$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143515.roa File: AS143515.roa (raw, json) Hash identifier: ERh2coPTAfEjXapgC/2uuYCfzvoxnmezwJhT6En8Iwg= Subject key identifier: 5D:A0:61:9E:A3:64:16:4F:6C:FD:9C:E1:AC:ED:61:89:F2:40:36:BE Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3346E6A53E95E587D9C62C7956A6DB205FF8C057 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143515.roa Signing time: Wed 04 Mar 2026 06:15:42 +0000 ROA not before: Wed 04 Mar 2026 06:10:42 +0000 ROA not after: Wed 03 Mar 2027 06:15:42 +0000 asID: 143515 IP address blocks: 240a:a361::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:46:e6:a5:3e:95:e5:87:d9:c6:2c:79:56:a6:db:20:5f:f8:c0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:42 2026 GMT Not After : Mar 3 06:15:42 2027 GMT Subject: CN=5DA0619EA364164F6CFD9CE1ACED6189F24036BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ae:67:4f:b2:8f:d0:6c:05:07:04:34:fb:06: 0f:37:65:70:66:03:4c:44:69:dd:64:4a:8c:26:fd: d6:18:05:89:88:85:3b:4b:7f:2e:e5:4a:61:40:af: 07:77:6c:d0:0a:ae:90:b1:73:4d:82:ba:e1:c0:ec: 33:39:c4:db:57:a9:59:45:24:07:a0:38:73:2e:79: 5d:fa:f8:7e:a4:d7:d6:e5:ac:16:89:15:36:bc:0b: 0d:86:7f:a4:bd:06:6b:6b:de:69:f0:44:3b:7f:bf: 5a:6e:40:c8:1f:2a:b0:b6:ce:b4:72:52:9c:02:af: 75:5f:45:31:03:e2:d1:67:70:80:ee:5a:0f:44:b0: d4:5e:88:eb:91:39:06:99:a2:df:19:eb:20:1c:f4: 22:62:0d:a4:ac:a4:39:84:0f:bf:b5:55:f5:80:ec: 33:a7:2b:f3:10:1f:ee:5d:bf:6e:b0:15:fa:e5:87: 6d:62:da:35:21:70:94:e2:da:ef:03:b3:a8:5f:97: b7:93:3c:0d:3c:dc:1e:b5:b5:bd:0f:09:11:34:48: 2a:81:cb:fb:46:34:59:ce:de:9d:c7:23:b3:53:88: 88:47:b5:96:f3:dd:35:8f:b1:d9:1f:ca:f4:0f:ce: 57:85:98:68:54:98:53:b0:b7:22:57:4f:19:a3:3f: 0e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A0:61:9E:A3:64:16:4F:6C:FD:9C:E1:AC:ED:61:89:F2:40:36:BE X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143515.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a361::/32 Signature Algorithm: sha256WithRSAEncryption 51:b4:55:ee:4b:2f:62:8d:c7:70:5b:cb:c1:eb:22:bb:be:29: 69:02:da:25:ac:33:4e:2b:4a:86:f4:63:1e:47:b5:0e:79:92: 4e:ef:96:67:20:08:3f:13:68:16:ca:c9:52:7d:3d:a5:b8:8d: 69:e5:c6:c6:7a:aa:52:33:30:4f:34:35:de:0b:54:3b:86:1b: 5a:5f:92:d5:6a:12:d2:88:8d:b8:14:5f:94:8e:90:aa:2a:8f: 15:94:88:54:45:ac:0d:8d:09:0b:1e:b5:fd:09:9b:44:50:dc: f5:95:60:78:c5:f8:ae:f3:90:ae:20:42:73:22:af:0f:23:6e: d0:ce:5e:f3:c7:86:94:38:99:36:e6:c6:f8:e6:54:63:3f:dc: 57:5a:fb:86:95:a1:ce:67:02:be:29:2f:90:26:0a:ce:2a:3a: b6:16:e3:ee:ef:7d:f0:7d:fa:00:fe:83:cd:05:24:d5:82:cb: cd:da:70:da:6e:8d:c8:67:88:f6:c8:67:bf:13:fe:d2:bd:74: ee:8c:e5:74:97:06:c0:3c:3c:f8:bf:d1:dd:1c:24:2a:17:78: af:5c:55:c0:94:4b:b7:74:42:ac:20:bb:f6:c4:0e:26:86:34: ca:05:6d:22:4d:f4:52:94:fb:79:02:7c:1a:27:32:17:3e:c3: 9c:0f:72:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUM0bmpT6V5YfZxix5VqbbIF/4wFcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTA0MloX DTI3MDMwMzA2MTU0MlowMzExMC8GA1UEAxMoNURBMDYxOUVBMzY0MTY0RjZDRkQ5 Q0UxQUNFRDYxODlGMjQwMzZCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPuuZ0+yj9BsBQcENPsGDzdlcGYDTERp3WRKjCb91hgFiYiFO0t/LuVKYUCv B3ds0AqukLFzTYK64cDsMznE21epWUUkB6A4cy55Xfr4fqTX1uWsFokVNrwLDYZ/ pL0Ga2veafBEO3+/Wm5AyB8qsLbOtHJSnAKvdV9FMQPi0WdwgO5aD0Sw1F6I65E5 Bpmi3xnrIBz0ImINpKykOYQPv7VV9YDsM6cr8xAf7l2/brAV+uWHbWLaNSFwlOLa 7wOzqF+Xt5M8DTzcHrW1vQ8JETRIKoHL+0Y0Wc7enccjs1OIiEe1lvPdNY+x2R/K 9A/OV4WYaFSYU7C3IldPGaM/Di0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRdoGGe o2QWT2z9nOGs7WGJ8kA2vjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzUxNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o2EwDQYJKoZIhvcNAQELBQADggEBAFG0Ve5LL2KNx3Bby8HrIru+KWkC2iWsM04r Sob0Yx5HtQ55kk7vlmcgCD8TaBbKyVJ9PaW4jWnlxsZ6qlIzME80Nd4LVDuGG1pf ktVqEtKIjbgUX5SOkKoqjxWUiFRFrA2NCQsetf0Jm0RQ3PWVYHjF+K7zkK4gQnMi rw8jbtDOXvPHhpQ4mTbmxvjmVGM/3Fda+4aVoc5nAr4pL5AmCs4qOrYW4+7vffB9 +gD+g80FJNWCy83acNpujchniPbIZ78T/tK9dO6M5XSXBsA8PPi/0d0cJCoXeK9c VcCUS7d0Qqwgu/bEDiaGNMoFbSJN9FKU+3kCfBonMhc+w5wPcoI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:46 2026 by rpki-client