$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143277.roa File: AS143277.roa (raw, json) Hash identifier: 9+cThauKX2jf/FBLBqx7e6bZcT9eRkSaSeH7x0UfCdI= Subject key identifier: 94:F9:27:2D:90:65:D3:E9:2B:5D:8E:6A:07:F5:76:48:46:4B:61:A2 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3B96BC281BD43771DCF4906906E3A705B022F32F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143277.roa Signing time: Wed 04 Mar 2026 06:07:45 +0000 ROA not before: Wed 04 Mar 2026 06:02:45 +0000 ROA not after: Wed 03 Mar 2027 06:07:45 +0000 asID: 143277 IP address blocks: 240a:a273::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:96:bc:28:1b:d4:37:71:dc:f4:90:69:06:e3:a7:05:b0:22:f3:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:45 2026 GMT Not After : Mar 3 06:07:45 2027 GMT Subject: CN=94F9272D9065D3E92B5D8E6A07F57648464B61A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9c:bc:f2:b9:89:36:10:ad:13:6c:2c:55:99: 38:fd:4f:b5:a0:77:45:8e:1b:91:78:a3:50:16:b7: f0:8a:a3:76:42:ea:f5:e6:04:fb:58:1b:5d:3c:7e: 89:2f:f2:8e:44:12:e9:d8:c9:a4:6a:db:87:c7:8a: b5:4a:bd:f8:45:8d:32:31:2b:89:c0:07:44:0c:7a: 99:05:b3:53:55:2d:67:03:d3:40:d8:d8:ea:73:e2: 37:96:17:ac:6c:b8:7b:a2:d5:e0:db:0f:90:7b:e1: 28:5a:7a:51:e2:6f:48:63:2d:99:08:4d:c5:55:23: 49:a4:eb:aa:f6:82:63:a9:4f:39:88:0c:3a:56:92: 50:69:22:02:a8:fe:08:39:2e:a6:3e:e0:63:b2:74: 02:56:f5:32:07:79:da:1f:6b:e0:97:43:1c:8d:53: 6f:11:62:38:fb:b7:e0:15:0d:03:d6:c5:ee:da:40: f4:11:77:28:30:9e:22:80:c3:75:f0:4b:37:52:55: 69:08:69:1f:7f:23:45:58:e9:13:df:83:67:59:ef: da:c4:55:d5:2a:d5:bd:0d:43:3b:8f:60:b0:53:01: 0a:03:5c:d9:66:b6:a9:04:9c:08:fe:e8:f3:47:db: c4:76:5b:75:ca:0b:dc:ad:b8:d6:1b:fd:01:f3:b0: 7d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F9:27:2D:90:65:D3:E9:2B:5D:8E:6A:07:F5:76:48:46:4B:61:A2 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143277.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a273::/32 Signature Algorithm: sha256WithRSAEncryption b3:f3:2f:72:7e:2b:b1:be:ea:5b:a3:bd:21:b3:70:86:16:3f: 0e:df:1c:e6:2c:77:80:03:39:48:cb:f1:45:2a:20:2b:04:a5: b2:27:2b:0a:ef:f9:d8:b2:3c:6a:54:61:e2:87:92:40:9c:47: 0f:82:1c:96:70:d8:44:bb:27:b6:87:ee:e0:c6:10:4b:ce:30: db:74:5e:59:fb:cd:16:e3:64:05:54:ec:1c:1c:2c:97:c8:2f: 60:d1:a0:4e:16:a5:73:b9:10:a5:d4:c6:c8:c8:f6:86:42:ce: 3d:b5:a6:61:ce:92:03:f8:5a:ec:8c:a7:97:11:a9:d1:d9:fd: 4f:b8:2c:9c:61:e6:4c:e1:c9:c2:ab:f0:39:73:f9:a2:83:c2: 6b:77:dc:15:fa:b4:fc:81:8c:7a:27:54:fc:ac:f6:91:a0:21: 9d:34:9f:71:86:6c:66:f5:ed:05:96:8d:e8:cb:e2:9f:f7:9e: 2d:e3:1c:45:04:15:66:f1:47:0d:f2:be:fd:58:60:4f:78:9c: 45:15:1e:7a:d8:b0:30:ef:4d:1f:5e:a9:e7:1f:83:ac:02:00: 53:ae:76:b3:27:52:92:1b:34:04:90:6f:15:84:5f:ba:1e:3b: af:0f:1b:99:d8:a0:80:11:d2:13:38:b1:36:c2:87:60:4d:73: fd:3d:f5:5f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUO5a8KBvUN3Hc9JBpBuOnBbAi8y8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDI0NVoX DTI3MDMwMzA2MDc0NVowMzExMC8GA1UEAxMoOTRGOTI3MkQ5MDY1RDNFOTJCNUQ4 RTZBMDdGNTc2NDg0NjRCNjFBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2cvPK5iTYQrRNsLFWZOP1PtaB3RY4bkXijUBa38IqjdkLq9eYE+1gbXTx+ iS/yjkQS6djJpGrbh8eKtUq9+EWNMjEricAHRAx6mQWzU1UtZwPTQNjY6nPiN5YX rGy4e6LV4NsPkHvhKFp6UeJvSGMtmQhNxVUjSaTrqvaCY6lPOYgMOlaSUGkiAqj+ CDkupj7gY7J0Alb1Mgd52h9r4JdDHI1TbxFiOPu34BUNA9bF7tpA9BF3KDCeIoDD dfBLN1JVaQhpH38jRVjpE9+DZ1nv2sRV1SrVvQ1DO49gsFMBCgNc2Wa2qQScCP7o 80fbxHZbdcoL3K241hv9AfOwfekCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSU+Sct kGXT6StdjmoH9XZIRkthojAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzI3Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK onMwDQYJKoZIhvcNAQELBQADggEBALPzL3J+K7G+6lujvSGzcIYWPw7fHOYsd4AD OUjL8UUqICsEpbInKwrv+diyPGpUYeKHkkCcRw+CHJZw2ES7J7aH7uDGEEvOMNt0 Xln7zRbjZAVU7BwcLJfIL2DRoE4WpXO5EKXUxsjI9oZCzj21pmHOkgP4WuyMp5cR qdHZ/U+4LJxh5kzhycKr8Dlz+aKDwmt33BX6tPyBjHonVPys9pGgIZ00n3GGbGb1 7QWWjejL4p/3ni3jHEUEFWbxRw3yvv1YYE94nEUVHnrYsDDvTR9eqecfg6wCAFOu drMnUpIbNASQbxWEX7oeO68PG5nYoIAR0hM4sTbCh2BNc/099V8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:03 2026 by rpki-client