$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143547.roa File: AS143547.roa (raw, json) Hash identifier: C9Wa5aRNptc1kCIDMxeE20yCb5vf3KykgoDze0l79jE= Subject key identifier: CC:A8:7C:6C:7E:AF:83:9D:02:3A:73:A0:9B:3C:19:71:92:A0:46:B7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2395A1E2BDFCC33DBA5FB71039F25A34BDD9C1BA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143547.roa Signing time: Wed 04 Mar 2026 06:15:03 +0000 ROA not before: Wed 04 Mar 2026 06:10:03 +0000 ROA not after: Wed 03 Mar 2027 06:15:03 +0000 asID: 143547 IP address blocks: 240a:a381::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:95:a1:e2:bd:fc:c3:3d:ba:5f:b7:10:39:f2:5a:34:bd:d9:c1:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:03 2026 GMT Not After : Mar 3 06:15:03 2027 GMT Subject: CN=CCA87C6C7EAF839D023A73A09B3C197192A046B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:6e:6f:ca:fc:eb:9a:7d:7d:d0:f3:60:42:00: 08:d0:e0:76:c5:ff:13:c9:e7:89:8d:06:ab:13:9e: 92:8b:f2:a3:da:65:a4:ed:8f:7a:66:d9:a9:22:05: 20:d6:50:fb:43:10:c2:b1:0f:b3:ec:17:46:89:fc: fa:64:f7:e4:5b:26:e0:14:1b:00:e0:eb:af:2b:9f: 53:b7:5f:af:ad:fa:39:de:c3:b1:ae:d7:25:6c:62: 28:c7:85:ae:94:51:5b:ff:90:1a:61:cb:96:4a:55: 51:09:64:59:ce:ce:26:99:c1:32:9f:07:25:e2:80: 0c:39:ec:e5:56:b9:13:16:9e:7a:5b:ad:bf:88:c7: 31:1c:6e:a9:db:e8:d9:e8:a6:8a:97:81:71:70:a8: dd:5a:a1:3e:70:76:1d:f3:25:1c:3e:31:4b:5e:2a: 10:70:b4:6f:60:5d:89:72:5c:4c:30:1e:2e:c7:6e: ae:b7:77:a0:61:46:43:00:1a:30:05:bf:f9:6e:c5: 28:18:c2:a6:fc:b5:28:7a:54:07:cf:87:32:b0:ce: a3:89:83:ab:f5:48:8d:8d:83:9f:64:3f:a6:a4:cd: 6d:65:c8:98:d0:66:12:3b:38:da:78:3e:7f:84:9e: 39:c4:c8:15:e7:f3:16:f9:aa:52:56:9c:c0:9c:44: b4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A8:7C:6C:7E:AF:83:9D:02:3A:73:A0:9B:3C:19:71:92:A0:46:B7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143547.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a381::/32 Signature Algorithm: sha256WithRSAEncryption 08:85:4a:f3:04:05:7c:c9:9c:40:5b:61:d9:bf:0f:eb:0b:ef: ff:2f:33:f6:0c:42:7f:51:2b:a7:19:1b:01:93:9b:0f:8c:c8: 1f:36:ed:35:47:4b:1a:53:be:1e:98:2f:db:3b:45:c2:0d:91: 01:e2:66:cd:95:b1:ba:83:d8:66:d2:e2:c3:a1:e2:28:e6:de: c2:14:ab:2f:6d:06:e4:80:62:5b:af:b3:8a:30:61:6c:72:30: 16:f8:75:63:32:f3:ad:e6:4a:37:4f:dc:23:81:fd:c2:f2:9a: 49:2c:8f:d0:61:bd:64:7d:76:5b:f2:11:ff:2c:71:43:6e:35: 7e:3c:70:35:b6:20:a2:84:19:e5:fa:ed:66:cd:28:e3:3a:fe: 29:10:5f:31:1b:c8:8c:f4:e2:9c:51:60:ea:f0:f4:14:69:89: f1:5b:d3:ed:20:e0:ca:ab:16:75:af:df:8d:bf:d4:96:f8:e0: f1:7f:a0:b5:6a:d2:e1:54:dd:1e:ec:59:8b:d8:34:99:40:ea: 22:3d:1b:8d:5a:26:87:ca:d5:81:09:a3:b2:f6:d2:2a:6a:24: 4d:6a:b5:04:4f:0e:fc:1d:4e:fc:8a:63:d1:47:7d:77:9b:f6: 2f:4d:85:6f:10:e9:7d:7d:2b:86:38:87:11:62:08:c3:a0:b3: f2:50:f9:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUI5Wh4r38wz26X7cQOfJaNL3ZwbowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAwM1oX DTI3MDMwMzA2MTUwM1owMzExMC8GA1UEAxMoQ0NBODdDNkM3RUFGODM5RDAyM0E3 M0EwOUIzQzE5NzE5MkEwNDZCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPJub8r865p9fdDzYEIACNDgdsX/E8nniY0GqxOekovyo9plpO2PembZqSIF INZQ+0MQwrEPs+wXRon8+mT35Fsm4BQbAODrryufU7dfr636Od7Dsa7XJWxiKMeF rpRRW/+QGmHLlkpVUQlkWc7OJpnBMp8HJeKADDns5Va5Exaeelutv4jHMRxuqdvo 2eimipeBcXCo3VqhPnB2HfMlHD4xS14qEHC0b2BdiXJcTDAeLsdurrd3oGFGQwAa MAW/+W7FKBjCpvy1KHpUB8+HMrDOo4mDq/VIjY2Dn2Q/pqTNbWXImNBmEjs42ng+ f4SeOcTIFefzFvmqUlacwJxEtLECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTMqHxs fq+DnQI6c6CbPBlxkqBGtzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzU0Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o4EwDQYJKoZIhvcNAQELBQADggEBAAiFSvMEBXzJnEBbYdm/D+sL7/8vM/YMQn9R K6cZGwGTmw+MyB827TVHSxpTvh6YL9s7RcINkQHiZs2VsbqD2GbS4sOh4ijm3sIU qy9tBuSAYluvs4owYWxyMBb4dWMy863mSjdP3COB/cLymkksj9BhvWR9dlvyEf8s cUNuNX48cDW2IKKEGeX67WbNKOM6/ikQXzEbyIz04pxRYOrw9BRpifFb0+0g4Mqr FnWv342/1Jb44PF/oLVq0uFU3R7sWYvYNJlA6iI9G41aJofK1YEJo7L20ipqJE1q tQRPDvwdTvyKY9FHfXeb9i9NhW8Q6X19K4Y4hxFiCMOgs/JQ+VY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:48 2026 by rpki-client