$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143381.roa File: AS143381.roa (raw, json) Hash identifier: NZYkt5qH930sQT4adimyR+d4/rAd/06lo2/PH5LBvbM= Subject key identifier: A3:FB:A8:8C:15:DF:17:2C:41:CD:83:58:7C:37:EB:1A:CB:86:6C:FB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 616D627E2D46322B00EC35CE3CCAE592D8616ACF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143381.roa Signing time: Wed 04 Mar 2026 06:06:48 +0000 ROA not before: Wed 04 Mar 2026 06:01:48 +0000 ROA not after: Wed 03 Mar 2027 06:06:48 +0000 asID: 143381 IP address blocks: 240a:a2db::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:6d:62:7e:2d:46:32:2b:00:ec:35:ce:3c:ca:e5:92:d8:61:6a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:48 2026 GMT Not After : Mar 3 06:06:48 2027 GMT Subject: CN=A3FBA88C15DF172C41CD83587C37EB1ACB866CFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:80:7b:67:8c:af:f6:05:e4:f3:10:dc:69:c2: c7:55:06:2d:c9:d3:23:b3:2f:b3:8e:4d:91:b8:a9: 26:34:1a:77:ba:22:7d:03:d3:2c:13:46:19:0f:80: 23:4e:42:e9:3f:34:43:7b:3f:bb:b8:a7:46:58:ce: 96:e2:73:df:9e:9e:47:0a:cd:5a:ae:39:e5:2c:1b: a1:02:ea:62:bf:99:47:ad:1b:0b:03:5d:63:a1:d2: fe:07:7f:70:4e:a6:03:06:4e:45:8f:7c:30:12:74: d7:fc:80:37:b0:d6:83:c8:fc:dc:56:1e:4d:0c:f8: c4:80:99:b9:c2:2a:f3:a4:f9:8f:5f:57:15:da:88: e1:61:d2:5f:69:3d:58:04:5e:2e:f9:a7:48:b8:b2: 71:3f:33:b7:2f:63:b0:36:9d:89:50:b4:93:b0:ab: 41:62:c1:53:e6:66:7c:cb:4b:d2:12:cb:19:43:c2: 44:c4:b8:cc:da:02:86:5e:19:27:b9:1d:c3:d6:1e: 2b:8a:46:67:c4:eb:ff:5a:74:5d:07:c7:58:13:15: 5d:42:8c:22:7f:05:0b:5e:6b:27:bf:2d:d0:c3:65: 8c:4c:83:08:5f:1f:d3:71:9b:fa:8f:8e:fe:e6:d1: 47:e8:d8:73:b5:9f:e2:a0:69:88:59:83:74:7d:b4: a4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:FB:A8:8C:15:DF:17:2C:41:CD:83:58:7C:37:EB:1A:CB:86:6C:FB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143381.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a2db::/32 Signature Algorithm: sha256WithRSAEncryption 64:94:73:70:83:d2:a1:50:64:61:49:f6:5a:5a:a2:b7:e6:06: 04:50:2d:1b:ae:23:bf:ae:a9:55:0a:f6:ab:d3:df:e8:07:de: 96:57:e6:33:8a:a3:29:f2:49:d0:a3:a0:38:40:b4:89:77:89: c4:a5:f9:86:e8:00:2d:aa:59:73:17:74:37:50:ce:e9:50:f1: 2a:19:79:9b:7f:e0:49:bf:c1:de:37:50:da:40:ab:d5:16:be: ea:7f:d6:8a:d7:59:d3:57:8f:2f:4f:d7:28:88:38:3b:a6:3c: 7e:64:3a:b9:26:19:d0:0b:cf:03:ad:d4:38:ff:a2:a1:20:8b: 1e:56:e5:a0:6c:5a:8d:ec:1b:7c:23:67:cd:a8:91:55:0c:18: d6:f6:24:08:9d:a4:bd:0e:ea:c6:46:1d:8e:da:09:1d:5d:c6: 9c:47:f7:79:56:5a:1b:eb:6f:49:3c:5b:fd:4e:3e:6f:c6:a9: 56:cb:08:78:a5:87:cd:b3:86:2e:53:98:f4:72:a4:cf:0d:1f: b5:8b:9d:96:00:d0:73:bd:d6:ff:ea:a7:c9:d8:ff:66:23:95: bb:56:fc:08:3d:aa:1d:43:a7:d1:f1:7e:d9:13:c8:04:be:72: bb:1f:56:1f:a0:4d:0a:11:88:0f:a0:76:91:f9:ad:84:2c:4e: bc:26:b4:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYW1ifi1GMisA7DXOPMrlkthhas8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE0OFoX DTI3MDMwMzA2MDY0OFowMzExMC8GA1UEAxMoQTNGQkE4OEMxNURGMTcyQzQxQ0Q4 MzU4N0MzN0VCMUFDQjg2NkNGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPGAe2eMr/YF5PMQ3GnCx1UGLcnTI7Mvs45NkbipJjQad7oifQPTLBNGGQ+A I05C6T80Q3s/u7inRljOluJz356eRwrNWq455SwboQLqYr+ZR60bCwNdY6HS/gd/ cE6mAwZORY98MBJ01/yAN7DWg8j83FYeTQz4xICZucIq86T5j19XFdqI4WHSX2k9 WAReLvmnSLiycT8zty9jsDadiVC0k7CrQWLBU+ZmfMtL0hLLGUPCRMS4zNoChl4Z J7kdw9YeK4pGZ8Tr/1p0XQfHWBMVXUKMIn8FC15rJ78t0MNljEyDCF8f03Gb+o+O /ubRR+jYc7Wf4qBpiFmDdH20pEUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSj+6iM Fd8XLEHNg1h8N+say4Zs+zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzM4MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK otswDQYJKoZIhvcNAQELBQADggEBAGSUc3CD0qFQZGFJ9lpaorfmBgRQLRuuI7+u qVUK9qvT3+gH3pZX5jOKoynySdCjoDhAtIl3icSl+YboAC2qWXMXdDdQzulQ8SoZ eZt/4Em/wd43UNpAq9UWvup/1orXWdNXjy9P1yiIODumPH5kOrkmGdALzwOt1Dj/ oqEgix5W5aBsWo3sG3wjZ82okVUMGNb2JAidpL0O6sZGHY7aCR1dxpxH93lWWhvr b0k8W/1OPm/GqVbLCHilh82zhi5TmPRypM8NH7WLnZYA0HO91v/qp8nY/2YjlbtW /Ag9qh1Dp9HxftkTyAS+crsfVh+gTQoRiA+gdpH5rYQsTrwmtHI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:52 2026 by rpki-client