$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143532.roa File: AS143532.roa (raw, json) Hash identifier: r5Gks7LWCUrWdqNb+jrXbtfhVBKG41tyHMeM6R4OguQ= Subject key identifier: EC:0D:1A:BA:BD:73:C9:BE:05:03:95:BA:DB:BF:43:ED:30:B2:C5:AB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 242CE9189963EC8EF19D877BE83C63D85C50F2B2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143532.roa Signing time: Wed 04 Mar 2026 06:15:17 +0000 ROA not before: Wed 04 Mar 2026 06:10:17 +0000 ROA not after: Wed 03 Mar 2027 06:15:17 +0000 asID: 143532 IP address blocks: 240a:a372::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:2c:e9:18:99:63:ec:8e:f1:9d:87:7b:e8:3c:63:d8:5c:50:f2:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:17 2026 GMT Not After : Mar 3 06:15:17 2027 GMT Subject: CN=EC0D1ABABD73C9BE050395BADBBF43ED30B2C5AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e4:d5:3c:73:53:8f:57:e4:3d:a5:18:50:9f: 61:34:54:3e:85:ec:fc:20:9d:18:f2:28:a8:5c:9f: 41:f5:46:97:f5:c2:3e:81:65:9f:db:6b:16:1f:e9: 17:19:8f:3e:ff:d0:59:69:ea:0c:cc:6d:c9:fa:3f: 5c:bf:c9:56:61:ba:04:43:cf:06:b8:15:13:89:31: 81:16:05:7d:c6:e2:74:e4:08:27:9b:bc:a7:c3:f6: ad:c9:4e:a9:5c:5f:37:a2:27:4c:80:4c:f2:71:20: 6f:f6:ec:98:a7:08:99:e1:f1:0f:5a:5d:dc:d9:b5: 61:3f:e3:25:eb:e3:09:a3:e2:22:4a:9f:32:e9:0b: 8c:d4:f0:ed:d4:91:31:cf:72:ac:97:33:36:a7:03: 6c:08:81:fe:6c:44:1f:ea:8a:56:85:02:2c:70:06: 50:2c:1a:db:af:47:33:82:39:cb:06:68:99:14:09: 50:35:cb:8d:5f:09:cc:f8:11:28:fb:31:f5:35:65: 8b:24:ed:14:72:48:ad:c6:35:2e:83:86:66:48:3c: e7:64:3c:2d:3f:58:6f:07:75:0e:b3:d5:81:83:bf: 21:51:13:52:93:e4:45:d4:48:13:c6:6c:c0:ae:be: ce:1e:7b:64:81:38:b0:96:59:cd:57:2a:61:69:6b: 43:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0D:1A:BA:BD:73:C9:BE:05:03:95:BA:DB:BF:43:ED:30:B2:C5:AB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a372::/32 Signature Algorithm: sha256WithRSAEncryption 38:fd:d1:a1:10:7d:68:32:41:af:15:cd:eb:c4:86:3b:90:e6: aa:93:12:8d:ac:29:7b:e6:5d:b5:6a:1e:4e:0e:9d:7f:eb:48: 6f:79:51:eb:45:ab:65:e9:80:81:70:27:d4:7f:9d:41:01:3f: 0b:79:21:af:6b:f6:71:0b:b4:fa:5a:8f:6b:53:59:a1:af:f5: 3a:12:bb:9f:51:7a:20:d4:5b:65:79:95:6c:dc:2b:05:04:c3: 2d:a7:c1:2f:65:fb:55:c6:88:c6:bb:62:59:77:c0:33:34:33: 5e:97:73:7e:c8:cd:b2:a6:64:15:f4:64:33:c3:71:35:e7:ee: 84:7d:c4:84:67:22:c3:3b:63:c5:dc:2b:bb:62:bb:98:1c:94: c0:15:95:0c:93:79:c0:6b:f4:de:00:ca:8d:ac:3c:61:01:87: 85:b1:a0:bd:3d:fb:6c:b0:8d:da:de:00:55:b3:ce:66:20:db: 30:ca:a0:bf:99:ac:79:63:29:ac:96:96:77:5c:0a:6f:88:08: d6:ea:3c:3b:3a:68:ba:5d:5c:24:81:ea:81:3d:3d:cd:25:2b: 8d:b3:12:8b:5f:75:ed:40:37:df:e6:ce:1a:aa:e3:26:9c:ba: 90:77:cc:06:9a:17:be:55:4a:d2:b3:92:8d:6a:dc:3a:5d:d2: 8e:7f:e9:b7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJCzpGJlj7I7xnYd76Dxj2FxQ8rIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAxN1oX DTI3MDMwMzA2MTUxN1owMzExMC8GA1UEAxMoRUMwRDFBQkFCRDczQzlCRTA1MDM5 NUJBREJCRjQzRUQzMEIyQzVBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7k1TxzU49X5D2lGFCfYTRUPoXs/CCdGPIoqFyfQfVGl/XCPoFln9trFh/p FxmPPv/QWWnqDMxtyfo/XL/JVmG6BEPPBrgVE4kxgRYFfcbidOQIJ5u8p8P2rclO qVxfN6InTIBM8nEgb/bsmKcImeHxD1pd3Nm1YT/jJevjCaPiIkqfMukLjNTw7dSR Mc9yrJczNqcDbAiB/mxEH+qKVoUCLHAGUCwa269HM4I5ywZomRQJUDXLjV8JzPgR KPsx9TVliyTtFHJIrcY1LoOGZkg852Q8LT9Ybwd1DrPVgYO/IVETUpPkRdRIE8Zs wK6+zh57ZIE4sJZZzVcqYWlrQ4sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTsDRq6 vXPJvgUDlbrbv0PtMLLFqzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzUzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o3IwDQYJKoZIhvcNAQELBQADggEBADj90aEQfWgyQa8VzevEhjuQ5qqTEo2sKXvm XbVqHk4OnX/rSG95UetFq2XpgIFwJ9R/nUEBPwt5Ia9r9nELtPpaj2tTWaGv9ToS u59ReiDUW2V5lWzcKwUEwy2nwS9l+1XGiMa7Yll3wDM0M16Xc37IzbKmZBX0ZDPD cTXn7oR9xIRnIsM7Y8XcK7tiu5gclMAVlQyTecBr9N4Ayo2sPGEBh4WxoL09+2yw jdreAFWzzmYg2zDKoL+ZrHljKayWlndcCm+ICNbqPDs6aLpdXCSB6oE9Pc0lK42z Eotfde1AN9/mzhqq4yacupB3zAaaF75VStKzko1q3Dpd0o5/6bc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:21 2026 by rpki-client