$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143360.roa File: AS143360.roa (raw, json) Hash identifier: AwohZ0z7V7rD+HcKbhxH873nObrel8PkG8sFpBK2UC8= Subject key identifier: AA:97:44:11:A0:28:D2:8B:15:08:19:CB:A0:FD:82:7C:05:74:3D:DA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7691C4FE96D676D17DDF1BB2D608258BB0199AC2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143360.roa Signing time: Wed 04 Mar 2026 06:07:57 +0000 ROA not before: Wed 04 Mar 2026 06:02:57 +0000 ROA not after: Wed 03 Mar 2027 06:07:57 +0000 asID: 143360 IP address blocks: 240a:a2c6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:91:c4:fe:96:d6:76:d1:7d:df:1b:b2:d6:08:25:8b:b0:19:9a:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:57 2026 GMT Not After : Mar 3 06:07:57 2027 GMT Subject: CN=AA974411A028D28B150819CBA0FD827C05743DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:00:7b:77:4c:79:ba:47:9b:bb:58:b6:6e:22: 73:e3:98:28:2d:a2:c8:d7:54:90:38:db:f5:fa:97: dc:92:be:53:a8:25:a8:8d:7a:99:56:5e:0e:53:3c: 3a:60:40:fb:84:e9:af:96:0a:22:b6:07:bc:e3:64: 37:93:06:eb:0d:36:77:6b:f1:02:34:c4:d7:85:a3: 47:ed:35:dd:8d:0c:57:fb:0c:64:f7:58:7d:27:9f: ba:f4:5e:85:67:7f:21:7e:70:1d:9d:96:13:16:97: 6e:80:e4:fd:78:4f:60:a7:a4:09:53:d7:cb:e7:6e: ea:43:ea:b4:68:55:46:e7:27:a6:5e:1d:f4:4a:fd: 7e:64:f6:b0:31:96:2a:66:97:0e:4f:40:90:d8:af: 6e:3f:9e:80:2c:6f:a0:88:48:e6:01:cf:e7:13:77: 69:f1:53:88:57:bb:47:52:1b:97:94:dc:f9:25:c3: f1:74:c8:fc:9a:6a:ff:04:7f:6c:32:3e:a7:6f:aa: 7d:74:f8:5a:0e:b2:6b:6e:98:a5:58:c7:75:6b:0c: b5:e0:c4:80:72:5b:92:5f:f8:5e:a7:b6:9c:15:67: 7f:f0:b0:fa:63:2e:b9:9b:3d:28:3b:79:65:6d:fa: 77:0d:94:e7:2b:a5:61:1a:a9:84:02:b8:9d:ad:4f: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:97:44:11:A0:28:D2:8B:15:08:19:CB:A0:FD:82:7C:05:74:3D:DA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143360.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a2c6::/32 Signature Algorithm: sha256WithRSAEncryption ae:40:61:d1:6f:14:67:4a:9b:a2:64:89:f2:a5:f7:e2:e6:6d: a2:0c:07:12:da:7c:52:61:66:02:d2:d9:69:d9:20:91:d4:16: 3c:67:f7:dd:b4:03:12:fa:92:cf:5f:58:28:50:50:92:5f:b2: 71:a1:4c:f1:af:af:cf:49:4d:30:f9:bc:c8:d4:00:0a:2d:5f: 2b:a1:76:4f:1f:f7:1d:ac:d8:00:5a:f7:32:78:f5:0c:39:97: 53:92:cc:29:d5:36:2b:78:12:26:0b:b2:bc:b6:e7:93:1f:89: 4f:29:3d:2a:6a:f3:21:98:62:e3:50:04:f2:1c:05:0c:cb:d0: ee:b5:9a:48:d5:42:16:0f:4c:13:e3:d5:3f:0b:70:cc:1d:cf: 14:42:b1:35:98:6a:5c:29:c5:ed:29:39:be:25:e1:8d:15:8b: ba:66:61:4c:4a:62:43:ca:ab:96:96:61:a7:5a:12:de:eb:1e: 82:7c:41:44:b8:01:4a:e0:05:fd:ba:9a:b5:cd:58:68:99:c4: e7:3f:d0:50:18:09:a5:79:c8:f6:7c:77:f6:d6:16:da:e9:40: 95:c7:45:f9:e4:13:54:b3:5a:c4:0d:ed:99:51:7b:e2:33:68: 00:3f:8c:fe:20:c7:fc:39:52:ac:f5:ef:83:cc:39:7b:ed:a1: 64:c2:96:de -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdpHE/pbWdtF93xuy1ggli7AZmsIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDI1N1oX DTI3MDMwMzA2MDc1N1owMzExMC8GA1UEAxMoQUE5NzQ0MTFBMDI4RDI4QjE1MDgx OUNCQTBGRDgyN0MwNTc0M0REQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYAe3dMebpHm7tYtm4ic+OYKC2iyNdUkDjb9fqX3JK+U6glqI16mVZeDlM8 OmBA+4Tpr5YKIrYHvONkN5MG6w02d2vxAjTE14WjR+013Y0MV/sMZPdYfSefuvRe hWd/IX5wHZ2WExaXboDk/XhPYKekCVPXy+du6kPqtGhVRucnpl4d9Er9fmT2sDGW KmaXDk9AkNivbj+egCxvoIhI5gHP5xN3afFTiFe7R1Ibl5Tc+SXD8XTI/Jpq/wR/ bDI+p2+qfXT4Wg6ya26YpVjHdWsMteDEgHJbkl/4Xqe2nBVnf/Cw+mMuuZs9KDt5 ZW36dw2U5yulYRqphAK4na1P2JsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSql0QR oCjSixUIGcug/YJ8BXQ92jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzM2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK osYwDQYJKoZIhvcNAQELBQADggEBAK5AYdFvFGdKm6JkifKl9+LmbaIMBxLafFJh ZgLS2WnZIJHUFjxn9920AxL6ks9fWChQUJJfsnGhTPGvr89JTTD5vMjUAAotXyuh dk8f9x2s2ABa9zJ49Qw5l1OSzCnVNit4EiYLsry255MfiU8pPSpq8yGYYuNQBPIc BQzL0O61mkjVQhYPTBPj1T8LcMwdzxRCsTWYalwpxe0pOb4l4Y0Vi7pmYUxKYkPK q5aWYadaEt7rHoJ8QUS4AUrgBf26mrXNWGiZxOc/0FAYCaV5yPZ8d/bWFtrpQJXH RfnkE1SzWsQN7ZlRe+IzaAA/jP4gx/w5Uqz174PMOXvtoWTClt4= -----END CERTIFICATE-----Generated at Sat Mar 28 13:15:17 2026 by rpki-client