$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143537.roa File: AS143537.roa (raw, json) Hash identifier: BuYW48nwll0zQmeIGORx3rvXohN2D/VP3byoDVWD3OA= Subject key identifier: 23:75:48:59:29:DA:62:18:8A:99:59:40:64:6D:52:40:58:12:64:3A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3E4673FC154188777BC218B3E9F0BBCBB096EB2B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143537.roa Signing time: Wed 04 Mar 2026 06:12:37 +0000 ROA not before: Wed 04 Mar 2026 06:07:37 +0000 ROA not after: Wed 03 Mar 2027 06:12:37 +0000 asID: 143537 IP address blocks: 240a:a377::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:46:73:fc:15:41:88:77:7b:c2:18:b3:e9:f0:bb:cb:b0:96:eb:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:37 2026 GMT Not After : Mar 3 06:12:37 2027 GMT Subject: CN=2375485929DA62188A995940646D52405812643A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0a:a8:3e:ee:41:b6:1c:8a:ef:af:94:28:18: 8a:3c:2d:71:27:8e:d3:fc:3a:45:a3:de:88:1e:ca: 2f:0c:5f:28:5e:af:3d:74:48:b9:a6:11:16:32:f2: d6:f6:a5:a6:11:95:18:53:23:48:f0:a7:85:4a:e6: b4:d6:16:bc:54:ba:6a:f8:40:7f:a9:01:68:de:86: c5:23:f4:23:0a:34:e3:8d:7b:15:1a:61:24:0b:1b: 4e:25:4a:62:3b:48:10:14:27:73:61:16:ff:87:b6: b1:d3:90:8f:67:01:79:89:2f:ef:09:64:3d:51:bc: 24:e8:88:c8:70:3e:a0:dd:f1:af:c1:18:ad:ae:c7: bf:1d:2c:fe:b8:93:7b:01:20:1d:1a:0a:49:cd:f3: a9:84:37:f3:f2:ca:0c:80:94:29:ca:05:b5:48:40: 03:53:5d:52:0e:f2:27:0c:55:bf:18:c8:a8:78:7a: 5c:df:ce:53:17:fe:5a:c3:f9:68:c8:48:58:22:56: 3d:f3:33:9e:b8:82:c0:67:e6:7e:44:26:92:68:65: 87:60:9e:79:9a:b0:96:8a:a2:09:c4:b2:bb:ef:b5: 6e:7e:e7:51:67:b7:51:ea:e4:c9:33:6e:62:73:97: fc:45:19:ea:9f:a3:34:0a:97:ce:f1:00:35:fc:7d: 9d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:75:48:59:29:DA:62:18:8A:99:59:40:64:6D:52:40:58:12:64:3A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a377::/32 Signature Algorithm: sha256WithRSAEncryption 12:60:19:3d:f2:6e:5b:71:42:5d:82:e2:82:d5:5a:d8:aa:30: 5c:77:bd:42:57:e6:25:b6:53:45:9b:4e:49:b6:32:ba:50:07: 4a:5d:9a:a1:ac:bc:3c:45:9f:83:38:58:3d:90:69:ad:2d:27: 43:8e:f7:d2:70:9f:99:ab:74:bd:82:4c:0a:c6:9d:26:98:25: 1b:65:d2:a0:15:30:80:f8:2e:ac:d8:6c:c5:dc:15:0b:83:5a: 30:99:87:44:44:6c:4e:74:83:64:67:4a:7f:50:ce:50:81:3f: 3c:cb:38:8d:cd:67:a8:99:bf:7d:2f:02:7c:2b:4b:cd:90:2f: c0:ed:03:c5:da:e0:1a:9a:9c:ae:98:21:7c:ec:9c:a5:e6:da: 74:28:f2:d2:78:8f:76:ab:c9:23:a7:1c:66:e3:a0:dd:f8:26: ea:c0:f7:12:a6:24:3a:56:ba:54:3c:ea:92:75:9c:86:06:74: 28:b7:8a:97:f2:fb:1a:7a:95:22:68:38:b4:80:c9:41:33:e8: 71:ad:a9:5c:35:62:0a:e2:65:1e:9f:71:62:3e:2e:fb:c6:48: 4b:ea:ba:81:ff:36:35:79:7e:b9:63:d0:30:50:17:49:06:e3: 9b:48:b3:e2:49:0a:78:1f:95:fa:6f:91:b4:66:a4:7d:46:e8: 8a:e2:b5:67 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPkZz/BVBiHd7whiz6fC7y7CW6yswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDczN1oX DTI3MDMwMzA2MTIzN1owMzExMC8GA1UEAxMoMjM3NTQ4NTkyOURBNjIxODhBOTk1 OTQwNjQ2RDUyNDA1ODEyNjQzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwKqD7uQbYciu+vlCgYijwtcSeO0/w6RaPeiB7KLwxfKF6vPXRIuaYRFjLy 1valphGVGFMjSPCnhUrmtNYWvFS6avhAf6kBaN6GxSP0Iwo04417FRphJAsbTiVK YjtIEBQnc2EW/4e2sdOQj2cBeYkv7wlkPVG8JOiIyHA+oN3xr8EYra7Hvx0s/riT ewEgHRoKSc3zqYQ38/LKDICUKcoFtUhAA1NdUg7yJwxVvxjIqHh6XN/OUxf+WsP5 aMhIWCJWPfMznriCwGfmfkQmkmhlh2CeeZqwloqiCcSyu++1bn7nUWe3UerkyTNu YnOX/EUZ6p+jNAqXzvEANfx9nSMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQjdUhZ KdpiGIqZWUBkbVJAWBJkOjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzUzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o3cwDQYJKoZIhvcNAQELBQADggEBABJgGT3ybltxQl2C4oLVWtiqMFx3vUJX5iW2 U0WbTkm2MrpQB0pdmqGsvDxFn4M4WD2Qaa0tJ0OO99Jwn5mrdL2CTArGnSaYJRtl 0qAVMID4LqzYbMXcFQuDWjCZh0REbE50g2RnSn9QzlCBPzzLOI3NZ6iZv30vAnwr S82QL8DtA8Xa4BqanK6YIXzsnKXm2nQo8tJ4j3arySOnHGbjoN34JurA9xKmJDpW ulQ86pJ1nIYGdCi3ipfy+xp6lSJoOLSAyUEz6HGtqVw1YgriZR6fcWI+LvvGSEvq uoH/NjV5frlj0DBQF0kG45tIs+JJCngflfpvkbRmpH1G6IritWc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:38 2026 by rpki-client