$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143469.roa File: AS143469.roa (raw, json) Hash identifier: kPzbR+ocGVGY87h94WdMgNpb1qw7j8lhL3G/rFzuz8Q= Subject key identifier: F4:8C:BA:68:B3:E3:68:6B:98:77:F0:AD:03:49:AB:B1:AB:BC:71:01 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7F87FEE8A37E5AE1E2538F175B7883CBA37A2815 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143469.roa Signing time: Wed 04 Mar 2026 06:07:14 +0000 ROA not before: Wed 04 Mar 2026 06:02:14 +0000 ROA not after: Wed 03 Mar 2027 06:07:14 +0000 asID: 143469 IP address blocks: 240a:a333::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:87:fe:e8:a3:7e:5a:e1:e2:53:8f:17:5b:78:83:cb:a3:7a:28:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:14 2026 GMT Not After : Mar 3 06:07:14 2027 GMT Subject: CN=F48CBA68B3E3686B9877F0AD0349ABB1ABBC7101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:f4:bd:5a:50:4a:18:4b:79:a6:cc:40:18: 43:3e:a9:73:19:e3:47:8f:b3:e7:e0:d3:d9:68:30: 7b:3b:b2:7e:08:b7:eb:20:c8:5d:8f:ba:9f:98:94: 21:d1:d0:f1:6c:72:c7:d0:ca:fc:55:b4:dc:58:1e: 59:3a:9c:37:0f:39:9a:ac:6f:a7:c9:5e:57:43:bc: d6:0b:37:cb:d5:03:09:ab:da:f5:ca:f7:f7:06:ab: 0f:78:bb:5e:06:1c:fc:ca:e0:ca:c6:48:1f:e5:72: 02:37:75:22:87:5c:1c:eb:be:06:22:68:f2:19:7c: 24:77:50:64:73:89:09:3a:c2:ef:61:9b:29:ec:15: 62:50:0f:e9:ef:0e:e7:1c:77:a8:70:f9:90:87:01: 92:2c:28:15:f2:18:8b:1f:91:f2:b1:f2:86:ca:ee: 32:02:1f:f6:67:e1:c7:f0:b5:d3:c1:90:aa:b5:ac: f1:34:86:40:5f:c3:f5:78:f4:8b:aa:7e:29:1b:a6: ea:ff:b2:c9:74:a7:e9:3f:30:65:a1:ef:c1:ea:6d: 02:f9:b9:ce:72:f5:af:80:0d:e9:e5:05:a2:7c:6b: 75:a9:10:d7:d0:46:3f:02:74:c6:69:4f:7a:6d:d2: 7a:58:85:38:41:f6:1b:34:08:b6:32:25:56:3e:46: 8a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:8C:BA:68:B3:E3:68:6B:98:77:F0:AD:03:49:AB:B1:AB:BC:71:01 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143469.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a333::/32 Signature Algorithm: sha256WithRSAEncryption bf:43:27:4b:6a:48:a7:f9:04:d4:2c:c3:17:e9:1f:68:f1:5c: 02:76:1e:e0:17:05:16:c8:01:b7:b6:ae:88:88:c9:2a:21:63: af:5e:fb:82:7d:f1:70:a4:1e:e0:4d:d3:84:6b:9a:b9:6d:0c: 8d:7b:13:71:c3:55:92:84:bd:14:9b:69:71:a0:80:a5:12:4c: 46:92:ae:a9:54:67:5b:0a:f6:63:62:28:de:b9:33:52:d5:6f: 18:49:cc:64:97:eb:a3:a0:73:d9:21:1f:a0:51:e4:d5:74:c5: 0f:5c:17:7b:c5:31:76:3b:de:28:a6:3e:1c:22:a8:89:d8:10: 7c:10:b2:64:bd:ce:e7:03:07:34:25:b6:f5:6f:d1:f9:d0:92: cf:f5:c9:49:86:33:a1:40:54:9f:8e:03:f5:d5:63:77:60:8f: ef:d3:4b:63:ba:07:3a:29:30:14:38:8c:ef:4b:2f:06:a3:53: 4b:64:9a:00:53:18:6a:54:c1:6f:b3:4c:4b:b6:95:36:36:09: 5c:f4:8f:b1:a6:7e:06:4e:d4:b6:3d:c8:d7:eb:3e:01:e1:2b: 67:28:cf:78:14:96:b8:05:0e:bf:53:d5:ce:2a:bd:11:b6:3d: 8c:e0:43:c2:08:5e:16:70:fd:8a:7d:21:ec:87:da:7f:08:ce: 61:04:58:40 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUf4f+6KN+WuHiU48XW3iDy6N6KBUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIxNFoX DTI3MDMwMzA2MDcxNFowMzExMC8GA1UEAxMoRjQ4Q0JBNjhCM0UzNjg2Qjk4NzdG MEFEMDM0OUFCQjFBQkJDNzEwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGv9L1aUEoYS3mmzEAYQz6pcxnjR4+z5+DT2Wgwezuyfgi36yDIXY+6n5iU IdHQ8Wxyx9DK/FW03FgeWTqcNw85mqxvp8leV0O81gs3y9UDCava9cr39warD3i7 XgYc/MrgysZIH+VyAjd1IodcHOu+BiJo8hl8JHdQZHOJCTrC72GbKewVYlAP6e8O 5xx3qHD5kIcBkiwoFfIYix+R8rHyhsruMgIf9mfhx/C108GQqrWs8TSGQF/D9Xj0 i6p+KRum6v+yyXSn6T8wZaHvweptAvm5znL1r4AN6eUFonxrdakQ19BGPwJ0xmlP em3SeliFOEH2GzQItjIlVj5GiiMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT0jLpo s+Noa5h38K0DSauxq7xxATAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzQ2OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ozMwDQYJKoZIhvcNAQELBQADggEBAL9DJ0tqSKf5BNQswxfpH2jxXAJ2HuAXBRbI Abe2roiIySohY69e+4J98XCkHuBN04RrmrltDI17E3HDVZKEvRSbaXGggKUSTEaS rqlUZ1sK9mNiKN65M1LVbxhJzGSX66Ogc9khH6BR5NV0xQ9cF3vFMXY73iimPhwi qInYEHwQsmS9zucDBzQltvVv0fnQks/1yUmGM6FAVJ+OA/XVY3dgj+/TS2O6Bzop MBQ4jO9LLwajU0tkmgBTGGpUwW+zTEu2lTY2CVz0j7GmfgZO1LY9yNfrPgHhK2co z3gUlrgFDr9T1c4qvRG2PYzgQ8IIXhZw/Yp9IeyH2n8IzmEEWEA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:35 2026 by rpki-client