$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143464.roa File: AS143464.roa (raw, json) Hash identifier: GsF21wYk/cYINxluTAZptpH4E6J/0QV1LO5CXtRed8Y= Subject key identifier: FA:F3:03:15:04:7A:2F:46:46:15:45:77:C3:36:69:2E:27:52:F6:11 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5FAB7C915C0969741EB8D31C87AE9C2A32367FBB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143464.roa Signing time: Wed 04 Mar 2026 06:07:11 +0000 ROA not before: Wed 04 Mar 2026 06:02:11 +0000 ROA not after: Wed 03 Mar 2027 06:07:11 +0000 asID: 143464 IP address blocks: 240a:a32e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ab:7c:91:5c:09:69:74:1e:b8:d3:1c:87:ae:9c:2a:32:36:7f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:11 2026 GMT Not After : Mar 3 06:07:11 2027 GMT Subject: CN=FAF30315047A2F4646154577C336692E2752F611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:68:1f:dd:06:30:31:eb:cb:12:1f:75:d2:8b: ca:c8:a8:53:2e:10:0e:32:b5:11:5f:8b:67:54:c1: ea:38:f1:f8:d6:f4:3f:1e:68:e5:a1:ea:aa:61:40: 45:28:4d:2d:2d:17:44:af:41:1c:71:c9:16:6d:e0: c1:c5:cd:ed:e8:b3:62:05:45:ae:25:c7:a1:d6:52: 0d:62:fd:95:14:6d:54:a6:b7:53:cb:cb:b0:24:e3: d4:17:c1:61:e3:f3:8f:4b:13:20:bc:5f:3b:4b:a9: b5:f8:45:d0:0e:a0:77:31:c8:41:f9:47:3b:42:28: 32:05:5d:d2:f4:f0:da:75:e5:57:11:fd:0a:65:aa: 24:13:35:63:a8:8b:9d:3b:51:85:b4:cc:5c:72:72: f9:ae:c3:1b:ee:2e:76:cb:d7:91:19:07:8e:c9:10: e6:f9:d9:4f:d4:77:b1:76:07:15:74:b1:f1:24:99: 04:70:f1:f7:0a:88:0c:af:bd:4c:91:ff:99:21:5a: a9:23:2c:89:a4:c2:e0:c7:0d:00:e5:d0:e3:71:d3: d7:9c:61:88:3d:35:ba:83:26:9e:dd:82:8f:fc:4e: e4:1c:0f:93:0b:26:c4:83:55:1e:08:15:76:53:47: ae:b2:da:80:da:61:7b:86:db:7d:a3:e5:54:81:b4: 25:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F3:03:15:04:7A:2F:46:46:15:45:77:C3:36:69:2E:27:52:F6:11 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143464.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a32e::/32 Signature Algorithm: sha256WithRSAEncryption 63:6c:0d:43:c4:12:65:37:57:06:80:12:c9:b8:12:d9:29:eb: 7f:a4:a1:b1:77:e5:02:93:57:87:b7:c8:d5:cc:bc:01:d4:34: 28:01:c3:96:1f:c3:5c:50:fc:23:a1:bb:98:43:c4:d7:6b:c0: 4c:c4:ce:c8:8d:80:f5:9e:f2:a7:1f:05:b2:b0:19:5e:b3:be: be:6a:86:5d:61:87:90:c2:e7:fb:80:e5:ca:2e:37:b0:09:97: 26:78:06:e2:fe:db:07:38:79:de:80:42:d3:27:6c:db:de:4c: 24:a2:c9:b8:eb:d1:98:a0:f8:e0:74:b0:84:22:e4:c1:69:62: 78:f6:4f:95:18:f4:98:af:6f:30:6f:90:31:e8:9f:83:a4:0c: be:be:d7:44:bf:b5:49:a6:11:ff:c9:14:51:3e:de:0f:0e:98: 22:e8:36:72:8e:2a:e4:58:f9:50:bc:01:f7:3d:1e:6a:11:54: 76:64:91:27:3c:25:65:8c:4f:3e:b2:51:fa:c7:69:f6:c4:ef: a2:4e:49:75:df:93:58:4d:8d:54:ae:ee:9b:5b:00:c2:1a:61: 93:a6:9a:26:21:68:2c:e9:d0:9b:11:52:ba:51:bd:3c:b5:b9: 98:a7:5b:fb:d8:c1:fc:dd:bd:38:e0:51:85:c4:05:4d:21:72: 4d:11:f1:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUX6t8kVwJaXQeuNMch66cKjI2f7swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIxMVoX DTI3MDMwMzA2MDcxMVowMzExMC8GA1UEAxMoRkFGMzAzMTUwNDdBMkY0NjQ2MTU0 NTc3QzMzNjY5MkUyNzUyRjYxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhoH90GMDHryxIfddKLysioUy4QDjK1EV+LZ1TB6jjx+Nb0Px5o5aHqqmFA RShNLS0XRK9BHHHJFm3gwcXN7eizYgVFriXHodZSDWL9lRRtVKa3U8vLsCTj1BfB YePzj0sTILxfO0uptfhF0A6gdzHIQflHO0IoMgVd0vTw2nXlVxH9CmWqJBM1Y6iL nTtRhbTMXHJy+a7DG+4udsvXkRkHjskQ5vnZT9R3sXYHFXSx8SSZBHDx9wqIDK+9 TJH/mSFaqSMsiaTC4McNAOXQ43HT15xhiD01uoMmnt2Cj/xO5BwPkwsmxINVHggV dlNHrrLagNphe4bbfaPlVIG0Jc8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT68wMV BHovRkYVRXfDNmkuJ1L2ETAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzQ2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oy4wDQYJKoZIhvcNAQELBQADggEBAGNsDUPEEmU3VwaAEsm4Etkp63+kobF35QKT V4e3yNXMvAHUNCgBw5Yfw1xQ/COhu5hDxNdrwEzEzsiNgPWe8qcfBbKwGV6zvr5q hl1hh5DC5/uA5couN7AJlyZ4BuL+2wc4ed6AQtMnbNveTCSiybjr0Zig+OB0sIQi 5MFpYnj2T5UY9JivbzBvkDHon4OkDL6+10S/tUmmEf/JFFE+3g8OmCLoNnKOKuRY +VC8Afc9HmoRVHZkkSc8JWWMTz6yUfrHafbE76JOSXXfk1hNjVSu7ptbAMIaYZOm miYhaCzp0JsRUrpRvTy1uZinW/vYwfzdvTjgUYXEBU0hck0R8YY= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:21 2026 by rpki-client