$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143550.roa File: AS143550.roa (raw, json) Hash identifier: SzCHlKwhWuIijP5C9MKk/zy1uv9MXRAS9DO66EiBb3k= Subject key identifier: 1D:A3:59:8F:8A:2E:63:30:66:0D:76:4E:AE:37:1B:79:DF:5B:45:E6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4C3E9D81209F2E6C5E30AC30B4A859C7BC4C1B28 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143550.roa Signing time: Wed 04 Mar 2026 06:13:34 +0000 ROA not before: Wed 04 Mar 2026 06:08:34 +0000 ROA not after: Wed 03 Mar 2027 06:13:34 +0000 asID: 143550 IP address blocks: 240a:a384::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3e:9d:81:20:9f:2e:6c:5e:30:ac:30:b4:a8:59:c7:bc:4c:1b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:34 2026 GMT Not After : Mar 3 06:13:34 2027 GMT Subject: CN=1DA3598F8A2E6330660D764EAE371B79DF5B45E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:78:45:05:73:8f:ae:94:fc:0d:e7:e1:1e:2a: 16:c4:40:34:83:52:af:76:d6:2f:51:a5:fa:c6:3d: d6:ed:1e:c5:d4:ec:d4:c9:6e:f5:d3:5e:81:99:f7: 22:7c:10:da:b7:b9:71:e2:39:e9:b9:a8:47:cd:bc: 69:e1:8a:32:e0:f0:01:40:c6:00:ec:35:8a:a7:cb: 90:0b:f1:23:36:b6:25:54:29:8d:23:e2:62:28:6c: 0e:1c:9c:56:85:11:65:f7:41:d8:68:a1:11:88:05: ed:18:0c:47:02:13:c1:56:b0:a0:39:7f:ac:4f:20: bb:8e:ec:e5:af:4f:6a:57:24:4e:94:03:56:17:da: 64:f3:92:e1:b8:a0:ed:7e:93:26:d1:45:3d:85:fa: b2:55:35:10:4e:48:1c:d3:85:8b:43:8a:04:b5:ec: 61:21:1f:bb:a5:87:55:0b:d4:fb:80:74:12:fe:41: a2:39:e1:d7:c5:24:b5:dc:72:8b:27:31:35:ee:2e: f9:7f:f2:c3:1d:78:eb:8c:f3:69:33:9c:64:1c:71: c9:44:5c:01:3d:fe:23:0d:5f:89:2c:68:62:cc:94: 9e:78:a7:14:2c:db:fb:d8:15:f6:4f:ac:a1:22:33: 93:01:7f:9e:42:99:7c:3c:a6:4a:05:19:bc:44:4f: ca:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A3:59:8F:8A:2E:63:30:66:0D:76:4E:AE:37:1B:79:DF:5B:45:E6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143550.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a384::/32 Signature Algorithm: sha256WithRSAEncryption b8:45:c8:79:80:25:ac:b9:c0:29:fb:bf:31:97:fb:3e:7c:a1: 51:38:4a:1e:dd:67:3d:70:26:27:cd:09:69:82:ab:68:b6:6f: b9:2d:0c:85:05:26:35:cc:68:cd:52:7d:da:53:d4:ad:bb:03: c8:38:7f:6e:7a:76:53:41:58:9b:7a:65:4c:a5:37:51:ed:de: d6:b2:b9:c5:51:d0:1e:e0:2f:61:7a:3d:82:da:78:27:70:cb: 90:3a:b4:74:5d:e0:6f:55:93:93:88:86:56:22:97:6b:e3:c2: f8:7a:c9:49:63:c9:a1:a7:b9:85:b7:2c:24:2d:8c:d4:00:63: e2:b5:a2:79:84:fe:45:ab:8e:b0:d4:f2:25:fa:60:18:e2:f5: e2:f8:6e:0f:e7:a3:ac:2d:64:3f:e9:44:5b:8b:68:ea:74:19: 22:0e:83:40:a8:f5:5e:40:69:3a:f8:25:93:06:3d:f6:da:cd: 30:1e:8e:00:4a:e1:da:00:d7:6e:ba:ea:74:e1:14:d4:61:da: b5:6f:ab:90:14:ec:0c:e9:31:77:33:bd:38:3e:de:9d:29:f6: 8f:09:21:fb:33:c0:d8:5c:5c:7a:be:3b:81:fd:07:fd:b9:f9: 7c:65:1c:77:90:27:61:de:bc:ad:ec:3a:df:4d:b9:50:e5:f5: ce:19:05:99 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTD6dgSCfLmxeMKwwtKhZx7xMGygwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgzNFoX DTI3MDMwMzA2MTMzNFowMzExMC8GA1UEAxMoMURBMzU5OEY4QTJFNjMzMDY2MEQ3 NjRFQUUzNzFCNzlERjVCNDVFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKB4RQVzj66U/A3n4R4qFsRANINSr3bWL1Gl+sY91u0exdTs1Mlu9dNegZn3 InwQ2re5ceI56bmoR828aeGKMuDwAUDGAOw1iqfLkAvxIza2JVQpjSPiYihsDhyc VoURZfdB2GihEYgF7RgMRwITwVawoDl/rE8gu47s5a9PalckTpQDVhfaZPOS4big 7X6TJtFFPYX6slU1EE5IHNOFi0OKBLXsYSEfu6WHVQvU+4B0Ev5Bojnh18Uktdxy iycxNe4u+X/ywx1464zzaTOcZBxxyURcAT3+Iw1fiSxoYsyUnninFCzb+9gV9k+s oSIzkwF/nkKZfDymSgUZvERPyjECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQdo1mP ii5jMGYNdk6uNxt531tF5jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzU1MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o4QwDQYJKoZIhvcNAQELBQADggEBALhFyHmAJay5wCn7vzGX+z58oVE4Sh7dZz1w JifNCWmCq2i2b7ktDIUFJjXMaM1SfdpT1K27A8g4f256dlNBWJt6ZUylN1Ht3tay ucVR0B7gL2F6PYLaeCdwy5A6tHRd4G9Vk5OIhlYil2vjwvh6yUljyaGnuYW3LCQt jNQAY+K1onmE/kWrjrDU8iX6YBji9eL4bg/no6wtZD/pRFuLaOp0GSIOg0Co9V5A aTr4JZMGPfbazTAejgBK4doA12666nThFNRh2rVvq5AU7AzpMXczvTg+3p0p9o8J IfszwNhcXHq+O4H9B/25+XxlHHeQJ2HevK3sOt9NuVDl9c4ZBZk= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:38 2026 by rpki-client