$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143286.roa File: AS143286.roa (raw, json) Hash identifier: JNA/P+XC7vfN1B7hJ7PTe7xkee75zzjWSQK8GgTzDFo= Subject key identifier: F6:EE:A8:6B:91:75:11:09:35:AA:7D:A3:52:01:38:77:E0:60:7E:36 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 54E6AD0BF4C163C2CB67C95DE567EC26598FCB49 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143286.roa Signing time: Wed 04 Mar 2026 06:07:21 +0000 ROA not before: Wed 04 Mar 2026 06:02:21 +0000 ROA not after: Wed 03 Mar 2027 06:07:21 +0000 asID: 143286 IP address blocks: 240a:a27c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e6:ad:0b:f4:c1:63:c2:cb:67:c9:5d:e5:67:ec:26:59:8f:cb:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:21 2026 GMT Not After : Mar 3 06:07:21 2027 GMT Subject: CN=F6EEA86B9175110935AA7DA352013877E0607E36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e8:c2:5c:c1:6e:7c:0e:42:c0:a5:3c:16:53: 62:a2:60:fb:02:41:4b:21:07:82:bc:05:79:52:a3: f4:a6:5b:64:8b:a3:99:c2:3f:da:1f:fd:42:b2:d2: cc:a4:65:38:34:6c:d1:4b:1d:0c:39:06:15:f6:1c: 4f:de:c1:c5:22:01:5a:ce:b0:8a:82:1c:fb:76:17: 56:0d:4f:ea:9a:ab:54:eb:f7:bc:bc:a1:b2:62:23: 58:e4:b3:54:87:e6:2c:3b:45:52:33:fb:11:09:94: 2f:dd:08:53:e8:6f:cd:00:95:30:00:8c:fd:d1:49: 11:36:a4:22:a5:d5:fc:01:86:6d:bb:1d:53:08:14: d2:fe:34:19:00:41:39:e2:df:85:b2:e4:a3:85:e6: 4d:41:2d:71:ec:32:1e:12:f6:34:17:bc:31:87:95: 47:8b:69:a6:45:80:0d:8a:a6:0e:e9:bf:08:5a:32: c1:f2:b8:80:f8:69:99:07:42:fa:90:63:c4:db:d5: c1:bf:a4:00:d2:35:8d:6b:d7:6d:60:73:5b:f4:a8: ee:93:c4:d3:c0:5d:a3:07:a8:12:55:b9:ae:47:d6: f4:57:ca:d2:ec:f0:8e:64:d9:20:e6:50:61:e6:8b: a8:c8:46:4e:eb:87:82:2c:c7:4b:af:1f:c2:a6:28: bf:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EE:A8:6B:91:75:11:09:35:AA:7D:A3:52:01:38:77:E0:60:7E:36 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143286.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a27c::/32 Signature Algorithm: sha256WithRSAEncryption 3f:c5:60:3b:82:f2:59:82:14:14:57:ee:99:22:88:38:da:db: 5b:38:81:b8:3c:b0:f3:0f:33:02:0e:ce:39:f6:0d:90:ae:fd: fa:6e:cd:9a:4f:7f:f1:47:58:4d:42:3c:02:05:1c:72:f6:27: 88:a3:dd:e8:81:f6:8f:4d:a5:3d:d5:9d:5b:1f:ef:91:fe:f3: a5:67:ac:1f:42:d9:16:9e:23:c8:03:f6:4b:bb:09:57:93:64: ed:88:7b:02:9b:4a:a0:98:07:7b:40:f2:69:3f:91:0d:62:79: fc:69:92:51:7a:4b:4e:41:c2:1e:c4:2d:ba:80:39:79:20:a5: c7:16:1f:72:fa:8b:c4:a3:29:50:a8:af:67:5f:70:ae:71:96: e9:be:45:c3:5f:ab:d9:2c:8f:2e:dc:77:d0:c3:50:9e:0a:d8: d7:37:1f:96:83:b2:a0:68:40:7f:1d:c0:73:d6:12:f6:3c:74: a8:cc:38:b9:4a:6f:ff:18:3b:b2:ed:8f:10:6f:84:2f:8e:56: da:75:58:7b:f1:74:1e:c7:af:80:55:d3:62:2a:26:fe:6b:d6: 9b:e9:46:f0:a8:35:cd:1d:c3:79:d2:1f:8d:c9:16:79:ed:d4: 10:a1:ef:d4:45:0d:02:3f:bd:78:b2:26:05:ba:52:27:fb:ff: 76:43:d5:a2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVOatC/TBY8LLZ8ld5WfsJlmPy0kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIyMVoX DTI3MDMwMzA2MDcyMVowMzExMC8GA1UEAxMoRjZFRUE4NkI5MTc1MTEwOTM1QUE3 REEzNTIwMTM4NzdFMDYwN0UzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTowlzBbnwOQsClPBZTYqJg+wJBSyEHgrwFeVKj9KZbZIujmcI/2h/9QrLS zKRlODRs0UsdDDkGFfYcT97BxSIBWs6wioIc+3YXVg1P6pqrVOv3vLyhsmIjWOSz VIfmLDtFUjP7EQmUL90IU+hvzQCVMACM/dFJETakIqXV/AGGbbsdUwgU0v40GQBB OeLfhbLko4XmTUEtcewyHhL2NBe8MYeVR4tppkWADYqmDum/CFoywfK4gPhpmQdC +pBjxNvVwb+kANI1jWvXbWBzW/So7pPE08BdoweoElW5rkfW9FfK0uzwjmTZIOZQ YeaLqMhGTuuHgizHS68fwqYov9cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT27qhr kXURCTWqfaNSATh34GB+NjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzI4Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK onwwDQYJKoZIhvcNAQELBQADggEBAD/FYDuC8lmCFBRX7pkiiDja21s4gbg8sPMP MwIOzjn2DZCu/fpuzZpPf/FHWE1CPAIFHHL2J4ij3eiB9o9NpT3VnVsf75H+86Vn rB9C2RaeI8gD9ku7CVeTZO2IewKbSqCYB3tA8mk/kQ1iefxpklF6S05Bwh7ELbqA OXkgpccWH3L6i8SjKVCor2dfcK5xlum+RcNfq9ksjy7cd9DDUJ4K2Nc3H5aDsqBo QH8dwHPWEvY8dKjMOLlKb/8YO7LtjxBvhC+OVtp1WHvxdB7Hr4BV02IqJv5r1pvp RvCoNc0dw3nSH43JFnnt1BCh79RFDQI/vXiyJgW6Uif7/3ZD1aI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:42 2026 by rpki-client