$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143583.roa File: AS143583.roa (raw, json) Hash identifier: A2HAnMyPkbS2JvmZ2OHUgpqq1t3P2bbN1AE0lC+1RK4= Subject key identifier: 6A:D5:85:30:8A:F0:5A:52:15:8A:53:4F:CE:65:0D:D2:E5:FE:0E:FD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 36AB0A618D67D28A4786238A208EBB40F4D49110 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143583.roa Signing time: Wed 04 Mar 2026 06:13:41 +0000 ROA not before: Wed 04 Mar 2026 06:08:41 +0000 ROA not after: Wed 03 Mar 2027 06:13:41 +0000 asID: 143583 IP address blocks: 240a:a3a5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ab:0a:61:8d:67:d2:8a:47:86:23:8a:20:8e:bb:40:f4:d4:91:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:41 2026 GMT Not After : Mar 3 06:13:41 2027 GMT Subject: CN=6AD585308AF05A52158A534FCE650DD2E5FE0EFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ea:4b:ac:ca:82:41:e3:eb:63:1a:e6:09:78: 17:63:67:71:d7:97:77:4d:10:07:3b:35:75:73:4b: be:76:6e:fd:c3:28:4f:ed:2e:c6:a8:79:12:4c:58: cd:74:42:23:81:88:e5:78:52:96:eb:59:d5:4e:67: 54:8d:bd:36:e7:2b:0e:17:ea:ce:f0:57:3f:c7:11: 6b:df:d9:d9:64:00:83:58:8e:ba:78:7b:52:b2:79: 08:f4:cb:af:10:0a:1b:ee:27:c4:bb:41:39:5f:80: ec:4b:3b:07:56:71:f2:9b:5e:fb:13:da:4a:ea:56: 87:e9:e4:41:a5:93:51:2a:af:ae:39:bf:e1:41:18: c0:fb:81:04:65:6a:fb:f0:10:e0:37:d0:07:1d:d6: 6a:fe:dd:f1:ce:51:21:52:e0:27:99:d2:d8:b3:92: ea:e1:f6:72:0d:e4:e6:72:bf:af:37:4a:43:78:52: ff:bd:28:46:25:44:33:08:6a:10:df:f4:63:3a:60: d3:70:94:91:6b:56:13:75:14:7c:2f:7e:e7:47:44: 1a:8c:7b:9f:73:4c:f0:b4:ff:ed:28:8d:9d:53:be: 2b:cd:73:35:16:36:c5:bf:32:6b:4b:e9:e2:50:c0: 22:e9:75:e7:b4:8c:6f:f4:55:83:68:94:bf:60:c9: 05:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D5:85:30:8A:F0:5A:52:15:8A:53:4F:CE:65:0D:D2:E5:FE:0E:FD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143583.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a3a5::/32 Signature Algorithm: sha256WithRSAEncryption a0:e8:57:e5:9f:97:a8:fd:c7:e1:27:12:4e:94:ee:bf:24:3d: f6:cb:4d:12:e0:44:19:3e:bf:01:35:59:79:34:8f:23:87:15: d5:39:cf:1d:8b:ce:9a:50:13:58:08:10:e8:fe:2a:17:11:1e: 27:bd:15:d5:0b:0d:8f:eb:4f:de:06:fb:d7:3f:90:b1:b2:61: 55:30:07:a9:8f:95:e7:17:9a:7e:4a:7e:80:9b:c8:b3:e5:6f: 53:67:55:76:a3:54:81:a2:d9:65:5d:d3:c5:a2:b2:d1:3e:8d: d2:8e:e9:fb:4e:0a:19:f3:5d:73:29:93:de:19:f4:2f:9b:83: 47:9d:da:e4:44:fd:89:16:af:ea:4f:91:16:da:45:94:73:88: e3:6f:b6:92:b4:20:c1:89:af:29:6a:c5:7e:c4:60:6a:88:f6: 94:13:fe:d8:df:26:b9:39:d1:44:a3:b5:bf:8c:96:5f:79:aa: e3:dc:8c:cd:46:41:bd:6c:30:8c:39:45:be:23:4e:6d:98:23: 82:cc:3e:09:d1:72:7a:2f:5d:23:6f:6c:69:21:57:43:b7:29: 99:30:8a:1f:bd:f3:53:41:69:8a:b0:83:1e:c6:79:9a:49:23: 53:ff:fb:19:d7:e0:5b:e0:00:08:ad:6b:5e:fa:1a:c1:9f:12: d0:73:4b:b9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNqsKYY1n0opHhiOKII67QPTUkRAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg0MVoX DTI3MDMwMzA2MTM0MVowMzExMC8GA1UEAxMoNkFENTg1MzA4QUYwNUE1MjE1OEE1 MzRGQ0U2NTBERDJFNUZFMEVGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTqS6zKgkHj62Ma5gl4F2NncdeXd00QBzs1dXNLvnZu/cMoT+0uxqh5EkxY zXRCI4GI5XhSlutZ1U5nVI29NucrDhfqzvBXP8cRa9/Z2WQAg1iOunh7UrJ5CPTL rxAKG+4nxLtBOV+A7Es7B1Zx8pte+xPaSupWh+nkQaWTUSqvrjm/4UEYwPuBBGVq +/AQ4DfQBx3Wav7d8c5RIVLgJ5nS2LOS6uH2cg3k5nK/rzdKQ3hS/70oRiVEMwhq EN/0Yzpg03CUkWtWE3UUfC9+50dEGox7n3NM8LT/7SiNnVO+K81zNRY2xb8ya0vp 4lDAIul157SMb/RVg2iUv2DJBeMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRq1YUw ivBaUhWKU0/OZQ3S5f4O/TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzU4My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o6UwDQYJKoZIhvcNAQELBQADggEBAKDoV+Wfl6j9x+EnEk6U7r8kPfbLTRLgRBk+ vwE1WXk0jyOHFdU5zx2LzppQE1gIEOj+KhcRHie9FdULDY/rT94G+9c/kLGyYVUw B6mPlecXmn5KfoCbyLPlb1NnVXajVIGi2WVd08WistE+jdKO6ftOChnzXXMpk94Z 9C+bg0ed2uRE/YkWr+pPkRbaRZRziONvtpK0IMGJrylqxX7EYGqI9pQT/tjfJrk5 0USjtb+Mll95quPcjM1GQb1sMIw5Rb4jTm2YI4LMPgnRcnovXSNvbGkhV0O3KZkw ih+981NBaYqwgx7GeZpJI1P/+xnX4FvgAAita176GsGfEtBzS7k= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:20 2026 by rpki-client