$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143513.roa File: AS143513.roa (raw, json) Hash identifier: 620O8RKvz3uKPll/5plF4SeUtL498UCqtJ+czBD7KJI= Subject key identifier: 21:E6:DA:1C:06:6C:04:32:E2:44:50:CE:3A:01:32:3C:F4:9E:7B:CA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 266FE328F29C2F0FB94B7B06F6EC70B3BE1DEABB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143513.roa Signing time: Wed 04 Mar 2026 06:13:43 +0000 ROA not before: Wed 04 Mar 2026 06:08:43 +0000 ROA not after: Wed 03 Mar 2027 06:13:43 +0000 asID: 143513 IP address blocks: 240a:a35f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:6f:e3:28:f2:9c:2f:0f:b9:4b:7b:06:f6:ec:70:b3:be:1d:ea:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:43 2026 GMT Not After : Mar 3 06:13:43 2027 GMT Subject: CN=21E6DA1C066C0432E24450CE3A01323CF49E7BCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ab:b6:1d:29:b2:ad:20:eb:71:df:8f:f9:cc: 39:78:78:44:f4:f0:77:fe:34:5d:bc:c2:f0:16:f2: 9b:38:03:fa:61:a0:6b:a8:3a:e0:25:e8:2e:96:e4: ed:41:45:20:a7:b0:90:99:9e:69:70:cc:62:3a:c5: ab:e4:d2:fa:cc:bd:d4:54:97:3c:d0:9f:5a:7b:32: 17:92:e9:91:e5:f6:4f:85:3b:6b:08:ac:2a:f2:e4: 8a:65:71:6f:11:bd:2f:10:d9:24:31:28:ac:d5:12: 44:d7:03:99:70:4a:bd:d1:06:d3:75:01:88:5d:ef: 0a:12:bf:62:7a:b4:6b:d2:de:10:d4:e6:43:24:f1: 5a:29:15:75:f4:1f:c5:07:97:f3:d8:cd:d0:11:f5: bc:bf:ba:7f:0a:f0:3b:6b:64:80:59:d3:d5:59:83: 17:3c:62:75:0f:0b:37:6c:38:7e:b4:74:3d:1b:ba: 51:b5:45:9d:aa:0d:3b:e8:44:2f:ae:14:14:6c:7a: 26:20:df:22:00:cf:3e:e0:e0:e2:42:df:aa:e7:b7: 78:b0:6b:00:26:d4:48:6c:be:93:bd:88:48:87:5e: 7c:9b:3b:a5:2d:f0:0a:59:9c:af:2f:f2:64:40:b4: 0c:07:00:34:c0:e0:c7:23:24:f4:a4:40:ff:4b:56: a7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E6:DA:1C:06:6C:04:32:E2:44:50:CE:3A:01:32:3C:F4:9E:7B:CA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143513.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a35f::/32 Signature Algorithm: sha256WithRSAEncryption 3f:13:a1:9c:b2:79:4c:ea:29:2a:fd:89:0a:c5:43:0d:3c:8b: 08:c2:1e:af:0c:11:04:8c:06:c2:fe:50:d5:9e:7a:47:56:01: f7:e3:b1:b1:c9:57:ec:e5:27:e6:33:3e:d1:21:ec:3b:51:03: 4b:e5:e4:ca:1b:b4:35:3e:e3:c4:87:fa:bf:30:a7:ec:42:61: 43:d2:3c:37:20:73:1e:61:d7:4e:68:36:93:a1:00:62:4c:3d: e9:6a:53:ba:ea:6e:00:38:cf:7a:c0:92:fc:49:08:0b:a9:4b: 75:57:0a:1a:9c:1f:c3:3f:80:47:8b:5a:65:d4:52:3b:42:dd: f1:33:b9:46:e5:ea:99:e2:0e:28:8f:ba:29:5e:ed:18:df:05: ba:d4:81:1c:5b:96:95:d1:1a:79:45:7e:59:bd:18:69:83:da: d4:79:11:af:cd:3f:32:da:ae:7b:c6:5f:eb:6c:d3:ac:7d:0b: 2d:c7:c3:68:16:3c:46:75:2d:3a:c2:19:44:e4:bd:24:43:71: 9d:ee:95:a1:a6:74:ec:b4:c2:05:3a:1d:d3:32:74:90:26:5f: 76:b0:a7:90:e1:54:e0:bf:f4:2d:db:c1:ea:6e:2e:9d:ed:ae: 5f:c2:13:b2:82:b5:c4:ed:ad:d0:f8:eb:c9:0f:f5:9d:03:fc: 02:6e:90:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJm/jKPKcLw+5S3sG9uxws74d6rswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg0M1oX DTI3MDMwMzA2MTM0M1owMzExMC8GA1UEAxMoMjFFNkRBMUMwNjZDMDQzMkUyNDQ1 MENFM0EwMTMyM0NGNDlFN0JDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANCrth0psq0g63Hfj/nMOXh4RPTwd/40XbzC8BbymzgD+mGga6g64CXoLpbk 7UFFIKewkJmeaXDMYjrFq+TS+sy91FSXPNCfWnsyF5LpkeX2T4U7awisKvLkimVx bxG9LxDZJDEorNUSRNcDmXBKvdEG03UBiF3vChK/Ynq0a9LeENTmQyTxWikVdfQf xQeX89jN0BH1vL+6fwrwO2tkgFnT1VmDFzxidQ8LN2w4frR0PRu6UbVFnaoNO+hE L64UFGx6JiDfIgDPPuDg4kLfque3eLBrACbUSGy+k72ISIdefJs7pS3wClmcry/y ZEC0DAcANMDgxyMk9KRA/0tWp2kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQh5toc BmwEMuJEUM46ATI89J57yjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzUxMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o18wDQYJKoZIhvcNAQELBQADggEBAD8ToZyyeUzqKSr9iQrFQw08iwjCHq8MEQSM BsL+UNWeekdWAffjsbHJV+zlJ+YzPtEh7DtRA0vl5MobtDU+48SH+r8wp+xCYUPS PDcgcx5h105oNpOhAGJMPelqU7rqbgA4z3rAkvxJCAupS3VXChqcH8M/gEeLWmXU UjtC3fEzuUbl6pniDiiPuile7RjfBbrUgRxblpXRGnlFflm9GGmD2tR5Ea/NPzLa rnvGX+ts06x9Cy3Hw2gWPEZ1LTrCGUTkvSRDcZ3ulaGmdOy0wgU6HdMydJAmX3aw p5DhVOC/9C3bwepuLp3trl/CE7KCtcTtrdD468kP9Z0D/AJukJ8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:13 2026 by rpki-client