$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143465.roa File: AS143465.roa (raw, json) Hash identifier: SrfagnbyW7MY53gOOL3CFMivHoFoeoKFQRgLn2+RjHs= Subject key identifier: 6F:57:24:A8:C9:8B:93:FF:37:C0:9C:B4:60:C5:44:A3:99:81:D4:30 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 256C8E801CC593DBC19C5D421255785F964239D6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143465.roa Signing time: Wed 04 Mar 2026 06:05:47 +0000 ROA not before: Wed 04 Mar 2026 06:00:47 +0000 ROA not after: Wed 03 Mar 2027 06:05:47 +0000 asID: 143465 IP address blocks: 240a:a32f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:6c:8e:80:1c:c5:93:db:c1:9c:5d:42:12:55:78:5f:96:42:39:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:47 2026 GMT Not After : Mar 3 06:05:47 2027 GMT Subject: CN=6F5724A8C98B93FF37C09CB460C544A39981D430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b1:5c:36:fb:ca:78:81:8e:f2:a0:1a:3d:45: b5:5f:71:83:13:0b:a9:1f:6d:2a:34:43:cb:90:ff: d1:e3:0f:f2:fd:3c:50:14:aa:39:21:35:b4:fd:c0: f0:cf:f3:cc:5e:4f:1f:70:68:73:22:3c:8b:46:55: 31:1b:8e:d7:c4:f1:42:19:74:70:72:92:44:46:09: 74:26:11:88:0f:35:4d:65:21:ba:d8:4d:a9:cd:f6: d6:f4:50:61:b1:01:d8:c8:32:b9:ce:79:15:6f:66: 4e:65:1d:0a:2d:ef:d4:02:64:ef:d7:f3:7c:03:0d: 57:92:a6:4c:6b:28:7a:d1:b8:e2:5b:bd:83:64:64: 5d:c6:d5:ae:cc:a7:4f:9d:1a:e5:f8:6b:fe:c4:bd: 39:4f:54:ec:09:8d:e0:11:c0:d1:91:c5:0b:1b:cf: 80:31:26:5b:31:59:43:24:33:9e:c9:16:69:e0:f8: ac:b5:cf:85:86:6f:78:17:88:22:45:b9:90:98:15: 73:93:6a:9a:f5:eb:3c:56:d9:5e:be:5a:28:1c:7e: 99:3b:04:2e:56:2c:f7:4d:ff:b6:d5:fb:ab:9f:97: 56:4c:d4:6c:88:c0:4e:ff:50:ec:d8:ed:98:b4:89: 89:90:3d:de:7e:85:61:a8:38:17:d1:b3:e8:f3:d4: 83:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:57:24:A8:C9:8B:93:FF:37:C0:9C:B4:60:C5:44:A3:99:81:D4:30 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143465.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a32f::/32 Signature Algorithm: sha256WithRSAEncryption 5c:42:13:6b:e4:e4:e7:b8:80:84:fd:6a:87:c0:24:cc:57:32: aa:41:f6:2a:2f:f0:f5:aa:99:49:78:83:d8:26:d0:08:4e:d7: 91:27:c8:ce:2d:0f:70:81:cc:cf:6d:d0:bb:07:9f:e0:ba:4d: 9d:7d:d0:4f:cc:6a:fb:db:0b:d0:ab:65:2e:57:de:d8:f4:15: 50:ae:22:6e:3c:cd:c5:a9:42:c4:8c:ff:e6:2a:cc:ca:2d:d3: 17:9f:41:9e:2b:8e:bb:6b:9a:54:90:84:f3:b7:b9:66:d0:df: 15:e6:ec:0d:86:46:22:0c:a8:8c:b8:ef:d0:39:b9:7c:a2:31: a8:20:08:c9:d6:aa:c4:f3:64:75:d9:29:e1:49:7e:98:d6:27: 42:71:c3:a3:08:2f:a3:7d:7f:95:c0:78:ca:c5:b5:8e:0e:36: 1f:73:d0:54:c1:2d:e4:a2:65:9d:e3:bf:24:42:2f:43:a9:b2: ab:e1:b7:3c:28:da:db:3b:5c:80:aa:3e:c3:6c:a5:e5:74:f3: 73:2b:ae:cd:36:32:2d:28:18:25:58:4b:8f:06:99:10:18:1e: 7d:cf:3f:b5:cf:28:42:d3:fb:da:60:53:9a:90:41:e6:e5:eb: 9f:4d:83:8c:23:c4:f2:b8:43:ef:9f:e1:0c:9a:1c:59:f6:0d: e0:11:43:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJWyOgBzFk9vBnF1CElV4X5ZCOdYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA0N1oX DTI3MDMwMzA2MDU0N1owMzExMC8GA1UEAxMoNkY1NzI0QThDOThCOTNGRjM3QzA5 Q0I0NjBDNTQ0QTM5OTgxRDQzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOmxXDb7yniBjvKgGj1FtV9xgxMLqR9tKjRDy5D/0eMP8v08UBSqOSE1tP3A 8M/zzF5PH3BocyI8i0ZVMRuO18TxQhl0cHKSREYJdCYRiA81TWUhuthNqc321vRQ YbEB2Mgyuc55FW9mTmUdCi3v1AJk79fzfAMNV5KmTGsoetG44lu9g2RkXcbVrsyn T50a5fhr/sS9OU9U7AmN4BHA0ZHFCxvPgDEmWzFZQyQznskWaeD4rLXPhYZveBeI IkW5kJgVc5NqmvXrPFbZXr5aKBx+mTsELlYs903/ttX7q5+XVkzUbIjATv9Q7Njt mLSJiZA93n6FYag4F9Gz6PPUg8UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRvVySo yYuT/zfAnLRgxUSjmYHUMDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzQ2NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oy8wDQYJKoZIhvcNAQELBQADggEBAFxCE2vk5Oe4gIT9aofAJMxXMqpB9iov8PWq mUl4g9gm0AhO15EnyM4tD3CBzM9t0LsHn+C6TZ190E/MavvbC9CrZS5X3tj0FVCu Im48zcWpQsSM/+YqzMot0xefQZ4rjrtrmlSQhPO3uWbQ3xXm7A2GRiIMqIy479A5 uXyiMaggCMnWqsTzZHXZKeFJfpjWJ0Jxw6MIL6N9f5XAeMrFtY4ONh9z0FTBLeSi ZZ3jvyRCL0Opsqvhtzwo2ts7XICqPsNspeV083Mrrs02Mi0oGCVYS48GmRAYHn3P P7XPKELT+9pgU5qQQebl659Ng4wjxPK4Q++f4QyaHFn2DeARQ4o= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:33 2026 by rpki-client