a8:ff:55:e2:d1:3b:d8:cd:5c:de:b0: da:0d:91:02:f7:0e:41:d2:6f:18:a0:30:10:35:83: 84:31:b3:3e:06:eb:54:46:6b:9c:24:cd:1f:e2:39: f9:85:81:2d:cc:a8:6f:6b:bf:8c:41:f4:05:cd:62: 5f:8d:72:f5:62:ca:8b:22:8f:7c:8d:b5:d5:da:89: e7:bb:47:0a:29:0e:24:a9:0f:d3:39:aa:86:26:ea: 6c:f1:35:6b:57:37:6d:f9:ae:ae:81:99:e8:46:de: ec:ee:07:eb:c0:ea:dd:b8:29:4b:2b:cd:70:42:bc: 65:35:4a:0d:f8:de:0a:18:f4:8b:ee:93:eb:7f:88: e5:90:3c:60:2e:b5:8c:b8:1f:ac:e0:07:a6:19:f3: 02:08:8d:f6:7b:14:fc:bc:68:51:72:93:3e:83:c7: fa:eb:50:99:5b:b8:a8:4f:87:10:0c:5f:4a:29:42: 5b:0c:63:14:6f:6f:0a:63:12:82:21:67:ff:20:c3: 11:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6F:39:3A:E5:25:51:D4:F2:F4:37:60:69:4D:A0:D9:78:78:85:81 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a272::/32 Signature Algorithm: sha256WithRSAEncryption 47:0c:52:03:36:b5:83:dc:4c:8c:4c:33:3e:4b:70:f4:d5:a8: 25:b8:e7:a7:0d:60:9a:6b:6d:b6:d8:a6:f1:e5:c5:e6:a4:3e: cd:64:69:ca:0e:84:46:a1:44:fd:ad:81:0b:8d:07:6e:f7:3a: 42:27:2c:f0:00:c5:35:73:0f:16:72:a2:80:ad:89:37:ff:71: af:20:76:05:84:bb:43:17:0a:a6:04:dd:24:3f:d8:c1:58:d7: 21:ff:8c:9e:36:43:13:1a:f5:0d:c2:da:26:b4:9b:44:f2:6d: f7:00:fa:be:b7:35:ca:0c:85:4f:05:a7:90:24:0f:cf:eb:20: c1:28:cb:f7:88:ac:60:46:06:8e:ef:9d:10:b7:f6:f7:1e:03: 1c:e9:a7:c1:c9:36:b7:5f:78:26:dd:b3:67:bb:04:2a:d4:0c: 10:cb:8d:00:21:a6:3c:67:d5:e2:7c:79:81:00:e8:9e:4a:f8: 34:8d:e8:bc:bc:63:ff:b2:f5:d2:fd:d3:6a:d6:36:89:76:16: b5:6e:2f:3a:e4:82:c3:f6:0d:e3:ca:b0:76:d9:ab:4b:66:6c: bc:36:99:10:53:49:95:4e:17:1a:87:f5:92:46:ad:d2:aa:85: 91:61:a5:4d:0a:3d:c6:bf:95:70:d7:f2:86:10:6d:b1:93:cc: 69:79:a7:a2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUF7Drl7ssIbBGQe+sL4uw5V/9rfowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDEzOFoX DTI3MDMwMzA2MDYzOFowMzExMC8GA1UEAxMoQUI2RjM5M0FFNTI1NTFENEYyRjQz NzYwNjk0REEwRDk3ODc4ODU4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAGnBUXg807CiIrFKj8ukWw8LGT8dL15jDVUwFMAxU5wTFIJ3AEwGb7xutH zo8ZPsZLzIidmsOz78DJT310h6j/VeLRO9jNXN6w2g2RAvcOQdJvGKAwEDWDhDGz PgbrVEZrnCTNH+I5+YWBLcyob2u/jEH0Bc1iX41y9WLKiyKPfI211dqJ57tHCikO JKkP0zmqhibqbPE1a1c3bfmuroGZ6Ebe7O4H68Dq3bgpSyvNcEK8ZTVKDfjeChj0 i+6T63+I5ZA8YC61jLgfrOAHphnzAgiN9nsU/LxoUXKTPoPH+utQmVu4qE+HEAxf SilCWwxjFG9vCmMSgiFn/yDDEYkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSrbzk6 5SVR1PL0N2BpTaDZeHiFgTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzI3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK onIwDQYJKoZIhvcNAQELBQADggEBAEcMUgM2tYPcTIxMMz5LcPTVqCW456cNYJpr bbbYpvHlxeakPs1kacoOhEahRP2tgQuNB273OkInLPAAxTVzDxZyooCtiTf/ca8g dgWEu0MXCqYE3SQ/2MFY1yH/jJ42QxMa9Q3C2ia0m0TybfcA+r63NcoMhU8Fp5Ak D8/rIMEoy/eIrGBGBo7vnRC39vceAxzpp8HJNrdfeCbds2e7BCrUDBDLjQAhpjxn 1eJ8eYEA6J5K+DSN6Ly8Y/+y9dL902rWNol2FrVuLzrkgsP2DePKsHbZq0tmbLw2 mRBTSZVOFxqH9ZJGrdKqhZFhpU0KPca/lXDX8oYQbbGTzGl5p6I= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:13 2026 by rpki-client