$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143460.roa File: AS143460.roa (raw, json) Hash identifier: 1MmPynddmCRWdLMhbC9pPXy9uLAB/TYWBbuPM++v9Ro= Subject key identifier: 27:09:94:04:B6:74:DC:E7:7D:B6:67:F6:88:7D:BE:52:66:D7:30:6E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 64588210268FF087EC78FF58FFCE6C284EB79BA4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143460.roa Signing time: Wed 04 Mar 2026 06:07:26 +0000 ROA not before: Wed 04 Mar 2026 06:02:26 +0000 ROA not after: Wed 03 Mar 2027 06:07:26 +0000 asID: 143460 IP address blocks: 240a:a32a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:58:82:10:26:8f:f0:87:ec:78:ff:58:ff:ce:6c:28:4e:b7:9b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:26 2026 GMT Not After : Mar 3 06:07:26 2027 GMT Subject: CN=27099404B674DCE77DB667F6887DBE5266D7306E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:48:11:75:0b:48:1d:8f:cd:7d:ea:24:42:8c: 6d:ab:60:8b:ab:30:4b:bb:08:3b:24:de:32:a5:e9: 2d:1a:c0:b5:40:9f:ba:40:58:3c:d8:af:94:da:a6: 27:fd:1b:2c:ab:ab:7d:23:ef:10:7d:4c:46:fb:cd: 33:05:4c:1f:6e:19:73:66:2e:8a:0a:09:2e:07:ea: 61:6d:85:70:df:5d:d7:4f:d0:6e:40:3d:1e:3b:ca: 30:23:c7:25:cd:c2:34:d8:a4:f5:1b:79:0f:ce:36: 35:62:1e:af:09:f9:c2:5d:e2:26:6a:7f:1b:7f:2a: 94:87:0a:79:2d:04:a8:56:69:48:db:e7:5d:f5:14: 93:3a:9a:8d:5c:3f:30:97:ec:89:47:b2:7c:92:43: 96:e5:ed:8d:b5:ec:62:43:f2:4f:48:6c:76:0b:45: a0:9f:bc:11:61:d5:e2:e2:6e:6a:53:d4:48:16:dd: 4d:88:ef:0d:ed:22:b1:80:df:41:c2:19:bf:c5:4d: f2:e5:64:b8:14:28:e5:90:ba:90:3d:8b:aa:1b:74: 64:7c:21:99:12:4e:7b:77:86:7d:c2:9f:b3:48:04: 0a:47:d4:e0:4f:03:97:f2:f5:0a:62:34:6b:07:21: ed:f6:86:bc:36:e2:20:e7:93:e0:ed:b9:a6:f2:70: be:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:09:94:04:B6:74:DC:E7:7D:B6:67:F6:88:7D:BE:52:66:D7:30:6E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143460.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a32a::/32 Signature Algorithm: sha256WithRSAEncryption d5:92:2d:b5:4b:1a:31:e5:13:5d:f7:be:9c:cc:23:2f:9b:74: c2:84:3e:17:e3:c6:f1:9f:f0:aa:c3:0e:e6:b9:c1:fe:92:93: 4e:05:f4:ee:81:16:a3:59:3d:51:28:2e:3e:ff:54:d3:a3:40: 6a:1e:11:b4:b2:68:b4:ca:c6:d2:26:ea:11:95:08:26:15:5a: a3:62:f1:21:e8:1c:73:8d:d4:f4:ac:49:cd:f1:e9:11:40:a0: 39:e4:65:fd:e8:71:27:31:f7:86:13:df:25:fc:db:c2:56:d7: 27:34:72:49:84:d9:37:bf:89:42:f1:66:4e:5c:98:f0:55:55: 74:45:e0:5f:61:ab:62:c9:96:ca:0d:c3:1d:18:9d:96:7b:1e: 2d:4e:81:e4:ec:98:46:ef:f9:fb:4d:b9:5d:39:36:81:68:6f: 9d:ef:1c:84:1b:21:93:a1:f2:a8:01:f7:47:12:53:09:23:6a: 7b:99:9a:12:35:4d:4c:29:01:42:8e:f9:23:c1:37:27:1c:53: d7:8f:96:77:79:fe:2b:82:52:c6:51:c5:cf:ca:61:af:be:93: 44:c3:ff:4e:5d:94:85:82:c6:5b:4d:9a:ee:fa:b0:d4:ce:bc: 71:74:01:e7:60:e6:0a:b6:fd:10:23:85:0c:98:a0:d2:af:b1: 96:03:ba:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUZFiCECaP8IfseP9Y/85sKE63m6QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIyNloX DTI3MDMwMzA2MDcyNlowMzExMC8GA1UEAxMoMjcwOTk0MDRCNjc0RENFNzdEQjY2 N0Y2ODg3REJFNTI2NkQ3MzA2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAItIEXULSB2PzX3qJEKMbatgi6swS7sIOyTeMqXpLRrAtUCfukBYPNivlNqm J/0bLKurfSPvEH1MRvvNMwVMH24Zc2YuigoJLgfqYW2FcN9d10/QbkA9HjvKMCPH Jc3CNNik9Rt5D842NWIerwn5wl3iJmp/G38qlIcKeS0EqFZpSNvnXfUUkzqajVw/ MJfsiUeyfJJDluXtjbXsYkPyT0hsdgtFoJ+8EWHV4uJualPUSBbdTYjvDe0isYDf QcIZv8VN8uVkuBQo5ZC6kD2Lqht0ZHwhmRJOe3eGfcKfs0gECkfU4E8Dl/L1CmI0 awch7faGvDbiIOeT4O25pvJwvt0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQnCZQE tnTc5322Z/aIfb5SZtcwbjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzQ2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oyowDQYJKoZIhvcNAQELBQADggEBANWSLbVLGjHlE133vpzMIy+bdMKEPhfjxvGf 8KrDDua5wf6Sk04F9O6BFqNZPVEoLj7/VNOjQGoeEbSyaLTKxtIm6hGVCCYVWqNi 8SHoHHON1PSsSc3x6RFAoDnkZf3ocScx94YT3yX828JW1yc0ckmE2Te/iULxZk5c mPBVVXRF4F9hq2LJlsoNwx0YnZZ7Hi1OgeTsmEbv+ftNuV05NoFob53vHIQbIZOh 8qgB90cSUwkjanuZmhI1TUwpAUKO+SPBNyccU9ePlnd5/iuCUsZRxc/KYa++k0TD /05dlIWCxltNmu76sNTOvHF0Aedg5gq2/RAjhQyYoNKvsZYDupY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:49 2026 by rpki-client